Re: [dmarc-ietf] draft-crocker-dmarc-author-00 ?

Dotzero <dotzero@gmail.com> Fri, 14 August 2020 16:23 UTC

Return-Path: <dotzero@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A258E3A0DED for <dmarc@ietfa.amsl.com>; Fri, 14 Aug 2020 09:23:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nf1UzefZgqnB for <dmarc@ietfa.amsl.com>; Fri, 14 Aug 2020 09:23:25 -0700 (PDT)
Received: from mail-wm1-x336.google.com (mail-wm1-x336.google.com [IPv6:2a00:1450:4864:20::336]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4303F3A0D96 for <dmarc@ietf.org>; Fri, 14 Aug 2020 09:23:25 -0700 (PDT)
Received: by mail-wm1-x336.google.com with SMTP id f18so8701983wmc.0 for <dmarc@ietf.org>; Fri, 14 Aug 2020 09:23:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=GPPzhGmgrCw8sbP2m4cvHwgU2OBksXCalbrJkI/QnfA=; b=pfdVh8YEGiUSVO0MKWOeQBwUEul2cGFnf8SV92LWOENdmaWHfr8uMkzhNE3r1U3evG 6WNyEj6cVyOxno3AWYdwC62UV8bXEiQl977KyR2nc/wLpy2h8hIZUKV5C5QuVlPIZ6cz IxmWM2NVBkHQxEZBjy0A75lcfxEkiGRmRmOj9y7ZmUs23qFV92N82GxBxLhYxrXavhB+ hgbtplxObv+12rf2pXVj0a4vcLVrg6dLAr+g4j/t1hnwKwM7SIVn+tJMvz5urNYY9YkM cAj0vC3/FH7MOnI/m+ZRz1RL19JN9Jt4fJf1W0CDhLAaO7KMspd46bkmJeDI1Db5Cda1 FKfA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=GPPzhGmgrCw8sbP2m4cvHwgU2OBksXCalbrJkI/QnfA=; b=EM0LzlTAvCfkUSB5t3HJ7fqRfA5oZpY75vFCjLl6qrw/M6sHOknyJg2Y1Oy9rUq2zF XoN0AB+KFwBey53436F7KxgIOaAocVq3f2zb75TQMTTpr4ngWKYA4euFkk44oLckWhd9 joekfc+2oEdDxdgXHMkPqn08/SytgO/oDFrbc6bWuO/qs93S6+Ukyfnl1yBOLTahaGxZ qGoUJ7UPG9CZEMsCgO+nfhARoWxPSZ+vTAZ0gm+n4sfMqANH+Vowmfiz9urj0zlgPFSM xKNOTAph8VOnu9+EsRWzIn3lUXEU1l/uPWw0znLiCgh6LpHNfGuj8dvqLrdDdaxxAFs7 CndQ==
X-Gm-Message-State: AOAM530ORXA4xgnTZIovYCbD5wTEQaNwpnxTGf2laqj/4BsLsOkNLeyb uXt2BK16aKemrIE6FBUT00QjWETUFn97xiTbAizYu09QEzQ=
X-Google-Smtp-Source: ABdhPJw7Mp9sNEoC1HHouRwu+4rgnH+UC/i39+A8yZ2CzmjaVgakX4OWFtNXzpVBMVtsYoeTGFD5up0aPuxvv0X644M=
X-Received: by 2002:a1c:7407:: with SMTP id p7mr3281921wmc.117.1597422203823; Fri, 14 Aug 2020 09:23:23 -0700 (PDT)
MIME-Version: 1.0
References: <20200811034740.BA1831E7FDBF@ary.local> <0c8afc68-bc51-702a-c794-610b2d355836@dcrocker.net> <83a8e95f-d85d-634e-0c93-eb2ddab2c69d@wordtothewise.com> <99810a58-3809-bfd2-3571-bac54430f9e8@tana.it> <CAOPP4WHWoVkA+ZWZ+2AFnH8_nKBxO+t3Z4trz347JV0fsEy83Q@mail.gmail.com> <003501d671b9$467c0670$d3741350$@bayviewphysicians.com> <CAOPP4WG0Az02DJ0TvWfnaWSfCjnqW3tLh3TTGOJu4BC4zNuQBA@mail.gmail.com> <CAJ4XoYeQxgu5Yj+Aag9kYY3HXMrXV8DPNczXP5L_BLoVaAv0Gg@mail.gmail.com> <CABuGu1qFWJNOjV9Fd=tB8Nzod5rw7GgY0OeS3cHgfMDGoZGYWg@mail.gmail.com>
In-Reply-To: <CABuGu1qFWJNOjV9Fd=tB8Nzod5rw7GgY0OeS3cHgfMDGoZGYWg@mail.gmail.com>
From: Dotzero <dotzero@gmail.com>
Date: Fri, 14 Aug 2020 12:23:13 -0400
Message-ID: <CAJ4XoYcTKAov_gKJW=q2_TGfUqZcxXsdyWFN2SWbbr5pbHws1g@mail.gmail.com>
To: "Kurt Andersen (b)" <kboth@drkurt.com>
Cc: Neil Anuskiewicz <neil@marmot-tech.com>, IETF DMARC WG <dmarc@ietf.org>, Doug Foster <fosterd=40bayviewphysicians.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="00000000000003ec5005acd8d754"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/ap9rflK3PJmzLOaIFGtmRNJkJgk>
Subject: Re: [dmarc-ietf] draft-crocker-dmarc-author-00 ?
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Aug 2020 16:23:27 -0000

On Fri, Aug 14, 2020 at 11:13 AM Kurt Andersen (b) <kboth@drkurt.com> wrote:

> On Fri, Aug 14, 2020 at 7:31 AM Dotzero <dotzero@gmail.com> wrote:
>
>>
>> I've been involved in setting up DMARC with a policy of p=reject for
>> somewhere North of 6,000 domains. As a sending domain, the heavy lifting is
>> in getting buy-in across the organization that it is a worthwhile effort,
>> getting control of your organization's mail flows and ensuring policies and
>> procedures are communicated and followed. For complex environments there
>> may need to be some automation required for creating and maintaining
>> private/public key pairs and DNS records but that is much more
>> straightforward than the aforementioned heavy lifting.
>>
>
> Also note that said "heavy lifting" is not a one time expenditure of
> effort. Having hoisted the weight bar above your head, it requires
> organizational will and ongoing knowledge to stick to the higher bar week
> in and week out. Entropy is never your friend in an organizational security
> context. Neither are acquisitions :-)
>
> --Kurt
>

I absolutely agree with you, Kurt. On the other hand this is true for many
things. I almost want to respond with "What's your point?" (sarcastically).
Is this an interoperability problem that is solved by IETF standards or is
it an organizational problem that requires an organizational solution?
Perhaps we need to generate an RFC entitled "Don't Do Stupid Things". ;-)

Michael Hammer