IETF Logo Mail Archive

RE: [Asrg] TitanKey and "white lies"... (Faking SMTP hard errors "improves" C/R utility?)

Vernon Schryver <vjs@calcite.rhyolite.com> Sun, 01 June 2003 03:27 UTC

Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id XAA17742 for <asrg-archive@odin.ietf.org>; Sat, 31 May 2003 23:27:05 -0400 (EDT)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id h513QbW29017 for asrg-archive@odin.ietf.org; Sat, 31 May 2003 23:26:37 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h513QbB29014 for <asrg-web-archive@optimus.ietf.org>; Sat, 31 May 2003 23:26:37 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id XAA17738; Sat, 31 May 2003 23:26:34 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19MJSm-0003Cr-00; Sat, 31 May 2003 23:24:52 -0400
Received: from ietf.org ([132.151.1.19] helo=www1.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19MJSm-0003Co-00; Sat, 31 May 2003 23:24:52 -0400
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h513PMB28998; Sat, 31 May 2003 23:25:22 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h513OpB28962 for <asrg@optimus.ietf.org>; Sat, 31 May 2003 23:24:51 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id XAA17735 for <asrg@ietf.org>; Sat, 31 May 2003 23:24:49 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19MJR5-0003Ck-00 for asrg@ietf.org; Sat, 31 May 2003 23:23:07 -0400
Received: from calcite.rhyolite.com ([192.188.61.3]) by ietf-mx with esmtp (Exim 4.12) id 19MJR4-0003Ch-00 for asrg@ietf.org; Sat, 31 May 2003 23:23:06 -0400
Received: (from vjs@localhost) by calcite.rhyolite.com (8.12.9/8.12.9) id h513OjKA004666 for asrg@ietf.org env-from <vjs>; Sat, 31 May 2003 21:24:45 -0600 (MDT)
From: Vernon Schryver <vjs@calcite.rhyolite.com>
Message-Id: <200306010324.h513OjKA004666@calcite.rhyolite.com>
To: asrg@ietf.org
Subject: RE: [Asrg] TitanKey and "white lies"... (Faking SMTP hard errors "improves" C/R utility?)
References: <5.2.0.9.2.20030531222202.00b43b60@solidmatrix.com>
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Sat, 31 May 2003 21:24:45 -0600

> From: Yakov Shafranovich <research@solidmatrix.com>

> ...
> >a) I am a sender with a CRI system and send a message to a recipient with a
> >CRI system.  My CRI system remembers I sent a message to a particular
> >recipient.
> >b) The recipient receives my message and holds it.  The recipient sends me a
> >challange message with CRI headers.
>
> If we were using some form of SMTP-model, then the recipient would not 
> actually accept the message. Instead his system would issue some form of 
> SMTP error code back, something like "450 Need to verify sender". This will 
> force the sender's system to hold on to the message until the C/R process 
> runs its gamut.
> ...

SMTP clients that merely follow RFC 2821 without knowledge of your
CRI system will retry the message on their normal schedule.
See section 4.5.4.1 of RFC 2821.

You are surely not assuming that all SMTP clients in the Internet will
be replaced before you turn on your CRI system.  So you must be assuming
that SMTP servers can recognize retransmissions of the same message
or same sender and not challenge a second time.  Have you considered
the practical difficulties of that?


By the way, how do you handle MX secondaries?  What if the SMTP client
happens to choose different MX servers for its attempts to send the
message?  How do you avoid sending a challenge from each MX server,
in practice and not merely theory?


Vernon Schryver    vjs@rhyolite.com
_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.23.0 | Report a Bug | By Email