[dmarc-ietf] Is PSL+1 really the org domain?
Douglas Foster <dougfoster.emailstandards@gmail.com> Wed, 04 May 2022 02:27 UTC
Return-Path: <dougfoster.emailstandards@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9D2E5C15E412 for <dmarc@ietfa.amsl.com>; Tue, 3 May 2022 19:27:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AkvmvU9km4u4 for <dmarc@ietfa.amsl.com>; Tue, 3 May 2022 19:27:45 -0700 (PDT)
Received: from mail-oi1-x22b.google.com (mail-oi1-x22b.google.com [IPv6:2607:f8b0:4864:20::22b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 39FD5C14F721 for <dmarc@ietf.org>; Tue, 3 May 2022 19:27:45 -0700 (PDT)
Received: by mail-oi1-x22b.google.com with SMTP id n24so6137oie.12 for <dmarc@ietf.org>; Tue, 03 May 2022 19:27:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:from:date:message-id:subject:to; bh=GjwNx6e5i12PHQsFSnksYTp4n2w9x+cR4VNq1pnw8Zg=; b=H+IJFQHPz4aXdaA/k1U4Y4Rw8bQ8p3Ru4P+g/ovCpn+oMuEfYILaQZudcJiV4YaBvD dB3knJypmW0P3FakSsZmRMMdECqc++GgtsjFM80zRRA7ZB+NZgcnOaZI538FiJLjD/RX zve1SjukZA6L8xiylUJIVk5fo+juvySYZubaTSKS0vfhHBlYJRSra/HnNLERv7KGni8s m4pSHIx97+VkCJq52d9qn2ICFswzjuAN4p37nY3RTdmdpp7uE6ML6LydtlDlyQO+ljCM MeTeTz3Amw62r8Drb99IkjaCjCzrM7QYKxgc/2Foq+tHzZkaG+cPcOgZNE8jyQ1G7PSu S6QA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=GjwNx6e5i12PHQsFSnksYTp4n2w9x+cR4VNq1pnw8Zg=; b=WxW50hmf8oQtBvRSfUvSkKsB0kdy9FM5Kb+qnX43GxMid+wA4DTZQDRojWrowuttEx m3MBgkPjL+rh8U2MMjVLaasHU038WuwwqsdMKoRV4fk3p5w9i0JnriaVKLJFfxOrVrro EVIgzLqUch5tiEWGZFFRcASRVtf7FqwD4n6cZSscT20ICF0zb8Omza6fIhT6k3jkG/Ul ey9qpMIdwqr+F029K2Yfc8y5V2wsihV+mgB+4RcJt21jA7NKxXqwT7+eMa/ioB9orRMA nWv0sk+k60QEn9BJ2+bLMzoAxYOumA5/A+w4/FH4NSjWVLuOXiNm/O8TWkLL3ik6oXxq vVxg==
X-Gm-Message-State: AOAM532w1gKE1sc0aE+P7hABhYoYsRPWDWtODipYDJ8SVfgSQ0aYQouC o+OT5xPRhH6tM33OZY1FU2bvWZDxV02RtdzfYnOkYZB17/I=
X-Google-Smtp-Source: ABdhPJw5G4KnWPOeHxivWVOf8ZF1fBKsg5eqAyuyPT6JYnbIRF201Fha1wxMiOnemc5PfbYhjr/z6edHfet082gLMBw=
X-Received: by 2002:a05:6808:2095:b0:325:7ad8:6d18 with SMTP id s21-20020a056808209500b003257ad86d18mr3152593oiw.58.1651631263974; Tue, 03 May 2022 19:27:43 -0700 (PDT)
MIME-Version: 1.0
From: Douglas Foster <dougfoster.emailstandards@gmail.com>
Date: Tue, 03 May 2022 22:27:15 -0400
Message-ID: <CAH48Zfyy7u-mthngbwAXXJU++=mY2TTTxbL8NVhzEDOFDUUaKA@mail.gmail.com>
To: IETF DMARC WG <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000ca078305de265ef8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/gxZj-Rn_BxAeui3ngFELiiLH6Ug>
Subject: [dmarc-ietf] Is PSL+1 really the org domain?
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 May 2022 02:27:45 -0000
Private registries create a problem for the PSD for DMARC specification. The subtree underneath the PSD policy may include the PSD-registered organization and potentially the client of that organization, if the organization operates a private registry. Presumably, in some cases such as .Bank, the PSO will have contractual controls which ensure that the registered organizations will not operate private registries. Where this is the case, relaxed alignment is still acceptable. But if there is any possibility that a PSO-registered organization might operate a private registry, now or in the future, then the PSD policy needs to specify strict alignment. DF
- [dmarc-ietf] Is PSL+1 really the org domain? Douglas Foster