[dmarc-ietf] Ticket #85 - New Description for 'p' tag and values

Todd Herr <todd.herr@valimail.com> Fri, 04 December 2020 22:27 UTC

Return-Path: <todd.herr@valimail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id F01563A0ECB for <dmarc@ietfa.amsl.com>; Fri, 4 Dec 2020 14:27:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=valimail.com
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id Qs5eeZd-XQvm for <dmarc@ietfa.amsl.com>; Fri, 4 Dec 2020 14:27:13 -0800 (PST)
Received: from mail-qt1-x82f.google.com (mail-qt1-x82f.google.com [IPv6:2607:f8b0:4864:20::82f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E69093A0D93 for <dmarc@ietf.org>; Fri, 4 Dec 2020 14:27:12 -0800 (PST)
Received: by mail-qt1-x82f.google.com with SMTP id a6so2741225qtw.6 for <dmarc@ietf.org>; Fri, 04 Dec 2020 14:27:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=valimail.com; s=google2048; h=mime-version:from:date:message-id:subject:to; bh=CQBkdgS2oSTnhgOjx4Huj+Ee9TqtVYFB1IxYrJvoTkI=; b=IsVoDrSBGub/XbwkBt8bHDAzVqiRmwdIXnvNSwn36nxY9lyVjX94NPw6t8G3VLQdut iDOcb42sCwBddgeZLbPjoDf9D0jx6J/3begZFIKdCAzGBzBqVDY9evNw4SFwLE25vhTq twpKSOqf6TlJ4l7r8b4OXJWfMQO0cT7MSB/wEEKGwEzqM7iY8DqNIkskzoZRik5WCIe6 bPx2LXjYnemrjUALoxDsA4TrOZuxcLKNHXEKgJJmqyGKoCU/sZWRija3AV64QHXlXm0h 2ngelWhx3aTfp/M0qAx7gf6ICixP5ZjCnvqDRloMPmls6GZLQS/i0x8IqUD8XkvM1V7Q hNcQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=CQBkdgS2oSTnhgOjx4Huj+Ee9TqtVYFB1IxYrJvoTkI=; b=S8V7i4GNb3t1bZVB8PYzlFf8rf9/A1/7cx5+qK02WOxWrJ6FRT+DlK7Wg0IENNK7tb VLbfjNMTFb60rMUV9JEHFCmXkGpd2TOg3jr77bdJ4gnhfJlFvgh5de8BuJaZTJEcpzAk 6XpcugncRTE9VU/GEGhW3zaRC8Iba9vyl9Bgxhz8o8d1veA9wi7K2d9Ywo+Zj9cvYzgU D6NK5oG7yyaNT4ASqiM5I0FSxVT871UlYWPjnp3lAnjbdDu1f61z+VFAafO0gEmLA3pK d951z3IUy9wMfXCYFLeZj0x8zloxWeeWEsC4TRegHnH82G+FsvjwGcUaNwF1oZBfLryN nFvQ==
X-Gm-Message-State: AOAM532KW04T9fsioPtxLXBIip6AYrs9DCuy2w80H+jQ4e3UIcsL46GH gYkrhaEWZNuaIEWteRBy/HlVuLs2VhrA0T/fK8nsDQJwcBWV9Q==
X-Google-Smtp-Source: ABdhPJyYaXbZy+LzbWpeXvAqEXpNb7VBUwCXylmPpi/oHEUljqcTjbXi95Lpass4QrUvYrPjXmjFmxVSijB7pWNETA8=
X-Received: by 2002:ac8:594c:: with SMTP id 12mr12054432qtz.224.1607120831395; Fri, 04 Dec 2020 14:27:11 -0800 (PST)
MIME-Version: 1.0
From: Todd Herr <todd.herr@valimail.com>
Date: Fri, 4 Dec 2020 17:26:55 -0500
Message-ID: <CAHej_8nzJCwcZq5Lrr8jRRt28TczsujxmDdbG_xmUWrW0kEtxg@mail.gmail.com>
To: IETF DMARC WG <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000445b0a05b5aafaf2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/K7j_f6UU_uth0q-8mdYk19008Qw>
Subject: [dmarc-ietf] Ticket #85 - New Description for 'p' tag and values
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Dec 2020 22:27:15 -0000

In the "Ticket #39" thread, Dave Crocker asserted the following about the
'p' tag and its values:

"The premise that an author domain owner can, in any way, direct the
message disposition decisions of a receiving system is simply false.
It's false to a level of silliness, if one adequately considers the
complete independence of the receiver from the domain owner.

The domain owner can, perhaps, express something about the owner's own
concerns for mail that fails dmarc, but that's different from saying
anything about the receiver's decisions about how to respond to those
expressed concerns.

That is, the language expressing the semantics should be changed to be, in
a sense, egocentric. How do I, the domain owner feel about (assess) the
meaning of a DMARC failure?"

Later in that same thread, he proposed the following as possible new
language for the description of the 'p' tag and values in section 6.3:

*p*: Domain Owner Assessment Policy (plain-text; REQUIRED for policy
records). Indicates the severity of concern the domain owner has, for mail
using its domain but not passing DMARC validation. Policy applies to the
domain queried and to subdomains, unless subdomain policy is explicitly
described using the "sp" tag. This tag is mandatory for policy records
only, but not for third-party reporting records (see Section 7.1
<https://tools.ietf.org/html/rfc7489#section-7.1>). Possible values are as

*none*: The Domain Owner offers no expression of concern.

*quarantine:* The Domain Owner considers such mail to be suspicious. It is
possible the mail is valid, although the failure creates a significant

*reject: *The Domain Owner considers all such failures to be a clear
indication that the use of the domain name is not valid.  See Section 10.3
<https://tools.ietf.org/html/rfc7489#section-10.3> for some discussion of
SMTP rejection methods and their implications.

I believe this to be worthy of its own dedicated ticket and discussion, and
so have created a ticket specifically for it.


*Todd Herr* | Sr. Technical Program Manager
*e:* todd.herr@valimail.com
*p:* 703.220.4153

This email and all data transmitted with it contains confidential and/or
proprietary information intended solely for the use of individual(s)
authorized to receive it. If you are not an intended and authorized
recipient you are hereby notified of any use, disclosure, copying or
distribution of the information included in this transmission is prohibited
and may be unlawful. Please immediately notify the sender by replying to
this email and then delete it from your system.