Re: [dmarc-ietf] Ticket #66 (Define What It Means to Have Implemented DMARC) and #62 (Reporting a MUST)
"Murray S. Kucherawy" <superuser@gmail.com> Thu, 19 August 2021 19:16 UTC
Return-Path: <superuser@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD9F83A1819 for <dmarc@ietfa.amsl.com>; Thu, 19 Aug 2021 12:16:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4Pcs-8VOYsXl for <dmarc@ietfa.amsl.com>; Thu, 19 Aug 2021 12:16:19 -0700 (PDT)
Received: from mail-vs1-xe2e.google.com (mail-vs1-xe2e.google.com [IPv6:2607:f8b0:4864:20::e2e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 06E993A1816 for <dmarc@ietf.org>; Thu, 19 Aug 2021 12:16:18 -0700 (PDT)
Received: by mail-vs1-xe2e.google.com with SMTP id k24so4678820vsg.9 for <dmarc@ietf.org>; Thu, 19 Aug 2021 12:16:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=7HszabMlW0d9O5lDzCo+sxvu5BeAz3Twsnwi6nZBd/A=; b=sdcS1ZSY/cmsK5Oh9q6WFLZI3fXt41/fnypRfbLhyN14femexPyy60O/paRdo3oxzn 8gR6W2BWMOl8OAaq3WveFdqtaKYw4/nXfQAv1+zvgjgKSdMRKGsyAJkAiY53rPzC1JwR EGT8WYSJUX4By0XBPOM9+HDkmdR8poCxifu4uQwFFzwWd4Pd/pBXHsegBHCdW/PfGNiB oVNlcZuf74T/jljwWP3XnO3RUngisNZmgz1w7jKT6Yg4cVKfkUKYVXqcbQDTJ8mPef3l Wt8LTxbQQbSYMCTPiyDI+VCtquIiOVMr2h1VEssSqx3fnuPIHaKyrjR1fRMdAXcM17Ex dtcw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=7HszabMlW0d9O5lDzCo+sxvu5BeAz3Twsnwi6nZBd/A=; b=k6meqR6+LTQ5jhDFMBuHBJQfm/RLsfXh8KlSHPe2p4M7c80OOqSw/juay6fNO6NfqC glHEizEGVlrOVhQgESi5w1GwcKEAi90WyH0SNouqNxREc9wYdC/70XDsQ1zmO9S0uPjc w+BHcOD9KqTozxX+Aprkwj4DPkTYA6cDA+PjSangK15IZSZ/yUHv5xXxaCnNf3r1hs4K SNDhYM1Yw1elaqR2512LUjyZCLD/KBE4fe2d5PBXD9Mp2UT7q9iHbo0WQSY9DLGJaOXM msnCrQW8+DN5/OoyHZPLEprMtHTq14knptoUsSsbvKJC+alIJleIIMObE693tt4vC/Fw 5FJQ==
X-Gm-Message-State: AOAM531WomN8nF+hLaJS4tiqlo+qGq0dlIXCOkgxWEDPdylTFvmAV7ld 7SI15Ye1toap5qesEN5DUzK+vFzlprCjrPHHkXGh+Yp9An0=
X-Google-Smtp-Source: ABdhPJwbv+K/wSZiPeN1aABQkziG+9yDJAXixkOZ5CqUioXiL82bOgxLF/KgIRc8/jUA3y7HW8qTU2gjB8rZupMhLGw=
X-Received: by 2002:a67:1a45:: with SMTP id a66mr14369906vsa.15.1629400576500; Thu, 19 Aug 2021 12:16:16 -0700 (PDT)
MIME-Version: 1.0
References: <CAHej_8nAi4xnjm_QrHQ5jLomVDT7ehb1yXvmQZt85yPEopYP2Q@mail.gmail.com>
In-Reply-To: <CAHej_8nAi4xnjm_QrHQ5jLomVDT7ehb1yXvmQZt85yPEopYP2Q@mail.gmail.com>
From: "Murray S. Kucherawy" <superuser@gmail.com>
Date: Thu, 19 Aug 2021 12:16:05 -0700
Message-ID: <CAL0qLwa-Q7=w-+fpjXAwoWoKPLb27cfaUNyJPyeGtxRbA4Wvew@mail.gmail.com>
To: IETF DMARC WG <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008f283705c9ee625d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/drOzMn3mJuNQTATHkew_P0M7r2M>
Subject: Re: [dmarc-ietf] Ticket #66 (Define What It Means to Have Implemented DMARC) and #62 (Reporting a MUST)
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Aug 2021 19:16:25 -0000
On Thu, Aug 19, 2021 at 11:24 AM Todd Herr <todd.herr= 40valimail.com@dmarc.ietf.org> wrote: > > Mail Receiver: To implement DMARC, a mail receiver MUST do the > > following: > > > * Perform DMARC validation checks on inbound mail > > > * Perform validation checks on any authentication check results > > recorded by mediators that handled the message prior to its > > reaching the Mail Receiver. > > > * Send aggregate reports to Domain Owners at least every 24 hours > > when a minimum of 100 messages with that domain in the > > RFC5322.From header field have been seen during the reporting > > period > > Let's discuss... > I'm of the opinion that this last bullet can't be a MUST. I understand that operators in this space really want this to be mandatory, but we are going to run into cases where doing this is difficult or impossible either because of operational difficulties (think resource-constrained environments) or policies ("I am not willing to share any detail about what mail arrives here"). Making this a MUST explicitly disqualifies them. Moreover, I would claim that not generating aggregate reports does not impede interoperability at all, which means use of MUST or even SHOULD here is not appropriate. -MSK, participating only
- [dmarc-ietf] Ticket #66 (Define What It Means to … Todd Herr
- Re: [dmarc-ietf] Ticket #66 (Define What It Means… Murray S. Kucherawy
- Re: [dmarc-ietf] Ticket #66 (Define What It Means… Brotman, Alex
- Re: [dmarc-ietf] Ticket #66 (Define What It Means… Todd Herr
- Re: [dmarc-ietf] Ticket #66 (Define What It Means… Dotzero
- Re: [dmarc-ietf] Ticket #66 (Define What It Means… John Levine
- Re: [dmarc-ietf] Ticket #66 (Define What It Means… Murray S. Kucherawy
- Re: [dmarc-ietf] Ticket #66 (Define What It Means… Alessandro Vesely