Re: [apps-discuss] [IANA #900093] Re: draft-vesely-authmethod-dnswl

Alessandro Vesely <> Wed, 13 April 2016 18:01 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 8E09B12DCED for <>; Wed, 13 Apr 2016 11:01:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -5.298
X-Spam-Status: No, score=-5.298 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.996, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id xsx4TTbbqBq7 for <>; Wed, 13 Apr 2016 11:01:45 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 26ACD12DC46 for <>; Wed, 13 Apr 2016 11:01:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=beta; t=1460570501; bh=B4c4WpepQsa/Fqfd39NjI7QuwM77/rtDoRD9s1FVKWo=; l=3593; h=To:References:Cc:From:Date:In-Reply-To; b=Vn5//qdkVK+wgIgLaotTdnPYH0lKmS6j96QwKsNEZzs5A/YU2FA2jGgZMogsgEozt F+NAScJETAzmCCkB0kXjMYM1VqlNl0QLP9G1pT+V9OW3papEK5D5cLAXz6yLcud8IC M5jZJx5q0pVvihZAgU7pgCK7mRBq8m2DAcalgvh4=
Authentication-Results:; auth=pass (details omitted)
Received: from [] (pcale.tana []) (AUTH: CRAM-MD5 uXDGrn@SYT0/k) by with ESMTPA; Wed, 13 Apr 2016 20:01:41 +0200 id 00000000005DC044.00000000570E8985.000046FC
To: "Murray S. Kucherawy" <>
References: <> <> <> <> <>
From: Alessandro Vesely <>
Message-ID: <>
Date: Wed, 13 Apr 2016 20:01:41 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Icedove/38.7.0
MIME-Version: 1.0
In-Reply-To: <>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Archived-At: <>
Cc: Matthias Leisi <>, AppsAWG <>,
Subject: Re: [apps-discuss] [IANA #900093] Re: draft-vesely-authmethod-dnswl
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: General discussion of application-layer protocols <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 13 Apr 2016 18:01:47 -0000

On Mon 04/Apr/2016 23:11:22 +0200 Murray S. Kucherawy wrote:
> On Mon, Apr 4, 2016 at 9:20 AM, Alessandro Vesely <> wrote:
>> Can people subscribe to iana-prot-param-comment's?
> Not without just starting to Cc: them (i.e., it's not a list or UI I can
> access), but I'm also not sure it's a good idea to burden their ticketing
> system with a lot of traffic; they don't need to be involved at this phase.

The traffic is not so much.  The problem is it doesn't seem to be publicly

> If you want to discuss this in a public forum, is
> certainly a valid choice.  If you want to seek publication via the IETF
> stream (which seems a legitimate thing to do), I would eventually move it
> to

Hm... adding CC AppsAWG.  Let's see if anybody is interested.

I still don't think it is worth publishing the I-D, but maybe IETF's list
archives can be considered permanent documents, which can be referenced by
items added after Expert Review, no?

> I had a look at your -04.  Thank you for addressing most of my comments and
> suggestions; it's certainly better.  A few non-editorial issues remain:
> - The original list has not been updated as discussed, so
> the main problem remains.

The "dns" ptype has its own table there.  Added a more text.  I don't think
this is a useless ptype, since so much stuff is DNS-based...

> - You might want to include an example of use, perhaps in an appendix or in
> a new Section 2.1, so people can see what's going on.

A bare example was there already.  Fully expanded.

<pissed off>
So delighted of the new text, I managed to screw up policy.txt, which is
exactly what was to be exemplified :-/

It should read:

      policy.txt="fwd.example http://fwd.example/s?s=100"

</pissed off>

> - You mention the need to "determine the color of x".  Doesn't an MTA
> making a query to a DNSxL know what the color of "x" is already?

Yes.  This is detailed in the last paragraph of the example (A.1).

> - Section 2 changed "fail" to "none", but Table 3 in Section 3 did not.


> - There is now a reference to RFC7719, but no use of that reference
> anywhere in the body of the document.



-------- Forwarded Message --------
Subject: New Version Notification for draft-vesely-authmethod-dnswl-05.txt
Date: Wed, 13 Apr 2016 10:19:28 -0700
To: Alessandro Vesely <>

A new version of I-D, draft-vesely-authmethod-dnswl-05.txt
has been successfully submitted by Alessandro Vesely and posted to the
IETF repository.

Name:		draft-vesely-authmethod-dnswl
Revision:	05
Title:		DNSWL Email Authentication Method Extension
Document date:	2016-04-13
Group:		Individual Submission
Pages:		7

   This document describes an additional Email Authentication Method
   compliant with RFC 7601.  The method consists in looking up the
   sender'IP in a DNS whitelist.

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at

The IETF Secretariat