IETF Logo Mail Archive

Re: [dmarc-ietf] Search for some consensus, was: Proposed text for p=reject and indirect mail flows

"Brotman, Alex" <Alex_Brotman@comcast.com> Thu, 27 April 2023 14:30 UTC

Return-Path: <Alex_Brotman@comcast.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 11B17C1522DB for <dmarc@ietfa.amsl.com>; Thu, 27 Apr 2023 07:30:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.094
X-Spam-Level:
X-Spam-Status: No, score=-2.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.com header.b="sd0ujRSz"; dkim=pass (1024-bit key) header.d=comcastcorp.onmicrosoft.com header.b="ElSe/Uth"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SNsh1XmfwjtL for <dmarc@ietfa.amsl.com>; Thu, 27 Apr 2023 07:30:21 -0700 (PDT)
Received: from mx0b-00143702.pphosted.com (mx0b-00143702.pphosted.com [148.163.141.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0A4CFC15171E for <dmarc@ietf.org>; Thu, 27 Apr 2023 07:30:20 -0700 (PDT)
Received: from pps.filterd (m0184891.ppops.net [127.0.0.1]) by mx0b-00143702.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 33RBHQZx002465 for <dmarc@ietf.org>; Thu, 27 Apr 2023 10:30:20 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=20190412; bh=o419GoHjmVgFSrYGfQphwkiw+txZGVcY+CazbXM44A4=; b=sd0ujRSz2Svndq/Pp7aBa7AgY08ccxg2ExKmaCjGcHdamk/NLhuoTLZHetBaqlfaU5nR +wF3HDEFnneWzM8XJQYyhYM0V8pV0yuRchmciaxWFztDPRed6i1XyCmTEJ33QFWz0XZX n6TLWYNVqhZhtnjnA+NEdzqFs0tg4G3sZKSa3fBV20GXTT4SZb2SOCS+WSte8rSzfVat XMEiBbFARC66NN8NLMBbA+npxIAGXNqpKyd5U+Vvvqci1JWHkrfaKjrGOrlopU+7Udjx YqYzf7PPST6/pgqOPNSefU4LfSEY/2gPGH22eLUQ6d6/2xFDSojd2kcgxQczF9j8FcIu cQ==
Received: from nam11-bn8-obe.outbound.protection.outlook.com (mail-bn8nam11lp2168.outbound.protection.outlook.com [104.47.58.168]) by mx0b-00143702.pphosted.com (PPS) with ESMTPS id 3q75urr8s4-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <dmarc@ietf.org>; Thu, 27 Apr 2023 10:30:19 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jTcomses2K6xBYp/lSuFczI/UVoJI3au7CmVwvfF/lD8u7DH51VmUNELIXzW766C7wF7LarmqYxRWlA/XTQAF/NTzRb5NRPkEZx5uM24kk9QtHn0StDw63gMR19lS19TaMr/9t7zPVxSoVmD71EdcRz5U73ZrtkBQpX5jCFZnLM5xjMaavew/TvjHOhUl3T1yAPPNMPDoXw8TrvIqtuwkfuLpcAMI52rcnX142UFSkKy8igawxRlYef/ZceutN6ZAWBF+thLnhrCr/Q4IK8HY0uBlx7jAouLM5wRSxbvcwvxkaeDYlE68gagIYVEkQ48nx3N6/bNQ9ygUJsuRIjSXw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=o419GoHjmVgFSrYGfQphwkiw+txZGVcY+CazbXM44A4=; b=n/vQYM1EN7PhriVK4IhOnpOzISXaR63D0D7PkR02KHgYxuOkkGEInD8Oc1miepiBYTcP2FbAn49ZozAAMhuGZsIy3ec4BcvVQG+i8plZIEuelTpwdusuXJpkka9aYGtFz9mFg8gAIwc8DG7qPrXz4exQJLesDtlBGohfleWNn7SPCW0LOj0qHYn9x5R4+Q6TtA7LnMtVmRlGvf8isec9Iy8mcWnj8FfQbcMGUXKC4o+3LWLfTtMHhFJyTR8gNW8yxcb60BlN+oAL4a8mG1zReYilmd657wnn/ymKjpcmj2iuA4bjlllOrUWtQtGrsxmnBo9sOExIZ+UqNLkPxuPCAQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=comcast.com; dmarc=pass action=none header.from=comcast.com; dkim=pass header.d=comcast.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcastcorp.onmicrosoft.com; s=selector1-comcastcorp-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=o419GoHjmVgFSrYGfQphwkiw+txZGVcY+CazbXM44A4=; b=ElSe/Uthqbp/u/CDjJx8nmpPKIr6iFLqoWfbCIZvZjjanys9SR6Mbkbye84BGjlmCzTRd0H7wfLtc6I7J+BDRqy8edbww+JA1EaPBdKIEBwZiHtmG5onpXbRx3Ck1VwL8E1SppRIbSAZZH+DujEU/KfXvO4oXnLsQzYoN5fycW0=
Received: from MN2PR11MB4351.namprd11.prod.outlook.com (2603:10b6:208:193::31) by CY5PR11MB6281.namprd11.prod.outlook.com (2603:10b6:930:23::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6340.22; Thu, 27 Apr 2023 14:30:15 +0000
Received: from MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::5acd:7431:27b0:8d40]) by MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::5acd:7431:27b0:8d40%7]) with mapi id 15.20.6340.021; Thu, 27 Apr 2023 14:30:14 +0000
From: "Brotman, Alex" <Alex_Brotman@comcast.com>
To: "dmarc@ietf.org" <dmarc@ietf.org>
Thread-Topic: [dmarc-ietf] Search for some consensus, was: Proposed text for p=reject and indirect mail flows
Thread-Index: AQHZd6OpF1b5WYxE+keoOINoOe4hl688xz8AgAAVwgCAABbfAIAAzt+AgACvF4CAACsVgIAAnBxw
Date: Thu, 27 Apr 2023 14:30:14 +0000
Message-ID: <MN2PR11MB43511D3478D3682AABD35969F76A9@MN2PR11MB4351.namprd11.prod.outlook.com>
References: <20230426160609.8532BC586620@ary.qy> <B08C7AD1-B14B-43FC-BE85-DFBD5282A8DB@bluepopcorn.net> <BF125E76-EAEF-468B-93F2-3318736F932F@kitterman.com>
In-Reply-To: <BF125E76-EAEF-468B-93F2-3318736F932F@kitterman.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_ActionId=fa260df1-a9ee-4063-8a01-8f016f7c2354; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_ContentBits=0; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Enabled=true; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Method=Standard; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Name=Confidential (C); MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_SetDate=2023-04-27T14:25:45Z; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_SiteId=906aefe9-76a7-4f65-b82d-5ec20775d5aa;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MN2PR11MB4351:EE_|CY5PR11MB6281:EE_
x-ms-office365-filtering-correlation-id: 58d4ff0d-eb3d-4338-f71e-08db472bea45
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB4351.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(346002)(39860400002)(136003)(376002)(366004)(396003)(451199021)(86362001)(38070700005)(33656002)(2906002)(66899021)(55016003)(53546011)(71200400001)(7696005)(966005)(83380400001)(186003)(6506007)(9686003)(66476007)(66556008)(64756008)(76116006)(478600001)(316002)(66946007)(82960400001)(6916009)(5660300002)(66446008)(38100700002)(122000001)(8676002)(41300700001)(52536014)(8936002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: comcast.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR11MB4351.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 58d4ff0d-eb3d-4338-f71e-08db472bea45
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Apr 2023 14:30:14.2270 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 906aefe9-76a7-4f65-b82d-5ec20775d5aa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: /dKHnKTg6Ay+4u5HOZ7zrct2Wr20yTlw41Z/uR1ORyW7lP04NVrPjn8HI1zj+nWn48clRk7QsYzUeOWDXwmf3ZdyWPU+8+h3IcKeFOvGryc=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY5PR11MB6281
X-Proofpoint-ORIG-GUID: 2ub6EAvgyHSycv8rxLPnDoB6t3UcYcQ3
X-Proofpoint-GUID: 2ub6EAvgyHSycv8rxLPnDoB6t3UcYcQ3
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.254,Aquarius:18.0.942,Hydra:6.0.573,FMLib:17.11.170.22 definitions=2023-04-27_07,2023-04-27_01,2023-02-09_01
X-Proofpoint-Spam-Reason: safe
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/lyK0tsGPBiiKosdAEuEt86kpbQM>
Subject: Re: [dmarc-ietf] Search for some consensus, was: Proposed text for p=reject and indirect mail flows
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Apr 2023 14:30:25 -0000

Attempt to make it a tad more concise (I think), altering some of the language:

---------------------
There can be inherent damage to the ability to use certain SMTP-based systems in conjunction with a policy of quarantine or reject.  These could include, though are not limited to, mailing lists, forwarding services, and other types of indirect mail flows.  Especially in situations where the sending domain is SPF-only, or the intermediary is known to alter messages.  If the users of the domain may utilize these types of systems, the domain administrator MUST NOT deploy a policy of quarantine or reject without serious considerations to the impact to interoperability.  These considerations will be informed by careful analysis of DMARC aggregate reports prior to deploying such a policy.  Some third-party systems may be willing to create a workaround for these situations, though it cannot be guaranteed.  Domain owners MAY choose to create a sub-domain (listmail.example.org) or cousin domain (listmail-example.org) which uses a different policy for users wishing to utilize those services.
---------------------

If you're looking for me, I'm standing behind the firewall. 

--
Alex Brotman
Sr. Engineer, Anti-Abuse & Messaging Policy
Comcast

> -----Original Message-----
> From: dmarc <dmarc-bounces@ietf.org> On Behalf Of Scott Kitterman
> Sent: Thursday, April 27, 2023 1:07 AM
> To: dmarc@ietf.org
> Subject: Re: [dmarc-ietf] Search for some consensus, was: Proposed text for
> p=reject and indirect mail flows
> 
> 
> 
> On April 27, 2023 2:32:49 AM UTC, Jim Fenton <fenton@bluepopcorn.net>
> wrote:
> >On 26 Apr 2023, at 9:06, John Levine wrote:
> >
> >> It seems to me there are two somewhat different kinds of DMARC
> >> damange that we might separate. One is what happens on discussion
> >> lists, where messages get lost and in the process unrelated
> >> recipients get unsubscribed. The other is simple forwarding and
> >> send-to-a-friend which gets lost but is less likely to cause problems
> >> for the recipients beyond not getting the mail they want.
> >
> >Isn’t (in the latter case) the recipients not getting the mail they want exactly an
> interoperability problem?
> 
> It absolutely is.  The difference, my view, is that if the domain owner has a policy
> that leads to you not getting your mail, it's a different level of severity than you
> both don't get your mail and end up unsubscribed from the mailing list.
> 
> One might make a case that the former is "works as designed" since the sending
> domain owner has published policy indicating he doesn't want you to get your
> mail and your mail host has decided to honor that request (I think that's wrong,
> but I can see the logic).  I don't think there's any way to claim third party's
> getting bounced from a mailing list is OK.
> 
> Scott K
> 
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/dmarc__;!
> !CQl3mcHX2A!HIiPwxlibmp0jYdSD3ap2XsLrLB28EJJ-xUe-
> XVECMs6n5re7eRqcuXfev2ioFKD8ouqGUsAw9o76AycuD29$

v2.23.0 | Report a Bug | By Email