IETF Logo Mail Archive

Re: [dmarc-ietf] my forward signer draft, third party authorization, not, was non-mailing list

John Levine <johnl@taugh.com> Mon, 31 August 2020 16:15 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D8C43A1795 for <dmarc@ietfa.amsl.com>; Mon, 31 Aug 2020 09:15:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.851
X-Spam-Level:
X-Spam-Status: No, score=-1.851 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=TGXEBDAx; dkim=pass (2048-bit key) header.d=taugh.com header.b=i71jTYjk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EJ3BB2iZFV9B for <dmarc@ietfa.amsl.com>; Mon, 31 Aug 2020 09:15:42 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7CDB23A17A2 for <dmarc@ietf.org>; Mon, 31 Aug 2020 09:15:42 -0700 (PDT)
Received: (qmail 9144 invoked from network); 31 Aug 2020 16:15:40 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=23b6.5f4d222c.k2008; bh=7NwdcojtncHliOT2FdciYJsUtR87hkSiKgg3wa+kXlM=; b=TGXEBDAx8pG9UPyUpdoXofTfFJIvPsbe0GhcLExtzB5KkufVu/+PJXLw2ycg3jSTmq0sX9hg1/Qc8XDJxN05RJGdp/gSgZ0ikLZKxfEBkFNGEH0LDLdOZ0KEvv90XU8QyUstg6KS3RNRzyin63zmDItME83wgT+kNjhxzlZNhDonLJIsGCWiyKJkI3jpyy35F/H7Zp5DUSkY7UEF9HaOcR64TYCrBsJG0iGR4FlodISO4aManTAt5ZL6Q2vva+mRWABYOc1yunVonIUcaeN1jdAl1k0/Ktc+H6gabD1kIE+mo76BpAbMEQTwJUCoBS1bb1cSyQAaElB3ngw3Qf6K8w==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=23b6.5f4d222c.k2008; bh=7NwdcojtncHliOT2FdciYJsUtR87hkSiKgg3wa+kXlM=; b=i71jTYjkjcK5+JQbWumE11eJKHIhll58K7I6IXs62ITQAtfJy8tcV/XiCCIro/dIUYfeUfQNqS6B7g0bLMYVi2C5ivqX1/uClXJCwbol1fQPRPN05UzcT3SAZ3o7cGA49RFtDB1w0ppmKVsVY6QugeJycJZtK4CaxUFcjvee0FjDAyY3J/mD5uqQHlNHk50jB8gjiTb9Sd4enVAAKBIjiEUM2gj+DHYdAbNehEua9TmERv351pn597nnToI/SK0KJZiZI91W4Em09VKZe5z3BwPve+A7NS2js3WXHGuWi4hy7Lppj02KPQR0DaiBS8oAwdPw0oeudpc97Gbw03KDLw==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 31 Aug 2020 16:15:40 -0000
Received: by ary.qy (Postfix, from userid 501) id 2C9F41F510E8; Mon, 31 Aug 2020 12:15:40 -0400 (EDT)
Date: Mon, 31 Aug 2020 12:15:40 -0400
Message-Id: <20200831161540.2C9F41F510E8@ary.qy>
From: John Levine <johnl@taugh.com>
To: dmarc@ietf.org
Cc: superuser@gmail.com
In-Reply-To: <CAL0qLwYuSD8ncf+HXU2B0z1NtrM7cT33vdVh2sUXJ-=RmLFb4w@mail.gmail.com>
Organization: Taughannock Networks
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/u-jYOTN90ck2jYknbhieyC1AUvU>
Subject: Re: [dmarc-ietf] my forward signer draft, third party authorization, not, was non-mailing list
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 31 Aug 2020 16:15:45 -0000

In article <CAL0qLwYuSD8ncf+HXU2B0z1NtrM7cT33vdVh2sUXJ-=RmLFb4w@mail.gmail.com> you write:
>The draft suggests use of "x=" as a way to limit exposure.  If you do that,
>then an attacker would need to be able to generate mail through your signer
>with an "!fs=" tag identifying a domain they control, and exploit the
>replay before the time in the "x=" tag arrives.  Sure, it's time-limited,
>but it only takes seconds for such an attack to succeed, and automation of
>such an attack is easy.

The threats I had in mind were more like attacker finds an old message
in an archive with a fs domain that's been abandoned and the attacker
can reregister.  An x= of a few days should prevent that while still
letting normal list traffic work.

As always, as I hope we all remember DMARC alignment doesn't mean not spam,
and you still do all of the stuff you do to sort your mail.  This scheme
depends on the forwarders you authorize being well-behaved.  That's why I
am concerned that senders need to be selective about who they allow to
forward.

R's,
John

v2.23.0 | Report a Bug | By Email