Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggregate-reporting-08.txt
Scott Kitterman <sklist@kitterman.com> Mon, 27 March 2023 19:21 UTC
Return-Path: <sklist@kitterman.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 45A63C14CE4B for <dmarc@ietfa.amsl.com>; Mon, 27 Mar 2023 12:21:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.398
X-Spam-Level:
X-Spam-Status: No, score=-4.398 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=kitterman.com header.b="TZXboBnR"; dkim=pass (2048-bit key) header.d=kitterman.com header.b="sPGkb+Jk"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aQBz4EeSNfnr for <dmarc@ietfa.amsl.com>; Mon, 27 Mar 2023 12:21:33 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0A1EBC14CE46 for <dmarc@ietf.org>; Mon, 27 Mar 2023 12:21:32 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) by interserver.kitterman.com (Postfix) with ESMTPS id 28687F80308 for <dmarc@ietf.org>; Mon, 27 Mar 2023 15:21:19 -0400 (EDT)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903e; t=1679944863; h=from : to : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type : from; bh=HnCffGpzAul9fan7I1QbkPTKX0pbzVT1OjaKxcsd2v0=; b=TZXboBnRY+mVfAXdnhED2uBa+snZV9w4DVPZSOzoOlDRi8Pw2yGBtod69yWmmV0m/T/tr BBCWPr8Vdyl+TPTAA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903r; t=1679944863; h=from : to : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type : from; bh=HnCffGpzAul9fan7I1QbkPTKX0pbzVT1OjaKxcsd2v0=; b=sPGkb+JkptNdb3eOwSrloYYFho+pzEB1QYzVcM9/5tC7hJ8lLZyckxPHVYXMkICHtkDoD Y/e7gTjJGOiyEjcf50vs5yG/Z4nvL5SHnMYO9drBEpVmWaY81hVHvJIe4qJwCjSrFUcFWP/ Q0rp0keHIo/bsNSyUS6mg6OfvuGhIZtuhPsWh7F/NjYe9aAx5RM87PoXII/0X/1cliQoXN2 DaODcxu4tMPhenvyMMyenlG63ok+P3TyqLwc6/yycWCtGrlbUYtd6NjIc1LPkOTUTlihosC +6VxvvBGIEKX5roPtR3nzzVoltOl3miCcY2H+zqUiPfLvXUqmUuwy7geOonQ==
Received: from localhost.localnet (static-72-81-252-22.bltmmd.fios.verizon.net [72.81.252.22]) by interserver.kitterman.com (Postfix) with ESMTP id 3250AF8017B for <dmarc@ietf.org>; Mon, 27 Mar 2023 15:21:03 -0400 (EDT)
From: Scott Kitterman <sklist@kitterman.com>
To: dmarc@ietf.org
Date: Mon, 27 Mar 2023 15:20:57 -0400
Message-ID: <4313263.H7jo6l85BW@localhost>
In-Reply-To: <167993454302.11169.10772353959635417283@ietfa.amsl.com>
References: <167993454302.11169.10772353959635417283@ietfa.amsl.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/BSiI1Q8N7tJK4Vrqy8ZzcHC9hd4>
Subject: Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggregate-reporting-08.txt
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Mar 2023 19:21:37 -0000
On Monday, March 27, 2023 12:29:03 PM EDT internet-drafts@ietf.org wrote: > A New Internet-Draft is available from the on-line Internet-Drafts > directories. This Internet-Draft is a work item of the Domain-based Message > Authentication, Reporting & Conformance (DMARC) WG of the IETF. > > Title : DMARC Aggregate Reporting > Author : Alex Brotman > Filename : draft-ietf-dmarc-aggregate-reporting-08.txt > Pages : 29 > Date : 2023-03-27 I'm not convinced we entirely made progress on this revision. It's likely I missed or have forgotten the list discussion on some of these items, sorry for any repetition. This revision removes the optional version field, adds a new optional field for discovery method, and adds a paragraph on data consistency in reporting. There are other changes that look to be editorial. I agree with the removal of the version field. It never made any sense to me. I see though that the version element is only removed from the text, not from Appendix A and Appendix B. Is it intended to be removed? Now I'm confused. I don't understand who is expected to implement DMRCbis and report using the PSL. If you want to keep using RFC 7489, nothing stops you, but it would be odd to decide not to upgrade your DMARC processing, but still expend engineering resources to upgrade your reporting. Also, this revision correctly drops the reference to RFC 7489 because it was no longer referenced in Section 2.1, but now it's referenced in the schema, so doesn't it need to be added back? Also, this is presumably published with DMARCbis, which will obsolete RFC 7489. Is it good IETF practice to reference historic documents? I'm not sure this really adds much. If we do keep it, I think it's in the wrong section. How you found the policy isn't the policy that was published. I think this goes in the metadata section. Regarding "Data Consistency in Reporting", I don't see the point. Who is going to read this section and do something different? Are we suggesting that recording the results and reporting them is not sufficient? Do receivers need to run a second DMARC check on the data before sending feedback to make sure it's consistent? I reads like a plea not to use buggy software. Who do we expect to read an RFC and then realize they should test before deploying to avoid sending inconsistent data? Seriously, what behavior are we trying to motivate here that fits within an RFC's scope? Scott K
- [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggrega… internet-drafts
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Alessandro Vesely
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Scott Kitterman
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Brotman, Alex
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Scott Kitterman
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Alessandro Vesely
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Douglas Foster
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Scott Kitterman
- [dmarc-ietf] Again on Report-ID, was I-D Action: … Alessandro Vesely
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Trent Adams
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Murray S. Kucherawy
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Scott Kitterman