Re: [dmarc-ietf] Tickets 98 and 99 -- fake reports are not a problem and if they were authentication would not help
Todd Herr <todd.herr@valimail.com> Mon, 25 January 2021 18:05 UTC
Return-Path: <todd.herr@valimail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D225B3A163D for <dmarc@ietfa.amsl.com>; Mon, 25 Jan 2021 10:05:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.197
X-Spam-Level:
X-Spam-Status: No, score=-0.197 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_32=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=valimail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id agwKKxqHNcfo for <dmarc@ietfa.amsl.com>; Mon, 25 Jan 2021 10:05:54 -0800 (PST)
Received: from mail-qv1-xf29.google.com (mail-qv1-xf29.google.com [IPv6:2607:f8b0:4864:20::f29]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 631883A168D for <dmarc@ietf.org>; Mon, 25 Jan 2021 10:05:41 -0800 (PST)
Received: by mail-qv1-xf29.google.com with SMTP id s6so6593819qvn.6 for <dmarc@ietf.org>; Mon, 25 Jan 2021 10:05:41 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=valimail.com; s=google2048; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=c9WAsURKA+hP152vjcwDyJoduXqCTxVP1UlkwW5uQ/c=; b=AwsXeS46TJ9iXGH1e3nR5UVugUQCOJy42cwVwCL+/10QQZNr7fifbeHt/yTb6kxHro LhKfqols0kGDXR/LrNhbInPIaLWfNKETM5S+K1p2anjXBb48SPtR6ZIz19PsK3l3d3hG dGG4VA6K0gmPcYXbmvS6TaPAdjZ2Fnrfc4orEiLW4YV03TN5eh/ZCq4BGWGYa32+Guq2 zpZATc1MDNn0Tat9I7sN52kcle6li0mSWS3Ar7KRSKfQri0cyhXhFREEEQY0RWkC0FrA HAuwlzEjLfo03iIMr7u/EEZp4A+Amd7wlIKtfz9/5ati77aKtX4HWp9f4BkP2LhZvaZv IoDg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=c9WAsURKA+hP152vjcwDyJoduXqCTxVP1UlkwW5uQ/c=; b=lTCGBZsP39I/mtVTMOMsdZd9w3MMqj/lSpm2SnnmDF8Ua5iKJ1MnAu1SXjI+39Hc1l FjxCtuLigZefF8sAJtAx1m1MJo9Ffusoh0IRN6ieN7I5IDQ63F9P/fWsM9+01rSrqIa7 Nz2jv4FzkSGuzHAZHJ1sTnitXS/e+vdeV+j2TWi3ZSzOPYwAEQfOtMMe/QcDLSn0/mgR iW40/mH6w9Ss9hK/x8zVXT9WsQosqaJLBprzrLLRWNkeJVmG7sACUXe2E3yTAzyJX4eb JYinaRwE8ftn9SxHhdAwKVqCi3HxIOr4lfCTe12IURg3WbIZMyaFp0EIpuJCwP6UifVx +Tmg==
X-Gm-Message-State: AOAM530AkiCdpFM0+mkpwqzeo3+GJaTpEFCfac3eam26rOsIBBCXa3kf +fYBeH9beqJ+uqzOK7gKqzQh0gGM+c+To7kHod/JM2256us=
X-Google-Smtp-Source: ABdhPJw3FjQlJcTglAJbe3/H3R2NhZ1kvL3U2AxcWkZBUmW5+W+Vs8r7FPBkTGrFDuEWXtA7ryoptSB5sUlmnkPNoGY=
X-Received: by 2002:a0c:fe0b:: with SMTP id x11mr1950722qvr.18.1611597940041; Mon, 25 Jan 2021 10:05:40 -0800 (PST)
MIME-Version: 1.0
References: <34317129-8225-fb38-4ad3-e1b9ffed21fb@iecc.com> <9c84fa50-d23c-a794-fc62-09788ac383a9@mtcc.com> <CAHej_8mTaFo7aESFk4pHjbqbheriYPoAy6f+HhcE6ASVJSyViA@mail.gmail.com> <df867378-5da0-b912-2a0f-b2081d1f2437@mtcc.com> <CAHej_8kfCC1H89pRjgxXK=+BizJHFdKgnr7Gxh_2wWq8P7L-0Q@mail.gmail.com> <a94cb6c0-0a32-da8d-4bd5-9c7ab2866c82@mtcc.com> <CAH48ZfxkQ9g-gmBOPdDsxr4RDvXOi56EaX=aJVDbuL_g7kR+xQ@mail.gmail.com> <CAOZAAfOB93fpYRjwxgQNkG-ydVHLtvgUp0LLROvv-F-amJVy4w@mail.gmail.com> <b9e8da8e-f46a-49c0-4196-1d50ed94d526@mtcc.com> <CAOZAAfPh4kYq0yXhtP9BaPmtP_rc7L-0f=r3Ff_P3oxrhYqvtw@mail.gmail.com> <dd98f7ca-1088-8a1a-c69d-e2b723543cb1@mtcc.com>
In-Reply-To: <dd98f7ca-1088-8a1a-c69d-e2b723543cb1@mtcc.com>
From: Todd Herr <todd.herr@valimail.com>
Date: Mon, 25 Jan 2021 13:05:24 -0500
Message-ID: <CAHej_8meTdGM7we_PdTroZ4dikY4gC5ZQGnb0N4xKpSo9xtxkg@mail.gmail.com>
To: IETF DMARC WG <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000bcc05305b9bd6205"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/L2_kOryRcAiePBJTKom2C7zbEqs>
Subject: Re: [dmarc-ietf] Tickets 98 and 99 -- fake reports are not a problem and if they were authentication would not help
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Jan 2021 18:05:58 -0000
On Mon, Jan 25, 2021 at 12:53 PM Michael Thomas <mike@mtcc.com> wrote: > But just as an example, suppose I'm trying to get to a position to use > p=reject, but some bad actor doesn't want me to do that so they can keep > phishing me. All they have to do is keep sending forged message reports > from gmail which makes me think I've got a problem. Seriously, this is not > rocket science. > > > Thank you for answering my question. -- *Todd Herr* | Sr. Technical Program Manager *e:* todd.herr@valimail.com *p:* 703.220.4153 This email and all data transmitted with it contains confidential and/or proprietary information intended solely for the use of individual(s) authorized to receive it. If you are not an intended and authorized recipient you are hereby notified of any use, disclosure, copying or distribution of the information included in this transmission is prohibited and may be unlawful. Please immediately notify the sender by replying to this email and then delete it from your system.
- [dmarc-ietf] Tickets 98 and 99 -- fake reports ar… John R. Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Douglas Foster
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Murray S. Kucherawy
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… John Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… John Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Douglas Foster
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Douglas Foster
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… John Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Alessandro Vesely
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Alessandro Vesely
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… John R Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Alessandro Vesely
- [dmarc-ietf] reporting security requirements Michael Thomas
- Re: [dmarc-ietf] reporting security requirements Seth Blank
- Re: [dmarc-ietf] reporting security requirements Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Steven M Jones
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank