IETF Logo Mail Archive

Re: [dmarc-ietf] PSD flag vs Version bump

Alessandro Vesely <vesely@tana.it> Sun, 11 June 2023 10:07 UTC

Return-Path: <vesely@tana.it>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 77FE2C151070 for <dmarc@ietfa.amsl.com>; Sun, 11 Jun 2023 03:07:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.099
X-Spam-Level:
X-Spam-Status: No, score=-7.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=tana.it header.b="vbLJa4RU"; dkim=pass (1152-bit key) header.d=tana.it header.b="AWpb8eX1"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GgYBa5g8UF23 for <dmarc@ietfa.amsl.com>; Sun, 11 Jun 2023 03:07:31 -0700 (PDT)
Received: from wmail.tana.it (wmail.tana.it [94.198.96.74]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F336DC15106D for <dmarc@ietf.org>; Sun, 11 Jun 2023 03:07:29 -0700 (PDT)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=tana.it; s=epsilon; t=1686478047; bh=+yB/xya1oPaPuain9ODwSthCa3B/zCcqmbBBs8zzhcw=; h=Author:Date:Subject:To:References:From:In-Reply-To; b=vbLJa4RUDw/dh8RNpVp9s+TUZ5lw/G73h379aTSPJfqT1B8LDzbFsAvupAVXdQAdL cNVhXhubWv1dHd1SyP2CA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tana.it; s=delta; t=1686478047; bh=+yB/xya1oPaPuain9ODwSthCa3B/zCcqmbBBs8zzhcw=; h=Date:Subject:To:References:From:In-Reply-To; b=AWpb8eX14cRjCucfa3jDnkUFdtwX3JlyuHzMIUnzSL1Sj2P2+wRyse7LNoa6Wzd9q Od9xZYnxyhbkbuQ7RyHGnwBdY+PB8NHIgb6Nk0Hfzdvji0tpQEvpxHTLOHsa0vdtbl oe/Nc4/jjfQABSqLY0MwvX7I+nhdRvb4ep4AuATVwn2TXIWVypfAtHIuW+agn
Original-Subject: Re: [dmarc-ietf] PSD flag vs Version bump
Author: Alessandro Vesely <vesely@tana.it>
Received: from [172.25.197.111] (pcale.tana [172.25.197.111]) (AUTH: CRAM-MD5 uXDGrn@SYT0/k, TLS: TLS1.3, 128bits, ECDHE_RSA_AES_128_GCM_SHA256) by wmail.tana.it with ESMTPSA id 00000000005DC05B.0000000064859CDF.00005586; Sun, 11 Jun 2023 12:07:27 +0200
Message-ID: <f0959b49-9caa-f087-b580-5da57cad587c@tana.it>
Date: Sun, 11 Jun 2023 12:07:26 +0200
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.11.0
Content-Language: en-US, it-IT
To: dmarc@ietf.org
References: <502ADE6F-E01E-4DF0-BF79-6A5E810A3F96@kitterman.com> <20230610210457.B4C22E924922@ary.qy> <D5yjYjBhnPhkFAAJ@highwayman.com>
Authentication-Results: tana.it; auth=pass (details omitted)
From: Alessandro Vesely <vesely@tana.it>
In-Reply-To: <D5yjYjBhnPhkFAAJ@highwayman.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/afFMYKKC0y16TdbzOzvo8AedXwg>
Subject: Re: [dmarc-ietf] PSD flag vs Version bump
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 11 Jun 2023 10:07:40 -0000

On Sun 11/Jun/2023 00:32:01 +0200 Richard Clayton wrote:
> Personally (and I am not writing on behalf of $DAYJOB$) I think that 
> signal "I know things have changed and am setting things up accordingly" 
> is most clearly sent by bumping the version number, rather than relying 
> on other more subtle syntax changes.


Among changes, besides the tree walk, we have ed25519 and t=.  Compatibility 
seems to be much more at stake with the latter ones than with the former.  In 
fact, if you sign with (only) ed25519, many receivers won't verify.  If you use 
pct=5, like some do, you may be off for some harsh surprises.  In contrast, if 
your record is found by walking the tree rather than looking up the PSL, most 
likely you won't even notice.

We don't need psd=u's, except if we're drawing statistics.

New tags can be added also after DMARCbis is out.  There is a registry already:
https://www.iana.org/assignments/dmarc-parameters/dmarc-parameters.xhtml#tag
Not all receivers recognize every tag.  There was a project to syntactically 
denote tags that cannot be ignored, and it was abandoned (also) because it 
required a version bump.

Conserving the installed base is important.


> I foresee almost no enthusiasm for running two systems in parallel in 
> perpetuity. Running the simpler __system__ is clearly better all round 
> but I do think that the fact that there are changes should be signalled 
> very clearly rather than deduced ... it will make the messaging to the 
> masses rather than the cognoscenti so much simpler.


What if MIME-Version changed on every new MIME type?

We'd be running n systems in parallel, with n -> ∞.  Introducing a new system, 
however simpler, would divide the users community, rather than unite them.
https://xkcd.com/927/


Best
Ale
--

v2.23.0 | Report a Bug | By Email