Re: [Asrg] Where to send the ARF report, was Adding a spam button to MUAs

John Levine <johnl@taugh.com> Sat, 06 February 2010 00:48 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: asrg@core3.amsl.com
Delivered-To: asrg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C7D923A6886 for <asrg@core3.amsl.com>; Fri, 5 Feb 2010 16:48:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -19.055
X-Spam-Level:
X-Spam-Status: No, score=-19.055 tagged_above=-999 required=5 tests=[AWL=-0.012, BAYES_00=-2.599, HABEAS_ACCREDITED_SOI=-4.3, RCVD_IN_BSP_TRUSTED=-4.3, RCVD_IN_DNSWL_HI=-8, SUBJECT_FUZZY_TION=0.156]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Tev9VrH07m3V for <asrg@core3.amsl.com>; Fri, 5 Feb 2010 16:48:25 -0800 (PST)
Received: from gal.iecc.com (gal.iecc.com [208.31.42.53]) by core3.amsl.com (Postfix) with ESMTP id F16753A67EE for <asrg@irtf.org>; Fri, 5 Feb 2010 16:48:24 -0800 (PST)
Received: (qmail 37567 invoked from network); 6 Feb 2010 00:49:16 -0000
Received: from mail1.iecc.com (208.31.42.56) by mail1.iecc.com with QMQP; 6 Feb 2010 00:49:16 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:subject:in-reply-to:cc:mime-version:content-type:content-transfer-encoding; s=k1002; olt=johnl@user.iecc.com; bh=VIF61RqqEs72V9cATRY7fO4HsUmA8UNBvpsHcI2naPQ=; b=KTXnQ4+BwctbVdCSLuvuXUe/paR5LdyXdag0BiiDn4aXARytZ7ZCuRgwNhUZwFT2oKyKBS5FDvyZKQdz2iOP7C8xinxXkG+Ddbo/dkTyf8Wt38CUwqogWcBv58bvOYi3EG3WwukyOXBNf0ub+zfm33kdM6FB3hn4U1GbEBUA0tc=
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:subject:in-reply-to:cc:mime-version:content-type:content-transfer-encoding; s=k1002; bh=VIF61RqqEs72V9cATRY7fO4HsUmA8UNBvpsHcI2naPQ=; b=G+GO7HeKt4stXAQRMd2DrbwgVyncCUeuJeAF/nqlSnncf7FraOp3VIcIsV6NVlNobJi/6r7sahxkYBO+DVqFeSXwYV36KZyENvfmwONRJJApbl8+m+7sJaedfZM7oycwIyG7zMO/oov5IYEpg5ivMzwoxy8aDxkktv0cc/OOJEs=
Date: 6 Feb 2010 00:49:15 -0000
Message-ID: <20100206004915.24791.qmail@simone.iecc.com>
From: John Levine <johnl@taugh.com>
To: asrg@irtf.org
In-Reply-To: <F20D7208-2839-4B53-ADC9-471D11880F70@blighty.com>
Organization:
Cc:
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset=iso-8859-1
Content-transfer-encoding: 7bit
Subject: Re: [Asrg] Where to send the ARF report, was Adding a spam button to MUAs
X-BeenThere: asrg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: Anti-Spam Research Group - IRTF <asrg@irtf.org>
List-Id: Anti-Spam Research Group - IRTF <asrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/asrg>
List-Post: <mailto:asrg@irtf.org>
List-Help: <mailto:asrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sat, 06 Feb 2010 00:48:26 -0000

>How does the MUA autodiscover "domain.com", though, so as to create
 "feedback@feedback.domain.com"?

>The only setting that the MUA is likely to have access to is the name
>of the IMAP or POP3 server. As IMAP and POP3 are not name-based, the
>entry there could easily be domain.com, mail.domain.com,
>imap.domain.com or pop.domain.com or smtp.domain.com or even
>www.domain.com.

You know, this is the sort of thing that SRV records were invented to
do.

If the name of the POP or IMAP server is www.domain.com, you do a SRV
lookup and find:

 _arf._tcp.www.domain.com SRV 0 0 25 collectreports.biz

So, using a fixed mailbox name, the address is
feedback@collectreports.biz.  If there's no SRV record, they aren't
prepared to accept reports.

I'm not thrilled about this, since this enshrines the false assumption
that the only ways to pick up mail are POP and IMAP, but at least it
doesn't break anything that works now.

The other reason I'm not thrilled about it is that it assumes that an
MUA remembers where it found each message.  It's not unusual for
people to have multiple POP accounts, and to dump everything into one
local inbox.  There's no need to remember the source of each message,
so I wouldn't want to assume the MUA does so.  That's why I still
prefer something like a note in the Auth-results: header to tell you
where to send the report.  Belt-and-suspenders types might want to add
a SRV lookup to that to deter random hostile misdirection.

R's,
John