Re: [dmarc-ietf] mail loops, Is there any recommendation to send DMARC message-specific failure reports FROM:<> ?
"John Levine" <johnl@taugh.com> Mon, 27 May 2019 19:21 UTC
Return-Path: <johnl@iecc.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9FB5012009E for <dmarc@ietfa.amsl.com>; Mon, 27 May 2019 12:21:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1536-bit key) header.d=iecc.com header.b=jGZXKeD2; dkim=pass (1536-bit key) header.d=taugh.com header.b=xpzaD1P2
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yXgUZCgpI_FH for <dmarc@ietfa.amsl.com>; Mon, 27 May 2019 12:21:52 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4ED55120043 for <dmarc@ietf.org>; Mon, 27 May 2019 12:21:52 -0700 (PDT)
Received: (qmail 40425 invoked from network); 27 May 2019 19:21:50 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=9de7.5cec38ce.k1905; i=johnl-iecc.com@submit.iecc.com; bh=kip6uL1jHwZzMDZ/xaboZFu3Yh+pNVAojCoXnOHvtbs=; b=jGZXKeD2v2P880WJdaPZVj3p2FTVy87OF94TGIiwZjYPXYQtS6eGqGVFsVx5Yscm/GB/GTjvG19gB5qwwVgtB2TqjCDh3dyY6RCh5dMhlwDPnReX2YJk9sHZr06Sod2IwZ9ONYBMBXew1EnMbbhAhw69pF+d16QeN0ISce6Sml6j5LEOLfuoNr80Jyk1EHezXrUFyK31n8le+kO9NdtzIySEnbcscQOpQ4sbetgpO2cHw0PoxghUfOKCUey4COPb
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=9de7.5cec38ce.k1905; olt=johnl-iecc.com@submit.iecc.com; bh=kip6uL1jHwZzMDZ/xaboZFu3Yh+pNVAojCoXnOHvtbs=; b=xpzaD1P2oYrOv0B4bNCG3cS/eYlUB8xaJRXa/sMwZnB02SyJc/TeGsBQKFsJwQL0UoiIG7AqyxhURbgTbn+bXUpPjxF3zhU3wzcpucUb7jczT/aOIuCHrYXM1/wSLjcV8egCygaUnJmhJpaAKBmwl1MN7x/OUlq6KACPSCdxoS0o6ve30/ZIZIpZFVXWC2auoaZrfHJVfbPcrU2/p3yTdzNySaiBCZii1xwV1itoDnGueAgNOtylOugV63ZjW6Eu
Received: from ary.qy ([64.246.232.221]) by imap.iecc.com ([64.57.183.75]) with ESMTPSA (TLS1.2 ECDHE-RSA AES-256-GCM AEAD, johnl@iecc.com) via TCP; 27 May 2019 19:21:50 -0000
Received: by ary.qy (Postfix, from userid 501) id 079992014AD8E9; Mon, 27 May 2019 15:21:49 -0400 (EDT)
Date: Mon, 27 May 2019 15:21:49 -0400
Message-Id: <20190527192150.079992014AD8E9@ary.qy>
From: John Levine <johnl@taugh.com>
To: dmarc@ietf.org
Cc: Dilyan.Palauzov@aegee.org
In-Reply-To: <20190525183556.Horde.zvg1bNsYbvs_enKZPKjlhVV@webmail.aegee.org>
Organization: Taughannock Networks
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/gMzjkgGxUyLtnAkIqcXNSS4EnoE>
Subject: Re: [dmarc-ietf] mail loops, Is there any recommendation to send DMARC message-specific failure reports FROM:<> ?
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 May 2019 19:21:55 -0000
In article <20190525183556.Horde.zvg1bNsYbvs_enKZPKjlhVV@webmail.aegee.org> you write: >Consider this scenario: an email from a domain, with DMARC policy >“p=reject; ruf=postmaster@domain” fails validation. A >message-specific report is sent to postmaster@domain. The report is >bounced (or there is any reply on it) and the reply is again From: >that domain and does not validate DMARC. On further consideration, I was reminded about all the mail loops I had to deal with back when I was running autoresponders. What I discovered is that there is nothing you can put in your messages which will prevent mail loops, since there will always be someone at the other end that will respond anyway. What you have to do is rate limit. For example, if you see that you've sent more than five failure reports in an hour to a particular address, don't send any more reports to that address during the next hour, even if mail comes in that would get a report. You can tune the time period and threshhold, but so long as the time period is longer than a cycle of the mail loop, they don't matter much. -- Regards, John Levine, johnl@iecc.com, Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly
- [dmarc-ietf] Is there any recommendation to send … Dilyan Palauzov
- Re: [dmarc-ietf] Is there any recommendation to s… John Levine
- Re: [dmarc-ietf] Is there any recommendation to s… Dilyan Palauzov
- Re: [dmarc-ietf] Is there any recommendation to s… Grant Taylor
- Re: [dmarc-ietf] Is there any recommendation to s… Дилян Палаузов
- Re: [dmarc-ietf] Is there any recommendation to s… John Levine
- Re: [dmarc-ietf] Is there any recommendation to s… John Levine
- Re: [dmarc-ietf] Is there any recommendation to s… Dilyan Palauzov
- Re: [dmarc-ietf] Is there any recommendation to s… Juri Haberland
- Re: [dmarc-ietf] Is there any recommendation to s… Scott Kitterman
- Re: [dmarc-ietf] mail loops, Is there any recomme… John Levine