IETF Logo Mail Archive

Re: [dmarc-ietf] DMARC2 & SPF Dependency Removal

Tobias Herkula <tobias.herkula@1und1.de> Tue, 20 June 2023 09:12 UTC

Return-Path: <tobias.herkula@1und1.de>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 04A82C151095; Tue, 20 Jun 2023 02:12:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=1und1.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2UJIEzhFxx0e; Tue, 20 Jun 2023 02:12:05 -0700 (PDT)
Received: from moint.1and1.com (moint.1and1.com [212.227.15.7]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C9561C14CF09; Tue, 20 Jun 2023 02:12:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=1und1.de; s=corp1; h=MIME-Version:Message-ID:Date:Subject:CC:To:From:sender:reply-to; bh=RiU108pTJtNqfqtvUGqIKvv6iBLqSSm4kc8bwEBHIuw=; b=JEgLVmzHcSHnTALxu9aWQpEuG A8nOPMjd7q0duG/CxwjV8o8/l0UwUpHOa71kpVQETDq7lECiB08y+si5kS55NeG5A5ZwXEWyc5oJ5 hOXIaeos9Y7cOhQvX8qc8YQdGfXiXemUfo2n+bIduTnnQJ//VNTyefaKCYAHrbzx8h4x1FwSAoH71 dJ7/VfUM3LF7tueCE2J3gqoHMmYnpi1HG2ISFdfcQQuyO88xfu0UHUgcpB3f4ibE3iwlxD4vbvGSy 5p3kx56dU+YNuKExlsgnuTobV5TrkuAgujoyildDf8XwjsLpaiddFg6bJXQBSfurDsjiPHyWRG7Tj vvJq7Db8g==;
Received: from [10.98.28.10] (helo=KAPPEX025.united.domain) by mrint.1and1.com with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <tobias.herkula@1und1.de>) id 1qBXP8-0004Wh-Um; Tue, 20 Jun 2023 11:12:03 +0200
From: Tobias Herkula <tobias.herkula@1und1.de>
To: "Murray S. Kucherawy" <superuser@gmail.com>, Ken Simpson <ksimpson@mailchannels.com>
CC: Douglas Foster <dougfoster.emailstandards@gmail.com>, Jan Dušátko <jan=40dusatko.org@dmarc.ietf.org>, "dmarc@ietf.org" <dmarc@ietf.org>
Thread-Topic: [dmarc-ietf] DMARC2 & SPF Dependency Removal
Thread-Index: AQHZmlC+93GIX6cqk0C9rkfAcQOOg6+BWoWAgAAQE4CAAJl/AIAAdSsAgACK+oCABiMXAIAA+BEAgAGo24CAAIF7AIAApLOAgAAruACAABPbAIAAB0qAgAGivwCAAGPMgIAANlEAgAAy8ACAA9SBAA==
Date: Tue, 20 Jun 2023 09:12:02 +0000
Message-ID: <a30eecc64ff6421ba6a88f0533837028@1und1.de>
References: <30BB83B2-B454-41B8-992B-8E2569802D9C@1und1.de> <D225D7FC-C570-4B63-A694-9F16DB1F33E1@kitterman.com> <CALaySJKwuOK-81dW2H9dtURxa5mLQDUNo+MWcs+Hho8N+yP9qg@mail.gmail.com> <2817813.dRqVH37e0G@localhost> <CALaySJJbPFBAV_7mZaARYWuMzuX+74r2Cm0jD+z92_iuFRn_MQ@mail.gmail.com> <25736.57534.195344.782189@fireball.acr.fi> <1ec42959-977a-9ce0-907a-83a5eb2b6ef2@tana.it> <25739.5435.550786.601699@fireball.acr.fi> <25739.33240.127804.524371@fireball.acr.fi> <5d9a0b0f-8777-2494-d779-376c6ab8b37d@tana.it> <7d39aa8e-dacc-05fa-eff1-2cc350d521db@inboxsys.com> <CAH48ZfwyBwfKzG_3R5uyV6tmY0yUtWy=5yAoAOEhUGn_Rz6HNw@mail.gmail.com> <47b8a0c7-6a52-a4ad-e98e-8cb2f881713e@inboxsys.com> <285f2d2e-13fd-7cdc-c816-fba759f0745b@dusatko.org> <CAH48ZfzhyZK3RQHXH-PPk=sqY9gOtpA85vV-Myyo_RrEvOGu-Q@mail.gmail.com> <CAEYhs4F9=GDsCuQ9pAi8z-MBNHUJ9jZCwipT3Qe_YjaD65s9mA@mail.gmail.com> <CAL0qLwaoie+6h2QWXF98TBBwYpN8fYf5O_Mr49YtG2vnAppgnw@mail.gmail.com>
In-Reply-To: <CAL0qLwaoie+6h2QWXF98TBBwYpN8fYf5O_Mr49YtG2vnAppgnw@mail.gmail.com>
Accept-Language: en-US, de-DE
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.96.2.11]
Content-Type: multipart/alternative; boundary="_000_a30eecc64ff6421ba6a88f05338370281und1de_"
MIME-Version: 1.0
X-Virus-Scanned: ClamAV@mvs-ha-bs
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/EPbp7S6g4JOBpFVlyydZh0psXAs>
Subject: Re: [dmarc-ietf] DMARC2 & SPF Dependency Removal
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Jun 2023 09:12:09 -0000

Sadly they can’t, there are Mailbox Providers that expect SPF Records, so to maintain deliverability to those, you have to keep SPF records in place and can’t switch to an DKIM only DMARC.

/ Tobias

From: dmarc <dmarc-bounces@ietf.org> On Behalf Of Murray S. Kucherawy
Sent: Sunday, June 18, 2023 2:42 AM
To: Ken Simpson <ksimpson@mailchannels.com>
Cc: Douglas Foster <dougfoster.emailstandards@gmail.com>; Jan Dušátko <jan=40dusatko.org@dmarc.ietf.org>; dmarc@ietf.org
Subject: Re: [dmarc-ietf] DMARC2 & SPF Dependency Removal

On Sat, Jun 17, 2023 at 2:40 PM Ken Simpson <ksimpson@mailchannels.com<mailto:ksimpson@mailchannels.com>> wrote:
FWIW, I'd like to chuck my hat in the ring on the side of removing SPF from the next iteration of DMARC. As the operator of an email delivery service with tens of millions of primarily uncontrolled senders on web hosting servers, it would be great if domain owners could assert via their DMARC record that receivers should only trust DKIM-signed email.

Can these senders not accomplish the same thing by removing the SPF record altogether?

-MSK, participating

v2.23.0 | Report a Bug | By Email