IETF Logo Mail Archive

Re: [dmarc-ietf] DMARC-Compliant Mailing Lists

Douglas Foster <dougfoster.emailstandards@gmail.com> Wed, 13 October 2021 22:40 UTC

Return-Path: <dougfoster.emailstandards@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 889F93A12B5 for <dmarc@ietfa.amsl.com>; Wed, 13 Oct 2021 15:40:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IBXw2vWoxALY for <dmarc@ietfa.amsl.com>; Wed, 13 Oct 2021 15:40:07 -0700 (PDT)
Received: from mail-oi1-x233.google.com (mail-oi1-x233.google.com [IPv6:2607:f8b0:4864:20::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E3F5C3A12B3 for <dmarc@ietf.org>; Wed, 13 Oct 2021 15:40:03 -0700 (PDT)
Received: by mail-oi1-x233.google.com with SMTP id m67so5903998oif.6 for <dmarc@ietf.org>; Wed, 13 Oct 2021 15:40:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=Ktjp7zymxG7iOVLIqPy/8EJM/6qg+p+Pu4pDahy0zOE=; b=MeOlfOtoXQxgpvRxV4pN7LOwvgbqnga8UX7TBehmA/yYjKlT0Hzqx81nOjdTLKYtn4 jlZYKkD6DEnTMiUFIeF+94ff/hKhEYtqnC+Gv1tWSu34e2uColrdZVVA9bpdi+03LcfN 9IRKclroIcXg9Ybw5rKWDRe5axd/y+Q+L53SjbvXiQkA76n50nPUazsHvI1gz0G1uzBf IPzrVNiFUpAtJzYpZMc2ZZ2f7SsBd19f9ulcVNPqyFvU4Cia6NT3uZrtDiM1tEX6jABq nFDyhHDRTK1u/MII5cUFyNApob6trGKYQZXrQdBZaUdXoA6o+0hFA0LvrNTrYwZEDcU7 Ylnw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=Ktjp7zymxG7iOVLIqPy/8EJM/6qg+p+Pu4pDahy0zOE=; b=zq/1qN54giQsENsmO8+KsDTVmezX05riphwhYwu74FUHdjZWLHB1xuUPEuW1VYZP4b NuIBhUddk3AoBfBnCLgkca6BLadWEVOIm+6HckmHGWoteuojX0BmO4HDd+CcT9q8YJBK vGjby46ywWSFE2tvrkP5CQ5M+cQcbiQwTs/ZVirYa23UFJE7r7S3GfZjDGTAMHvDYOWz dwi1Nqk0R51Lmus3jTcdXMWVGbE/IxwtTxNR3ka/QXNhTYwjnIwAdZaUM7Go7hhQcLYK WSZXgVGY8ykdqSG+13dnU0Jga3emVpeoLu8V4LJuRry0ZVTWBSEDgL63qH4oFgunAaWz O5Cg==
X-Gm-Message-State: AOAM532wv1GO+jiJZfsNt9RqX5X5q2PDyok4pBm3g3Hox0CzQxZufFye 7d9lo9Lh+6oXfZVw0yTicodkr94MmbWQ4ILMFLo8fL/B
X-Google-Smtp-Source: ABdhPJy1tS7WIy+mgGC3FScnYzBpOnUkQi3y1IilxccEhRXL5u5P339Rp4so4P9yPnISuMTsSdT5PJ6ZWQJdz98ynmU=
X-Received: by 2002:aca:af84:: with SMTP id y126mr10808851oie.20.1634164802640; Wed, 13 Oct 2021 15:40:02 -0700 (PDT)
MIME-Version: 1.0
References: <20211006233727.24C1429DC897@ary.qy> <56B7A1D4-B683-47D3-8871-2A1F283FA464@wordtothewise.com> <c1e199f1-0c91-9c39-1479-e9ba76af493e@tana.it> <2290129.80B3yH0EHm@zini-1880> <CALaySJJ3Neo6hgEJJ80g-H4vFMJ5Y-Fc=to4R8=sa9-3pg3zgg@mail.gmail.com> <CAH48Zfw81292FOXoSK9xDpG-zo9-r58Dne4Uwy+oi1SFSN_0pA@mail.gmail.com> <B379D307-9394-4FA5-8658-077354756639@kitterman.com> <CAH48ZfzVdMD=R00GJ+hsmYESbzS1wZ+5MvAVoRb=cG4fjBUpaw@mail.gmail.com> <CALaySJJ60Vi-Ex65DwHy0bBiH13vx5qm_hTLoCdVQqEWE=ENdA@mail.gmail.com> <CAH48Zfw4B1nv70x6YG-yOz6=7ECBsfr2uKdSz7_OgOCLrPJ1BQ@mail.gmail.com> <86bd8dab-fefa-fa1c-93c0-fda1749670c4@tana.it> <9a5e133d-a67b-c823-af36-8a83ff03e9c0@baptiste-carvello.net>
In-Reply-To: <9a5e133d-a67b-c823-af36-8a83ff03e9c0@baptiste-carvello.net>
From: Douglas Foster <dougfoster.emailstandards@gmail.com>
Date: Wed, 13 Oct 2021 18:39:53 -0400
Message-ID: <CAH48ZfxMnXpNiOnYW=GTwQLSARwL0EsBUPb4+zcmJrMJYcvMdQ@mail.gmail.com>
To: IETF DMARC WG <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000090de5b05ce43a4fa"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/XBAvfOqDoNrhkKD5k44pO3_qmUY>
Subject: Re: [dmarc-ietf] DMARC-Compliant Mailing Lists
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Oct 2021 22:40:13 -0000

Baptiste, you are partially right.

For those who want more reliable delivery and better UX, improvement can
advance on two-prongs.    Evaluators who have the savvy and the motivation
to implement an unmunging algorithm can be advised to do so for the benefit
of their users.   Mailing List Operators who have the savvy and the
motivation to use recipient preferences to minimize munging can also be
advised to do so for the benefit of their subscribers.   Neither group will
see 100% deployment of a solution, so the best outcome will occur if each
participant implements what they can.   Both solutions depend on evaluators
knowing how to characterize messages from any particular mailing list, and
that becomes complicated if the message is forwarded.   IETF MAY be able to
facilitate all three aspects of the problem space, although that remains to
be seen.

Those who are unmotivated to optimize delivery rates can certainly wait for
others to implement a solution.


On Wed, Oct 13, 2021 at 9:36 AM Baptiste Carvello <
devel@baptiste-carvello.net> wrote:

> Hi,
>
> I'm happy to see the discussion advancing: we now seem to have consensus
> that redesigning mailing lists behind their backs is a bad idea, and
> that the existence of From rewriting as an emergency hot-fix does not
> preclude looking for more satisfactory solutions. Good work!
>
> Now, I'm skeptical of your solution. First, I don't think 100%
> deliverability at all times is a hard requirement. The Open Source
> mailing lists I care about really don't have a deliverability problem:
> I'm sure LKML can afford that messages from and/or to a few peculiar
> domains get lost for a few months, if that's the price to pay to build
> incentives for a collaborative solution (I don't expect receivers to
> invest into unmunging if they don't have a strong incentive).
>
> Also, having this munging-then-unmunging dance as the *normal* procedure
> sounds backwards. If the receivers make the delivery decision alone, why
> can't they implement it all on their side: let the incoming message
> pass, munge it with an alias under their control, wrap it into a
> message/rfc822 body part, silently discard it, whatever they want, it's
> their system, their UX, their users.
>
> The only reason for insisting that mailing lists speculatively do the
> munging on their side is some strange fetish on the value of the From
> field during transit… where nobody will read it. Oh, and the risk of
> bounces, of course, which should IMHO be eliminated in this special case.
>
> Cheers,
> Baptiste
>
> Le 12/10/2021 à 12:04, Alessandro Vesely a écrit :
> > From: rewriting confers 100% deliverability on messages, but has a bad
> > impact on the end user.
> >
> > If we consider collaborative solutions, we see that, because of their
> > very nature, they cannot cover all cases.  So, it is safer to look for
> > collaborative solutions that allow unmunging than to solutions that
> > avoid munging in the first place.  Indeed, in the former case the risk
> > is to deliver a munged message, while in the latter one the risk is to
> > either not deliver or not to implement DMARC.
> >
> > Even ARC can be turned into a method to unmunge.  It requires
> > collaboration between MLM and receiver.  My unmunging method requires
> > cooperation between author's domain, MLM, and receiver.  Whitelisting
> > can be done unilaterally by receivers, who can restore the original
> > From: without validating the author's domain signature, just because
> > they trust the MLM.  By collecting similar techniques, we might be able
> > to cover almost all cases while still ensuring deliverability.
> >
> >
> > Best
> > Ale
> >
> >
> >
> > On Tue 12/Oct/2021 04:40:12 +0200 Douglas Foster wrote:
> >> Barry, you did a nice job of talking me off the ledge.
> >>
> >> If this is about helping list operators and message evaluators to
> >> collaborate in a way that avoids From-Munging, I have no objections.
> >>
> >> Repeatedly, the topic has seemed to turn in directions that make the
> >> evaluator appear irrelevant -- as if the Lists don't need to talk to
> >> them.
> >>
> >> The reality right now is that a lot of From-Munging is unnecessary
> >> because:
> >> - many evaluators do not enforce DMARC
> >> - some evaluators enforce DMARC but have made exceptions for active
> lists
> >> - some other evaluators enforce DMARC and will make exceptions if
> >> asked to
> >> do so by their users
> >> This leaves a small group, like AOL, who enforce DMARC and yet are
> >> unresponsive to their users.   This small group needs From-Munging, or
> >> unmodified messages, or different email accounts for list participation.
> >>
> >> I claim, without proof, that many of the most vocal critics of
> >> From-Munging
> >> are using domains that do not require From-Munging on incoming messages.
> >>   In such cases, the DMARC-enforcing sender is not the real
> >> problem, ignorance is.
> >>
> >> Once the list and the evaluator have agreed to collaborate, we have a
> >> bunch
> >> of signalling options, including options that survive forwarding.   They
> >> are mostly simple extensions of things we are already doing, much
> simpler
> >> and more determinative than ARC.
> >>
> >> Doug Foster
> >>
> >>
> >> .
> >>
> >>
> >>
> >>
> >>
> >>
> >> On Mon, Oct 11, 2021 at 10:28 AM Barry Leiba <barryleiba@computer.org>
> >> wrote:
> >>
> >>> It's not that the IETF shouldn't be involved with advice on what
> >>> mailing lists should do.  It's that if we should put out a BCP or a
> >>> standard that says mailing lists MUST NOT alter messages that they
> >>> forward, those who write mailing list software (and those who deploy
> >>> it) will not listen.  That's where Scott's "we're not the police"
> >>> statement comes in.
> >>>
> >>> For whatever it's worth, mailing lists have been behaving this way
> >>> for, as others have said, decades, and it has been considered good
> >>> practice and has been found useful.  Mailing lists add footers on
> >>> messages, whether to advertise the list, to add disclaimers, or
> >>> whatever.  They like it, and won't change.  Mailing lists add the list
> >>> name to the Subject line because it makes it easier to create filters,
> >>> and because it makes it easier for eyeballs to filter (for the vast
> >>> majority of users who don't know and don't want to know how to create
> >>> filters).  They like that too, and that, too, won't change.  We could
> >>> advise change, but it would be wasted effort.
> >>>
> >>> In contrast, the mailing list folks are saying that it's DMARC that
> >>> came later, that is being deployed incorrectly, and that must change.
> >>> Clearly, those who find benefit from strict DMARC policies disagree,
> >>> and they've said clearly that they won't change.  And again, we're not
> >>> the police.  We could put, in the standards track version of DMARC,
> >>> that p=reject MUST be used ONLY for transactional mail, which MUST be
> >>> isolated from mail that might go to mailing lists (worded better than
> >>> that, but we all know what I mean here).  It would be shouting at the
> >>> wind.
> >>>
> >>> We do the best we can to write reasonable standards and to give
> >>> reasonable advice about using them.  We can identify problems and
> >>> write our best advice about how to avoid/mitigate them.  Beyond
> >>> that....
> >>>
> >>> Barry
> >>>
> >>> On Sun, Oct 10, 2021 at 1:13 PM Douglas Foster
> >>> <dougfoster.emailstandards@gmail.com> wrote:
> >>> >
> >>> > This is disappointing and problematic.
> >>> >
> >>> > So, AOL publishes a policy which says that they do not want their
> >>> outbound messages altered in transit, and implements filtering which
> >>> demonstrates that they do not want inbound messages modified in
> transit.
> >>> >
> >>> > In opposition, we have mailing lists that claim an unrestricted
> >>> right to
> >>> alter messages in transit.
> >>> >
> >>> > What is the justification for IETF to be involved with developing
> >>> strategies to undermine AOL's interests in favor of a Mailing List's
> >>> interests?   It is capricious and misleading for you to say that we
> >>> are not
> >>> being the Internet Police, because we are clearly taking sides.  If
> >>> we are
> >>> not the Police, then apparently we are the Internet Smuggling Cartel.
> >>> This just looks wrong.
> >>> >
> >>> > Doug Foster
> >>> >
> >>> >
> >>> >
> >>> >
> >>> > On Sat, Oct 9, 2021 at 6:09 PM Scott Kitterman <sklist@kitterman.com
> >
> >>> wrote:
> >>> >>
> >>> >> Technically it's pretty easy to set up a mailing list which doesn't
> >>> modify the message in ways likely to make DKIM fail.  Almost no one
> >>> bothers
> >>> to do so despite pressures resulting from widespread use of DMARC
> >>> p=reject.
> >>> >>
> >>> >> Operators do not need to justify anything to us.  We are not the
> >>> internet police.
> >>> >>
> >>> >> For our purposes it's enough to know that they do and there's no
> >>> evidence that it's likely to change.
> >>> >>
> >>> >> Scott K
> >>> >>
> >>> >> On October 9, 2021 7:39:36 PM UTC, Douglas Foster <
> >>> dougfoster.emailstandards@gmail.com> wrote:
> >>> >> >I would be pleased to see a document which explains why lists
> >>> MUST or
> >>> >> >SHOULD alter content.    After more than 2 years following this
> >>> discussion,
> >>> >> >no reason for this practice has ever been documented.
> >>> >> >
> >>> >> >Content changes would be easier to justify if subscribers granted
> >>> >> >authorization to modify as part of the subscription process.   But
> >>> there
> >>> >> >was not informed consent when I joined this list, so I doubt that
> >>> informed
> >>> >> >consent occurs on other lists either.
> >>> >> >
> >>> >> >What if, after reviewing the SHOULD list, an organization says
> >>> "That's
> >>> >> >interesting but unconvincing.   Please send messages to our domain
> >>> without
> >>> >> >alteration?"   Are lists equipped to give participants what they
> >>> want,
> >>> or
> >>> >> >not?
> >>> >> >
> >>> >> >Doug
> >>> >> >
> >>> >> >On Thu, Oct 7, 2021 at 9:58 AM Barry Leiba <
> barryleiba@computer.org>
> >>> wrote:
> >>> >> >
> >>> >> >> Just on one point, for us to consider:
> >>> >> >>
> >>> >> >> > Personally, I think mailing lists changing From has horrible UX
> >>> and I
> >>> >> >> don't
> >>> >> >> > really think anyone disagrees.  It's only advantages are that
> >>> it's
> >>> >> >> relatively
> >>> >> >> > easy to implement in a Mailing List Manager (MLM) and it
> >>> solves the
> >>> >> >> entire
> >>> >> >> > DMARC problem for a specific mailing list without needing
> anyone
> >>> else to
> >>> >> >> change
> >>> >> >> > anything.  I understand the appeal.
> >>> >> >>
> >>> >> >> I think Scott is right that we all agree that rewriting From
> >>> mitigates
> >>> >> >> problems that mailing lists have with DMARC, but at a significant
> >>> cost
> >>> >> >> in usability.
> >>> >> >>
> >>> >> >> I think it would be bad to publish From-rewriting as a standard.
> >>> >> >>
> >>> >> >> But here:  I think it is reasonable, perhaps advisable, to
> >>> >> >> informationally document From-rewriting as a mechanism that is in
> >>> use,
> >>> >> >> and to include in that documentation a clear exposition of the
> >>> >> >> problems that it causes.  Why not get those horrible UX issues
> >>> down
> >>> on
> >>> >> >> paper so that when someone decides to deploy it they are better
> >>> >> >> informed?  Perhaps we can lead people to take steps to reduce
> >>> the UX
> >>> >> >> challenges (for example, rewriting the way the IETF is doing it
> at
> >>> >> >> least addresses the issue of knowing who sent the message, and
> >>> how to
> >>> >> >> reply to the actual sender, as compared to a rewrite directly
> >>> to the
> >>> >> >> mailing list address).
> >>> >> >>
> >>> >> >> Doesn't that make sense?
> >>> >> >>
> >>> >> >> Barry
> >>> >> >>
> >>> >> >> _______________________________________________
> >>> >> >> dmarc mailing list
> >>> >> >> dmarc@ietf.org
> >>> >> >> https://www.ietf.org/mailman/listinfo/dmarc
> >>> >> >>
> >>> >>
> >>> >> _______________________________________________
> >>> >> dmarc mailing list
> >>> >> dmarc@ietf.org
> >>> >> https://www.ietf.org/mailman/listinfo/dmarc
> >>> >
> >>> > _______________________________________________
> >>> > dmarc mailing list
> >>> > dmarc@ietf.org
> >>> > https://www.ietf.org/mailman/listinfo/dmarc
> >>>
> >>
> >>
> >> _______________________________________________
> >> dmarc mailing list
> >> dmarc@ietf.org
> >> https://www.ietf.org/mailman/listinfo/dmarc
> >>
> >
> >
>
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://www.ietf.org/mailman/listinfo/dmarc
>

v2.23.0 | Report a Bug | By Email