IETF Logo Mail Archive

Re: [dmarc-ietf] Ticket #55 - Clarify legal and privacy implications of failure reports

John Levine <johnl@taugh.com> Sat, 19 December 2020 19:52 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 096B33A0EC3 for <dmarc@ietfa.amsl.com>; Sat, 19 Dec 2020 11:52:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.85
X-Spam-Level:
X-Spam-Status: No, score=-1.85 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=VKlEww8W; dkim=pass (2048-bit key) header.d=taugh.com header.b=EbiwZdwL
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 00Y5oiDVPe0m for <dmarc@ietfa.amsl.com>; Sat, 19 Dec 2020 11:52:07 -0800 (PST)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2E4A53A0EC1 for <dmarc@ietf.org>; Sat, 19 Dec 2020 11:52:06 -0800 (PST)
Received: (qmail 24811 invoked from network); 19 Dec 2020 19:52:06 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=60e9.5fde59e6.k2012; bh=i09HoYAthITji9s8YuJcDUzqvnReWHZujK0OXptt0t0=; b=VKlEww8Wgi2yAQzDKsPbZNNGsip1BUb0aCRHF8CGdUBVXWlbfZeoBBdqratJ/L2YfAlFOc1K0k6F/dnIIIdWA81dGev1T8ZVOjxMtwuS0WaL5fiEHBCzoqhmHRNR++s9yAFvulccHp9TBfUWlZMQAlukYqSXEENRP0so0QNUHKYvUZ9yWP5iEOR7ElW8MGLaU0rkcM2sti9xc3afI03DFddaGE8QbFiOHA4B2T/p1rZPKQuSYwTMRdOmKv9wbKFE8ieiaNHHzZV+WjWB7R3tWJqAMnkZYRSjZfgxmaF2M4K+PC3QL3IFi0qDqFDe05xL+NhuH086R9tWv29nPUpH2g==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=60e9.5fde59e6.k2012; bh=i09HoYAthITji9s8YuJcDUzqvnReWHZujK0OXptt0t0=; b=EbiwZdwLUYDH2PNnnlXdMS+XRudQWpi24YvgZ96lfHNdImBPrLyus2aisjYL6AXmG9CaiaFeHavJ4EYnHCWzyRZnYBUvpp4UfYzW1mMilsErCxsnh6WAfvNJ4sRCbgg4EMF/q2qSsR+mbdXgxQnOFX8jjSIIG6CuSI2fWEZ7J8z9h8w4wCHqyyHbipN7M4YCWTcYE7b4oa0kTFbWjZx9REfgvfI+vCaK+62b+8EHm6dSveukNYDfiX1FavQBrKtxB9RQvRPQL9WiLdbTKa0YW5zo6of0H3eKxT/PlkC2JxCYcoHZpyQDfd0QuJegtmzqSX5/vShIjKkXNV2lhR+B6w==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 19 Dec 2020 19:52:05 -0000
Received: by ary.qy (Postfix, from userid 501) id 70E472ADF22A; Sat, 19 Dec 2020 14:52:04 -0500 (EST)
Date: Sat, 19 Dec 2020 14:52:04 -0500
Message-Id: <20201219195205.70E472ADF22A@ary.qy>
From: John Levine <johnl@taugh.com>
To: dmarc@ietf.org
Cc: vesely@tana.it
In-Reply-To: <754690b7-6624-4cc6-66e1-62438b32cdd4@tana.it>
Organization: Taughannock Networks
X-Headerized: yes
Cleverness: minimal
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/bm4o9WaHZ9ez2yfYOnyuNQ5AAAM>
Subject: Re: [dmarc-ietf] Ticket #55 - Clarify legal and privacy implications of failure reports
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 19 Dec 2020 19:52:09 -0000

In article <754690b7-6624-4cc6-66e1-62438b32cdd4@tana.it> you write:
>On Sat 19/Dec/2020 01:03:58 +0100 Seth Blank wrote:
>> 
>> A privacy consideration should say such a thing, specifically clarify what
>> may be in a report that could be categorized as PII even after intended
>> redaction, but refrain from legal advice.

Given how few failure reports we're seeing, perhaps we should just
take out the advice and say something like you can send these as is
or redacted if you want and your policies permit, but most people don't.

It's kind of amusing to know the exact names and e-mail addresses of
everyone at Linkedin who subscribes to the same lists I do, but I
could live without it.

R's,
John

v2.23.0 | Report a Bug | By Email