Re: [dmarc-ietf] DMARC PSD and non-existent subdomains
Hector Santos <hsantos@isdg.net> Tue, 11 June 2019 16:54 UTC
Return-Path: <hsantos@isdg.net>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1BD8012022E for <dmarc@ietfa.amsl.com>; Tue, 11 Jun 2019 09:54:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isdg.net header.b=Bu1Nge96; dkim=pass (1024-bit key) header.d=beta.winserver.com header.b=TBi7DVKu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8NQI1LUXaAeb for <dmarc@ietfa.amsl.com>; Tue, 11 Jun 2019 09:54:37 -0700 (PDT)
Received: from mail.winserver.com (ntbbs.winserver.com [76.245.57.69]) by ietfa.amsl.com (Postfix) with ESMTP id 6ED4E120145 for <dmarc@ietf.org>; Tue, 11 Jun 2019 09:54:37 -0700 (PDT)
DKIM-Signature: v=1; d=isdg.net; s=tms1; a=rsa-sha1; c=simple/relaxed; l=2053; t=1560272069; atps=ietf.org; atpsh=sha1; h=Received:Received:Received:Received:Message-ID:Date:From: Organization:To:Subject:List-ID; bh=U0PcbPR42n2Zq4HbWziGW5/p8n4=; b=Bu1Nge96PmbPI6JBwIWjspBVPUABbSrn5S2ZFquV7tzk37RfMGJgf5tlGWyLRE jyrj/ZAmW1U8jLSkEq7iWCbGbeLXkmC2Zdg8up/UmHQ7BBNOoCrv3U349Ah8YVcU ijFMpksU/kRf24l9Itqnn1cmvZ+xyIc0GDwywu8NZON/A=
Received: by winserver.com (Wildcat! SMTP Router v8.0.454.8) for dmarc@ietf.org; Tue, 11 Jun 2019 12:54:29 -0400
Authentication-Results: dkim.winserver.com; dkim=pass header.d=beta.winserver.com header.s=tms1 header.i=beta.winserver.com;
Received: from beta.winserver.com ([76.245.57.74]) by winserver.com (Wildcat! SMTP v8.0.454.8) with ESMTP id 1064508906.1.3608; Tue, 11 Jun 2019 12:54:28 -0400
DKIM-Signature: v=1; d=beta.winserver.com; s=tms1; a=rsa-sha256; c=simple/relaxed; l=2053; t=1560271869; h=Received:Received: Message-ID:Date:From:Organization:To:Subject:List-ID; bh=Da/ZCoF /tjuqZGwC+abJgnV92ICTABXsCcJ+Fwdn2wE=; b=TBi7DVKuVBrFTq7YUSFcJK2 GVRJMXOBthCGcfXVLWzrC9PR3FhXOz3dVeDJexNLHeue2ql1w+1SGrqT5UjpmgNZ EOGSXOKOIObbqzYfRpcfOs0FkAm9f8LWhK+Ff6uOh/PnpyiJlz9Tvc8awR7tdcGH iEZTIhnd0XFO9jL5PB1c=
Received: by beta.winserver.com (Wildcat! SMTP Router v8.0.454.8) for dmarc@ietf.org; Tue, 11 Jun 2019 12:51:09 -0400
Received: from [192.168.1.68] ([75.26.216.248]) by beta.winserver.com (Wildcat! SMTP v8.0.454.8) with ESMTP id 2636724270.9.303252; Tue, 11 Jun 2019 12:51:08 -0400
Message-ID: <5CFFDCC1.5080502@isdg.net>
Date: Tue, 11 Jun 2019 12:54:25 -0400
From: Hector Santos <hsantos@isdg.net>
Reply-To: hsantos@isdg.net
Organization: Santronics Software, Inc.
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.8.1
MIME-Version: 1.0
To: dmarc@ietf.org
References: <LO2P123MB2334F6DE24EFE7FF43DEDB39AD180@LO2P123MB2334.GBRP123.PROD.OUTLOOK.COM> <CAD2i3WPsdoJEnhRLCTdyd3xkQ_+5NkVKqekBQGmL2U7233KVRw@mail.gmail.com> <LO2P123MB23346502F9B6F1EE38269147AD130@LO2P123MB2334.GBRP123.PROD.OUTLOOK.COM> <5425365.YBKd1By0BY@l5580> <4ba6fbe5-80f1-1b68-c61e-57cd1ad312e2@tana.it>
In-Reply-To: <4ba6fbe5-80f1-1b68-c61e-57cd1ad312e2@tana.it>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/KNT1-cwGh6Ca08-0VbC4EQOx-8k>
Subject: Re: [dmarc-ietf] DMARC PSD and non-existent subdomains
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Jun 2019 16:54:39 -0000
On 6/11/2019 11:38 AM, Alessandro Vesely wrote: > On Tue 11/Jun/2019 00:41:16 +0200 Scott Kitterman wrote: >> On Monday, June 10, 2019 8:07:25 AM EDT Richard C wrote: >> >>> Presumably other PSDs that aren’t brand new will have this problem too? I’m >>> interested to hear whether we’re on our own or not. >> >> As written, DMARC (RFC 7489) has the option to express different policy for >> subdomains (sp= tag). Perhaps we could address this case in PSD DMARC by >> leveraging that feature. >> >> PSD DMARC is the first time there is any DMARC related explicit guidance on >> non-existent sub-domains. If we made it a rule that non-existent sub-domains >> use the domain level (p=) policy and existent sub-domains use the sub-domain >> policy (sp=) then I believe the affect you are after is achievable. > > > Rather than altering p= and sp=, I'd add an np=, say, for non-existing domains: > > * It certainly would gather more attention by implementers, > > * Domain owners could monitor <policy_published> to check it. > > * It allows the main domain to have a non-reject policy. +1. I like this. In general, I want compatibility, but it seems, in my opinion, to be a lack of willingness to consider more tags. Maybe it is a messenger problem, but we long had quite a number of extended ideas for a standard DKIM Policy protocol framework. The Domain Discovery Lookup Method is one of them and its directly and indirectly related to 3rd party policy concepts, one that is defined by some public suffix list where I am not familiar with, appears to had politics involved too, and off hand, it appears to have a trust factor. Can I trust using this list? Where do I get this list? Is there are periodic update concept and so forth. I will place my trust on the cogs with this, but at this point, I will note I am lost with the extended logic algorithm being proposed. Trying the fast read the draft specs does not help. Maybe Scott can describe it (extended Lookup method) in pseudo code. -- HLS
- [dmarc-ietf] DMARC PSD and non-existent subdomains Richard C
- Re: [dmarc-ietf] DMARC PSD and non-existent subdo… Seth Blank
- Re: [dmarc-ietf] DMARC PSD and non-existent subdo… Richard C
- Re: [dmarc-ietf] DMARC PSD and non-existent subdo… Scott Kitterman
- Re: [dmarc-ietf] DMARC PSD and non-existent subdo… Alessandro Vesely
- Re: [dmarc-ietf] DMARC PSD and non-existent subdo… Hector Santos