IETF Logo Mail Archive

Re: [dmarc-ietf] Call for Adoption: DMARC Use of the RFC5322.Sender Header Field

Scott Kitterman <sklist@kitterman.com> Tue, 29 September 2020 00:33 UTC

Return-Path: <sklist@kitterman.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE9E73A0A16 for <dmarc@ietfa.amsl.com>; Mon, 28 Sep 2020 17:33:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_FAIL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=kitterman.com header.b=ketiFooS; dkim=pass (2048-bit key) header.d=kitterman.com header.b=ixE8WTJC
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sRgOUtTNTysI for <dmarc@ietfa.amsl.com>; Mon, 28 Sep 2020 17:33:01 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AB8B53A0A06 for <dmarc@ietf.org>; Mon, 28 Sep 2020 17:33:01 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [64.20.48.66]) by interserver.kitterman.com (Postfix) with ESMTPS id 520D2F80284 for <dmarc@ietf.org>; Mon, 28 Sep 2020 20:32:59 -0400 (EDT)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903e; t=1601339579; h=from : to : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type : from; bh=rGXtJrb4GDa0UrjDDD5mS1mCSfdiHXqkJL9816iceQE=; b=ketiFooSR3ug4FbDuQVNdF0vfB6Azetm1RmOIEJYIaJQ5XweLmF+RrZlhWOkVrMZo212N RMe6AKNTKeFcJuHCg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903r; t=1601339579; h=from : to : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type : from; bh=rGXtJrb4GDa0UrjDDD5mS1mCSfdiHXqkJL9816iceQE=; b=ixE8WTJCEr5oDtwDaZK/2q7+j9aHtCVFPRvA1ovan/3hyCSGClrLN0471uUOCHHvheI4y f9QrkdDrnGduauEbI6S+aoweIOR5nnrQvVAvW2dXbci7SMsz6P6Jfm9zWB7fytOtYrr5aay A+qS/0/zMwNN/s6wJ7x1vcRzjfZ57iURCGWhlz57HQnD2ZWIID9D1g9gTx7v2JBZUZ04Fhj Cy9PR/EZHV2AmHbsACh5R7a+XB9c5tYY6SE0MN60ajKzHCZm/DF7PUYVx7VlwnOO806ezsU /WeP/mOos7ejNOdoSA49HAGiGLjlhQXkSKuz0MMqDT5x5Xx3tJm4rtoSYI2g==
Received: from zini-1880.localnet (static-72-81-252-22.bltmmd.fios.verizon.net [72.81.252.22]) by interserver.kitterman.com (Postfix) with ESMTP id 23AC5F801A2 for <dmarc@ietf.org>; Mon, 28 Sep 2020 20:32:59 -0400 (EDT)
From: Scott Kitterman <sklist@kitterman.com>
To: dmarc@ietf.org
Date: Mon, 28 Sep 2020 20:32:58 -0400
Message-ID: <33363154.Bvymkppg8h@zini-1880>
In-Reply-To: <CABuGu1oSshRN20twB6w1r6bnDDt8sunkPG9JY=V8Nme1Y5hVUg@mail.gmail.com>
References: <20200927171611.838B321D9BAD@ary.qy> <5069099.lO0Lvmlme3@zini-1880> <CABuGu1oSshRN20twB6w1r6bnDDt8sunkPG9JY=V8Nme1Y5hVUg@mail.gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/5M2xEu-x_JhOFA1OF_1m4nOpvPQ>
Subject: Re: [dmarc-ietf] Call for Adoption: DMARC Use of the RFC5322.Sender Header Field
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Sep 2020 00:33:04 -0000

On Monday, September 28, 2020 11:35:58 AM EDT Kurt Andersen (b) wrote:
> On Sun, Sep 27, 2020 at 11:23 AM Scott Kitterman <sklist@kitterman.com>
> 
> wrote:
> > On Sunday, September 27, 2020 1:16:11 PM EDT John Levine wrote:
> > 
> > Agreed.  Maybe it would help if someone who takes the latter view would
> > 
> > explain what they think RFC 7489, Section 6.6.2, Step 6 is for:
> > >    6.  Apply policy.  Emails that fail the DMARC mechanism check are
> > >    
> > >        disposed of in accordance with the discovered DMARC policy of the
> > >        Domain Owner.  See Section 6.3 for details.
> > 
> > I don't think that says "then toss the results into your classifier".
> 
> You completely ignored section 6.7 (Policy Enforcement Considerations)
> 
> which states:
> > Final disposition of a message is always a matter of local policy.
> 
> Local policy could be considered "the output of some classifier" or other
> mechanics left to the invention of the receiver.
> 
> This is a part of the documented DMARC spec, not a change.

Yes and that would be equally true even if RFC 7489 were silent on the matter.  
Receiver always gets to decide and there's no way DMARC could pretend to 
mandate delivery and not get laughed out of the room.

It's part of the documented specification, but so is 6.6.2(6).  I think that's 
there to make it clear there's no attempt at a delivery mandate.  There's no 
interoperability or protocol associated with it.  My view is that using local 
policy to override the 6.6.2(d) domain owner policy for disposition of 
messages that do not pass DMARC checks is in the spirit of the thing, but 
pretending like DMARC policy doesn't exist is not.

Scott K

v2.23.0 | Report a Bug | By Email