Re: [Bimi] (non)desire for bimi
Thede Loder <thede@skyelogicworks.com> Mon, 18 February 2019 18:03 UTC
Return-Path: <thede@skyelogicworks.com>
X-Original-To: bimi@ietfa.amsl.com
Delivered-To: bimi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87BB1130F6F for <bimi@ietfa.amsl.com>; Mon, 18 Feb 2019 10:03:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=skyelogicworks.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rSOEm1nC7cfZ for <bimi@ietfa.amsl.com>; Mon, 18 Feb 2019 10:03:29 -0800 (PST)
Received: from mail-yw1-xc31.google.com (mail-yw1-xc31.google.com [IPv6:2607:f8b0:4864:20::c31]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3439012D4E7 for <bimi@ietf.org>; Mon, 18 Feb 2019 10:03:29 -0800 (PST)
Received: by mail-yw1-xc31.google.com with SMTP id q128so6759266ywg.8 for <bimi@ietf.org>; Mon, 18 Feb 2019 10:03:29 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=skyelogicworks.com; s=google; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=sSGuM6HNskpjw5llZnBWZw0s5ExRUBFL+odmYVYrBT4=; b=CYuhNcJD+YFsO22rN9KBr2SHbD2ArL/dbVXHacEVq+K4I4u55d8HmQGwEa4rOXzD03 30K88FGkxBVEXldLb39ye4mR8/B0LGlJHYkbo2Op2t+f2ZDDbLVR+kt3qrwUKr1MZfi/ fcHynQiXt2uHIDwO6cs2B1UujVrnALX80CdXk=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=sSGuM6HNskpjw5llZnBWZw0s5ExRUBFL+odmYVYrBT4=; b=uoRUlfiZ0ejXT7TSFoTbvuN3kLGhjMlrdj2mz8m1K3ZEXeiFVPdZSnVPseFdgSuiEX i8Y3UZWGlLl+N3i7NTsLqjh/K9Mko9mGaKLKPuDHc7Ziz/hR3fJYGkLFpGaVt9+plt5D Dvc4E+DaSP8i78XF5B6uVKMHsHWZU/LIiMiM81xiNYj7rDBqS1kp2/pyAfdDPPzzrmiL fABkzlBlt9gZ75ddDSB44kWxKhTIDQOQHHu7sB8w703fHQt5h8A8p5eh5tBpYH8QP10m fzaT7w9jIV6q22FEyElbBcf4IngdZXH9glyZWKLSSztXQ5hnDNLwyIi35OaBECHH8H0a PciQ==
X-Gm-Message-State: AHQUAubUAi/kHgn9aR7L1rjTgokwZ78/UuNSldYKEcmzyq7YG95NKl9P fSox/uvAbwB4FzlUWqd/Mv2pAA7okn0=
X-Google-Smtp-Source: AHgI3IaNhUOfHHzasTZTq743byAEBnUm5YHLz5/Xp4GLFZJDgBX5FuKDf1I74diGvBz6tGtaO4u8Aw==
X-Received: by 2002:a81:b101:: with SMTP id p1mr20463696ywh.454.1550513008267; Mon, 18 Feb 2019 10:03:28 -0800 (PST)
Received: from ?IPv6:2620::690:7822:3457:63ab:a70f:2946? ([2620:0:690:7822:3457:63ab:a70f:2946]) by smtp.gmail.com with ESMTPSA id j20sm240409ywj.69.2019.02.18.10.03.26 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 18 Feb 2019 10:03:27 -0800 (PST)
From: Thede Loder <thede@skyelogicworks.com>
Message-Id: <81ADFED9-C076-4C9E-BD29-914490D04DF8@skyelogicworks.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_F618FB51-C630-4C2F-8C31-DF30210C6935"
Mime-Version: 1.0 (Mac OS X Mail 12.2 \(3445.102.3\))
Date: Mon, 18 Feb 2019 13:03:26 -0500
In-Reply-To: <69304caf-2e46-d223-9e53-80b8c18ab25f@cs.tcd.ie>
Cc: Terry Zink <tzink=40terryzink.com@dmarc.ietf.org>, "bimi@ietf.org" <bimi@ietf.org>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
References: <aa919aeb-caa1-6494-259d-a553b238c268@cs.tcd.ie> <BL0PR11MB3107712FFFD2D92E911B909DA9670@BL0PR11MB3107.namprd11.prod.outlook.com> <17a79377-587a-c1fa-5927-23712ef15227@cs.tcd.ie> <BL0PR11MB310709095F044652035CD225A9670@BL0PR11MB3107.namprd11.prod.outlook.com> <69304caf-2e46-d223-9e53-80b8c18ab25f@cs.tcd.ie>
X-Mailer: Apple Mail (2.3445.102.3)
Archived-At: <https://mailarchive.ietf.org/arch/msg/bimi/4ktWpv1W61jfPecz2pFmkT7TDA0>
Subject: Re: [Bimi] (non)desire for bimi
X-BeenThere: bimi@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Brand Indicators for Message Identification <bimi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bimi>, <mailto:bimi-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bimi/>
List-Post: <mailto:bimi@ietf.org>
List-Help: <mailto:bimi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bimi>, <mailto:bimi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Feb 2019 18:03:32 -0000
> On Feb 15, 2019, at 11:16, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote: > > Hi Terry, > > Just on this point for now... > > On 14/02/2019 23:36, Terry Zink wrote: >>> In fact, my reading of bimi is that it does attempt to force a >>> receiving MTA/MS to actively download the image(s) and replace >>> the URL with one pointing at the MS (or nearby) - not doing so >>> would expose users of the MUAs using that MS to tracking once >>> those MUAs de-reference bimi URLs from the sender. >> >> Where does it say that in the BIMI spec? > > I'd have to go check the drafts again, but that's how it > was described to me at [1] and that matches my recollection > of the drafts. > > Cheers, > S. > > [1] https://mailarchive.ietf.org/arch/msg/spasm/cf-jmY5tOx-zIdklMyfLGdp9YqY <https://mailarchive.ietf.org/arch/msg/spasm/cf-jmY5tOx-zIdklMyfLGdp9YqY> Stephen, thanks for this reference. While its technically possible that a receiver might fetch a certificate at message-receipt time, receivers not wishing to enable sender tracking have another straightforward option: they can maintain access to the Certificate Transpareny logs, and therefore have a copy of every issued certificate (and their embedded list of FQDNs) and so retrieve relevant contents without any outbound communication to the net. In practice, receivers might implement daily DNS checks, during which they lookup and confirm the current BIMI record for the set of domains known to be publishing them, or to discover new ones that have begun doing so. Thede
- [Bimi] (non)desire for bimi Stephen Farrell
- Re: [Bimi] (non)desire for bimi Terry Zink
- Re: [Bimi] (non)desire for bimi John Levine
- Re: [Bimi] (non)desire for bimi Dave Crocker
- Re: [Bimi] (non)desire for bimi Terry Zink
- Re: [Bimi] (non)desire for bimi Dave Crocker
- Re: [Bimi] (non)desire for bimi Richard Clayton
- Re: [Bimi] (non)desire for bimi Stephen Farrell
- Re: [Bimi] (non)desire for bimi Thede Loder
- Re: [Bimi] (non)desire for bimi Thede Loder
- Re: [Bimi] (non)desire for bimi Terry Zink
- Re: [Bimi] (non)desire for bimi Dave Crocker
- Re: [Bimi] (non)desire for bimi Stephen Farrell
- Re: [Bimi] (non)desire for bimi Terry Zink
- Re: [Bimi] (non)desire for bimi A. Schulze
- Re: [Bimi] (non)desire for bimi Marcel Becker
- Re: [Bimi] (non)desire for bimi Dave Crocker
- Re: [Bimi] (non)desire for bimi Stephen Farrell
- Re: [Bimi] (non)desire for bimi Marcel Becker
- Re: [Bimi] (non)desire for bimi Dave Crocker
- Re: [Bimi] (non)desire for bimi Thede Loder
- Re: [Bimi] (non)desire for bimi Dave Crocker
- Re: [Bimi] (non)desire for bimi Thede Loder
- Re: [Bimi] (non)desire for bimi Thede Loder
- Re: [Bimi] (non)desire for bimi Dave Crocker
- Re: [Bimi] (non)desire for bimi Dave Crocker
- Re: [Bimi] (non)desire for bimi Richard Clayton
- Re: [Bimi] (non)desire for bimi Thede Loder
- Re: [Bimi] (non)desire for bimi Thede Loder
- Re: [Bimi] (non)desire for bimi Stephen Farrell