IETF Logo Mail Archive

Re: [dmarc-ietf] Proposed text for p=reject and indirect mail flows

"Brotman, Alex" <Alex_Brotman@comcast.com> Tue, 28 March 2023 20:21 UTC

Return-Path: <Alex_Brotman@comcast.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 93CD2C1527AE for <dmarc@ietfa.amsl.com>; Tue, 28 Mar 2023 13:21:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.093
X-Spam-Level:
X-Spam-Status: No, score=-2.093 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.com header.b="0q6YqNac"; dkim=pass (1024-bit key) header.d=comcastcorp.onmicrosoft.com header.b="mPz9xv9L"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZvrEt3xI0C1l for <dmarc@ietfa.amsl.com>; Tue, 28 Mar 2023 13:21:48 -0700 (PDT)
Received: from mx0b-00143702.pphosted.com (mx0b-00143702.pphosted.com [148.163.141.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8C263C15270E for <dmarc@ietf.org>; Tue, 28 Mar 2023 13:21:48 -0700 (PDT)
Received: from pps.filterd (m0184891.ppops.net [127.0.0.1]) by mx0b-00143702.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 32SK4rcc017851; Tue, 28 Mar 2023 16:21:47 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=20190412; bh=fJbWEwP3SJBRi5m5u6jhcVbBb/akjMdLPralZjc9/8E=; b=0q6YqNacgDzdwoEHlVkd+HhmnQYgOxh4RgalIBPBqu47vsFUbXmO43L9+pkGVpScZP2z aRiE7IyoXrSYZRQ34QQXTdPU4NqkEEglIkxisMt0trtRz7X97UvsEWtkAXbbPzl6q+Aw Pwt2CJ9lSvITVUPLjSXjSiaQLK7eAvfjuUoMz/GwDxh9reQ4LVMGQUe6Z6WS/jSHC+J+ RweliJk22UhLRkGVSOPRC4MVHItDEVLH7fmlHc6A3xCsMGBtPn9RrsXgoougCHgkrjJK yX7x8ZYDVaK/OIJS0htR4IDmlvv3oe3KgPxIBWkNTTfggpWXmFo8R5Qg2dR9d1CYomdA Iw==
Received: from nam02-bn1-obe.outbound.protection.outlook.com (mail-bn1nam02lp2041.outbound.protection.outlook.com [104.47.51.41]) by mx0b-00143702.pphosted.com (PPS) with ESMTPS id 3phwqjxtkc-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 28 Mar 2023 16:21:47 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Cr0bmCbKiolau/vvb1ngnTnBRvxTmM+/chuG3Qx4nstxW6BH6qAsK1VADH3Gfa3yVtxcqR2jox1jwdBdl76086fm928UX2uKFRF9EKweOuGTMDZvU5RemEJWU4QJ+LeyBaiLZCcOEdZsOStrGuNOTF1LMUikhrn82s+Rg/hQoganXwRtgupkn+vPnuxd6pVpvJQVbWsHCfNzR3suNbNA4F+TemWlMjlRAEwIyOR+KHPUUFveaGCZ+KI3lZHziUCe5vfscmR+LnOb6GYWO91lAm6GqSajA/8qhsbOyMyqdEXtnAqy7OKDEHUFJ5TT6wlnLDeNvwNWykFs3bQb2d/UyA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=fJbWEwP3SJBRi5m5u6jhcVbBb/akjMdLPralZjc9/8E=; b=WHlUcsgnT21Ibg6UW5v5E3VwS+eYem8pArJoNF73OBUgdpeL1PnKB2VaOi6mbDDWbHycfX+y4y3ELKve40hhc4q4cdzWxju6N+ar0pmJmmFDSilrjvMYJfiUiQV6LFMXoSEtetz1q2X75zVDPwyv85lNB0XVgjW82ehPZuEQIX2Jn8VTw0fx9U9utDNr9AL9pLwguoFRAa//A2zwewlNYYvIKHXVwa5an/KRelWmMgNE16x7bz9JgJThzx+b4N2cXyphx7tvgpUK+ksbB9dXKS+4peRF2j1XjphnEt0mYVRLSpJ7Gl/KDYoKoN6bRw1kzm7DtgjyzPliyZbDcQrn6A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=comcast.com; dmarc=pass action=none header.from=comcast.com; dkim=pass header.d=comcast.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcastcorp.onmicrosoft.com; s=selector1-comcastcorp-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=fJbWEwP3SJBRi5m5u6jhcVbBb/akjMdLPralZjc9/8E=; b=mPz9xv9LQO+tJ+14+j6DMA6yGUwFsPRwkATr9MNf5HHwNqOY+VSer/+W7nqTbwU+cn8BpqX7SFKI2PfPA+8ZDYRlIwWvjM3mRzyD35OBKAcpBQWoL/DQqXb9dduGRJTa6fnmN1IAj/fo2q0Egr4vZuhELwuXaL/a3gUsy/UEfd8=
Received: from MN2PR11MB4351.namprd11.prod.outlook.com (2603:10b6:208:193::31) by DS0PR11MB7505.namprd11.prod.outlook.com (2603:10b6:8:153::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6222.28; Tue, 28 Mar 2023 20:21:43 +0000
Received: from MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::5acd:7431:27b0:8d40]) by MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::5acd:7431:27b0:8d40%6]) with mapi id 15.20.6222.030; Tue, 28 Mar 2023 20:21:43 +0000
From: "Brotman, Alex" <Alex_Brotman@comcast.com>
To: Scott Kitterman <sklist@kitterman.com>, "dmarc@ietf.org" <dmarc@ietf.org>
Thread-Topic: [dmarc-ietf] Proposed text for p=reject and indirect mail flows
Thread-Index: AQHZYU110RHIJKYq002iiG8E89Hj5a8QdkQAgAAaNQCAAAzhAIAABXWQ
Date: Tue, 28 Mar 2023 20:21:43 +0000
Message-ID: <MN2PR11MB43514A2E255FA8794CEBE65EF7889@MN2PR11MB4351.namprd11.prod.outlook.com>
References: <CALaySJ+NBg9vzqa0_t-sBf7EKXQ3A=DTyy-Vc7M-ZK9-vfJxmw@mail.gmail.com> <6319292.vCqnBZbX7o@localhost> <CAHej_8nd1xyAgwASLJbuJHyXEAfHbjqxNH1XtJxKFyfyOneyug@mail.gmail.com> <13145172.pEV04Z3DvM@localhost>
In-Reply-To: <13145172.pEV04Z3DvM@localhost>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_ActionId=43219da5-4f80-4408-ac7d-10451b057721; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_ContentBits=0; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Enabled=true; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Method=Standard; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Name=Confidential (C); MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_SetDate=2023-03-28T20:20:15Z; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_SiteId=906aefe9-76a7-4f65-b82d-5ec20775d5aa;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MN2PR11MB4351:EE_|DS0PR11MB7505:EE_
x-ms-office365-filtering-correlation-id: 0d02cbe2-cc39-4bb3-8d4b-08db2fca0c0d
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: zaTWBTiRjoNCMl89smGAQtx1NaKy9iP5RAVu1r8Tzsfa0aFSoH9YDLMXVxgRnjK05/gLIEmjZiD7Hztnn0jJ6LP+vRAm1vmm6nNjwJgDG4xiG/6rbF9ytyWg/8qhG+xM8QVLd8VfQngc+XWs9TixbJq6URmDSxODkwedPWZnkeeV9OQ615PbMar9LHxl3HfTyF4TP9Z2qd/PWweTFx4vME+TJIY/XmPrO/mMTCnNM82OQsA6uNqjnjd/wDrEg872VP0yqxuEty0FWEvkaPXfYMSQKSFiI6MDISQTKMkI2x8rfhqRujUNZEvJ5fGw79ps+itc3jn6f9tNa10jSDVNowMiR2AbiFCqUOPuii6mp1Q6wElfd4Co/VRAErgCQaVi+f5mBkDVdTeOoWEytUA+TTTP931dmJWrGyw9QGeOhJvUpHCv1j8GKLqHhaxBc07WxS6m/mlNfEW4ILkQNGlHbflPzWy3WqJmoCHTJE923c13KnoXKs3BVa1CDO8QNwKAx5LAcoLTAa7DadkRgkQinV0MSY5JIRmPCCdsVGO7xAHQIXAjrPgqXEP20WMB20qkZ7DsaovDtMoS5PneNV9ZMMKu03/LPx6xw/B4p2wkUN0=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB4351.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(39860400002)(346002)(366004)(396003)(136003)(376002)(451199021)(8936002)(66899021)(83380400001)(2906002)(41300700001)(52536014)(86362001)(38100700002)(5660300002)(66446008)(33656002)(122000001)(82960400001)(966005)(478600001)(71200400001)(76116006)(7696005)(66946007)(66556008)(8676002)(64756008)(66476007)(55016003)(186003)(6506007)(110136005)(38070700005)(316002)(9686003)(53546011); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: comcast.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR11MB4351.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0d02cbe2-cc39-4bb3-8d4b-08db2fca0c0d
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Mar 2023 20:21:43.4849 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 906aefe9-76a7-4f65-b82d-5ec20775d5aa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 9mA22KF48j/3Ms1D7ykIREOsEOAeR22lR/FA/oTLBgx+yFwJXMbeMkvZ2ZccL5/Yxbq/t6r9O0sNLVTF7c+E2OA1ioGWw7lH4OKe+EFUeOs=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DS0PR11MB7505
X-Proofpoint-GUID: Jng3DVSLHNJEdHQnJKE3rhvASluEaF06
X-Proofpoint-ORIG-GUID: Jng3DVSLHNJEdHQnJKE3rhvASluEaF06
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.254,Aquarius:18.0.942,Hydra:6.0.573,FMLib:17.11.170.22 definitions=2023-03-24_11,2023-03-28_02,2023-02-09_01
X-Proofpoint-Spam-Reason: safe
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/ihizDoVCLzWeBchOy7k-Nm-zQPQ>
Subject: Re: [dmarc-ietf] Proposed text for p=reject and indirect mail flows
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Mar 2023 20:21:52 -0000

There may need to be a bit more clarification around the use of sp= in these cases.  "We are telling you that p=reject is harmful, but sp=q/r is acceptable in many cases, where these conditions are satisfied".



--
Alex Brotman
Sr. Engineer, Anti-Abuse & Messaging Policy
Comcast

> -----Original Message-----
> From: dmarc <dmarc-bounces@ietf.org> On Behalf Of Scott Kitterman
> Sent: Tuesday, March 28, 2023 4:01 PM
> To: dmarc@ietf.org
> Subject: Re: [dmarc-ietf] Proposed text for p=reject and indirect mail flows
> 
> On Tuesday, March 28, 2023 3:14:38 PM EDT Todd Herr wrote:
> > On Tue, Mar 28, 2023 at 1:41 PM Scott Kitterman <sklist@kitterman.com>
> >
> > wrote:
> > > On Tuesday, March 28, 2023 4:15:04 AM EDT Barry Leiba wrote:
> > > > NEW
> > > >
> > > >    5.5.6.  Decide If and When to Update DMARC Policy
> > > >
> > > >    Once the Domain Owner is satisfied that it is properly authenticating
> > > >    all of its mail, then it is time to decide if it is appropriate to
> > > >    change the p= value in its DMARC record to p=quarantine or p=reject.
> > > >    Depending on its cadence for sending mail, it may take many months of
> > > >    consuming DMARC aggregate reports before a Domain Owner reaches
> the
> > > >    point where it is sure that it is properly authenticating all of its
> > > >    mail, and the decision on which p= value to use will depend on its
> > > >    needs.
> > > >
> > > >    It is important to understand that many domains may never use
> > > >    policies of “quarantine” or “reject”, and that these policies are
> > > >    intended not as goals, but as policies available for use when they
> > > >    are appropriate.  In particular, “reject” is not intended for
> > > >    deployment in domains with users who send routine email, and its
> > > >    deployment in such domains can disrupt indirect mail flows and cause
> > > >    damage to operation of mailing lists and other forwarding services.
> > > >    This is discussed in [RFC7960] and in Section 5.8, below.  The
> > > >    “reject” policy is best reserved for domains that send only
> > > >    transactional email that is not intended to be posted to mailing
> > > >    lists.
> > > >
> > > >    To be explicitly clear: domains used for general-purpose email MUST
> > > >    NOT deploy a DMARC policy of p=reject.
> > > >
> > > > END
> > >
> > > [snip]
> > >
> > > How about, "... MUST NOT deploy a DMARC policy other than p=none
> > > because improper used of p=reject or (to a slightly lesser exent)
> > > p=quarantine is extremely harmful to email interoperability."
> >
> > Or, "...MUST NOT deploy a DMARC policy other than p=none because
> > improper use of p=reject or (to a slightly lesser extent) p=quarantine
> > is extremely harmful to email interoperability. Such improper use
> > includes, but is not limited to, cases where the mitigation strategies
> > discussed in RFCs 7960 and 8617 and elsewhere are not deployed for the
> > mail flows in question and cases where the domain owner deems the
> > collateral damage as acceptable loss in service of protecting its
> > domain from unauthorized usage."
> >
> > I suspect that my text above won't go over well, but the use of the
> > term "improper use" smacks, to me, of the IETF being the protocol
> > police, and I've been led to believe that's not what we do here.
> >
> > There are many things I believe, and two of them are these:
> >
> >    1. Any domain is a target to be spoofed
> >    2. The custodian of a thing has the autonomy to do with that thing what
> >    they please, so long as it's within the limits of the law. "My
> > network, my rules" as it were (or "Your network, your rules")
> >
> > DMARC is a tool in the fight against exact-domain spoofing, but some
> > methods of its deployment can cause interoperability issues. I believe
> > that as long as the risks are well understood and fully documented (to
> > include references to mitigation strategies) then a domain owner will
> > have all the information they need to make their choice as to what
> > policy to deploy. To mandate that certain classes of domains not do
> > something (and just how do we define "general-purpose" email anyway?)
> seems a bridge too far for me.
> 
> I agree with your items 1 and 2.  I'm not a particular fan of improper use either.
> Maybe instead of improper use.  Maybe just "use with such domains".
> 
> Your characterization reads more like SHOULD NOT unless ....  I don't think that
> unless [list of things that are only true in very limited circumstances and can't
> really be verified reliably] is very useful.  How about this instead (I am
> attempting to split the difference between assuming p=reject is okay is normal
> or exceptional):
> 
> "...MUST NOT deploy a DMARC policy other than p=none because use of
> p=reject or (to a slightly lesser extent) p=quarantine for such domains is
> extremely harmful to email interoperability.  Mitigation strategies are discussed
> in [RFC 7960] and [RFC 8617]."
> 
> I don't think we need to reiterate what p=reject does here, that's extensively
> addressed elsewhere in the document.  I don't think we have enough data to
> opine either way about the effectiveness of such strategies, so it's enough to
> point at them here.  We don't currently list RFC 8617 as a reference.  I think
> introducing an informative reference here is useful.  It's experimental, so we
> definitely don't want to put any normative language around it.
> 
> I suspect that's probably not what you would find ideal (it's not what I would find
> ideal either, but I can live with it).  Can you live with it?  What do others think?
> 
> Scott K
> 
> 
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/dmarc__;!
> !CQl3mcHX2A!DQk5uxtCLX2CY35SAENNOFCA8Q1HtPphfxqGdOAYwly4Hk1ZvVvI
> h4pShpcVde6DoPy_ZlUm7N8WWQe3bUhg$

v2.23.0 | Report a Bug | By Email