IETF Logo Mail Archive

Re: [dmarc-ietf] SPF follies, WGLC editorial review of draft-ietf-dmarc-dmarcbis-30

Todd Herr <todd.herr@valimail.com> Mon, 01 April 2024 16:27 UTC

Return-Path: <todd.herr@valimail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E77EDC14F5EB for <dmarc@ietfa.amsl.com>; Mon, 1 Apr 2024 09:27:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.094
X-Spam-Level:
X-Spam-Status: No, score=-2.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_32=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=valimail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nAXevGPUxA9f for <dmarc@ietfa.amsl.com>; Mon, 1 Apr 2024 09:27:14 -0700 (PDT)
Received: from mail-yb1-xb30.google.com (mail-yb1-xb30.google.com [IPv6:2607:f8b0:4864:20::b30]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0D4F7C14F5E6 for <dmarc@ietf.org>; Mon, 1 Apr 2024 09:27:13 -0700 (PDT)
Received: by mail-yb1-xb30.google.com with SMTP id 3f1490d57ef6-dc6d8bd612dso4194104276.1 for <dmarc@ietf.org>; Mon, 01 Apr 2024 09:27:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=valimail.com; s=google2048; t=1711988832; x=1712593632; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=95Mc5zqE9F201auySaoTx0X/afWVYYy8uPHnFoAq+4w=; b=cCLbaob8yD0x1pmC/3ZtPwWwSKduxD0kMHcwwh5Xvw4awYpuSTJfS0k8Cq9Oi5rTyf FHL59KJAY4CZ8Texglxo/yPh1+Al4nVMb3J8RS2Sr+HcXEzdNBpeib7+ONMmlfh7dGSJ CHFu2oU+Wx5CV07EauEPhCUNRgjeE5hMKjh0reCWS6JJvtAWOvemaVMe3kWicbm9/Iqt Y031OzbBs+35YlQsaSyuW9smC9gDyqD1eTjj/ka6yiL45TgLxu8MvWCvjmSIjqGL6mJs U5cSRIIW4s/na+Oy1tlstjd4BtdCo42AU0QhZOJBYXnaEpE2WJDNttJUWkq2ohT3SX/D 4dzQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711988832; x=1712593632; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=95Mc5zqE9F201auySaoTx0X/afWVYYy8uPHnFoAq+4w=; b=U6dHO8jmvpHsBwTnj52MACH5+L5rboyMTdFTzew05Zlza71bCmCFanbIbG29Fqu6La OfVmqlqHpIEa4Ww5urcfqQd5M4nEdjxYtzCNr0ya1UsuVQbTglszg72QQbDbyrP6wu90 oiqjkrplM2qgDlpz4uFdT/6l1nHMxnRoxYmqGoSnICqp48FnVv4cOJGaQ/fZNgmfZRy9 MvBt6YbGn7vnpOjU9FDEnxAzX6XfQbnTbinhJAZCdrwAiVho1vKw7+CcUdcxmaacDFzQ IyIQs/+Ks6plPZ3EGi1jEa8dXd08CoRF6cX1V9NHBrk2W4lk2aE3texa6i5J5L4aceq+ Uwxg==
X-Gm-Message-State: AOJu0Yx+qM5m1AnV+PPJ0FMQ/6YXq3jfCQR46ajKN4sdt9EFkNhbtLOT JMnry7nq9QU3Tq4awR0cqU8VkU4nTV6RcQzlIboNDAa3CxBvaIdjIoXHoMnlW8ikvGSLxL+6xGI EjbMSBYcFqFPFixmYA/JfDuLeDhhjMFEqJHrm7RJIpsqxrDIKvpA=
X-Google-Smtp-Source: AGHT+IHVzy/MoTLQhX6uROgtoXsIgsakLmytCH2m7nGYZ/LyL1cS7NXqLwRnzBSzvaYdL4E14mKZxbFpck8l8Cj8Gn8=
X-Received: by 2002:a25:ae51:0:b0:dbd:4578:5891 with SMTP id g17-20020a25ae51000000b00dbd45785891mr7672707ybe.65.1711988832648; Mon, 01 Apr 2024 09:27:12 -0700 (PDT)
MIME-Version: 1.0
References: <eda55c54-c149-475c-8117-bfdf3885a883@tekmarc.com> <20240331180009.F36CD8687B50@ary.qy> <CAOZAAfP9tXi80Fi=ZkgPpGwHo1fDbdSOZwVcnuPDbbc2xQd-7A@mail.gmail.com> <lIU60SB3NeCmFAG+@highwayman.com> <CAL0qLwZt+bo4ydCVOQbfg6bQEv-ufXrrwr8Aege9Wsv7LgH=kA@mail.gmail.com> <CAOZAAfPtxdBwEthN26cgvAnAbQ70wym+2k0WjtKqNVf44=-vMg@mail.gmail.com> <MN2PR11MB435115B7428C63C1B1058D9EF73F2@MN2PR11MB4351.namprd11.prod.outlook.com> <CAJ4XoYfmyDykZGm9Gb1bxjz=pW_scqon3pDv-DRGHjFrnyCLoQ@mail.gmail.com> <CADyWQ+HbfegU=07gNyR-5Dby_71GNim4Nq-LyFerKHk1dV0=Nw@mail.gmail.com>
In-Reply-To: <CADyWQ+HbfegU=07gNyR-5Dby_71GNim4Nq-LyFerKHk1dV0=Nw@mail.gmail.com>
From: Todd Herr <todd.herr@valimail.com>
Date: Mon, 01 Apr 2024 12:26:56 -0400
Message-ID: <CAHej_8=OxfPySzx0p2xR7iRmfai=CdU6iADECUCZoHXr6qvxcg@mail.gmail.com>
To: "dmarc@ietf.org" <dmarc@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000003adf4806150b760e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/k458R-cJsAL4scYNpZ7G6qs9uN4>
Subject: Re: [dmarc-ietf] SPF follies, WGLC editorial review of draft-ietf-dmarc-dmarcbis-30
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Apr 2024 16:27:18 -0000

On Mon, Apr 1, 2024 at 12:17 PM Tim Wicinski <tjw.ietf@gmail.com> wrote:

> I have to agree with Seth's comments that "security teams believe an SPF
> hard fail is more secure".
> I've been on the receiving end of that discussion more than once.
>
> Also, can we reference those two M3AAWG documents ?  That seems like
> operational guidance.
>
>
I'm digesting the threads for the purpose of preparing tickets to track the
work, and I suspect one of the tickets will include, "Add reference to the
following two M3AAWG documents":

   1.
   https://www.m3aawg.org/sites/default/files/m3aawg_managing-spf_records-2017-08.pdf
   2.
   https://www.m3aawg.org/sites/default/files/m3aawg-email-authentication-recommended-best-practices-09-2020.pdf


-- 

Todd Herr | Technical Director, Standards & Ecosystem
Email: todd.herr@valimail.com
Phone: 703-220-4153


This email and all data transmitted with it contains confidential and/or
proprietary information intended solely for the use of individual(s)
authorized to receive it. If you are not an intended and authorized
recipient you are hereby notified of any use, disclosure, copying or
distribution of the information included in this transmission is prohibited
and may be unlawful. Please immediately notify the sender by replying to
this email and then delete it from your system.

v2.23.0 | Report a Bug | By Email