IETF Logo Mail Archive

Re: [dmarc-ietf] p=quarantine

Dave Crocker <dcrocker@gmail.com> Wed, 09 December 2020 17:40 UTC

Return-Path: <dcrocker@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 720613A1608 for <dmarc@ietfa.amsl.com>; Wed, 9 Dec 2020 09:40:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LyW9jGV_oAaX for <dmarc@ietfa.amsl.com>; Wed, 9 Dec 2020 09:40:37 -0800 (PST)
Received: from mail-pg1-x533.google.com (mail-pg1-x533.google.com [IPv6:2607:f8b0:4864:20::533]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 06ACD3A117F for <dmarc@ietf.org>; Wed, 9 Dec 2020 09:40:37 -0800 (PST)
Received: by mail-pg1-x533.google.com with SMTP id c12so1148598pgm.4 for <dmarc@ietf.org>; Wed, 09 Dec 2020 09:40:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language; bh=YtWLtlcFJ3VvzQzrk1BjuUYNtU1ZUr581MeXNof5Qmg=; b=Mo9cmAiiSpdm8PWqPMOV+oWdYl7GFyPLImralOVVPE33ZIK6z1zxsNCQTLVOLWn3oS l9rlZpvU9aDVPPbWE8SRgFhMLPJFrjhcvS9cdehWFl9e00IStXjVcV9uO2b6CU9U4iw9 Y/Qejr1y30hLju4G82+Brn1DXizJ2KMszszXcMcDAEVQDK9CmTHG1m+1gpeUJz+SRS1p Sr0AFv44XI9j6/RtNuyjgzu2g7y5ZLFxdMfLR2i0BBwfU5a4sr2X+vsMRCxyANf03rIp 8xr9lSUo9zwjz03pBDOqT52TbAWdZPjhEE3Affrt+j1VZ8ij4OHsXhiw5fjXlBcBRMPd qDIw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=YtWLtlcFJ3VvzQzrk1BjuUYNtU1ZUr581MeXNof5Qmg=; b=TqZyynHdDM7iHG7P1PbGxVobJf7JdhM02AvYLB+DlkMsWB0+l/WcUDveUfks3faiqx wwRZfU6QcZQktoUPhTS5eidABZHyhDRgN4110SpnTymzCKQ7oXgppJnDMYxqBgHHDn4E qIoxBOikGXRgdedj2BjndT19rhjt7wGszfz+lpddt3FTsnaWIQ51kztO6kHhA+RtmQdj 7eIyNyFoDYp3Il/c9VN4Emj5XETGMAP4/FUJRqYCvucncntfm2vGmuCa95sarXw4HvxG /n2RRRp3ITn6799TYz9rgCrlPcb87zbcOwyfg538JHQaagkjmBDlQAcEr9XCfo01mB4j +wuQ==
X-Gm-Message-State: AOAM5302IT8A3/J4jXjkJb9X2eazqVK9FJiqYjsTeMwgKNyXl3G3h8L7 iGAlIr/MnsSRIkPmuE2LsWCEFYmgCvk=
X-Google-Smtp-Source: ABdhPJx7EYj3RT17YGuEjoXw++oBU6s1lGM1PbMVVx4Tb4Z3E1zqOuAOwS3bvjpyXfwdeniIZgMN9g==
X-Received: by 2002:aa7:8649:0:b029:19e:16df:e5f8 with SMTP id a9-20020aa786490000b029019e16dfe5f8mr3303018pfo.41.1607535636250; Wed, 09 Dec 2020 09:40:36 -0800 (PST)
Received: from [192.168.0.109] (c-24-130-62-181.hsd1.ca.comcast.net. [24.130.62.181]) by smtp.gmail.com with ESMTPSA id v6sm3356278pgk.2.2020.12.09.09.40.35 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Wed, 09 Dec 2020 09:40:35 -0800 (PST)
To: Dotzero <dotzero@gmail.com>
Cc: Michael Thomas <mike@mtcc.com>, "dmarc@ietf.org" <dmarc@ietf.org>
References: <9e1ce2a0-cb64-067f-dc74-aa384cf34ebd@mtcc.com> <CAJ4XoYc5sV+A-cL-RS06K4b=tjDHmrRUQxy4+3Uim3fE=pb_mg@mail.gmail.com> <3019b5f3-54d5-4ee1-02f4-c10201900d5a@gmail.com> <CAJ4XoYdOtNCQWot53qx92akxUWjG3OYDmj2iYYYU=nEHbfeCEA@mail.gmail.com>
From: Dave Crocker <dcrocker@gmail.com>
Message-ID: <923de33f-3707-facf-389e-371f6ee64008@gmail.com>
Date: Wed, 09 Dec 2020 09:40:34 -0800
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.5.1
MIME-Version: 1.0
In-Reply-To: <CAJ4XoYdOtNCQWot53qx92akxUWjG3OYDmj2iYYYU=nEHbfeCEA@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------396169CA5906A1AD4882B7BE"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/JlUFjDS7dI2_-Oxmd7bfSqbaauo>
Subject: Re: [dmarc-ietf] p=quarantine
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Dec 2020 17:40:38 -0000

On 12/8/2020 12:11 PM, Dotzero wrote:
> Note that I asked Two questions. Your answer appears directed to the 
> second question. The answer to the first question appears fairly clear 
> to me. Administrators of a system can restrict or delete a user 
> account. It really is as simple as that. So in that respect the answer 
> is that ultimately an individual account users do not supersede the 
> wishes/policy of the domain owners representatives.
>
> The second question is a bit more interesting, but ultimately leads 
> one back to the first question. As far as being long settled, I would 
> think that NSF AUP is an interesting precedent.
>
> Michael Hammer
>
> On Tue, Dec 8, 2020 at 2:42 PM Dave Crocker <dcrocker@gmail.com 
> <mailto:dcrocker@gmail.com>> wrote:
>
>     On 12/8/2020 10:50 AM, Dotzero wrote:
>     > And here we get to some of the crucial unresolved questions
>     involving
>     > email: "Does the wishes of a user of an account at a domain
>     supercede
>     > the policies of the domain owner/administrator of a domain?"
>

Sorry, I misread the text I responded to.  To some extent, we all tend 
to be ambiguous in our references -- though the specific text I misread 
was not -- and it will help if we are all a lot more consistently precise.


For example:

Author: creates content

Author Domain: controls the use of the domain, per the statement I 
misread.  And yes, the domain owner has ultimate authority over polices 
of how the domain is used, by those subject to administration by the 
domain owner.  Obviously the domain owner has no 'authority' over those 
using the domain without authorization.  For this latter set of folk, 
the most the domain owner can do is provide information to receivers of 
unauthorized use.

Receivers: They have full and complete authority over their operations.  
Period, full stop.  There is no 'overriding' the so-called policies of 
anyone with whom they do not have a pre-existing relationship.

Recipients: They are, of course, subject to the policies of the owner of 
the platform being used.  They, to, are not subject to the desires of 
authors or author domain owners, except as the recipient themselves desire.


Really, it will help to be boringly, redundantly precise with every 
reference, to leave no room for misunderstanding which actor is being 
referenced.

d/

-- 
Dave Crocker
dcrocker@gmail.com
408.329.0791

Volunteer, Silicon Valley Chapter
American Red Cross
dave.crocker2@redcross.org

v2.23.0 | Report a Bug | By Email