Re: [dmarc-ietf] Tickets 98 and 99 -- fake reports are not a problem and if they were authentication would not help
Seth Blank <seth@valimail.com> Mon, 25 January 2021 17:22 UTC
Return-Path: <seth@valimail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 777913A15C7 for <dmarc@ietfa.amsl.com>; Mon, 25 Jan 2021 09:22:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.198
X-Spam-Level:
X-Spam-Status: No, score=-0.198 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=valimail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R4pdBRM9UJS1 for <dmarc@ietfa.amsl.com>; Mon, 25 Jan 2021 09:22:11 -0800 (PST)
Received: from mail-vs1-xe2d.google.com (mail-vs1-xe2d.google.com [IPv6:2607:f8b0:4864:20::e2d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 904583A15C8 for <dmarc@ietf.org>; Mon, 25 Jan 2021 09:22:11 -0800 (PST)
Received: by mail-vs1-xe2d.google.com with SMTP id m13so2443813vsr.2 for <dmarc@ietf.org>; Mon, 25 Jan 2021 09:22:11 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=valimail.com; s=google2048; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=k0y3a5EC/CS8XmHXFm3mbzKASgYksui1yt3NayjzGYM=; b=O/ggIzLoTneFSj4Babq4OTIGgV8tif/0rz1T97gTktiG8Vp6Yb9UgqInpnzTC+3egQ MiHyU8ZlaiKKwDT9GoayDs+gOYxRLC7npnqB7FiGsz/SThsdQ6+46kNDgxfFOkJCKkT/ BxnxD1py23GgZALsNMQSEu2HSHHmdZ2y4xMJy9+RaIGhs10OMQrhdbK3miaNtUZPVWtx qLsrt09Q9xyhtPcZjH7Pa1sDBuYabkTF5Vg12ff3V7Bl8TQJtEQ+lKbfHfU34LDPaBXR aYfQummexucLRDbNxK2jFjOk67XZ3VcmzGfn97G377Z7eS0EqSBvQTnQCx5EN8D/8p07 9ing==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=k0y3a5EC/CS8XmHXFm3mbzKASgYksui1yt3NayjzGYM=; b=hm+OgW1xxHxra+ZIF30KDf3Bx3kxjkVe9YO3hMrD6o/oZhg2YPVcmb2YmG2WsD2ELO 1d8PDMWFPo9KDefDKMwtyyzkL3lJ3NszPl/fDTyWUXh7g4KgfGQ/0c2y3QACPc/+Tm8r afhrGtEKvVXn9b2bNxs8wCjiMJpCqockIoemz+Ir4uKvZ3/USjHjnflv7ipGTQIK+7KX YsFOlUFA+m5Q3yBpAoYDDWBuF+PV+rBawHtqisMKOADSgb802ZekFzasMObLsQm5OHnO 0J/ArT+xsLj2IemClrcnvYlGJk33D3naZe9ac2FiERbutbocODXHEl65qKILayj6FSA7 jbWw==
X-Gm-Message-State: AOAM532bYAPj+9eixU2JU5ETNlol+4M+bHl2zZYwtOzSsiYAaIQoEBQt N5XVZFmy3AgSBy1lWfGSIU64QgbR8zf+yQQZgDsV2OuRlv8=
X-Google-Smtp-Source: ABdhPJwscdqP4KuJ1FkOhZmllKVzB7R2mcnV1xcTjKVdpxztZgPT21E1QrB6X3zlwGWU6nJrkNe84zmvE2XNbV83miQ=
X-Received: by 2002:a05:6102:22da:: with SMTP id a26mr1550870vsh.56.1611595330327; Mon, 25 Jan 2021 09:22:10 -0800 (PST)
MIME-Version: 1.0
References: <34317129-8225-fb38-4ad3-e1b9ffed21fb@iecc.com> <ff074ea6-19a8-e152-a775-4bbb1b94d93f@mtcc.com>
In-Reply-To: <ff074ea6-19a8-e152-a775-4bbb1b94d93f@mtcc.com>
From: Seth Blank <seth@valimail.com>
Date: Mon, 25 Jan 2021 09:21:59 -0800
Message-ID: <CAOZAAfPawUx5QVLS0inH5SqaGEYCgaQghknwWYiPQexYBgLVhA@mail.gmail.com>
To: IETF DMARC WG <dmarc@ietf.org>
Cc: Michael Thomas <mike@mtcc.com>
Content-Type: multipart/alternative; boundary="0000000000002fa0f705b9bcc710"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/s5Sb19YqvFplNDDlZ6UThZak5og>
Subject: Re: [dmarc-ietf] Tickets 98 and 99 -- fake reports are not a problem and if they were authentication would not help
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Jan 2021 17:22:14 -0000
Mike, this comment is unproductive and false. It is well known that bad actors are the first and heartiest adopters of authentication. This has been discussed with ample evidence for years. We are not litigating this fact on this list. Please stick to the merits of the discussion and bring operational evidence to support your concern, or let's move on to another ticket. Seth, as Chair On Sun, Jan 24, 2021 at 6:57 PM Michael Thomas <mike@mtcc.com> wrote: > > On 1/24/21 6:29 PM, John R. Levine wrote: > > > > As we all know, bad guys are at least as good at authentication as > > good guys, probably better. > > > PS: if this were true, DKIM would be useless too. > > Mike > > _______________________________________________ > dmarc mailing list > dmarc@ietf.org > https://www.ietf.org/mailman/listinfo/dmarc > -- *Seth Blank* | VP, Standards and New Technologies *e:* seth@valimail.com *p:* 415.273.8818 This email and all data transmitted with it contains confidential and/or proprietary information intended solely for the use of individual(s) authorized to receive it. If you are not an intended and authorized recipient you are hereby notified of any use, disclosure, copying or distribution of the information included in this transmission is prohibited and may be unlawful. Please immediately notify the sender by replying to this email and then delete it from your system.
- [dmarc-ietf] Tickets 98 and 99 -- fake reports ar… John R. Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Douglas Foster
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Murray S. Kucherawy
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… John Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… John Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Douglas Foster
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Douglas Foster
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… John Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Alessandro Vesely
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Alessandro Vesely
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… John R Levine
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Alessandro Vesely
- [dmarc-ietf] reporting security requirements Michael Thomas
- Re: [dmarc-ietf] reporting security requirements Seth Blank
- Re: [dmarc-ietf] reporting security requirements Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Todd Herr
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Steven M Jones
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Michael Thomas
- Re: [dmarc-ietf] Tickets 98 and 99 -- fake report… Seth Blank