Re: [dmarc-ietf] ARC vs reject

Dave Crocker <dcrocker@gmail.com> Sun, 06 December 2020 00:21 UTC

Return-Path: <dcrocker@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB8AD3A0408 for <dmarc@ietfa.amsl.com>; Sat, 5 Dec 2020 16:21:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id I6I-l6BHTkOe for <dmarc@ietfa.amsl.com>; Sat, 5 Dec 2020 16:21:25 -0800 (PST)
Received: from mail-pj1-x1041.google.com (mail-pj1-x1041.google.com [IPv6:2607:f8b0:4864:20::1041]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C06973A03F4 for <dmarc@ietf.org>; Sat, 5 Dec 2020 16:21:25 -0800 (PST)
Received: by mail-pj1-x1041.google.com with SMTP id b5so1437962pjl.0 for <dmarc@ietf.org>; Sat, 05 Dec 2020 16:21:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-transfer-encoding:content-language; bh=T8p70SimSAodeJTQJFFz1/ssRZ7e2Edr5jm0nTN9blc=; b=RLUSvE8QYd8+Dh73NBeLDPOsqXiGIZeyX/kOaWTuPy2+Iw7H0oYFbm14IDrUXvl+rb wVPF+bXrneDIJ7f1pX0QUa0gUZ8v2ZRoYamtnMnzbpRTfnvh+fZgw3gWRhjQ7FK0BdmI lLcI0valUl3B/y0h/HLerFzbd2mriIIXfd2rfyj+qdzATP6ln56j7WbA0nnb0ifahWGu AiSZlXRIHBUHLmR1McDJ7JulyXhl2uSvL9ZKU+JxkOEld7ufEVHVgCvuY+ZcX2j4eXxj PL1rot3nzIPhXPV0HrYR8xQDPjdupvyJVkRrfFhJoA1pCAUSmAk4gYUD5nU3y5ZmUsHs HRJw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=T8p70SimSAodeJTQJFFz1/ssRZ7e2Edr5jm0nTN9blc=; b=hDalRoqJaPhxudvD2+8ELB1s4UTbrs5PhbqKfPVhkZ53AbhLfIviI+U0hKjrsoY1yl qedN7DPbJ7w8vZvxozJXLji/Ti80zXr7m9ACvfuFQdk0hhNrDDnUeWKeVq0cQrTlNayK zqxBi7hPuMcG/EHyV1bMzjVFRjI4sGPIS9ST8oeQR2AexqvEbS5TUAqqvtDPIa0vhCbA 74ZHdQxnakUcbNTt44qVa2OkiHdnU34N9X3HRm+vdRyhiCvfMW/CxUBuMZSjggoXnSpJ 4W802l6/F62tir64rNg3zywvxe0BK6gAw39tzg6EM8Opm8X/WSh7W4zV6lpzWg+KAplt jPzg==
X-Gm-Message-State: AOAM5321VhYOTSjy1SZ+z3eJ8Iu7+6esLEZf5cVjZhliARG0D4FkIpVc 4pK88MZhV1Bm2Tqn70vAysJ2wI6FiPA=
X-Google-Smtp-Source: ABdhPJz6JJQOznemjyDeiypacU4WcxtEH47GlQcSkFspTxH39jOSIDDJJfBSySEqpMCK8PEdd64ptg==
X-Received: by 2002:a17:90a:6749:: with SMTP id c9mr10373474pjm.129.1607214084993; Sat, 05 Dec 2020 16:21:24 -0800 (PST)
Received: from [192.168.0.109] (c-24-130-62-181.hsd1.ca.comcast.net. [24.130.62.181]) by smtp.gmail.com with ESMTPSA id g14sm9370090pfo.198.2020.12.05.16.21.24 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Sat, 05 Dec 2020 16:21:24 -0800 (PST)
To: Michael Thomas <mike@mtcc.com>, John Levine <johnl@taugh.com>, dmarc@ietf.org
References: <20201205231059.2BA23290EDCD@ary.qy> <b437a23a-7e7e-f70d-04dc-49810d002c43@mtcc.com> <b6950472-599b-d0a7-c0d1-82db099fb99b@gmail.com> <7ae42764-176d-11a8-e084-b10b6f676944@mtcc.com>
From: Dave Crocker <dcrocker@gmail.com>
Message-ID: <cb526017-c198-44f1-7282-986e5a810d6a@gmail.com>
Date: Sat, 5 Dec 2020 16:21:23 -0800
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.5.1
MIME-Version: 1.0
In-Reply-To: <7ae42764-176d-11a8-e084-b10b6f676944@mtcc.com>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/7EEYA_QAM98YDMXM942VRwWjneE>
Subject: Re: [dmarc-ietf] ARC vs reject
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 06 Dec 2020 00:21:27 -0000

On 12/5/2020 3:37 PM, Michael Thomas wrote:
> On 12/5/20 3:24 PM, Dave Crocker wrote:
>> On 12/5/2020 3:15 PM, Michael Thomas wrote:
>>> Can you keep your contempt for me off this list? This is not even 
>>> responsive to what I wrote, and is nothing more than an ad hominem.
>>
>> Wow. It wasn't an ad hominem.
> "You can say, no I am smarter than those guys and I REALLY REALLY mean 
> it, but see 2) above."
>
> This is really not about questioning my intelligence. eye roll. If I 
> said the same thing to you, you'd be screaming bloody murder to the 
> chairs to try to get me banned again.

Note that what you have just done is, in fact, an ad hominem and 
arguably does violate IETF participation rules.

Again, the response you are objecting two exactly followed the 
linguistic form of the setup you offered.  As such, the response was not 
directly at you, the author of the posting, but at the hypothetical 
person you formulated.


> If the publisher of the DMARC record cannot accurately state its 
> desires/policy, that is a deficiency in the protocol. Reject means I 
> want you to reject it. It doesn't carve out exceptions. ARC is trying 
> to carve out exceptions. If it wants an exception, the originating 
> domain should have a say in whether it desires the receiving domain to 
> carve out an exception one way or the other.

The domain owner might want all sorts of unreasonable things. Having a 
way to let the domain owner publish demands that are widely ignored 
indicates a seriously flawed semantic model. And that is, indeed, the 
current reality for DMARC.

d/

-- 
Dave Crocker
dcrocker@gmail.com
408.329.0791

Volunteer, Silicon Valley Chapter
American Red Cross
dave.crocker2@redcross.org