IETF Logo Mail Archive

RE: [Asrg] Re: RMX Records

"Gary Feldman" <gaf@rtr.com> Wed, 05 March 2003 01:57 UTC

Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA18826 for <asrg-archive@odin.ietf.org>; Tue, 4 Mar 2003 20:57:26 -0500 (EST)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id h2528A201608 for asrg-archive@odin.ietf.org; Tue, 4 Mar 2003 21:08:10 -0500
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h2528A501605 for <asrg-web-archive@optimus.ietf.org>; Tue, 4 Mar 2003 21:08:10 -0500
Received: from www1.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA18813; Tue, 4 Mar 2003 20:56:55 -0500 (EST)
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h25274500902; Tue, 4 Mar 2003 21:07:04 -0500
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h2526i500738 for <asrg@optimus.ietf.org>; Tue, 4 Mar 2003 21:06:44 -0500
Received: from silk.rtr.com (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA18800 for <Asrg@ietf.org>; Tue, 4 Mar 2003 20:55:29 -0500 (EST)
Received: from silk.rtr.com (IDENT:root@localhost.localdomain [127.0.0.1]) by silk.rtr.com (8.11.6/8.11.3) with ESMTP id h251vS111025 for <Asrg@ietf.org>; Tue, 4 Mar 2003 20:57:28 -0500
Received: from bark (bark [64.241.156.77]) by silk.rtr.com (8.11.6/8.11.6) with ESMTP id h251vRv11018 for <Asrg@ietf.org>; Tue, 4 Mar 2003 20:57:27 -0500
From: Gary Feldman <gaf@rtr.com>
To: Asrg@ietf.org
Subject: RE: [Asrg] Re: RMX Records
Organization: Ready-to-Run Software, Inc.
Message-ID: <004501c2e2ba$963fc030$4d9cf140@rtr.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.2627
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Importance: Normal
In-Reply-To: <200303050008.h2508xuN010080@calcite.rhyolite.com>
Content-Transfer-Encoding: 7bit
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Tue, 04 Mar 2003 20:57:33 -0500
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit

> From: asrg-admin@ietf.org [mailto:asrg-admin@ietf.org] On 
> Behalf Of Vernon Schryver
> Sent: Tuesday, March 04, 2003 7:09 PM

> That is wrong if asked and answered honestly.  Of course 
> "insecurity" and "forgeability" have not been design goals, 
> but "receiving mail from strangers" has been a goal.

That may have been the goal twenty years ago, but today the goal
must be reformulated, perhaps as "receiving personal email
from strangers must be possible for those who wish to receive
such mail"

> Contrary to your implicit claim, sending from one IP address 
> with a different return IP address has always been a design 
> goal.  Sending from one domain name with a return address in 
> another domain has always been an explicit design goal at 
> least as far as the Reply-To header is concerned.  That the 
> Sender header exists, suggests that differing SMTP client 
> reverse DNS domaon name and Mail_From values has been a goal. 

Ultimately, requirements translate into user requirements, not
some technical point.  Phrasing them technically as above
tends to obscure the real requirements.

So, for example, the real requirement is to be able to send
mail from one authorized address with a return address being
another authorized address, "authorized" being the operative
word.  Or it's the ability to run mailing lists with
reasonable "From" addresses, and a choice (at the list server 
level) between having the default reply go back to the sender
or to the list.

I do not believe that it was ever a requirement to have
the ability to send an email with a return address one had
no right to use, and even if it were, it is not a requirement
now.  Requirements phrased in terms of IP addresses are only
justifiable when rephrased and analyzed this way.

> Requiring that the reverse DNS domain name matches the 
> Mail_From domain name is as wrong aad silly as it would be to 
> requirer that when you send a picture postcard while on 
> vacation you use your current hotel as your return address.  
> Neither requirement would reduce fraud, spam, or anything 
> else that is bad.
 
While that's often done, the real requirement is that the 
sending computer have the authorization to send on behalf
of the purported (i.e. mail_from) domain  -- or perhaps 
it needs to be at the user level or some other granularity).

However, let me observe that a significant proportion of the
spam I receive can be rejected on the reverse DNS basis, while 
only a tiny proportion of legitimate mail would result in a false
positive.  So, while it's far from perfect, I don't agree
with your conclusion that it doesn't reduce spam, based on 
my own personal empirical evidence.

Gary

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.23.0 | Report a Bug | By Email