Re: [dmarc-ietf] Abolishing DMARC policy quarantine
Hector Santos <hsantos@isdg.net> Thu, 01 August 2019 13:48 UTC
Return-Path: <hsantos@isdg.net>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 572C012015A for <dmarc@ietfa.amsl.com>; Thu, 1 Aug 2019 06:48:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isdg.net header.b=ADZ366Au; dkim=pass (1024-bit key) header.d=beta.winserver.com header.b=xwMxcVNn
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5TWWuT9z39-M for <dmarc@ietfa.amsl.com>; Thu, 1 Aug 2019 06:48:48 -0700 (PDT)
Received: from mail.winserver.com (winserver.com [76.245.57.69]) by ietfa.amsl.com (Postfix) with ESMTP id 041F512008B for <dmarc@ietf.org>; Thu, 1 Aug 2019 06:48:47 -0700 (PDT)
DKIM-Signature: v=1; d=isdg.net; s=tms1; a=rsa-sha1; c=simple/relaxed; l=2387; t=1564667319; atps=ietf.org; atpsh=sha1; h=Received:Received:Received:Received:Message-ID:Date:From: Organization:To:Subject:List-ID; bh=8NpkbTbMGXmeq/1apykvKaUOlnw=; b=ADZ366AugMxIOpsMlDs8KcXzHahKhwAXqrLEn/cZqagavhfYNEi4cl7cqKlI14 l1YbYVZ4wcDDmK0HSTV/Ptqbn5+9Yio3VSU+MAVTtjC90lEphmqiTi7s0zVEbhDD jBkGHcqKodrKeCWaboAk/9xG81Zek4U+E0WQBZg0jOpCA=
Received: by winserver.com (Wildcat! SMTP Router v8.0.454.8) for dmarc@ietf.org; Thu, 01 Aug 2019 09:48:39 -0400
Authentication-Results: dkim.winserver.com; dkim=pass header.d=beta.winserver.com header.s=tms1 header.i=beta.winserver.com; adsp=none author.d=isdg.net signer.d=beta.winserver.com; dmarc=pass policy=reject author.d=isdg.net signer.d=beta.winserver.com (atps signer);
Received: from beta.winserver.com ([76.245.57.74]) by winserver.com (Wildcat! SMTP v8.0.454.8) with ESMTP id 1164740237.61696.5164; Thu, 01 Aug 2019 09:48:37 -0400
DKIM-Signature: v=1; d=beta.winserver.com; s=tms1; a=rsa-sha256; c=simple/relaxed; l=2387; t=1564667311; h=Received:Received: Message-ID:Date:From:Organization:To:Subject:List-ID; bh=4llHHp/ Vf/n/mb6UNbg8nX5tboqrP+q+4ard612C+hM=; b=xwMxcVNn1eLMYgcVACERdN9 tfQW6zBsDjpxQ19VvGWQo21iYea4C2jdTQIVboHkyHImc8hL6F5pqovNoysgsFf5 z6P/Ly18QYMl2Lxv8759U1PgrHKWkWbioIvfriLeFmG42OWA/cIJzDpXkujgW+kg IPL2kXTDWNbJDQuBKgkw=
Received: by beta.winserver.com (Wildcat! SMTP Router v8.0.454.8) for dmarc@ietf.org; Thu, 01 Aug 2019 09:48:30 -0400
Received: from [192.168.1.68] ([75.26.216.248]) by beta.winserver.com (Wildcat! SMTP v8.0.454.8) with ESMTP id 18222671.9.1860; Thu, 01 Aug 2019 09:48:29 -0400
Message-ID: <5D42EDB5.10107@isdg.net>
Date: Thu, 01 Aug 2019 09:48:37 -0400
From: Hector Santos <hsantos@isdg.net>
Reply-To: hsantos@isdg.net
Organization: Santronics Software, Inc.
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.8.1
MIME-Version: 1.0
To: "Murray S. Kucherawy" <superuser@gmail.com>, Tim Wicinski <tjw.ietf@gmail.com>
CC: IETF DMARC WG <dmarc@ietf.org>, Дилян Палау зов <dilyan.palauzov@aegee.org>, Alessandro Vesely <vesely@tana.it>
References: <a8ac130a671f5bcd1bf9f09781325e84a9f1fda6.camel@aegee.org> <b903c983-5c65-5b17-62bf-9ff42ffdbaaa@corp.mail.ru> <CAJ4XoYeJRcGfO7LntM6LBeJ5rMOcb0D=ya31Rm8utoWTqE7oXQ@mail.gmail.com> <0295aa1e-733a-b3ae-14cb-edcb2050d6af@corp.mail.ru> <CAL0qLwYYEMofia2S4a8oXsf02fnJg7y+DovvMWZENUW+4yUyiw@mail.gmail.com> <36cba315-e738-ddec-0f6c-2e6086b69d11@corp.mail.ru> <70da228a75b94c28097ce0c25bc407d93e86c4c2.camel@aegee.org> <CAL0qLwbX4T5=EFZtwPPk9aYdUpR72c4r5t8SB1WETkpXEtUahQ@mail.gmail.com> <1951EFA7-0695-4B98-9CB1-3ECCEFEBF321@wordtothewise.com> <CAL0qLwbixESJypwDG3NMuv22+Lb3w-iHPok8xZf-hy3Fiu38EA@mail.gmail.com> <7DFCE75A-4D31-4DEF-BD12-F161EE8D2CA9@wordtothewise.com> <92880e84-be6d-302c-dd6e-0768638ee54a@tana.it> <88795b092c9d32bcaf49a4c02ead802dc3c22753.camel@aegee.org> <CADyWQ+GcVA64Kg0RVi13+-kTXtHRds+iPb5gs7VM7VYSk=XS-A@mail.gmail.com> <CAL0qLwZsupUWkUpGPtQtp0Z-+rK56z17gJ2uHaQa=5MrZ7jnsA@mail.gmail.com>
In-Reply-To: <CAL0qLwZsupUWkUpGPtQtp0Z-+rK56z17gJ2uHaQa=5MrZ7jnsA@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/DGeFPQ_YTMcHgPMfV9rCDiy-HX8>
Subject: Re: [dmarc-ietf] Abolishing DMARC policy quarantine
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Aug 2019 13:48:50 -0000
On 7/31/2019 11:32 PM, Murray S. Kucherawy wrote: > On Sun, Jul 28, 2019 at 6:37 AM Tim Wicinski <tjw.ietf@gmail.com > <mailto:tjw.ietf@gmail.com>> wrote: > > From our end user point of view, I'm against abolishing > quarantine, even with its current shortcomings. > > > Why's that? > > -MSK, also hatless My opinion. How the receiver implements mail filters SHOULD always remain as local policy. We have always kept the concept open ended for all the DKIM Author Domain policy proposals, including SPF where hard failures (SPF -ALL, SSP Exclusive Policy, ADSP DISCARDABLE, DMARC reject/quarantine are hard failures) can be handled as follows: 1- Immediate permanent rejection at SMTP 1.1 - with SPF before or after DATA state. 1.2 - with a DKIM POLICY after DATA state 2- Accept at SMTP, disconnect, silent discard. 3- Accept at SMTP, disconnect, import into User's non-primary in-box, if any. With a reject policy, the Author Domain prefers #1 or #2. but it can be implemented all three ways by the receiver. The ultimate outcome is a domain preference for rejectable failures not to reach the user's eye balls. With quarantine, the Author Domain is requesting #3 type of mail handling because of concerns for false positives. Allow the user to see the mail, just in case. But what if the implementation site does not offer a "Quarantine" mail storage capable design model? If this type of implementation is not acceptable per DMARC design specification, then the spec will need to state this possibility: For Quarantine Policy support, the implementation SHOULD offer a multiple user mail folder storage and viewing capability. If the implementation can not offer quarantine support, then it SHOULD __________________________. The author domain MUST be aware not all receivers can support a "Junk" folder concept were quarantine mail can be separated from the user's main mail pickup in-box. So, I think, we should keep the quarantine policy because it does allow for the wider desirable design of for Mail Filtering Systems where multiple user folders can be supported and also for domains who are not yet 100% sure about issuing hard reject/discard directions. If we take it out, there is still going to be receivers who will perform a quarantine concept regardless of a hard reject policy. -- HLS
- [dmarc-ietf] Abolishing DMARC policy quarantine Дилян Палаузов
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Ken O'Driscoll
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Hector Santos
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Laura Atkins
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Dotzero
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Hector Santos
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Hector Santos
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Vladimir Dubrovin
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Dotzero
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Vladimir Dubrovin
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Дилян Палаузов
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Alessandro Vesely
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Hector Santos
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Дилян Палаузов
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Steve Atkins
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Hector Santos
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Murray S. Kucherawy
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Vladimir Dubrovin
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Дилян Палаузов
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Murray S. Kucherawy
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Steve Atkins
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Murray S. Kucherawy
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Dotzero
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Steve Atkins
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Alessandro Vesely
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Дилян Палаузов
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Tim Wicinski
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Alessandro Vesely
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Murray S. Kucherawy
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Hector Santos
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Дилян Палаузов
- Re: [dmarc-ietf] Abolishing DMARC policy quaranti… Brandon Long