Re: [dmarc-ietf] ESC for Failed DMARC Validation
Alessandro Vesely <vesely@tana.it> Fri, 02 August 2019 17:18 UTC
Return-Path: <vesely@tana.it>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DAA76120735 for <dmarc@ietfa.amsl.com>; Fri, 2 Aug 2019 10:18:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.301
X-Spam-Level:
X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1152-bit key) header.d=tana.it
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v-pYYlZrodLQ for <dmarc@ietfa.amsl.com>; Fri, 2 Aug 2019 10:18:26 -0700 (PDT)
Received: from wmail.tana.it (wmail.tana.it [62.94.243.226]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21327120287 for <dmarc@ietf.org>; Fri, 2 Aug 2019 10:18:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tana.it; s=delta; t=1564766304; bh=oGKLU5FPc2/RNocI7/4ikjucdOBB5JEStBT2BVi80Rc=; l=1478; h=To:References:From:Date:In-Reply-To; b=DjvojIbcXwKwDtUtPVcjuJzjPgzHKxrXj2GeFSkQ2J88mb0BtcJbZVSgwLXFAL6LA NyR09dLmEBTldAmEg1p4vZHwPaz3ByB2k6w5YAEQUQu7q78iCeTHxEyNszs0Bn0lVM klhxWcMggUS4HlkzH1CLfyWGy7pEdS897tDXDPHPUS9gAsdcu3tRFJ1QcAjWc
Authentication-Results: tana.it; auth=pass (details omitted)
Received: from [172.25.197.111] (pcale.tana [172.25.197.111]) (AUTH: CRAM-MD5 uXDGrn@SYT0/k) by wmail.tana.it with ESMTPA id 00000000005DC086.000000005D447060.0000634A; Fri, 02 Aug 2019 19:18:24 +0200
To: dmarc@ietf.org
References: <c676b42745c2c8114ec26eb1f405c9eb2e68c364.camel@aegee.org>
From: Alessandro Vesely <vesely@tana.it>
Openpgp: id=0A5B4BB141A53F7F55FC8CBCB6ACF44490D17C00
Message-ID: <22f0d022-57f7-8b8f-0d88-18d1c77e990e@tana.it>
Date: Fri, 02 Aug 2019 19:18:24 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <c676b42745c2c8114ec26eb1f405c9eb2e68c364.camel@aegee.org>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/3ggnDsFUSuu-ZPZVjChssK4Xc0w>
Subject: Re: [dmarc-ietf] ESC for Failed DMARC Validation
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Aug 2019 17:18:28 -0000
Hi Dilyan, I'm not clear if you refer to the "DSN" extension (rfc3461). In fact, positive DSNs contain the A-R header field, and so can inform the sender when a message is accepted although some of SPF/ DKIM/ DMARC failed. I don't send failure reports, as they look plenty of privacy risks. Perhaps they could be sent to trusted sites only, but that way they'd lose generality. It's unfortunate that FR seem to be the only means to tell unwanted failures from real spam/ phishing successfully blocked by the protocol. Perhaps that distinction could be added to aggregate reports, even if it's not an exact science. Best Ale On Fri 02/Aug/2019 18:00:11 +0200 Дилян Палаузов wrote: > > why sites do not sent failure reports? > > Will a site, not sending failure report, be willing to use an Enhanced Status Code, to signal, that the DKIM/SPF > implementations of the receiver and sender disagree? > > * * * New Enhanced Status Code for Failed DMARC Validation > > Code: X.7.30 > Assocaited basic status code: Any > Description: Used as partial substitution to failure reports, when DMARC validation fails. 250 2.7.30 means, that the > message was delivered, ordinary or as junk, despite failed DMARC validation. 550 5.7.30 is used when the message is > rejected, because the DMARC validation failed. This status code is only usefull, when the receiving site does not send > failure reports. > > Regards > Дилян --
- [dmarc-ietf] ESC for Failed DMARC Validation Дилян Палаузов
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Alessandro Vesely
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Дилян Палаузов
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Murray S. Kucherawy
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Дилян Палаузов
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Murray S. Kucherawy
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Rolf E. Sonneveld
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Дилян Палаузов
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Alessandro Vesely
- Re: [dmarc-ietf] ESC for Failed DMARC Validation Дилян Палаузов