Re: [Dcrup] rsa-sha1 usage
"Murray S. Kucherawy" <superuser@gmail.com> Tue, 13 June 2017 13:21 UTC
Return-Path: <superuser@gmail.com>
X-Original-To: dcrup@ietfa.amsl.com
Delivered-To: dcrup@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B579F131857 for <dcrup@ietfa.amsl.com>; Tue, 13 Jun 2017 06:21:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CCZmnMbZlfPl for <dcrup@ietfa.amsl.com>; Tue, 13 Jun 2017 06:21:10 -0700 (PDT)
Received: from mail-ua0-x22a.google.com (mail-ua0-x22a.google.com [IPv6:2607:f8b0:400c:c08::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 477471314F8 for <dcrup@ietf.org>; Tue, 13 Jun 2017 06:21:10 -0700 (PDT)
Received: by mail-ua0-x22a.google.com with SMTP id 68so57709648uas.0 for <dcrup@ietf.org>; Tue, 13 Jun 2017 06:21:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=9/FF9vgo/AkyX+5sCEwFemY0JxliItxqi9f/EGx9uKg=; b=kbpqlKjv0FGkFmlVjNCcrpdFsDe71MQDOUEoOt90xktHEuvJQwn6v3xsLmo7kVIdMW BvC72KHeM/HrwxbKg7eKfJPW/W0+06P/4i0tJsOYIG5jsYu4pKAnZRzYLXdLMbvCC6WY haZiitD5EvGp7MAb5BB/G5YsYyIltXGmeMgwD1Tsj2FEkAZ+frTfkSPmi0QV3tEfoAyo AuWDv8lyj7d4i0TVws8c9kfda85p4MnGn1mpSXKJZJ1xQ5laEaV6Foa0lBVpC5h5f3YU Bvwr1bVUoR38EZiEqf+hLdN8aOSo+u8JkZKKBQvfE0yn+H6oF7TZaejTxb9IfQsQIdaq b2/w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=9/FF9vgo/AkyX+5sCEwFemY0JxliItxqi9f/EGx9uKg=; b=n0O/vJN+geA6DvQ+CH9/sF3cpDCfT/OeHM5bTgBE+Obug3Oq9MwB8HP/CeyLEaNJqU nvQv9Kh0VBBaOmLCP65cm21qfb3RAI6WqKVQ6dqVN/vDRA+nytKWVonAseni3xLzqDay y/cRi/lsHKGQdGhdiDicaKHlvcDPhffX94ihvu26L16FCBc6eG7+QiLeJetz0Elc3bDn vE8YFS/2S6UkciU8pEhUWwUkqke1AY8giamxUaayiPLT4UGyI0c1PbDUzQPy7ZWYF4rc kiK7pdwolMYsMRLXThiliQVub0HWH+wOGyW/ohq7wwxsuqBYiZKmLBtYeiuwBcTr86J6 TpkQ==
X-Gm-Message-State: AKS2vOwtaCkLRdQgGYYw0qPAc+he+XB3DEHCoDzBfGnIbXlOslMwmlgI L+lfXshp2T2BihyHPxb4jiPRmgJV/LXC
X-Received: by 10.176.0.248 with SMTP id 111mr2093083uaj.133.1497360069353; Tue, 13 Jun 2017 06:21:09 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.103.138.3 with HTTP; Tue, 13 Jun 2017 06:21:08 -0700 (PDT)
In-Reply-To: <CAOj=BA2O+Hf2VGOtbmnqY2M5J9u8uJ7wm7SxEW551SXBwDdanw@mail.gmail.com>
References: <m38tkw53bd.fsf@carbon.jhcloos.org> <CABa8R6s6rzc+Ky8sLWcK7NtforSksEhNRkWVeF=k1v8GC80knw@mail.gmail.com> <m3wp8gpx20.fsf@carbon.jhcloos.org> <CAOj=BA2O+Hf2VGOtbmnqY2M5J9u8uJ7wm7SxEW551SXBwDdanw@mail.gmail.com>
From: "Murray S. Kucherawy" <superuser@gmail.com>
Date: Tue, 13 Jun 2017 06:21:08 -0700
Message-ID: <CAL0qLwa0_H6nznQyUv0AhZx=BzR5YQhnKV_HRAoPw2teB0t-ag@mail.gmail.com>
To: Peter Goldstein <peter@valimail.com>
Cc: dcrup@ietf.org
Content-Type: multipart/alternative; boundary="001a113ac2d40928590551d74f76"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dcrup/P9Rmah85a6rfFgzwwVcVTscw4N8>
Subject: Re: [Dcrup] rsa-sha1 usage
X-BeenThere: dcrup@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DKIM Crypto Update <dcrup.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dcrup>, <mailto:dcrup-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dcrup/>
List-Post: <mailto:dcrup@ietf.org>
List-Help: <mailto:dcrup-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dcrup>, <mailto:dcrup-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Jun 2017 13:21:12 -0000
Hi Peter, On Mon, Jun 12, 2017 at 11:41 PM, Peter Goldstein <peter@valimail.com> wrote: > One of the valuable services that DCRUP can provide is demonstrating to > these ESPs that SHA-1 support is actively being deprecated, and that they > will need to make the shift to rsa-sha256 to ensure future deliverability. > It's M3AAWG this week, and I'm planning on having that conversation with > several folks from companies that are using rsa-sha1, to encourage them to > make the change sooner rather than later. > I think we should be careful not to assume that us issuing RFCs or updating IANA registries will compel the long tail to do anything. What will get them to change is receivers no longer accepting their signatures and affecting their mail's delivery, but our work here won't necessarily compel that either. We should say the right things in the right ways, and stop. -MSK
- [Dcrup] rsa-sha1 usage James Cloos
- Re: [Dcrup] rsa-sha1 usage Brandon Long
- Re: [Dcrup] rsa-sha1 usage Brandon Long
- Re: [Dcrup] rsa-sha1 usage Murray S. Kucherawy
- Re: [Dcrup] rsa-sha1 usage Brandon Long
- Re: [Dcrup] rsa-sha1 usage Scott Kitterman
- Re: [Dcrup] rsa-sha1 usage James Cloos
- Re: [Dcrup] rsa-sha1 usage Peter Goldstein
- Re: [Dcrup] rsa-sha1 usage Salz, Rich
- Re: [Dcrup] rsa-sha1 usage Murray S. Kucherawy
- Re: [Dcrup] rsa-sha1 usage Jim Fenton
- Re: [Dcrup] rsa-sha1 usage Eric Rescorla
- Re: [Dcrup] rsa-sha1 usage Phillip Hallam-Baker
- Re: [Dcrup] rsa-sha1 usage Scott Kitterman
- Re: [Dcrup] rsa-sha1 usage James Cloos
- Re: [Dcrup] rsa-sha1 usage Murray S. Kucherawy
- Re: [Dcrup] rsa-sha1 usage Jim Fenton
- Re: [Dcrup] rsa-sha1 usage Phillip Hallam-Baker
- Re: [Dcrup] rsa-sha1 usage Murray S. Kucherawy
- Re: [Dcrup] rsa-sha1 usage Jim Fenton
- Re: [Dcrup] rsa-sha1 usage Scott Kitterman
- Re: [Dcrup] rsa-sha1 usage Murray S. Kucherawy
- Re: [Dcrup] rsa-sha1 usage Scott Kitterman
- Re: [Dcrup] rsa-sha1 usage Jim Fenton
- Re: [Dcrup] rsa-sha1 usage Phillip Hallam-Baker
- Re: [Dcrup] rsa-sha1 usage denis bider
- Re: [Dcrup] rsa-sha1 usage Seth Blank
- Re: [Dcrup] rsa-sha1 usage Murray S. Kucherawy
- Re: [Dcrup] rsa-sha1 usage Scott Kitterman
- Re: [Dcrup] rsa-sha1 usage Murray S. Kucherawy
- Re: [Dcrup] rsa-sha1 usage Salz, Rich
- Re: [Dcrup] rsa-sha1 usage Phillip Hallam-Baker
- Re: [Dcrup] rsa-sha1 usage Peter Goldstein
- Re: [Dcrup] rsa-sha1 usage John Levine
- Re: [Dcrup] rsa-sha1 usage Hector Santos