IETF Logo Mail Archive

Re: [dmarc-ietf] what to document about the tree walk

Scott Kitterman <sklist@kitterman.com> Wed, 13 July 2022 15:56 UTC

Return-Path: <sklist@kitterman.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB1EEC15A731 for <dmarc@ietfa.amsl.com>; Wed, 13 Jul 2022 08:56:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.108
X-Spam-Level:
X-Spam-Status: No, score=-7.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=kitterman.com header.b=cSbmLyzc; dkim=pass (2048-bit key) header.d=kitterman.com header.b=J99Jk4RN
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z08GQQ7VuEBZ for <dmarc@ietfa.amsl.com>; Wed, 13 Jul 2022 08:56:13 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [64.20.48.66]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7E1E2C157908 for <dmarc@ietf.org>; Wed, 13 Jul 2022 08:56:13 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) by interserver.kitterman.com (Postfix) with ESMTPS id 2337AF802C0; Wed, 13 Jul 2022 11:56:11 -0400 (EDT)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903e; t=1657727771; h=date : from : to : subject : in-reply-to : references : message-id : mime-version : content-type : content-transfer-encoding : from; bh=Oiw5aw4j0KWPPXAvqngf9WeOgM7v8XUjm6TuPCxhIHY=; b=cSbmLyzcnEhP7e7gP5RD7DPWZ5ujBHP8Mnb3pawAj0usldESqIvpCMtLG87fp+x9KBWhW 7vbhPI/Mjf9gvNkAQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903r; t=1657727771; h=date : from : to : subject : in-reply-to : references : message-id : mime-version : content-type : content-transfer-encoding : from; bh=Oiw5aw4j0KWPPXAvqngf9WeOgM7v8XUjm6TuPCxhIHY=; b=J99Jk4RN07KTHFJZY7DBKfAXCIa/V9GuHrPYCfTlheWXa5TjGtv9FCIyl501yD7lLzETB Pu59kbx11LaiDqkXJHmoSyihn/Du9eKMlaPPZ9mnsTOZ2hrwTkAsdcWdPA8TSb2uHqQvlja GuAJdW/OVAQjSCNRAeOOiN9xySlbU8X0LX4fZOXdiXQaqF8D4wmEkyS8ywHLNtewofAibM+ asEYErryOid1FZmu4aeBJGMONBNBlZ3OK/33YS3jDfY8oVZZ1U7pGFoJiJV88dfUtF3Lxy4 z2sj1Zwo5C6dBA62eT6U2Qf42w30Ue9dOnpHB1lT5nwso3khakSujeY9vu8A==
Received: from [127.0.0.1] (mobile-166-170-46-221.mycingular.net [166.170.46.221]) by interserver.kitterman.com (Postfix) with ESMTPSA id 63403F801F0; Wed, 13 Jul 2022 11:56:10 -0400 (EDT)
Date: Wed, 13 Jul 2022 15:56:08 +0000
From: Scott Kitterman <sklist@kitterman.com>
To: dmarc@ietf.org
In-Reply-To: <CAL0qLwbxoijfdfxpS5-LRPifxg+4e_ndBGQhne5s5of0zxBbMQ@mail.gmail.com>
References: <20220710010547.DB3B04532F40@ary.qy> <d8716435-8a52-dac4-ede2-6c27fced7f0f@tana.it> <84DDA91C-26E2-4803-8C6C-0369ED67298F@kitterman.com> <c4a7fd03-eae8-497f-3133-73523a9c1ca2@tana.it> <5197ba5f-9de4-d838-1579-eae67683e2d4@taugh.com> <650cadee-db8f-a54a-4d14-082c2d0bed02@tana.it> <0f3a343b-e7ea-7509-ceab-e5670aac8616@taugh.com> <CAH48ZfxHgxZwu3zLh99pc1JS4s==9bxU-0nS78O=7UAnZ=DtUQ@mail.gmail.com> <CAHej_8nkpGo30b9-ZkRc_wokymJ2ry_hsMgzaB2m4EH-WWG_zw@mail.gmail.com> <CAH48ZfzoVocPRKeVTqf6AE6Z48AWKFObm7X5oDa1ic1sQ5V1zg@mail.gmail.com> <CAL0qLwZFO_KK3+RUdzMLyjW0uOnzi4mXcVww1Mqx8tmhe-x2hA@mail.gmail.com> <CAH48ZfwTaf75HiJS2_VJKez8s3FqMh-K_6eD2eqaJatXWwcKww@mail.gmail.com> <CAL0qLwbxoijfdfxpS5-LRPifxg+4e_ndBGQhne5s5of0zxBbMQ@mail.gmail.com>
Message-ID: <D3807517-98C3-4F20-A594-F3109BCB831A@kitterman.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/7GTSc_7IxrY0vfHdI7hKszSyHf8>
Subject: Re: [dmarc-ietf] what to document about the tree walk
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jul 2022 15:56:18 -0000


On July 13, 2022 3:10:38 PM UTC, "Murray S. Kucherawy" <superuser@gmail.com> wrote:
>Once again, participating only:
>
>On Wed, Jul 13, 2022 at 3:43 AM Douglas Foster <
>dougfoster.emailstandards@gmail.com> wrote:
>
>> [...]
>>
>
>> 2) I believe that the document needs a vigorous explanation of why the PSL
>> needs to be replaced.   I made a stab at the effort in the text that I sent
>> Sunday night.   Murray's text here is more comprehensive.   But we need
>> something.  We are asking evaluators to undertake a change which requires
>> effort and any change creates multiple risks.
>>
>
>I don't know about "vigorous", but I think some tutorial would be useful
>given the wide variability of experience in the ultimate audience.  An
>appendix would suffice.
>
>
>> 3) The critical question is whether we can treat the PSL as replaced
>> without obtaining the markers first.   On this issue, John and I have a
>> different assessment of the risk.   I can accept a solution which lays out
>> the assumptions and risks to the evaluator, and lets them decide what to
>> do.  This is what sections 4.7. and 4.8 in my text from Sunday night
>> attempted to do.
>>
>
>My suggestion would be that if we are going to offer a choice, there should
>be some eventual path toward convergence rather than an open-ended period
>of people doing either.  Otherwise, the PSL will be a part of DMARC for far
>longer than we'd like.

I think a choice within DMARCbis is a bad idea.  Effectively the choice exists.  Evaluators will have the choice to stay with an RFC 7489 design or to upgrade to DMARCbis.

We can't get rid of the PSL without getting rid of the PSL.

There's no way to constrain it within the document.  If we have a 'choice', we are essentially signing up the IETF to a future effort to produce an update to actually get rid of it.

Scott K

v2.23.0 | Report a Bug | By Email