IETF Logo Mail Archive

Re: [dmarc-ietf] THIS IS A DISTRACTION (it might be)

Scott Kitterman <sklist@kitterman.com> Sat, 08 April 2023 14:28 UTC

Return-Path: <sklist@kitterman.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 51015C14CE54 for <dmarc@ietfa.amsl.com>; Sat, 8 Apr 2023 07:28:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.397
X-Spam-Level:
X-Spam-Status: No, score=-4.397 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=kitterman.com header.b="kj6UV7HO"; dkim=pass (2048-bit key) header.d=kitterman.com header.b="ARBeZSQc"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Erd4szwYVkaG for <dmarc@ietfa.amsl.com>; Sat, 8 Apr 2023 07:28:09 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 576F8C14CF1F for <dmarc@ietf.org>; Sat, 8 Apr 2023 07:28:09 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [64.20.48.66]) by interserver.kitterman.com (Postfix) with ESMTPS id A328AF8027C for <dmarc@ietf.org>; Sat, 8 Apr 2023 10:27:56 -0400 (EDT)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903e; t=1680964061; h=from : to : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type : from; bh=feHYAvL06Y6+OlW2IbdfLmBmg7890uczqw5OSj9p3Lw=; b=kj6UV7HOOm7nOyK5VAKKOJzhZ2XAPsniI7nyBo+afAXK8ZZsG5doco6nez0QpVI9mpc/Y MTZdNPtiNRRvIerBw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903r; t=1680964061; h=from : to : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type : from; bh=feHYAvL06Y6+OlW2IbdfLmBmg7890uczqw5OSj9p3Lw=; b=ARBeZSQcM92yEMBVK9OvTnEqlCUQ6G2NPqzgdDqXX2Y2JN3MTDLRvm5t00dulFgWpseOg HsTn+p0m/jcw5yMUONR3YheiPeeTQfEgw2jBSEAOANrw3G3upis/uVJ3bMulAoNYXem5/Dd CU5yY/jix93Hiz92BVPffv4w3fqkfQHdK7Wl9DRERqk7VsPjamja2EHMennM3yg1g4Bk5PP wFoB17eAQy48/UNou0RlM92DAg2RQu4S8BbwD7b3DXYPvTpCU/jSwehPNJxU9HDvqBjTfor mwoock1/gY29JznpfzQV1wwVw9bsUBS5fVbradXnphiU4tlwnXimL6wse7aw==
Received: from localhost.localnet (static-72-81-252-22.bltmmd.fios.verizon.net [72.81.252.22]) by interserver.kitterman.com (Postfix) with ESMTP id 86291F80120 for <dmarc@ietf.org>; Sat, 8 Apr 2023 10:27:41 -0400 (EDT)
From: Scott Kitterman <sklist@kitterman.com>
To: dmarc@ietf.org
Date: Sat, 08 Apr 2023 10:27:35 -0400
Message-ID: <561021830.3aAxWTVh18@localhost>
In-Reply-To: <20230408142409.62369BC8826E@ary.qy>
References: <20230408142409.62369BC8826E@ary.qy>
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/YYSC01g-6JqkR-6EPqYzlgyB6Ug>
Subject: Re: [dmarc-ietf] THIS IS A DISTRACTION (it might be)
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Apr 2023 14:28:15 -0000

On Saturday, April 8, 2023 10:24:09 AM EDT John Levine wrote:
> It appears that Scott Kitterman  <sklist@kitterman.com> said:
> >I think you have gotten yourself side tracked.
> >
> >The problem with DMARC and mailing lists is that receivers doing DMARC
> >checks can't (absent a list of mailing lists) reliably distinguish DMARC
> >fail due to normal mailing list processing and DMARC fail due to abusive
> >behavior.
> Even a list of mailing lists won't do it. One of the reasons ARC is
> useful is that it lets recipients look back through the list manager
> and recognize mail that was abusive before it hit the mailing list.

OK.  A list is necessary, but not sufficient.  ARC still needs some external 
mechanism to determine when to apply it.  It can't be used to override DMARC 
results for all mail flows, only the ones that you have sufficient trust in not 
to lie in their ARC header fields (e.g. well behaved mailing list operators).

Scott K

v2.23.0 | Report a Bug | By Email