IETF Logo Mail Archive

Re: [dmarc-ietf] Revisiting the Race Condition in draft-crocker-dmarc-sender-01

"Kurt Andersen (b)" <kboth@drkurt.com> Wed, 19 August 2020 22:32 UTC

Return-Path: <kurta@drkurt.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D85F3A0EB0 for <dmarc@ietfa.amsl.com>; Wed, 19 Aug 2020 15:32:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=drkurt.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TysEP4hb-uis for <dmarc@ietfa.amsl.com>; Wed, 19 Aug 2020 15:32:07 -0700 (PDT)
Received: from mail-io1-xd31.google.com (mail-io1-xd31.google.com [IPv6:2607:f8b0:4864:20::d31]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B02EF3A0EAE for <dmarc@ietf.org>; Wed, 19 Aug 2020 15:32:07 -0700 (PDT)
Received: by mail-io1-xd31.google.com with SMTP id g14so418309iom.0 for <dmarc@ietf.org>; Wed, 19 Aug 2020 15:32:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=drkurt.com; s=20130612; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=h5p95sfjuA76Q94y79gwsFPD+CQqaLcoq0Y6ulwiMaE=; b=LOJoyClJTH0+1sMJvV3O7sB8X+J2GJB1qLaUHo03Za8+H8BgMaNE9UrVMpYMNpNjBt rsVZ9kWgc0yH923gqaSJUSRW5+6Dx44erjONgZtZ48iajQ/w6gjBBfYIOK9g4aRpcuFA ySUdK52QhP+xtIbyWNFfzU0bwHaleBqqcsGww=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=h5p95sfjuA76Q94y79gwsFPD+CQqaLcoq0Y6ulwiMaE=; b=WTBsPVbjIYhkbxL+rdB10fUeBYuZG6Om3t57CpyYYRC4vaWqxCrtv++7empLImF1zL 4KRiLqiHDxPGxqihYifEbeLxArqmqKmFVHpS1xUoqlUZ1HGvkrHDs//DASVZe6sCLt9X ixoX6VNfg1Fn0QhZZSfQ6REaUULzVB9s5wd0P1yKKjpHFh1CQQQA6O61p2lt7TZFnLC8 JPtG9mWlCeJ0/85jcLMMQlt+a+19U/jGlyu+LUWqwYmy1EXcYtmbyfIyKlYQ+zfSdfL+ dbbdjvhAXMcdtlvQLA+Ua0w55QxyIlJPbOGOCv/1RIioRwxhU17VzOGInkbQAhsbTUMZ qWcw==
X-Gm-Message-State: AOAM530gOr1AKDxMjaFSy12G7amh7b3GM2PhdsspzizPGq7kcfaAzPLX 709+WhayjueObgZQtv0wu6VOx9Flm0lefmur9IEcLQ==
X-Google-Smtp-Source: ABdhPJwWx0pWRaKUF5FLAIQlmovPequ/UY5DXY1fkchfSZo28OaM4qu+qsWs/Q/zgW2S6JuOC/wMiAfC1njT9riVmQ4=
X-Received: by 2002:a05:6602:14c1:: with SMTP id b1mr104519iow.163.1597876326919; Wed, 19 Aug 2020 15:32:06 -0700 (PDT)
MIME-Version: 1.0
References: <CAJ4XoYcue16VU6otKOzQBFy_59nD8DGcDQb8H=Z0MsX-XLah8w@mail.gmail.com> <20200819004724.16EE11EED520@ary.local> <CAJ4XoYfFKe1yKK5OBx91qJOxZNHSNptu7kHS_bKnyGo_wGLB_w@mail.gmail.com> <8e939d83-3cc8-3989-4e48-7e79e7e86973@taugh.com> <CAJ4XoYfFWbGky+A7GXZeTAth_5JQz1y8QQXsGW-bQ=86CUTt5A@mail.gmail.com> <73cb2f8c-5f9-8fa2-6b13-3ec9318f2c5@taugh.com> <CAJ4XoYd71Ybn=15=y7Ydg3cSMzpkaAr45ynUshTqGEFzq3KLaQ@mail.gmail.com> <CAL0qLwb3bqstz=feSx0h-fR_U03hcixbEmfYeAmqYTQYimcW4w@mail.gmail.com> <baa8487b-ffb8-ce78-cf59-f6d63651d855@taugh.com>
In-Reply-To: <baa8487b-ffb8-ce78-cf59-f6d63651d855@taugh.com>
From: "Kurt Andersen (b)" <kboth@drkurt.com>
Date: Wed, 19 Aug 2020 15:31:24 -0700
Message-ID: <CABuGu1r0gV3W4u35VHVaPREWXdZv90mV=XznFx4hD5XSsWD34g@mail.gmail.com>
To: John R Levine <johnl@taugh.com>
Cc: "Murray S. Kucherawy" <superuser@gmail.com>, Dotzero <dotzero@gmail.com>, "dmarc@ietf.org" <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000dc8f8705ad4292ba"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/TskRV5y-z9OFWAeA95y62xl_s7M>
Subject: Re: [dmarc-ietf] Revisiting the Race Condition in draft-crocker-dmarc-sender-01
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Aug 2020 22:32:09 -0000

On Wed, Aug 19, 2020 at 12:11 PM John R Levine <johnl@taugh.com> wrote:

>
> It is abundantly clear that Ericsson and AOL and Yahoo do not object to
> their users sending mail through discussion lists.  Ericsson doesn't want
> their execs to be phished, AOLhoo doesn't want complaints "why am I
> getting spam from people I know."  In each case we know from experience
> that their published p=reject doesn't describe their actual policy.
>

When domains have only three sizes of DMARC policy hammers, there aren't a
lot of options to handle loose screws...though I still haven't heard any
wormhole protocol suggestions which seem like viable mechanisms at scale or
which would allow the organizations you cite to express the nuances of
their presumptive "actual polic[ies]".

--Kurt

v2.23.0 | Report a Bug | By Email