Re: [dmarc-ietf] WGLC editorial review of draft-ietf-dmarc-dmarcbis-30
"Murray S. Kucherawy" <superuser@gmail.com> Sun, 31 March 2024 20:30 UTC
Return-Path: <superuser@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA9B6C14F698 for <dmarc@ietfa.amsl.com>; Sun, 31 Mar 2024 13:30:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5f60UiEjpGSF for <dmarc@ietfa.amsl.com>; Sun, 31 Mar 2024 13:30:54 -0700 (PDT)
Received: from mail-ed1-x52b.google.com (mail-ed1-x52b.google.com [IPv6:2a00:1450:4864:20::52b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 364C7C14F689 for <dmarc@ietf.org>; Sun, 31 Mar 2024 13:30:54 -0700 (PDT)
Received: by mail-ed1-x52b.google.com with SMTP id 4fb4d7f45d1cf-5586764bd0aso1409845a12.0 for <dmarc@ietf.org>; Sun, 31 Mar 2024 13:30:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1711917051; x=1712521851; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=cxDLoKi6KKpDCGxNOP4MHq+2bE9Gv+0GQ32sMmIZaNY=; b=Jz0/EREiD+0JqS10SLADziwNelwBATu4vU/xC6NP+jIhhfxuXXibMsFLx1XO7278u3 L6MkeONHTmZFuKN9/DfE71GFgwR3ZNYt638NEi7H3HaefPCvrJ5amUUxaSMyIcDYaUoH or0JEp+1eRyrd67e+K58cyBONEETeOQVEx4K4splBzs83hVEOS3g4xUks3FqiT0LHhyK g9HNSRHXjybTu56lqmwKn1vESqyWSzxNFyI7fZMtj+gnvSwDxLTsX40LiuYynvVTTMRd WSefP06aXg5VRTwnP2bbAM+THZR1LqEyws5GQ5OZk1du8oP49eFKDih8sQurnyNNoCvY owkg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711917051; x=1712521851; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=cxDLoKi6KKpDCGxNOP4MHq+2bE9Gv+0GQ32sMmIZaNY=; b=JM8Bwf9bopEaXt82qXutR3qLFPD7ikHJsbD83Uxcdq7KAubQEXOr9vBOs8Vi2Kd9ZK DObGPEUL7zaIV5kBxsChaY7i57VDsH2YEAl5oxhrT6vk7iP3XtswLOIBqV2FojyJezq2 7xqdBvWt4bD9dEESXBes6KlqKTXKtAALaYTVuvixpDruypsHDMo0U92qPzVZGaO8+HTg OPrPSYjaH2gxHCeELbhpdfZYVU3OR33QRxxZKEorJYjVggPxZ+OZj9F4wvGUrJq8lz95 4kFWi2YH3LvyjM6z1NMgT7uayH/vINR2hezwG+e9FPT7cB1xii4htDVMyDCFkJ7lsqr1 BNNQ==
X-Gm-Message-State: AOJu0Yxn/kvkW+CvodMKMm4BlrRX22SmsDp/jdg6a3LyiEfDxljBuXmh ZkcGmekIGR+RfgSweA9xLMRtxStanybXV5scmRul4Zh+iTVt6XhEIDq4pIdWlq5vPuVZpJKCfQk AUiY5NAfSDXB4cRh02ErRrhVqa1TcApc2Z7A=
X-Google-Smtp-Source: AGHT+IHyJrrj2lKffYAEQx5sclRxShO/8KgG03pLzICc68QfJFCd6NEN3SyR1X2r+pChZxnaQxPxtVL5Js/FwdWuI2c=
X-Received: by 2002:a17:906:7c13:b0:a4e:ebd:2653 with SMTP id t19-20020a1709067c1300b00a4e0ebd2653mr4241924ejo.7.1711917051471; Sun, 31 Mar 2024 13:30:51 -0700 (PDT)
MIME-Version: 1.0
References: <CAOZAAfPwJHKGyLjTkdGDqkMeK4RQX4Fj0rw-Upn0cLZ+cE74aA@mail.gmail.com> <2cdd13ec-9d7f-4732-91ea-9c8983d7a28c@tana.it> <CAH48ZfzaNR2A6zUWVeeoay+UHLHTzja9f5RGfAt5htXd21C0KQ@mail.gmail.com>
In-Reply-To: <CAH48ZfzaNR2A6zUWVeeoay+UHLHTzja9f5RGfAt5htXd21C0KQ@mail.gmail.com>
From: "Murray S. Kucherawy" <superuser@gmail.com>
Date: Sun, 31 Mar 2024 13:30:38 -0700
Message-ID: <CAL0qLwZC27MNPjw1=bLvDaiouAwyqp6k+_gRX2ChGv5sTYf3FQ@mail.gmail.com>
To: IETF DMARC WG <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000bcee9e0614fabf95"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/6TWUkc_3yF5W7TJSwEIsi3gczSU>
Subject: Re: [dmarc-ietf] WGLC editorial review of draft-ietf-dmarc-dmarcbis-30
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 31 Mar 2024 20:30:58 -0000
On Sun, Mar 31, 2024 at 5:22 AM Douglas Foster < dougfoster.emailstandards@gmail.com> wrote: > On SPF, our document should say simply, > " a DMARC-compliant evaluator MUST NOT reject a message, based on SPF > result, prior to receiving the Data section and checking for aligned and > verifiable signatures." > > Of course, evaluators may still reject early base on known-bad server or > known-bad Mail From domain, but not based on SPF alone. > > I weary of the notion that the solution to all authentication problems is > to stop authenticating. > I suggest that we need to be clear on what "evaluator" is in that sentence. I think the proposed text makes architectural assumptions that may not be universally true. For instance, an upstream SPF filter might do something dispositive to the message before the DMARC implementation even gets a chance to see the body. So if "evaluator" is the DMARC implementation specifically, we don't know if it's compliant or not because it never got a chance to see the message body (the DATA section). But if "evaluator" is the operator's overall receiving function, of which both of those implementations are a part, then I think that assertion is probably correct. Overall, I would hope that operators understand that DKIM (and thus DMARC) can't be evaluated if the message is rejected before the body arrives, but I suppose it can't hurt to remind them. -MSK, p11g
- Re: [dmarc-ietf] Thoughts on choosing N John Levine
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Alessandro Vesely
- [dmarc-ietf] WGLC editorial review of draft-ietf-… Seth Blank
- Re: [dmarc-ietf] WGLC editorial review of draft-i… John Levine
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Seth Blank
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Douglas Foster
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Alessandro Vesely
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Mark Alley
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Alessandro Vesely
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… John Levine
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Seth Blank
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Murray S. Kucherawy
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Murray S. Kucherawy
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Murray S. Kucherawy
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Richard Clayton
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Seth Blank
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Tero Kivinen
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Alessandro Vesely
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Brotman, Alex
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Dotzero
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Tim Wicinski
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Todd Herr
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Tim Wicinski
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Jim Fenton
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Alessandro Vesely
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Brotman, Alex
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Todd Herr
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Murray S. Kucherawy
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… John Levine
- Re: [dmarc-ietf] ARC, was WGLC editorial review o… Alessandro Vesely
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Tim Wicinski
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Laura Atkins
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Dotzero
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Scott Kitterman
- Re: [dmarc-ietf] WGLC editorial review of draft-i… Scott Kitterman
- Re: [dmarc-ietf] the long march, WGLC editorial r… John R. Levine
- Re: [dmarc-ietf] the long march, WGLC editorial r… Scott Kitterman
- Re: [dmarc-ietf] SPF follies, WGLC editorial revi… Neil Anuskiewicz
- Re: [dmarc-ietf] the long march, WGLC editorial r… Murray S. Kucherawy
- Re: [dmarc-ietf] Thoughts on choosing N Douglas Foster
- Re: [dmarc-ietf] Thoughts on choosing N Alessandro Vesely
- Re: [dmarc-ietf] Thoughts on choosing N Scott Kitterman
- Re: [dmarc-ietf] Thoughts on choosing N Todd Herr
- Re: [dmarc-ietf] Thoughts on choosing N Murray S. Kucherawy
- Re: [dmarc-ietf] Thoughts on choosing N Douglas Foster
- Re: [dmarc-ietf] Thoughts on choosing N John Levine
- Re: [dmarc-ietf] Thoughts on choosing N Douglas Foster
- Re: [dmarc-ietf] Thoughts on choosing N John Levine
- Re: [dmarc-ietf] Thoughts on choosing N Scott Kitterman
- Re: [dmarc-ietf] Thoughts on choosing N (choose 6) Douglas Foster
- Re: [dmarc-ietf] Thoughts on choosing N Todd Herr
- Re: [dmarc-ietf] Thoughts on choosing N Scott Kitterman
- Re: [dmarc-ietf] Thoughts on choosing N John Levine
- Re: [dmarc-ietf] Thoughts on choosing N Scott Kitterman
- Re: [dmarc-ietf] Thoughts on choosing N Scott Kitterman
- Re: [dmarc-ietf] Thoughts on choosing N Todd Herr
- Re: [dmarc-ietf] Thoughts on choosing N Alessandro Vesely
- Re: [dmarc-ietf] Thoughts on choosing N John Levine
- Re: [dmarc-ietf] Thoughts on choosing N Neil Anuskiewicz
- Re: [dmarc-ietf] Thoughts on choosing N Scott Kitterman
- Re: [dmarc-ietf] Thoughts on choosing N Scott Kitterman
- Re: [dmarc-ietf] Thoughts on choosing N Douglas Foster
- Re: [dmarc-ietf] Thoughts on choosing N Alessandro Vesely