IETF Logo Mail Archive

Re: [dmarc-ietf] ESC for Failed DMARC Validation

Дилян Палаузов <dilyan.palauzov@aegee.org> Sun, 04 August 2019 10:26 UTC

Return-Path: <dilyan.palauzov@aegee.org>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B9730120026 for <dmarc@ietfa.amsl.com>; Sun, 4 Aug 2019 03:26:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (4096-bit key) header.d=aegee.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a9rgUuySEDfk for <dmarc@ietfa.amsl.com>; Sun, 4 Aug 2019 03:26:11 -0700 (PDT)
Received: from mail.aegee.org (mail.aegee.org [144.76.142.78]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 60B60120025 for <dmarc@ietf.org>; Sun, 4 Aug 2019 03:26:11 -0700 (PDT)
Authentication-Results: mail.aegee.org/x74AQ8Al012036; auth=pass (LOGIN) smtp.auth=didopalauzov
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=aegee.org; s=k4096; t=1564914368; i=dkim+MSA-tls@aegee.org; r=y; bh=at+PY+yAdtMunshVcyPvaHosomNNuaQWyeyJuVbgmzI=; h=Subject:From:To:Date:In-Reply-To:References; b=JgWGXkMYTBdOQZA50m3FrIaQSh+RXcwYR6VRfFhhFrKu+DJwWI6MfXHAlSxJ79YX2 dwqChpJW5zXPJkupuM692hCqK1Ku4ZLhqfs3+7FzpvDUq7p+hg1qsEBfkRgSUADYS0 qRuZpyZIdeJL+8AjXPckshIUJ7lCRKCLBg71YiqCwvx8OydBCW2L65/RAPiYWbi0vp oi5rh3aWrV6bzqI0I+koivk81/5ZZmIH30Wqa9YY8Sx/jE2m7DnITDO4sr0oxrurfn QSFVEKt0J7qDkqjLoutDqvivCdJU5SGcw8QxsRkbvXgVejacmD//Usp9qgeX3tXcPd lnGP3Syub27JgW7Zw28UdrkD+h9IieepMm5wtPJ9+MY03WPz2Xnk1sV/hWireQWdpa qFke43U3S2ouQlVP3qJEk9ztbsmCvH6O0xNjHPT3EVZejj7jvPggYC5NcK6nF9IhfF LYvtnlPDzrDdKE4/CQlblSQi6zskVZyJC3NxKPz4o3Wuct6YZOpW9/2VWthUh9Hgf7 b2+2KcLuTjHc9HTNJmjmvtBU6lvICR3Xy3Mn3pbzXmCw2JoZ2IoZ4SfRiIDbgEkAQp s7ESWON3weJaIotWH8mYVwrgIq6C96GP5m1PhpwIWN7wC24s/Zwij56WLQ/+lRnkVl 6BlpJPlZUegYsGSG+N46Lupc=
Authentication-Results: mail.aegee.org/x74AQ8Al012036; dkim=none
Received: from Tylan (87-118-146-153.ip.btc-net.bg [87.118.146.153]) (authenticated bits=0) by mail.aegee.org (8.15.2/8.15.2) with ESMTPSA id x74AQ8Al012036 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO); Sun, 4 Aug 2019 10:26:08 GMT
Message-ID: <01a00560683ca238b1f9b4f160e5f1395ec1d572.camel@aegee.org>
From: Дилян Палаузов <dilyan.palauzov@aegee.org>
To: Alessandro Vesely <vesely@tana.it>, dmarc@ietf.org
Date: Sun, 04 Aug 2019 10:26:07 +0000
In-Reply-To: <e3530b4c-3374-a0f3-ede7-eaa6de32387c@tana.it>
References: <c676b42745c2c8114ec26eb1f405c9eb2e68c364.camel@aegee.org> <22f0d022-57f7-8b8f-0d88-18d1c77e990e@tana.it> <505750d4fb9c03050508255594c55f4517da3e6d.camel@aegee.org> <CAL0qLwaDdfq6nkKubh2B=7PTZDt9E271z8tnq2bF-9KbwQQg3g@mail.gmail.com> <e2011ab9c66e9559caba22d7fd6d01bbd34345b7.camel@aegee.org> <CAL0qLwZ-gzfD3drxqRHzLChZagMvocUN_ijrMVg_H65AMpHPvA@mail.gmail.com> <9ffdbe9e-7720-0a39-876e-7bfbdd0b9366@sonnection.nl> <f5a7aa1ada8cc49150c31834569825f5433ed6f5.camel@aegee.org> <e3530b4c-3374-a0f3-ede7-eaa6de32387c@tana.it>
Content-Type: text/plain; charset="UTF-8"
User-Agent: Evolution 3.33.90
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Virus-Scanned: clamav-milter 0.101.2 at mail.aegee.org
X-Virus-Status: Clean
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/T-69NZcpF1YAdw22YV75MLrlxQc>
Subject: Re: [dmarc-ietf] ESC for Failed DMARC Validation
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 04 Aug 2019 10:26:13 -0000

Hello Alessandro,

if a site wants to emit X.7.30, it will find a way to do so (sometimes or always).

I prefer an ESC over an SMTP service extension, since I consider ESCs as much easier to implement and otherwise both
options are the same.

Regards
  Дилян

On Sat, 2019-08-03 at 18:27 +0200, Alessandro Vesely wrote:
> Hi,
> 
> On Fri 02/Aug/2019 23:27:48 +0200 Дилян Палаузов wrote:
> > these are already now two ESC: 2.7.30 and 5.7.30.  X.7.30 means in both cases, that DMARC validation failed.
> > 
> > For a domain with policy p=reject; pct=0 the mail is delivered (250 2.7.30), despite failed DMARCр and for a domain with
> > p=reject; pct=100 when DMARC failed and the mail is rejected (550 5.7.30).
> 
> A message can be rejected as soon as a reason to do so it is found.  That
> principle uniquely defines the reject response.  The accept response cannot
> collect what every filter thought about the message.  To act as you propose,
> the DMARC filter should be granted the special privilege to set the text of the
> response in any case.
> 
> On Courier-MTA there's no API to support that.  Do Postfix or Sendmail provide
> one?  I doubt, since SMTP doesn't attach a special significance to the text of
> the response, except for the 220, 221, 251, 421, and 551 reply codes.
> 
> 
> Best
> Ale

v2.23.0 | Report a Bug | By Email