IETF Logo Mail Archive

Re: [dmarc-ietf] Standards Track? Yes or No.

Douglas Foster <dougfoster.emailstandards@gmail.com> Tue, 02 April 2024 05:13 UTC

Return-Path: <dougfoster.emailstandards@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C3650C151098 for <dmarc@ietfa.amsl.com>; Mon, 1 Apr 2024 22:13:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.094
X-Spam-Level:
X-Spam-Status: No, score=-2.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DhBSrcLQp3u3 for <dmarc@ietfa.amsl.com>; Mon, 1 Apr 2024 22:13:30 -0700 (PDT)
Received: from mail-lj1-x22b.google.com (mail-lj1-x22b.google.com [IPv6:2a00:1450:4864:20::22b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DD401C15107C for <dmarc@ietf.org>; Mon, 1 Apr 2024 22:13:30 -0700 (PDT)
Received: by mail-lj1-x22b.google.com with SMTP id 38308e7fff4ca-2d6c220a377so54752261fa.2 for <dmarc@ietf.org>; Mon, 01 Apr 2024 22:13:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1712034808; x=1712639608; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=8HMvnBXmeWoEC+7Q+ysruAAYUbMmz/RyqCXW9S1JjaU=; b=VLElfMdZtXy4kLFg6KHWLDUxLb3uRM3bj4oWgmWQu3vAj3Y8Lv/8n7639ANBmN0seG mXoJN4QMOVkgPCs++e1E56qobuzArbxv3AnWUTGYIh3QQPsiKdqj2FkOkceh40jQo+4N 8+xDO7HueRRksaAtAxkclbudG/c9hCCKtfTyzzid1OThTimHnww5oHXYGD3cdoknyUe2 w2VidxFrJL3wpHM40n8vXoCeJlMr2hPwGJ4FO9WiwgSMJJaNORNMKQNFV6+nhAF6UDSJ kL9NweoddOkywfbMXewMzEO7u0NLqfvYnpqqYqPcI3lqaLg0+krEjBbX97YUukZ0HNI9 kNrg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712034808; x=1712639608; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=8HMvnBXmeWoEC+7Q+ysruAAYUbMmz/RyqCXW9S1JjaU=; b=C/a0m7QLUrJsOcOutOw7xR8Pz8KqDlzN9cU954Q7ncOmfn1k23Y44bSRC0wWE+gzW7 dWKwvFN/vKaNJK7ITxZaaulYVhgC7v0DmxMEZWoIe91EVDWZrbnXEZTebAvk1K2pEc2S dfh9vshJrvoHaxMUdk32uafWOy6/9u/Xzz+RYrT+MGfxOCdet7I3mXWT0abwS2wUsgPw eGQQm4pCC1dYvFVW7pPQOVLpIXHE8wdgowqo6SU5ywq0npS+PcjGniEA2xvAX9aH+wPX +w7VpuucW4lEIuOdHOfQYNZe95QWJubEc7pfX/w6p6nAYOa7BMgZivGFZtuq3WH/FiDh +Ymg==
X-Gm-Message-State: AOJu0YzmbPJmIhv6LuZSXoEXCNihyO5uLWjHs/B4BM0UNfpwzyVQpfog 2NKrODysIhhcuO4wX76wygWzvoRXGeNHtHbtTi0KkwGnjrbOE+BJxkseTI0BMr2wAWdl7t+eokw qvDVail8RAI1xD9QudD6lyO8ZEvMMe++iO8o=
X-Google-Smtp-Source: AGHT+IFCkg/8m7z60Q6dYJZ3KLCuILpZfGGhxAjgKCHie11IX0/x0xaQc1nJvdJ0TFtqFL/gL85LpFIRrJqLxF2oThw=
X-Received: by 2002:a05:651c:695:b0:2d8:841:f64b with SMTP id x21-20020a05651c069500b002d80841f64bmr5961921ljb.39.1712034808386; Mon, 01 Apr 2024 22:13:28 -0700 (PDT)
MIME-Version: 1.0
References: <CFEA2796-9213-4847-836B-81E8770973F5@bluepopcorn.net> <10f94e0e-7199-ee0d-ce36-62a2c6c78d95@iecc.com>
In-Reply-To: <10f94e0e-7199-ee0d-ce36-62a2c6c78d95@iecc.com>
From: Douglas Foster <dougfoster.emailstandards@gmail.com>
Date: Tue, 02 Apr 2024 01:13:16 -0400
Message-ID: <CAH48ZfznLaAsbsg8enqg5ZUvp6+sntNDNvX6yWOj5N_7y8m+4Q@mail.gmail.com>
To: IETF DMARC WG <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000098db4f0615162af4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/4RhaN08pPzR7l_CJxtAqjMk2Yog>
Subject: Re: [dmarc-ietf] Standards Track? Yes or No.
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Apr 2024 05:13:34 -0000

As a concept, DMARC is a powerful tool for detecting and blocking malicious
senders.

As a document it does much less.  DMARCbis perpetuates the known problems
in RFC 7489, thereby ensuring a continuation of negative outcomes.

Both documents define an imaginary evaluator who follows the senders advice
in defiance of his own best interest, and even in defiance of consistency:

   - If the domain owner policy is p=none (or no policy), the imaginary
   evaluator accepts malicious impersonation, because this is a small price to
   pay for ensuring that no wanted message is blocked incorrectly.   No
   attempt is made to distinguish between wanted and unwanted messages.

   - If the domain owner policy is p=reject, the imaginary evaluator blocks
   all unverified messages, because his priority is to prevent malicious
   impersonations from being accepted.   Blockage of some wanted messages,
   including mailing lists and other beneficial impersonations, is a small
   price to pay for protecting the network.   No attempt is made to
   distinguish between wanted and unwanted messages.

   - If the DMARC evaluation demonstrates that the purported author is not
   the author of the message, the evaluator makes no attempt to determine the
   identifiers that are responsible for the message.   Updating the sender
   reputation database is not important.

   - If the domain owner changes from p=reject to p=none to protect mailing
   list traffic, the imaginary evaluator immediately weakens his defenses as
   well, because the domain owner's interest outrank the evaluator's own
   interest.

This specification strategy has been justified on the assertion that
real-world evaluators will not actually behave like the imaginary
evaluator.   They will, instead, deviate from the DMARC specification and
pursue their own interests to optimally protect their network and serve
their users.   Evaluators know their own interests so well that we need
not, and indeed should not, give them any advice.

I am the first to wish that this assertion were actually true, but it is
clearly not.   If evaluators consistently used DMARC results in a manner
different than the imaginary evaluator, we would not have the mailing list
problem.  Many aspects of the mailing list problem demonstrate that a
non-trivial subset of evaluators are mimicking the imaginary evaluator very
closely, with all the warts that I described, and people are being harmed
as a result.

Standards track?   Not until we fix the failure inherited from RFC
7489: the untutored evaluator who does not know how to use DMARC results
wisely.

Doug Foster




On Mon, Apr 1, 2024 at 5:43 PM John R. Levine <johnl@iecc.com> wrote:

> On Sun, 31 Mar 2024, Jim Fenton wrote:
> > Based on the above problems, I do not think DMARC-bis should be
> published as
> > a standards track document by IETF.
>
> This reminds me of the NAT wars in the 1990s.  We all understand that
> DMARC has a lot of problems, but it's far more widely used than many of
> the IETF's published standards.  It just makes us look insular and out of
> touch to pretend that it doesn't exist, or if we shut our eyes it will go
> away.
>
> R's,
> John
>
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://www.ietf.org/mailman/listinfo/dmarc
>

v2.23.0 | Report a Bug | By Email