Re: [dmarc-ietf] Aggregate Reporting - "Not Evaluated" result
"Murray S. Kucherawy" <superuser@gmail.com> Wed, 12 October 2022 04:39 UTC
Return-Path: <superuser@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19DC0C14CE3F for <dmarc@ietfa.amsl.com>; Tue, 11 Oct 2022 21:39:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lAqGqc22bCUn for <dmarc@ietfa.amsl.com>; Tue, 11 Oct 2022 21:39:36 -0700 (PDT)
Received: from mail-io1-xd30.google.com (mail-io1-xd30.google.com [IPv6:2607:f8b0:4864:20::d30]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6B0FDC14CE35 for <dmarc@ietf.org>; Tue, 11 Oct 2022 21:39:36 -0700 (PDT)
Received: by mail-io1-xd30.google.com with SMTP id p186so12523372iof.5 for <dmarc@ietf.org>; Tue, 11 Oct 2022 21:39:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=2x3yKT2BOdzKmkoBNmuB2lbjf5MC/5cvPWfF3ixVoXM=; b=hyrhPCavAwbxKTxIWfEaniqigJeIkEeX5auxuzQqTjOA0zMiiGZK3h/z+Ku/XaYHj2 D1IUh9quvYyVqyIMvH2VP89wC2cgsWdOexMJpwt+P+n1ZDsWMvttUqekKKjiQRSAxN6j UCLv/BOhZAMxb/jgP5PXF7qDHXqUUcmvyxNSxrGo2JZyR7IyrFDeYOsFYqIA87eSMehq EZjnuLm+0cAhZSOHuArHrOJwNW/9X0wp8XtUIWrdBq5emRKWjmq6P7eqxvMAyvF8+jRz V+emoZJuGOnAIjXm1FFCTBcdr02Rbe/xGxf4F3nERKuDe3QNMXCIoYdC9sZsS9ipnM7V k5kw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=2x3yKT2BOdzKmkoBNmuB2lbjf5MC/5cvPWfF3ixVoXM=; b=jSbV3rysHK5XXCG1kzkPwX3eVUpnvLgkuDwZfSbcw7EBWDO2W8OJdyjlCliXLYHgy4 llKnKMdApWEqZ8M+vd+L5UERzwUJUyE946WL1MqOTtc5bB0jgaHieYsNhNx5BpWpR5g0 rI+wFhigOiwOwPG47DdEnHN2kkWhhw0v3omwAvwVANB+If3dLYkbaBWYxa/XUX52B2xq 5wIeipwGwi8qmnhc/TmG6cl6FRSzAvIwIzSC69DGdCS511t2IH7rviI+EW0HhGB7Z7qW 1D8JU5y8hQCnWHbxXGqKSddwpWGl0szKqHTmoeHfnLvbXvZqAN/vgRqMU+IJ/3z6+K+w qImA==
X-Gm-Message-State: ACrzQf2wHFJy1NRKJjt9vJBsRREgTtx5E0XydG4IJDjKkpGvuEG5PjGg wSIqqggw+UVIdacRro08MIsFhqra4LgyaMBy0ck=
X-Google-Smtp-Source: AMsMyM7VufrhkJqKMJ02Ba+azcpcIm0Or9/cHPe0nCwvdLZyXd9qC0ccN8IeBYFx7wlZC+Wau00JUmGujHFnFbOVpaU=
X-Received: by 2002:a05:6638:258d:b0:363:bc4c:f5f2 with SMTP id s13-20020a056638258d00b00363bc4cf5f2mr6766223jat.127.1665549575378; Tue, 11 Oct 2022 21:39:35 -0700 (PDT)
MIME-Version: 1.0
References: <165046214335.10055.16398898629460366752@ietfa.amsl.com> <CAH48ZfxZOq68=P-Qxjvjk1c8PxWAWDvaBPPQcb4DWmd6cL=u4Q@mail.gmail.com> <CAJ4XoYen6n06L1UBqzu9nr2jCC7v_-GOAdJXMzCks6d-AaKqUA@mail.gmail.com> <CAH48ZfzVt=+yoj280VxL_SV+YM4C7eqMWhL=41YpVybaPmLcLg@mail.gmail.com> <CAHej_8mgKjpo6DDbOS9bBdTarThKOa9F55QBtrM6G-oq1YfX+w@mail.gmail.com> <CAL0qLwYjYY4OvShqACWPz0vdJcAubdU1csFFVSkqzsReZSZxuw@mail.gmail.com> <MN2PR11MB43514940B87730CC9D476AACF75B9@MN2PR11MB4351.namprd11.prod.outlook.com> <CAL0qLwb=1CZN6s2QzWJGFeO3=iPWZ-eS=7hvi4B6jhuh+hLJ0w@mail.gmail.com> <8ab0943b-9805-1a0e-528d-9cf45f2eaf9c@tana.it> <CAH48ZfzM2J0_RizqESbFSm3ASfc2x6nsdxUXWEWO+4g2vXsz+g@mail.gmail.com> <38BC22D3-3A29-47E0-9E51-DD862FDD4947@wordtothewise.com> <CAH48ZfysLqgxi1mTjxEMVgSqgmj8J2=2coC0FRaHLQsJx2yQKQ@mail.gmail.com>
In-Reply-To: <CAH48ZfysLqgxi1mTjxEMVgSqgmj8J2=2coC0FRaHLQsJx2yQKQ@mail.gmail.com>
From: "Murray S. Kucherawy" <superuser@gmail.com>
Date: Tue, 11 Oct 2022 21:39:24 -0700
Message-ID: <CAL0qLwZD_44t4w5jkObVn6sDyEiwh7EdNazqeUiZtA7VCJ+5MQ@mail.gmail.com>
To: Douglas Foster <dougfoster.emailstandards@gmail.com>
Cc: IETF DMARC WG <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000cbdcdd05eacefa18"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/_Qvu6U0w_MDf3ckJYcA5HxUUiKw>
Subject: Re: [dmarc-ietf] Aggregate Reporting - "Not Evaluated" result
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Oct 2022 04:39:38 -0000
On Mon, Oct 10, 2022 at 6:56 PM Douglas Foster < dougfoster.emailstandards@gmail.com> wrote: > Signatures not Evaluated > ---------------------------------- > Based on the above, a message may have signatures which lack reported > results for any of these reasons: > - The verifier evaluated signatures until its hard limit on the number of > signatures was reached, then stopped. > - The verifier evaluated more signatures than the reporting specification > allows, so it could not report all of them. > - The verifier evaluated only those signatures needed to obtain a PASS > result, then stopped evaluating. > Also: - The verifier did not evaluate signature(s) that were disqualified due to matters of local policy. Some examples we've discussed before, which a verifier might insist before considering a signature to be valid (RFC 8601 uses the term "acceptable to the verifier"): - the Subject field was not included in the signature (it's a displayed field, and so shouldn't be meaningfully altered) - the "l=" tag was present (it has known security issues) - the hash or signing algorithm used is considered obsolete or insecure - the signing key had too few bits of entropy All but the last one can be checked without going to the DNS or doing any crypto-type work, and the signature can be skipped if the verifier's local requirements are not met. -MSK
- [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggrega… internet-drafts
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Brotman, Alex
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-agg… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Dotzero
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Todd Herr
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Murray S. Kucherawy
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Brotman, Alex
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Murray S. Kucherawy
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Barry Leiba
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Laura Atkins
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Murray S. Kucherawy
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Neil Anuskiewicz
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Scott Kitterman
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Dotzero
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Scott Kitterman
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Neil Anuskiewicz
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Neil Anuskiewicz
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Brotman, Alex
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Dotzero
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Dotzero
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Dotzero
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Murray S. Kucherawy
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Dotzero
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Brotman, Alex
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Alessandro Vesely
- Re: [dmarc-ietf] Aggregate Reporting - "Not Evalu… Douglas Foster