IETF Logo Mail Archive

Re: [dmarc-ietf] Organizational domains, threat or menace, was On splitting documents and DBOUND

Jesse Thompson <jesse.thompson@wisc.edu> Fri, 13 November 2020 16:55 UTC

Return-Path: <jesse.thompson@wisc.edu>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC8563A0F0E for <dmarc@ietfa.amsl.com>; Fri, 13 Nov 2020 08:55:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, MSGID_FROM_MTA_HEADER=0.001, NICE_REPLY_A=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=wisc.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iKNQQPtXTBG6 for <dmarc@ietfa.amsl.com>; Fri, 13 Nov 2020 08:55:36 -0800 (PST)
Received: from wmauth3.doit.wisc.edu (wmauth3.doit.wisc.edu [144.92.197.226]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A18B93A0F0B for <dmarc@ietf.org>; Fri, 13 Nov 2020 08:55:36 -0800 (PST)
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11lp2174.outbound.protection.outlook.com [104.47.56.174]) by smtpauth3.wiscmail.wisc.edu (Oracle Communications Messaging Server 8.0.2.4.20190812 64bit (built Aug 12 2019)) with ESMTPS id <0QJQ003S6UV7IP00@smtpauth3.wiscmail.wisc.edu> for dmarc@ietf.org; Fri, 13 Nov 2020 10:52:19 -0600 (CST)
X-Wisc-Env-From-B64: amVzc2UudGhvbXBzb25Ad2lzYy5lZHU=
X-Spam-PmxInfo: Server=avs-3, Version=6.4.7.2805085, Antispam-Engine: 2.7.2.2107409, Antispam-Data: 2020.11.13.164217, AntiVirus-Engine: 5.77.0, AntiVirus-Data: 2020.10.22.5770001, SenderIP=[104.47.56.174]
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=l+pjHX7+P/Foa/PjAWFrcCg7+ueLx0hmwiunBKzYXeWasPi6Ld0ryyV0mx3V3K0UpTEKUS3XDWTKrqFnGRrc8fb4cea7gFd3A4OQnvSwK4ieaa0PtIUdEFdCRedzDK/a91+iCx2SVKzV9ksnt0FqxnU3GOsEE1ftgCX5n95pybA9ip4z85dmlNcPHKVr0VxJxOCyhD35Dc1M2XdszLyuNiRJislSC9Yd1oItNXyJtLYMNIfYD1Y7JoXxTzgJXbaJ9uyHb3WaJoPoCB7fzX8abAooLtuG7nlEk9hMWel4ZJtK2gRTLdwYzJU8jMXMbFlhatAmdzkjpuOnaslTo/9e1Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1wJ7rcn7GX3xz5MZqxy3Oz9tcU8aSJPiRTi2yW2g5l8=; b=IR0bOYGbL+iFyGELmv566i4p6ToT7/9BA50tavg/ACgBu3bVQWF1rougEEsqQ9ORPkJPxKiOJnm+qk/5/e2YAGbbhkRrSBkuoS9/lGuHnOGYsvJmGMrulLi1tZJg7AQvekjEqOotxQtSCWDQyJpyEPrbpIHhw4H42BhAFPVkGboEcuoazosiSz2r+vojhkh6rBBgfFeqMN8X+J9vpN7+SGD26E0to/lunBvUvMnqt0pr3BAJ1SR5NFsaECzFPfm5j+FVJ3aHSFsznbt4oPgs6B2xYpF7wXbgN3vGVOW/A5D8e9TixQ/sYHem2m+UZ6DiBugBX+v3Bt/qe77ycPVJ6Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=wisc.edu; dmarc=pass action=none header.from=wisc.edu; dkim=pass header.d=wisc.edu; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=wisc.edu; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1wJ7rcn7GX3xz5MZqxy3Oz9tcU8aSJPiRTi2yW2g5l8=; b=ctqEptxnzJc8OQXigRTC49IBLA6KB5gja87j4AEn+xYFi1mLczYkf8cDZv+xoiW5H32vzuh56y/V+lFY8/T3yvX6cBBhQebTz+b/iPwfYAjo6qExCjQIEyxJ6WTXf8TbFLn3Rhal4fYuDoXleOCBFp+whsnWi9MHTNCYhXHa9Ic=
Received: from PH0PR06MB7061.namprd06.prod.outlook.com (2603:10b6:510:21::8) by PH0PR06MB7543.namprd06.prod.outlook.com (2603:10b6:510:56::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3564.25; Fri, 13 Nov 2020 16:52:17 +0000
Received: from PH0PR06MB7061.namprd06.prod.outlook.com ([fe80::2106:a617:3a39:fd98]) by PH0PR06MB7061.namprd06.prod.outlook.com ([fe80::2106:a617:3a39:fd98%7]) with mapi id 15.20.3499.032; Fri, 13 Nov 2020 16:52:17 +0000
To: dmarc@ietf.org
References: <20201112212323.1023C2639B17@ary.qy> <4266a992-7064-d8cd-660b-a3d1d4098161@wisc.edu> <CABuGu1ovMDjn9_CmqPHSJ5FrwQzdUJ+eKDs6d0TG-HApf+_gSw@mail.gmail.com>
From: Jesse Thompson <jesse.thompson@wisc.edu>
Message-id: <cf9cf8e6-4b7f-a317-dfd3-5cdb4f24b4d8@wisc.edu>
Date: Fri, 13 Nov 2020 10:52:14 -0600
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:78.0) Gecko/20100101 Thunderbird/78.4.1
In-reply-to: <CABuGu1ovMDjn9_CmqPHSJ5FrwQzdUJ+eKDs6d0TG-HApf+_gSw@mail.gmail.com>
Content-type: text/plain; charset="utf-8"
Content-language: en-US
Content-transfer-encoding: 8bit
X-Originating-IP: [47.12.96.133]
X-ClientProxiedBy: CH2PR04CA0004.namprd04.prod.outlook.com (2603:10b6:610:52::14) To PH0PR06MB7061.namprd06.prod.outlook.com (2603:10b6:510:21::8)
MIME-version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from [10.0.2.111] (47.12.96.133) by CH2PR04CA0004.namprd04.prod.outlook.com (2603:10b6:610:52::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3564.25 via Frontend Transport; Fri, 13 Nov 2020 16:52:16 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-HT: Tenant
X-MS-Office365-Filtering-Correlation-Id: b24d018c-1b82-413e-d99a-08d887f47a95
X-MS-TrafficTypeDiagnostic: PH0PR06MB7543:
X-Microsoft-Antispam-PRVS: <PH0PR06MB7543F170F6763F19EE56F12BF6E60@PH0PR06MB7543.namprd06.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:9508;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 9CABsswyWtDxHD3Yytj4NWJacEoPUekZl5hG2g/3MvsIvJCO0yoR9QAoY1CWyIyPLLtPw2XCb6iUZ5BC00SxcOGOwjv+efexV4DIXFe86azNzmDNolyHIvUsus70Qo8nrBH8dLXiBcJ3P7lgC8OCmgA/akSDOd4MyseCUo9ivCNxKYc/UdhZBuxsB3PusZCxy9fEDOibSaE5PLWjJ6Vv730WBp7selPtNAcrLwre7nGHW5pIz07SFODs0swVXq6UCtvL43v9RZGnoIsST/AD6dTHrgb76PfEck5bOtbGXpY51njKHo2q5SklMes12fDh55Rtqg1WDdDl6UD3pCW2znGZokz8XwtEw1S91378W8k4xUnw/fDSjuSCWUszKYrF
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH0PR06MB7061.namprd06.prod.outlook.com; PTR:; CAT:NONE; SFS:(39860400002)(366004)(376002)(396003)(136003)(346002)(66556008)(66476007)(478600001)(6916009)(4744005)(44832011)(36756003)(956004)(66946007)(2616005)(31686004)(26005)(186003)(53546011)(16526019)(86362001)(75432002)(8676002)(6486002)(316002)(16576012)(5660300002)(2906002)(786003)(8936002)(31696002)(43740500002); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData: 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
X-OriginatorOrg: wisc.edu
X-MS-Exchange-CrossTenant-Network-Message-Id: b24d018c-1b82-413e-d99a-08d887f47a95
X-MS-Exchange-CrossTenant-AuthSource: PH0PR06MB7061.namprd06.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 13 Nov 2020 16:52:17.4173 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 2ca68321-0eda-4908-88b2-424a8cb4b0f9
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 171uj3wjnRhiabXfV//glIEeBM+L8rod1/s4eJBi1meJFG0JHFAhgsjJafUf5NAQ7bX3tLw/tjOFAUkt6n1nRQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR06MB7543
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/880dr1e4b2MuR1stICEmtRWy9II>
Subject: Re: [dmarc-ietf] Organizational domains, threat or menace, was On splitting documents and DBOUND
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Nov 2020 16:55:38 -0000

On 11/12/20 5:06 PM, Kurt Andersen (b) wrote:
> On Thu, Nov 12, 2020 at 2:58 PM Jesse Thompson <jesse.thompson=40wisc.edu@dmarc.ietf.org <mailto:40wisc.edu@dmarc.ietf.org>> wrote:
> 
>     On 11/12/20 3:23 PM, John Levine wrote:
>     > You now can put a DMARC
>     > record on a name below the org domain to shadow a subtree, but I don't
>     > think that is a problem that needs to be solved.
> 
>     I'm confused by this statement.  Are you saying that you can "now" do subtree shadowing with sp?  as in the following language is being changed "now"?
> 
> 
> I think that John was referring the potential future state where tree-walks were being done, but even then I don't think it would work quite that easily. A record at "a.b.example" would not shadow "x.y.a.b.example" if "x" or "y" chose to express some policy.

Yes, that makes sense for a defined policy to override any inherited subdomain policy. 

Jesse

v2.23.0 | Report a Bug | By Email