Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-psd-11.txt

Dave Crocker <dcrocker@gmail.com> Mon, 22 March 2021 15:41 UTC

Return-Path: <dcrocker@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6125C3A091F for <dmarc@ietfa.amsl.com>; Mon, 22 Mar 2021 08:41:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.198
X-Spam-Level:
X-Spam-Status: No, score=-0.198 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6OylpbDgmake for <dmarc@ietfa.amsl.com>; Mon, 22 Mar 2021 08:41:01 -0700 (PDT)
Received: from mail-qt1-x834.google.com (mail-qt1-x834.google.com [IPv6:2607:f8b0:4864:20::834]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C9E8C3A091E for <dmarc@ietf.org>; Mon, 22 Mar 2021 08:41:00 -0700 (PDT)
Received: by mail-qt1-x834.google.com with SMTP id f12so12651398qtq.4 for <dmarc@ietf.org>; Mon, 22 Mar 2021 08:41:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language; bh=g+NvqviCHAgtt+cGcwJBJptWV7OxCQ5azjbJtTh1rZo=; b=OLe3DZXarYp8nxzqRO2UBvGrL94Px/dD4oejwG6iSRUy3piD9RyG6KEeju+M7z7y68 xZKqUwMxloAcOyPPQ18kdG6Zl6YQVp8sOQ+4erLZ+RJpI2w14L5nZeYIbKU8WczoBRK2 Abh/aPHT4a2K9OnXMLDpM3ycIVO1xGf/wZBmat1eoGqWgaG3vOiUdIDVIEjMaCiDszUe Ib1F0sxM1gXLlgHFWcVYVO1Mwm4PTOMIUeE9xlC3gQ+vubEhYia2l7J6637PZBQ2vgps SdpOGE2Qahkx+a9ZQOb1iBc0nHWPFdwhhnFDnsV8mbHYEJUOORIgUbLoQQlcP2yopZBU 9Eyg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=g+NvqviCHAgtt+cGcwJBJptWV7OxCQ5azjbJtTh1rZo=; b=TeYqMukRILOOshusHLbiHzy6FMdHOAQYfLT2y545SBdfIXPJdqRfUDKJb4OqnxaN9h TkOpj0YfwvTbwavA8++UDMrW9O2Ba3cpc/sMQPB17Qz8Gtsydl90QtL6TYnDX0U/hsli iJa+IqzhyN5QF9LkgmH/0qF3bKDkY/M9OhBaDhCZjjCXm6zLHhd7eEjCmAHy/qllDQFT Z3lRoA9eszw8rXSJSSLb6Y+V5xKS45atvOXsIdUCU+RxcHSpyIHMchbPWgFg4DvLLdcu OXoo1CF2Hu39DD7myNotkgW+L2iwaC8WlChkt6r3YU9hRnS7oQpG1ORmlUE0vx2fRbzY OK0Q==
X-Gm-Message-State: AOAM533Mg9J933cMqpVz+WLe/2LuaH8w9ktTFO5eEhVjzOZDtXzmTbRd CKS3qgrMibzmHyHsITfOG+4=
X-Google-Smtp-Source: ABdhPJzZZWVqranSa2tB4IGi0eyk0fRFIfner7zulYRU4l2OzJgbkpX3PseSHK28rT/roC3mHvvfDA==
X-Received: by 2002:ac8:a04:: with SMTP id b4mr473285qti.376.1616427659794; Mon, 22 Mar 2021 08:40:59 -0700 (PDT)
Received: from [192.168.0.109] (108-226-162-63.lightspeed.sntcca.sbcglobal.net. [108.226.162.63]) by smtp.gmail.com with ESMTPSA id d12sm9172314qth.11.2021.03.22.08.40.58 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Mon, 22 Mar 2021 08:40:59 -0700 (PDT)
To: "Kurt Andersen (b)" <kboth@drkurt.com>, Tim Wicinski <tjw.ietf@gmail.com>
Cc: IETF DMARC WG <dmarc@ietf.org>, Alessandro Vesely <vesely@tana.it>
References: <161616297099.26288.5532647192522385084@ietfa.amsl.com> <b6acffdb-9700-b078-6cd2-e76d7f677f32@tana.it> <CADyWQ+Gvu3Nw0kMLkJ=kAVZkG+yf-Zo+nJ+PwL0pekXcG7TDbw@mail.gmail.com> <27e3365b-0e7f-f6c1-b702-ab9ab4ba8379@tana.it> <CADyWQ+FPuCSEiLtD9sOWAcjngRteyfYCDHt_6ftCpcxtYagUKA@mail.gmail.com> <CABuGu1pXNhDknzaJuVkbxts_dLseGo9rEf32wR0Svn84wP=zsw@mail.gmail.com>
From: Dave Crocker <dcrocker@gmail.com>
Message-ID: <c9209a74-fe87-b5a5-d373-3db2df9b25f3@gmail.com>
Date: Mon, 22 Mar 2021 08:40:55 -0700
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.8.1
MIME-Version: 1.0
In-Reply-To: <CABuGu1pXNhDknzaJuVkbxts_dLseGo9rEf32wR0Svn84wP=zsw@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------CD724A675E5C113B4ECE80D6"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/5urhVBrI6BebA7Z3VXQHZo6rNpE>
Subject: Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-psd-11.txt
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Mar 2021 15:41:05 -0000

>
>     NEW
>
>        Defensively registering all variants of "tax" is obviously not a
>        scalable strategy.  The intent of this specification, therefore, is
>        to enhance the DMARC discovery method by enabling an agent
>     receiving
>        such a message to be able to determine that a relevant policy is
>        present at "gov.example", which is precluded by the current DMARC
>        specification.
>
>
> Tim,
>
> I still think that including the term "obviously" in the first 
> sentence of this snippet is a pejorative judgemental statement which 
> is out of place in a specification. Especially given that there are 
> alternatives to "registering" any such domains at all via the use of 
> "trick" DNS servers at the PSD level.


Even worse is the demonstrable fact that it is far from obvious to many 
people and businesses.  Buying up cousin domains remains an active line 
of effort for (some) companies.

Consequently, the requirement here is to explain why it isn't scalable, 
rather than to simple assert the fact.


d/

-- 
Dave Crocker
dcrocker@gmail.com
408.329.0791

Volunteer, Silicon Valley Chapter
Information & PLanning Coordinator
American Red Cross
dave.crocker2@redcross.org