IETF Logo Mail Archive

Re: [dmarc-ietf] Policy Enforcement Considerations

"Murray S. Kucherawy" <superuser@gmail.com> Tue, 19 September 2023 17:55 UTC

Return-Path: <superuser@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 85A92C17CE92 for <dmarc@ietfa.amsl.com>; Tue, 19 Sep 2023 10:55:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lGsGbqU2Temk for <dmarc@ietfa.amsl.com>; Tue, 19 Sep 2023 10:55:16 -0700 (PDT)
Received: from mail-ej1-x62d.google.com (mail-ej1-x62d.google.com [IPv6:2a00:1450:4864:20::62d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 18159C15AE03 for <dmarc@ietf.org>; Tue, 19 Sep 2023 10:55:16 -0700 (PDT)
Received: by mail-ej1-x62d.google.com with SMTP id a640c23a62f3a-9add6d75489so100316166b.1 for <dmarc@ietf.org>; Tue, 19 Sep 2023 10:55:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1695146114; x=1695750914; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=B3Oaz5wNRQYm2tdtOnN38dCmt/Y8KF8wy753F04ujZk=; b=PMpmSSRaq2Lm40mKN6zgT1mGlhbONNr/IXBJDkp4GKMolNHOEo14xcsUp+9GZu5JB9 qnHTJngNBPfW8vF4BE5WgFmcyjCXhAbyVji1jpZ6MWz5JzAKa/tHjtAIAX82+87F8s3C D8f4Wu6r35Hd9gne/CTw6zBXULda3u6keGIztQMVkvGRp/gwkwq7NlJOmxMGTTbwtM2T aMGrT3RRYekutugjkgK8/FGEnCW71TWv/FDiNEf6viEiGUcRM79hRQeW7jnQSgUdiF9s 8C/u1I6RxhvJkzTLzt9NLPiZPnyHY0SDfDNyUBKNbzxInIljeaDEheu4YLAUYQNuq3OE ucUA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1695146114; x=1695750914; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=B3Oaz5wNRQYm2tdtOnN38dCmt/Y8KF8wy753F04ujZk=; b=XD7WMXeeTHQPjoeCJEJOHDtuaRDcO8ANPIuB+qogDg0BDAUtuZ+MNFeqqM+G4nqwrH xagrAiSI9J0NNgLCn5yAA7AqkJt/6q5lOd1f6c1fbgv9pi1NfmAuQ/jsEPQIIeWxGRi8 08Hr04TDX5wguA6ilLQ9X4qaeQ7JTnRCRiJqGxkKIZL5a/nwBoOkDvtk+mTGy+HQkcgC Qhs9WP+zcE24nI71/ALEwpqD1zqj9ZrNkSA8pJDrLx1Bn85FE9ERqXWWKjcX+YC3C1NT c0zAYIGGjiSwSD/RfsW9L88bWclt5rRneEiQBl1YHYNjwGl30avHrnuRBRU5J2XIdA1+ JWcg==
X-Gm-Message-State: AOJu0YzPmFj/ueSbTFboOtgUWXYXHR0Y1qI+5NpgQyVqyD12zEZOtnXS c5z1g7nbGQd6ozLhNBhlGj+vOe/qP9biVnvDgDtpJnjNSF4=
X-Google-Smtp-Source: AGHT+IEHPLf+30Fthgzd6aIE4ciBJ2jtA1ZGLcxxKHJdVlWZ6oS3HZC2iawcRRo6dQdr0gy+WlrwPrE3g/ueCeNH8uk=
X-Received: by 2002:a17:906:1091:b0:9a9:f7c3:c178 with SMTP id u17-20020a170906109100b009a9f7c3c178mr73739eju.7.1695146114131; Tue, 19 Sep 2023 10:55:14 -0700 (PDT)
MIME-Version: 1.0
References: <c371f5b3-6133-1dc1-aa59-d3c6718a6ff2@tana.it> <92100200-55C3-47A2-9756-12A4AFD94E69@kitterman.com> <CALaySJJKT2LdZ2pDpNhhOwOcH2Otemd+h6c0dZxodJ1HPr85QA@mail.gmail.com> <a3b36b4b-a006-ec89-e376-758adc330e99@tana.it>
In-Reply-To: <a3b36b4b-a006-ec89-e376-758adc330e99@tana.it>
From: "Murray S. Kucherawy" <superuser@gmail.com>
Date: Tue, 19 Sep 2023 10:55:02 -0700
Message-ID: <CAL0qLwYz7tWeFOsXLh2OX-wJ7-HVK+gsFSW18ieLuAh5KB_LCA@mail.gmail.com>
To: Alessandro Vesely <vesely@tana.it>
Cc: dmarc@ietf.org
Content-Type: multipart/alternative; boundary="000000000000f9bb670605b9f5ad"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/6n2T-_M6f45AOht1oU-cvC-GTIQ>
Subject: Re: [dmarc-ietf] Policy Enforcement Considerations
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Sep 2023 17:55:16 -0000

On Tue, Sep 19, 2023 at 8:24 AM Alessandro Vesely <vesely@tana.it> wrote:

> My wording can certainly be improved.  Before denying the idea, please
> consider
> a couple of facts:
>
> 1) We want ARC to override DMARC, yet we don't say so.  Not in such a way
> that,
> when a receivers does so, he can say he's following the letter of the
> protocol.
>

Do we need to say that expressly?  Isn't it just another input that a
filtering engine could consider?


> 2) Content filtering cannot override DMARC, can it?  By "override", I mean
> the
> author domain publishes a hard policy, both SPF and DKIM fail, and there
> is no
> deterministic sign (signature or IP) that the message comes from a
> recognized
> forwarder (including MLs).  What kind of content could ever suggest that a
> receiver conscientiously overrides DMARC?
>

Is that for this document to stipulate?  The actual, final logic of an
operator's filtering engine is not our affair.


> "Other knowledge and analysis", as currently in the draft, certainly
> includes
> content filtering.  Do we mean it?  Can we think of an example?


Sure.  Think of the opposite case: DMARC passes for spam.  Content
filtering absolutely should override the DMARC result.

Unless you want to go down the road of proposing that a "pass" should
always win out over any other result while a "fail" should be just one of
many dimensions of analysis, I think the way things are is both correct and
simpler.

-MSK, participating

v2.23.0 | Report a Bug | By Email