IETF Logo Mail Archive

Re: [dmarc-ietf] non-mailing list use case for differing header domains

John R Levine <johnl@taugh.com> Fri, 31 July 2020 20:42 UTC

Return-Path: <johnl@taugh.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 889183A0BF0 for <dmarc@ietfa.amsl.com>; Fri, 31 Jul 2020 13:42:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1536-bit key) header.d=iecc.com header.b=JYnYLLlY; dkim=pass (1536-bit key) header.d=taugh.com header.b=PYAXDDzi
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7vfZJXunQne7 for <dmarc@ietfa.amsl.com>; Fri, 31 Jul 2020 13:42:06 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 880303A0BCA for <dmarc@ietf.org>; Fri, 31 Jul 2020 13:42:06 -0700 (PDT)
Received: (qmail 69250 invoked from network); 31 Jul 2020 20:42:04 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:subject:in-reply-to:references:mime-version:content-type; s=10e7e.5f24821c.k2007; i=johnl-iecc.com@submit.iecc.com; bh=LW4mm1Txg5dhIj8QW2ibcSY2MyrHEfRilovi8oIOzC4=; b=JYnYLLlYDlHuJzIdbeXkoQgsAZ8E2o+/JWFOJj6XhoYvg+IXD8SWEupdXPnHzHTkztCimVMTiFfAKKQ48W8+T1Xx41K6Wr4kohxawyUxawNDHeg9HuxtOsR6BhgMQ5sdI6IAFU/3PlkTEmgUr/hmoRjxOfRgICmH69L3NeWjgGzLgi0V1OfFeFf7o7MQOpyq3cIWcYVeGS4Y/irZWvsTi4tXLNzkeCuOQg8Kpm4pH6oPWt7PdUZ1cm5/Gi7gtBDV
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:subject:in-reply-to:references:mime-version:content-type; s=10e7e.5f24821c.k2007; olt=johnl-iecc.com@submit.iecc.com; bh=LW4mm1Txg5dhIj8QW2ibcSY2MyrHEfRilovi8oIOzC4=; b=PYAXDDzibQGCxxOMXrouMb1I4bY06yvsyPTb0QhcabToekZOHRzhDjKyWDDjJRaRM1GDlShua46/CEvWnD4Bz9vUchJRcboRdAl6w1Uyhsh2OVn7DMJJ3aRyL6/67dot4roio3OwLFb3JF114rW0Npje8sWJEdO8/wiwaEIz0w/+eI8vT6KlZ55OADc97Lsp3lqICt/ooTkU82HLKKqllkYIGbyyHxlg2q5xxPvGJ3R5cZLkRK/SAGCUL4nfLH+L
Received: from localhost ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPSA (TLS1.3 ECDHE-RSA AES-256-GCM AEAD, johnl@iecc.com) via TCP6; 31 Jul 2020 20:42:04 -0000
Date: Fri, 31 Jul 2020 16:42:04 -0400
Message-ID: <3d2ff5d5-31fe-e265-6fee-b6f11be616b2@taugh.com>
From: John R Levine <johnl@taugh.com>
To: Jesse Thompson <jesse.thompson@wisc.edu>, dmarc@ietf.org
In-Reply-To: <01c53fdc-342b-e2d3-16dc-f1161913d656@wisc.edu>
References: <20200731193040.AAF8B1DB2410@ary.qy> <01c53fdc-342b-e2d3-16dc-f1161913d656@wisc.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/H2_84VNcpt9EgUAmgH6ezM0K03Y>
Subject: Re: [dmarc-ietf] non-mailing list use case for differing header domains
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 31 Jul 2020 20:42:14 -0000

On Fri, 31 Jul 2020, Jesse Thompson wrote:
> I think they want their IT staff to deploy an email system and policies that work the way they would expect.  They want their organization to be seen as secure, so they don't want to be on the Buzzfeed list of Fortune 500 companies that have neglected to secure their domains with DMARC.

Well, that's the problem, isn't it?  If your expectations for e-mail are 
shaped by experience with paper mail and you don't realize how different 
an organization's internal highly controlled mail system is from e-mail on 
the outside, you're inevitably going to be surprised, sometimes 
unpleasantly.

I would like for us to avoid the Yes Minister Tautology: We must do 
something, this is something, therefore we must do this.

Regards,
John Levine, johnl@taugh.com, Taughannock Networks, Trumansburg NY
Please consider the environment before reading this e-mail. https://jl.ly

v2.23.0 | Report a Bug | By Email