Re: [dmarc-ietf] Forensic report loops are not a problem
Douglas Foster <dougfoster.emailstandards@gmail.com> Sat, 16 January 2021 13:22 UTC
Return-Path: <dougfoster.emailstandards@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4CC193A0C7C for <dmarc@ietfa.amsl.com>; Sat, 16 Jan 2021 05:22:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JkWnS2-CWTI0 for <dmarc@ietfa.amsl.com>; Sat, 16 Jan 2021 05:22:09 -0800 (PST)
Received: from mail-ua1-x932.google.com (mail-ua1-x932.google.com [IPv6:2607:f8b0:4864:20::932]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8CEE73A0C70 for <dmarc@ietf.org>; Sat, 16 Jan 2021 05:22:09 -0800 (PST)
Received: by mail-ua1-x932.google.com with SMTP id u27so425928uaa.13 for <dmarc@ietf.org>; Sat, 16 Jan 2021 05:22:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Wih4KIYmLqGtP8fYSRnq1KrRYefkUnmLSsF2Xzhu4HQ=; b=hW8oVzz8Go7kLRfrXYlEvy+ArV+xd/zBSKGZJMOgfMRaM/N0SKHlWB9pkohVrZNL2/ fHFwEoyZzttwZVkz11VNInejriK+sdxwpRVaQVlUAiOT/vzV65ENS3tOF/KvM0joubHn gikOhp9eq94ZjRhHaH9QjOuaWXMSvtwgFMuUyg9Jrp0CZpQieTnXqqZi3y4Wltrmuevp 1YL8owKGFgOdRu+0hpUKzjGR/Pv6Q70RLBIkRPoprtnEKkXaTnVirgNRqq3FnxnS8XJI qnhVDIiS7s/Psqtq1WVE15nPrAFpFAB9OIs10t3QErnzhJFHlc2xO6wgYmD0nBRmAFep ooxQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Wih4KIYmLqGtP8fYSRnq1KrRYefkUnmLSsF2Xzhu4HQ=; b=af8pXwZpidkGXm9kWSrP/uYHH/KEjLIftvcUDni/88JydIbz8w93jv1JgsQb0N5N8k kUbOwdBI+tOsbMShip5fI7WenC7lMueEzqfrRbfshRJnSA9L/8kyH0AJ0G92YrcdwqBc ATtAau8wpmjXiLBAWJObjA10nOln6HvjlVXwpEGS9t4r6oDUOWWrfPDjpVjDKrkF2LY7 DmIKILvc3KahZPeMjXcMzpfeFLXltXXnUwagkrWAMOku+Lflc/nG0SrYM1Cps6hXLtF+ NGqbz4DMyNjizCes76oeDBRjofrtNtLSeubpMHEUerPcemkgqtxQ6Anf6AXeyuc3WkWF G0dA==
X-Gm-Message-State: AOAM532YgIyo0WdFE3xaehtOpj39dWa2Jt/Ltbl5rnCMs75fceefEEWP IZ9WbsYPCGyoBBNhhOB22oGr5gX0cIQM1R0xgCI=
X-Google-Smtp-Source: ABdhPJzz8ERZYmVO3LwznU+t8jVjA3z6sRGIEgG1qyXsapD3jwu+6QtLFQGQKGIeoEFO97feR/7zy48vxfg00/GP3cY=
X-Received: by 2002:ab0:770d:: with SMTP id z13mr13679891uaq.110.1610803328476; Sat, 16 Jan 2021 05:22:08 -0800 (PST)
MIME-Version: 1.0
References: <CAL0qLwaZx97cztehz_o=cCVZRbEP_yFVS9hTqWDKg7cMgjNvFg@mail.gmail.com> <20210116034026.5C93F6AC0428@ary.qy>
In-Reply-To: <20210116034026.5C93F6AC0428@ary.qy>
From: Douglas Foster <dougfoster.emailstandards@gmail.com>
Date: Sat, 16 Jan 2021 08:21:57 -0500
Message-ID: <CAH48Zfybt8Ci2zjLPagcJcMJW7F38omnq=oBfCj316qzWn4N+g@mail.gmail.com>
To: John Levine <johnl@taugh.com>
Cc: IETF DMARC WG <dmarc@ietf.org>, "Murray S. Kucherawy" <superuser@gmail.com>
Content-Type: multipart/alternative; boundary="000000000000326b1b05b90460d2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/e4f7Aey_rFQlrpuK_18AdM3uZno>
Subject: Re: [dmarc-ietf] Forensic report loops are not a problem
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 16 Jan 2021 13:22:11 -0000
1) Because loop prevention is easily defined. 2) Because loop prevention is easier and simpler and less stressful to implement than loop correction. 3) Because changing DNS to fix a loop is too slow. 4) Because a loop could be triggered by a malicious spammer, and the feedback becomes backscatter. 5) Because DMARC reports are courtesy messages for the benefit of the sender. The sender has no significant interest in whether the message is accepted or not. 6) Because loops cause congestion that affect other traffic 7) Because we have reports from the wild which indicate that loops have actually occurred Is that enough? On Fri, Jan 15, 2021 at 10:40 PM John Levine <johnl@taugh.com> wrote: > In article <CAL0qLwaZx97cztehz_o= > cCVZRbEP_yFVS9hTqWDKg7cMgjNvFg@mail.gmail.com> you write: > >-=-=-=-=-=- > > > >How are implementers dealing with forensic report loops? > > > >Say I send a message from X to Y, whose DKIM signature fails. Y sends me > >back a forensic report, whose DKIM signature also fails. X sends a > >forensic report to Y, whose report fails, etc. We need a way to break the > >loop. > > If the reports are unaligned and their domain is requesting failure > reports, sending reports about the failure is exactly the right thing > to do. > > I still don't understand why anyone thinks there is a problem to be > fixed. If you don't want reports, don't ask for them. If you think the > mail you send shouldn't be provoking DMARC failure reports, adjust > whatever is sending the mail the mail is aligned, or get rid of the > ruf= that asks for the reports. What am I missing here? > > _______________________________________________ > dmarc mailing list > dmarc@ietf.org > https://www.ietf.org/mailman/listinfo/dmarc >
- [dmarc-ietf] Forensic report loops Murray S. Kucherawy
- Re: [dmarc-ietf] Forensic report loops Steven M Jones
- Re: [dmarc-ietf] Forensic report loops Juri Haberland
- Re: [dmarc-ietf] Forensic report loops Дилян Палаузов
- Re: [dmarc-ietf] Forensic report loops Murray S. Kucherawy
- Re: [dmarc-ietf] Forensic report loops Murray S. Kucherawy
- Re: [dmarc-ietf] Forensic report loops Alessandro Vesely
- Re: [dmarc-ietf] Forensic report loops John Levine
- Re: [dmarc-ietf] Forensic report loops Kurt Andersen (b)
- Re: [dmarc-ietf] Forensic report loops Murray S. Kucherawy
- Re: [dmarc-ietf] Forensic report loops Douglas Foster
- Re: [dmarc-ietf] Forensic report loops Дилян Палаузов
- Re: [dmarc-ietf] Forensic report loops are not a … John Levine
- Re: [dmarc-ietf] Forensic report loops are not a … Douglas Foster
- Re: [dmarc-ietf] Forensic report loops are not a … Murray S. Kucherawy
- Re: [dmarc-ietf] Forensic report loops are not a … John R Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Juri Haberland
- Re: [dmarc-ietf] Forensic report loops are a prob… John Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Alessandro Vesely
- Re: [dmarc-ietf] Forensic report loops are a prob… John R Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Alessandro Vesely
- Re: [dmarc-ietf] Forensic report loops are a prob… John R Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Murray S. Kucherawy
- Re: [dmarc-ietf] Forensic report loops are a prob… John Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Murray S. Kucherawy
- Re: [dmarc-ietf] Forensic report loops are a prob… John R Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Steven M Jones
- Re: [dmarc-ietf] Forensic report loops are a prob… Steven M Jones
- Re: [dmarc-ietf] Forensic report loops are a prob… Douglas Foster
- Re: [dmarc-ietf] Forensic report loops are a prob… Alessandro Vesely
- Re: [dmarc-ietf] Forensic report loops are a prob… Murray S. Kucherawy
- Re: [dmarc-ietf] Forensic report loops are a prob… John R Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Murray S. Kucherawy
- Re: [dmarc-ietf] report floods, not Forensic repo… John R Levine
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… John Levine
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… Douglas Foster
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… Alessandro Vesely
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… John Levine
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… Alessandro Vesely
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… John R Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] Forensic report loops are a prob… Alessandro Vesely
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… Dotzero
- Re: [dmarc-ietf] Forensic report loops are a prob… John Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… John Levine
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] Forensic report loops are a prob… Dotzero
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] Forensic report loops are a prob… Michael Thomas
- Re: [dmarc-ietf] Forensic report loops are a prob… Dave Crocker
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… John R Levine
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Dave Crocker
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Michael Thomas
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Dave Crocker
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Michael Thomas
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Dave Crocker
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Douglas Foster
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Michael Thomas
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Michael Thomas
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Dave Crocker
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Seth Blank
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… Alessandro Vesely
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Alessandro Vesely
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Dave Crocker
- Re: [dmarc-ietf] DMARC'ed reports, was Forensic r… Alessandro Vesely
- Re: [dmarc-ietf] Report bombing is a prolem, Fore… John R Levine