IETF Logo Mail Archive

Re: [dmarc-ietf] Ratchets - Disallow PCT 1-99

John Levine <johnl@taugh.com> Thu, 22 July 2021 18:51 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 373293A0DCF for <dmarc@ietfa.amsl.com>; Thu, 22 Jul 2021 11:51:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.399
X-Spam-Level:
X-Spam-Status: No, score=-4.399 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=OGtn/gfU; dkim=pass (2048-bit key) header.d=taugh.com header.b=eosv5W9f
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UWEhyPTrOlnv for <dmarc@ietfa.amsl.com>; Thu, 22 Jul 2021 11:51:13 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5E54D3A0DC9 for <dmarc@ietf.org>; Thu, 22 Jul 2021 11:51:13 -0700 (PDT)
Received: (qmail 29406 invoked from network); 22 Jul 2021 18:51:07 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=72dc.60f9be1b.k2107; bh=1Pv0Gk44ketb4iavqepy3GlDUfJ3wN2wQhctH/C7vgE=; b=OGtn/gfUyRyYnNLYCvhHE5KVfqQ6HO+ZHMtFiuW0XUx/XPQqZLVI25ulg6XQ8IKLnaagscL+W+reR/BP1r9uZOPnWaiPpCNAA3gRpH3gT3okhP0wF1Puuv7J15btpfiNbPudi6aigkmdH1FyOqrl1EZI+bcnVvslwF9NdJH/BwJOW2CJrXBUgvkgPSyd3yXDzet70T3g8diXYIkjM5eP4XhrLrNC0MrraR5tMHiwA141+XmqHikJQ8VX65MyYO6N/nQ8XEaaIeGx6t8n9mmE8BtqDthtdBWbZgCXYSZFIjQSkLmU6KsHXJaBlCudUyiz5vUtJD5VGBLF3YaKZ6eEUg==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=72dc.60f9be1b.k2107; bh=1Pv0Gk44ketb4iavqepy3GlDUfJ3wN2wQhctH/C7vgE=; b=eosv5W9ftuwCfye8Bd2YtYW4cLplRpZkMHg2EVUfu2VDEAQYZ45tGk5XYXfkEfueL1lzBe1cFXR8lrG4fQ8Q58aJZU5pabb5oonzU2VrADU82MKstX1eP0fq4fhhqNKomZflig398woeLstkQEmLVIYvk2ObwSoKSDnw1LbLxtUnv7z2xpBRqhIsxmC1njNsEv44XxfYFj5y+yXpBHFhSYiIjk0xtK6KDNfysS88zSnY7SNyFsO/Y9PODcW2pjmK4FAC5HMdybLMbAYcycWRlDsZgSr5TRMikYWkO/U3EAebMpWVDQcsNov6XeH6yHOUEwyTi3e+DOdqg+VYdV6Kdw==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 22 Jul 2021 18:51:06 -0000
Received: by ary.qy (Postfix, from userid 501) id 15C9F24DEDF0; Thu, 22 Jul 2021 14:51:05 -0400 (EDT)
Date: Thu, 22 Jul 2021 14:51:05 -0400
Message-Id: <20210722185106.15C9F24DEDF0@ary.qy>
From: John Levine <johnl@taugh.com>
To: dmarc@ietf.org
Cc: vesely@tana.it
In-Reply-To: <96988b78-3f5e-6e7c-a92e-66a59fc4beaf@tana.it>
Organization: Taughannock Networks
X-Headerized: yes
Cleverness: minimal
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/CyaralOwISAmaQ4wHCcb547lMwg>
Subject: Re: [dmarc-ietf] Ratchets - Disallow PCT 1-99
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Jul 2021 18:51:19 -0000

It appears that Alessandro Vesely  <vesely@tana.it> said:
>On Wed 21/Jul/2021 20:05:41 +0200 Matthäus Wander wrote:
>> Alessandro Vesely wrote on 2021-07-21 19:41:
>>> Some lists operate the evasion hack, a.k.a. From: munging, only if the sender 
>>> has p=quarantine or p=reject, some do it unconditionally, some only if the 
>>> mail is outbound, some only if the receiver is mail.ru. Behavior doesn't seem 
>>> to be settled yet.
>>>
>>> We should add a section on From: munging in the spec.
>> 
>> It's explained as mitigation in RFC7960:
>> <https://datatracker.ietf.org/doc/html/rfc7960#section-4.1.3.1>
>> 
>> What's seems to be missing is a recommendation to not change DMARC validation 
>> behavior subject to p= or other conditions. A conditional validation makes 
>> p=none less useful for monitoring of potential delivery problems.
>
>I agree that it's easier to deal with From: munging when it's done uniformly on 
>all messages.

Lists change messages in all sorts of ways, not just for DMARC, and if
you want to try to unmunge them (mostly a losing battle in my
experience) you end up with an ever growing list of patterns and
replacements.

>  However, I'm not sure whether to actually RECOMMEND to do so.

That's simple: no.  I can't imagine why we would expect list operators to take list
management instructions from the people who screwed up their lists in the first place.

Also remember that ARC is supposed eventually to remove the need for anti-DMARC munging.

R's,
John

v2.23.0 | Report a Bug | By Email