IETF Logo Mail Archive

Re: [dmarc-ietf] Proposing an extension to DMARC to optionally require SPF and DKIM

"J. Gomez" <jgomez@seryrich.com> Tue, 02 April 2013 02:43 UTC

Return-Path: <jgomez@seryrich.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C1EE021E804A for <dmarc@ietfa.amsl.com>; Mon, 1 Apr 2013 19:43:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.437
X-Spam-Level:
X-Spam-Status: No, score=-2.437 tagged_above=-999 required=5 tests=[AWL=0.163, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KLfuOTyWwBlV for <dmarc@ietfa.amsl.com>; Mon, 1 Apr 2013 19:43:12 -0700 (PDT)
Received: from eh.msi.es (eh.msi.es [213.27.239.123]) by ietfa.amsl.com (Postfix) with ESMTP id 431A121E8108 for <dmarc@ietf.org>; Mon, 1 Apr 2013 19:43:11 -0700 (PDT)
Received: from servidor3 (62.82.191.195) by exchange01.exchange.msi.es (192.168.223.3) with Microsoft SMTP Server (TLS) id 8.3.213.0; Tue, 2 Apr 2013 04:43:09 +0200
Message-ID: <CD3757DA7F9B46888C89CB10FF032227@fgsr.local>
From: "J. Gomez" <jgomez@seryrich.com>
To: dmarc@ietf.org
References: <55b1222360ab4215a09a54da800d261b@BL2SR01MB605.namsdf01.sdf.exchangelabs.com><515A02DB.2010309@gmail.com><CE39F90A45FF0C49A1EA229FC9899B05633D4E@USCLES544.agna.amgreetings.com><9b3745d8976d42df8fc9521e7f4c4b49@BL2SR01MB605.namsdf01.sdf.exchangelabs.com><CE39F90A45FF0C49A1EA229FC9899B05633F90@USCLES544.agna.amgreetings.com><3cc1dd69471d4f059fff49ecd3c6f45d@BL2SR01MB605.namsdf01.sdf.exchangelabs.com> <CE39F90A45FF0C49A1EA229FC9899B0563403A@USCLES544.agna.amgreetings.com>
Date: Tue, 02 Apr 2013 04:44:27 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.3790.4657
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.4913
Subject: Re: [dmarc-ietf] Proposing an extension to DMARC to optionally require SPF and DKIM
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dmarc>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Apr 2013 02:43:14 -0000

On Tuesday, April 02, 2013 4:22 AM [GMT+1=CET], MH Michael Hammer (5304) wrote:
> DMARC is not particularly new. The private implementations date back
> to the 2007 timeframe. The goal of creating a public standard based
> on the successes seen in the private channel implementations was
> intended to open it up from a private club with limited membership to
> something that anyone could implement.

So, you want the public to aknowledge a private practice as a public standard, and at the same time you don't want input from the public but blind adhesion, because, you know, it has been working fine in our private club?

> Trying to overload other
> design parameters to attempt to solve something that DMARC
> intentionally did not try to solve is a dangerous path to go down.   

Terry's proposed extension is:

1. Optional,
2. Non-default, and
3. Not more relaxed but more strict.

Where is the danger? You don't have the need?, well then go with the more relaxed default.

> I use shared IPs across domains
> but I DKIM sign those domains and each of the domains has similar
> security implementations. So from my perspective it is possible to
> do.... I've been doing it for years.

So what? Good for you. The world is wide. One size does not fit all, yada yada...

Again, is the proposed optional extension damaging to DMARC's goals? Are DMARC's goals those of a private club, or those of the non-spoofing email community at large?

Regards,

J. Gomez

v2.23.0 | Report a Bug | By Email