IETF Logo Mail Archive

Re: [dmarc-ietf] Guidance around constructing an AAR when multiple AR headers are present?

"John Levine" <johnl@taugh.com> Wed, 24 May 2017 19:26 UTC

Return-Path: <johnl@taugh.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 095E8129AE8 for <dmarc@ietfa.amsl.com>; Wed, 24 May 2017 12:26:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.001
X-Spam-Level:
X-Spam-Status: No, score=-0.001 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eMnXeG0JyasN for <dmarc@ietfa.amsl.com>; Wed, 24 May 2017 12:26:42 -0700 (PDT)
Received: from miucha.iecc.com (w6.iecc.com [IPv6:2001:470:1f07:1126::4945:4343]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7417F128CFF for <dmarc@ietf.org>; Wed, 24 May 2017 12:26:42 -0700 (PDT)
Received: (qmail 97388 invoked from network); 24 May 2017 19:26:39 -0000
Received: from unknown (64.57.183.18) by mail1.iecc.com with QMQP; 24 May 2017 19:26:39 -0000
Date: Wed, 24 May 2017 19:26:17 -0000
Message-ID: <20170524192617.36732.qmail@ary.lan>
From: John Levine <johnl@taugh.com>
To: dmarc@ietf.org
Cc: seth@valimail.com
In-Reply-To: <CAOZAAfOsRrQF2M3NzcB3h2Tc03mtFfG8mOJ0pqU+_cx=whcBLQ@mail.gmail.com>
Organization:
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/PX6xi2Pat5xHrnhIBFyiS4jOIjM>
Subject: Re: [dmarc-ietf] Guidance around constructing an AAR when multiple AR headers are present?
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 May 2017 19:26:44 -0000

In article <CAOZAAfOsRrQF2M3NzcB3h2Tc03mtFfG8mOJ0pqU+_cx=whcBLQ@mail.gmail.com> you write:
>Looking at random messages on this list, I've seen anywhere from two to
>five AR headers per message. Locally, with opendkim and opendmarc running,
>there are three locally generated AR headers that get passed to openarc. It
>looks like seeing multiple AR headers is going to be a common occurrence
>for ARC implementations to handle.

When I take a look, I only see one, from ietfa.amsl.com.  If I were
having the list mailed to me, I'd expect to see two, that one plus the
one my system adds.  It is rather peculiar to have multiple headers
with the same service identifier, since section 5 of RFC 7601 says
that you normally delete exsting A-R headers with the same
authserv-id before you add a new one.

On my system, the SMTP daemon calls the spf2, opendkim, and opendmarc
libraries, and then puts all the results in a single A-R header.  For
example, when I look at mail from a list I forward to a gmail account,
I see one A-R header from mx.google.com, one from my system, and maybe
one from the original system.  I think that's more typical.

>Is this a problem the group thinks needs discussion?

Only if there are a lot of MTAs that don't report their results in one
header.

R's,
John

v2.23.0 | Report a Bug | By Email