Re: [dmarc-ietf] Working Group Last Call on draft-ietf-dmarc-aggregate-reporting-14
Matthäus Wander <mail@wander.science> Thu, 21 March 2024 22:23 UTC
Return-Path: <mail@wander.science>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8DD55C14F60D for <dmarc@ietfa.amsl.com>; Thu, 21 Mar 2024 15:23:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=wander.science header.b="NomebBDW"; dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=wander.science header.b="p9Z8bX14"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GspBsboWR4RK for <dmarc@ietfa.amsl.com>; Thu, 21 Mar 2024 15:23:00 -0700 (PDT)
Received: from mail.swznet.de (cathay.swznet.de [IPv6:2a01:4f8:13b:2048::113]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 25147C14F5EC for <dmarc@ietf.org>; Thu, 21 Mar 2024 15:23:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=wander.science; s=2023-05-rsa; h=Subject:Content-Transfer-Encoding: Content-Type:In-Reply-To:From:References:To:MIME-Version:Date:Message-ID:Cc: Sender:Reply-To; bh=NswCPIp8isvcnScRzOuXBxqRKyZlcKCw0VfyegJxxIg=; b=NomebBDWo iqHEE1tG71x3peV82SybfcmziBNSzrEPdyGcuX/iGtmhK0Q67QvGo2HpxsxMBxQAYnT4FTKQT13ML 3EZTr3qA2KaJg5VFMyqyXP5V9AJmKJ5PwO2Cg8P+ThLNn24zdW7O6uUPkFqvBtv2sAv843RufLKOd tWgUSDQn38p3j/8dvRXWMDhU7/+cE63qK6uHAmNfqsxqMUXUiNhI/p0TTknxq5GDskDpgfbD4W+oC H6CWdpQDx4z74zVmLGN+Ibv4tz9c+EulWHqtf+KreDRzRmwGzOZdCCm6mOwYLc4ielE3wPLbHhEAf j51sPP3Oo9wYNHE+yTUP5kGZg==;
DKIM-Signature: v=1; a=ed25519-sha256; q=dns/txt; c=relaxed/relaxed; d=wander.science; s=2023-05-ed25519; h=Subject:Content-Transfer-Encoding: Content-Type:In-Reply-To:From:References:To:MIME-Version:Date:Message-ID:Cc: Sender:Reply-To; bh=NswCPIp8isvcnScRzOuXBxqRKyZlcKCw0VfyegJxxIg=; b=p9Z8bX14z AQ1JOCVkawq/p7HXUSp5Sx7F8GkrhB77VWWw8aMRWgqzwefU4Vvr/f+1dZQe2HPrToDLxkMcT8yAA ==;
Received: from dynamic-2a01-0c23-6c19-5d00-bdb7-433f-7e9a-7680.c23.pool.telefonica.de ([2a01:c23:6c19:5d00:bdb7:433f:7e9a:7680]) by mail.swznet.de with esmtpsa (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.94.2) (envelope-from <mail@wander.science>) id 1rnQoJ-00CKrl-BW for dmarc@ietf.org; Thu, 21 Mar 2024 23:22:56 +0100
Message-ID: <3c9ff852-7b5d-41fd-af62-d85642347414@wander.science>
Date: Thu, 21 Mar 2024 23:23:00 +0100
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-US
To: dmarc@ietf.org
References: <170917032719.21794.5530457789908442808@ietfa.amsl.com> <MN2PR11MB43514516D243026232B15E5CF75F2@MN2PR11MB4351.namprd11.prod.outlook.com> <CALaySJLe-2ZPedCWKRq7Jb5W9bOmU4V_hAu+biwd9peVOhAyhQ@mail.gmail.com>
From: Matthäus Wander <mail@wander.science>
Autocrypt: addr=mail@wander.science; keydata= xjMEX32k2xYJKwYBBAHaRw8BAQdAnfSBcaYKuP99+S+Cv7yM2MC5uDVgjDHq72XoUkvDduTN Jk1hdHRow6R1cyBXYW5kZXIgPG1haWxAd2FuZGVyLnNjaWVuY2U+wpYEExYIAD4WIQRN5cud QSNuO9g4P/vwPFqQ1RKslAUCX32k2wIbAwUJCWYBgAULCQgHAgYVCgkICwIEFgIDAQIeAQIX gAAKCRDwPFqQ1RKslBHNAP92aGE3RVTUoVtAOMVyEzC5kpipuYgwEUBGohcKJ6FlkwEAyvGn 2Cqw6T/GOCgcZb3NlOLAAh83v3GOLnbiQxzZgQ3OOARffaTbEgorBgEEAZdVAQUBAQdAMtpC ADRykYF4hU5t/d1ItWsCVcQTrUXARpFGk4s8shADAQgHwn4EGBYIACYWIQRN5cudQSNuO9g4 P/vwPFqQ1RKslAUCX32k2wIbDAUJCWYBgAAKCRDwPFqQ1RKslI9HAP908/+/2MpEH/63y93a 1WB5pcYFy9Do/b0AQjjkfP+ZVQD9EaC+bOBrNgJzHFwhJAHI0l2KD79pMSgXSllPlA0dBQg=
In-Reply-To: <CALaySJLe-2ZPedCWKRq7Jb5W9bOmU4V_hAu+biwd9peVOhAyhQ@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
X-SA-Exim-Connect-IP: 2a01:c23:6c19:5d00:bdb7:433f:7e9a:7680
X-SA-Exim-Mail-From: mail@wander.science
X-SA-Exim-Version: 4.2.1 (built Sat, 13 Feb 2021 17:57:42 +0000)
X-SA-Exim-Scanned: Yes (on mail.swznet.de)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/75Rjlmjv_ioO2sRBepYBxejuADo>
Subject: Re: [dmarc-ietf] Working Group Last Call on draft-ietf-dmarc-aggregate-reporting-14
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Mar 2024 22:23:05 -0000
Barry Leiba wrote on 2024-02-29 16:03: > This document is also ready for our final look, so this message starts > a working group last call for the aggregate reporting document, with > the same timing as for the DMARC spec. > > Please post to the DMARC mailing list by 31 March, giving your last > call comments (which should include “I read it and I think it’s ready” > as well). If you have significant issues to raise that have not > already been discussed and closed, please post each of those as a > separate thread. Minor issues and editorial comments can just be > posted here, to this thread, and we can split them off if necessary. Editorial and nits: - Would it be useful to add a reference to dmarc-bis? - 2.1: Bullet point "A separate report should be generated (...)" appears to be a requirement, not an enumeration of data included in the report. - 2.1: Bullet point "The DMARC policy discovered and applied, if any" is redundant with "The policy requested by the Domain Owner and the policy actually applied (if different)". - 2.1: Write out "IP" as "IP address". - 2.1: The terminology of having two sections and two subsections may be misleading, as this is not reflected in the XML structure. Suggestion: replace "subsection" with "element", which is a term used in XML. - 2.1: "In most cases, this will be a header_from element, which will contain the 5322.From domain from the message." Add: "There may be an envelope_from element, which contains the RFC5321.MailFrom domain." - Multiple instances: Replace "5322.From" with "RFC5322.From". - 2.1: "the 'record' element". Only instance where the element name is enclosed in quotes. - 2.1: "(...) while there MUST be one spf sub-element". At least one according to the XML Schema Definition (might be two, each with a different scope "helo" and "mfrom"). - 2.1: "(...) the value is one of none/neutral/pass/fail/softfail/temperror/permerror." Would it make sense to add a reference to RFC 8601? - 2.1.3: "Specified below, the reader will see a msg-id, Report-ID, unique-id." msg-id is not specified below. "5322.Message-Id" is briefly mentioned in 2.6.2. - 2.3: "(...) regardless of any requested report interval." The report interval (ri tag) has been removed from dmarc-bis. - 2.6: "Any reporting URI that includes a size limitation exceeded by the generated report (...) MUST NOT be used." The size limitation has been removed from dmarc-bis. However, leaving the text as-is offers the option to re-introduce a size limitation in future URI schemes. - 2.6: "(...) the Mail Receiver MAY send a short report (see Section 7.2.2)" Dangling reference: error reports have been removed. - 2.6.2: "This transport mechanism potentially encounters a problem when feedback data size exceeds maximum allowable attachment sizes for either the generator or the consumer. See Section 7.2.2 for further discussion." Dangling reference. - 3: "(...) after conversion to an A-label if needed." Add reference to definition of an A-label. Dmarc-bis references Section 2.3 of [RFC5890]. - 3: "the same overall format as the policy record (see Section 5.3)." Section 5.3 (or 5.4) of dmarc-bis. - 8: "report_id: UUID, specified elsewhere". Change to: "report_id: Unique Report-ID". - 8: "error: ?". Change to: "error: Optional error messages when processing DMARC policy". - 8: "The percent declared in the DMARC record". Change to: "Whether testing mode was declared in the DMARC record." - 9: The policy_evaluated in the sample report evaluates to <dkim>pass</dkim>, but still results in <disposition>quarantine</disposition>. Is that an adequate example? Suggestion: change to <disposition>pass</disposition>. Regards, Matt
- [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggrega… internet-drafts
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Brotman, Alex
- [dmarc-ietf] Working Group Last Call on draft-iet… Barry Leiba
- Re: [dmarc-ietf] Working Group Last Call on draft… Matthäus Wander
- Re: [dmarc-ietf] Working Group Last Call on draft… Matthäus Wander
- Re: [dmarc-ietf] Working Group Last Call on draft… Brotman, Alex
- Re: [dmarc-ietf] Working Group Last Call on draft… Matthäus Wander