IETF Logo Mail Archive

Re: [dmarc-ietf] draft-kucherawy-dmarc-base updated (-06)

Wei Chuang <weihaw@google.com> Thu, 01 January 2015 06:30 UTC

Return-Path: <weihaw@google.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 045111A006C for <dmarc@ietfa.amsl.com>; Wed, 31 Dec 2014 22:30:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.388
X-Spam-Level:
X-Spam-Status: No, score=-1.388 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LGG36TcaX3aN for <dmarc@ietfa.amsl.com>; Wed, 31 Dec 2014 22:30:48 -0800 (PST)
Received: from mail-ig0-x22a.google.com (mail-ig0-x22a.google.com [IPv6:2607:f8b0:4001:c05::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F08441A0068 for <dmarc@ietf.org>; Wed, 31 Dec 2014 22:30:47 -0800 (PST)
Received: by mail-ig0-f170.google.com with SMTP id r2so15509019igi.5 for <dmarc@ietf.org>; Wed, 31 Dec 2014 22:30:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:references:from:date:message-id:subject:to:cc :content-type; bh=hhJC0v672GQK4SBgF5X4LglcBZHPF9QACJ8eMslwH3k=; b=Yfmpm+PhV3ZyzUJ+/oh12Cc3ZBR7J4ph1GbfTfFm8MFp87XkRBvaQd2kNiiQjI9S7G GUiBLqWjqosYUyGrVVq+zFOJb8QUEjDwbhTenCvbxz8zJsHGIVbxZjTo6CLEmxkE6q5f zIy41277Sg7sDGCvd3XRjnObOkYC5TqARRWa/jwQKJWZPoMHIrYMu2RTHGMP2E6Kw8Ux KDwy2AhPADWVrUT1GVoPCRAxbGEdiBBTthQLhq+UDmb8U7Bty67/1xbMKTtnWGDj3R3w Jh5wVMfdWac9P9ZTKSddPGqj+DS0V0+5yUa3lKopV147aWvhwDEpDOTh/nw0BHahAoeV IHwA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:references:from:date:message-id :subject:to:cc:content-type; bh=hhJC0v672GQK4SBgF5X4LglcBZHPF9QACJ8eMslwH3k=; b=QqaAq7VbLbus9Z7IeO4nb4UOKxNvVnVjkmYswAAx8jGCvyJ5f5V6YOdj14HVmhfjg9 oW8oBGwR2bHjkP80V8tT872AwMPmE2Qs9TFukJqC8F0eDSr/0Bssybz2bdrKYTcl1vNv hzTkLf1wp16ItDNjRrYb+VTtr9k9q2hPDtlixjd5y6DVwpeyMmQr9NzuUXjOFLp8mrDN ySyVN79ftQwmf8ddoDG5F8LMD/32qGSt7UlqDQyjqYnRnqPDdhrzIXmP948zAl0g9FyI MIe1KNYPCmCAGQqnCZ7fz16BKu2RhtaacDCEv+myj3l+Z/G6WT72nkOubsusRQVM1uS5 xzOg==
X-Gm-Message-State: ALoCoQniWEt8kB6IkbMiyZTR0qGoC7Qr5Sg9fsHZ72dp+dFa/YYAYsGXh2V+A9Sl05n7yoSV3ruk
X-Received: by 10.50.30.3 with SMTP id o3mr12813816igh.44.1420093846815; Wed, 31 Dec 2014 22:30:46 -0800 (PST)
MIME-Version: 1.0
References: <CAL0qLwYOtQe0RLfPmO6TjoJv4CUKUoiRV=uzi29ip70_OZ9p3A@mail.gmail.com> <5463ECBD.9030703@sonnection.nl> <CAL0qLwYSTGhBixiOEyxnbQJ5O6h4F+0-8xiAAE7kvUUEnogkiQ@mail.gmail.com> <54A1D5C1.9030505@sonnection.nl> <CAL0qLwYm+cgsvu-jiW953A21CYMdGLe_howC9K7D4U-1wts0oA@mail.gmail.com>
From: Wei Chuang <weihaw@google.com>
Date: Thu, 01 Jan 2015 06:30:30 +0000
Message-ID: <CAAFsWK35A4KvE9D02G+qbX5J4eFu69mzu_khk7V1a+XAeMBfPQ@mail.gmail.com>
To: "Murray S. Kucherawy" <superuser@gmail.com>, "<R.E.Sonneveld@sonnection.nl>" <R.E.Sonneveld@sonnection.nl>
Content-Type: multipart/alternative; boundary="e89a8f83941f49ba5c050b915d85"
Archived-At: http://mailarchive.ietf.org/arch/msg/dmarc/mZtRDoQAGRB0r40hSWpH-w8QRbw
Cc: "dmarc@ietf.org" <dmarc@ietf.org>
Subject: Re: [dmarc-ietf] draft-kucherawy-dmarc-base updated (-06)
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Jan 2015 06:30:53 -0000

ni


On Wed, Dec 31, 2014, 8:36 PM Murray S. Kucherawy <superuser@gmail.com>
wrote:

> On Mon, Dec 29, 2014 at 2:29 PM, Rolf E. Sonneveld <
> R.E.Sonneveld@sonnection.nl> wrote:
>
>>
>>
>>     3.1.3 Flow diagram
>>>
>>> The box titled 'User Mailbox' could give the impression that there's
>>> only one choice for delivery. However, quarantining can be done without
>>> delivery to a mailbox. I'd suggest to label this box 'rMDA'.
>>>
>> That's already done in -08.
>>
>>
>> OK. Well, it's MDA, but that's OK. One typo in the diagram. When:
>>
>>  "sMTA" is the sending
>>    MTA, and "rMTA" is the receiving MTA.
>>
>>
>> is correct, the box in the diagram should be labelled 'sMTA', not 'oMTA'.
>>
>
> Fixed.
>
>
>>
>>
>>
>>>   The part within parentheses of step 6:
>>>
>>>   6. Recipient transport service conducts SPF and DKIM authentication
>>> checks by passing the necessary data to their respective modules, each of
>>> which require queries to the Author Domain's DNS data (when identifiers are
>>> aligned; see below).
>>>
>>>
>>> might indicate that SPF and DKIM authentication checks need not be
>>> performed when identifiers are not aligned. However, for sake of reporting,
>>> SPF and DKIM authentication checks will in general always be done, or am I
>>> missing something?
>>>
>>
>>  I can envision a DMARC implementation that skips SPF or DKIM checks if
>> the corresponding identifiers are not aligned, because they won't be
>> interesting to DMARC in that case.
>>
>>
>> Whether or not to generate reports in the case of non-alignment is not
>> clear from the text, or am I missing something? Par. 3.1.3:
>>
>>     8.  If a policy is found, it is combined with the Author's domain and
>>        the SPF and DKIM results to produce a DMARC policy result (a
>>        "pass" or "fail"), and can optionally cause one of two kinds of
>>        reports to be generated (not shown).
>>
>>
>> and par. 6.2 goes right into the format of reports, not the conditions
>> under which a report is to be sent.
>>
>
> Added an item at the end of the bullet list in 3.1.3.
>
>
>
>>
>>
>>
>>
>>    5.7 Last sentence:
>>>
>>> Mail Receivers SHOULD also implement reporting instructions of DMARC in
>>> place of any extensions to SPF or DKIM that might enable such reporting.
>>>
>>> Not sure what this means. But it seems to me DMARC cannot claim priority
>>> over other options/extensions in other IETF protocols.
>>>
>> This is another spot where the SHOULD gives the operator the choice to do
>> both if it wishes.  I can't remember off the top of my head what the use
>> case is here, but essentially the absence of a request for DKIM or SPF
>> reporting (as developed by the MARF working group some time ago) should not
>> preclude DMARC reporting, nor should their presence interfere with DMARC
>> reporting.
>>
>>
>> Then, borrowing from your text, may I suggest the following text:
>>
>> "Mail Receivers SHOULD implement reporting instructions of DMARC, even in
>> the absence of a request for DKIM or SPF reporting [MARF]. Furthermore, the
>> presence of such requests SHOULD NOT interfere with DMARC reporting."
>>
>>
> Done, with slight changes.
>
>>
>> And as a general statement: thanks for all the work, Murray!
>>
>
> Anything to get this thing put to bed!
>
> -MSK
>
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://www.ietf.org/mailman/listinfo/dmarc
>

v2.23.0 | Report a Bug | By Email