IETF Logo Mail Archive

Re: [dmarc-ietf] Proposed text for p=reject and indirect mail flows

Pete Resnick <resnick@episteme.net> Thu, 30 March 2023 04:45 UTC

Return-Path: <resnick@episteme.net>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 65A21C14F726 for <dmarc@ietfa.amsl.com>; Wed, 29 Mar 2023 21:45:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=episteme.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ghS8tx3iGL36 for <dmarc@ietfa.amsl.com>; Wed, 29 Mar 2023 21:45:02 -0700 (PDT)
Received: from mail.episteme.net (episteme.net [216.169.5.102]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 33082C151B30 for <dmarc@ietf.org>; Wed, 29 Mar 2023 21:45:01 -0700 (PDT)
Received: from [31.133.138.192] (dhcp-8ac0.meeting.ietf.org [31.133.138.192]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.episteme.net (Postfix) with ESMTPSA id 90CA71044ED; Wed, 29 Mar 2023 23:44:58 -0500 (CDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=episteme.net; s=mail; t=1680151499; bh=bJlLj8vru+7+rhPrZR0Vwd4FZESdTRxx0F3GUlkxhFs=; h=From:To:Cc:Subject:Date:In-Reply-To:References; b=cYMUIvlhbSEQGToJqW4fgEKwaI9mN2jgIqyFYQujFv1rCNnrYjQm0420mxAnw7xFr Z+xJAgYcD2oybkUnPUf14VNSrADKlVIQhsPma0FpRlL7NqfxqazpeK5ATAkT35uOYJ PqaGfSArWDrO7HvUjW3M/EIJpFPhsNf27yRymZn8=
From: Pete Resnick <resnick@episteme.net>
To: Douglas Foster <dougfoster.emailstandards@gmail.com>
Cc: "Murray S. Kucherawy" <superuser@gmail.com>, IETF DMARC WG <dmarc@ietf.org>
Date: Thu, 30 Mar 2023 13:44:55 +0900
Message-ID: <06B6084E-A0C2-4E36-8B3A-EC2DFDD9D67B@episteme.net>
In-Reply-To: <CAH48ZfxejSxbsDpgBUcfMDhGcz0QLGZEH6yVRMC0xmEFLksw3w@mail.gmail.com>
References: <CALaySJ+NBg9vzqa0_t-sBf7EKXQ3A=DTyy-Vc7M-ZK9-vfJxmw@mail.gmail.com> <6319292.vCqnBZbX7o@localhost> <CAHej_8nd1xyAgwASLJbuJHyXEAfHbjqxNH1XtJxKFyfyOneyug@mail.gmail.com> <13145172.pEV04Z3DvM@localhost> <CAHej_8msLJQ0vbZ2jzitjxrQ1wdim5bHJkiD-QrU5F0EJvQp0g@mail.gmail.com> <FCFEB95E-63F9-46C3-A5F4-FA6B02FA8EB5@episteme.net> <CAHej_8=GbmzyXaeEkyLkv6uKc0-owuMC6UspPNq9irT7nF8b7w@mail.gmail.com> <CALaySJLmRyyBLE7ZKy88XUS_hXr9M2uwc8jOCYBrBPeC+pCdCg@mail.gmail.com> <MN2PR11MB43519A6CD95E5C80AA1EC2CFF7899@MN2PR11MB4351.namprd11.prod.outlook.com> <13603D87-4FDE-4768-9712-E6DB0818C802@kitterman.com> <CAH48ZfztW4OFm+ZMV=et7+uczj49dfbYT7i0w4LgU7pswuiEnw@mail.gmail.com> <CAL0qLwayTG_M1-fSTXiaVM5TS1Vo7X+Ehov2Bov9vCak7gn=yg@mail.gmail.com> <CAH48ZfxejSxbsDpgBUcfMDhGcz0QLGZEH6yVRMC0xmEFLksw3w@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"
X-Synology-Spam-Flag: no
X-Synology-Spam-Status: score=-0.101, required 6, ARC_NA 0, FREEMAIL_CC 0, MID_RHS_MATCH_FROM 0, FROM_HAS_DN 0, RCPT_COUNT_THREE 0, FREEMAIL_ENVRCPT 0, TO_MATCH_ENVRCPT_ALL 0, TAGGED_RCPT 0, __THREADED 0, MIME_GOOD -0.1, TO_DN_ALL 0, FREEMAIL_TO 0, RCVD_COUNT_ZERO 0, FROM_EQ_ENVFROM 0, MIME_TRACE 0, __NOT_SPOOFED 0, __BODY_URI_ONLY 0, __HDRS_LCASE_KNOWN 0, NO_RECEIVED -0.001
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/uChG3ck80A1TzuZwgM1OALEHIyA>
Subject: Re: [dmarc-ietf] Proposed text for p=reject and indirect mail flows
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Mar 2023 04:45:07 -0000

On 30 Mar 2023, at 10:32, Douglas Foster wrote:

> Here is a quick attempt at a definition:
>
> Interoperability:    Two (or more) entities cooperating to achieve a 
> mutual
> objective"

Not quite. If a third party does something that causes failure even when 
two entities do cooperate on their mutual objective, that's still a 
failure of interoperability. Go again to the TCP retransmission example: 
If I violate the standard, I can cause you and someone else on the 
network who are behaving reasonably to fail in rather impressive ways 
(indeed, even taking down whole networks). Documenting interoperability 
also means documenting what intermediaries and ancillary players MUST 
and MUST NOT do.

> Disruption
>
> If a message is blocked inappropriately, the responsibility falls on 
> the
> entity that made the block decision, which is the recipient's 
> evaluator.

No, that's not the way we write standards in the IETF. Compare: An SMTP 
sender definitely has to deal with the possibility of a connection 
closing unexpectedly, but the standard still says that an SMTP receiver 
"MUST NOT intentionally close the transmission channel until it receives 
and replies to a QUIT command (even if there was an error)", and we say 
that because we know that not doing so causes problems for some senders. 
Saying, "Hey, it's up to the senders to implement things properly" is 
all well and good, but we still put requirements on the other end in 
order to increase interoperability. So:

> The sender's DMARC policy is an input to that decision, it has no 
> power of its own.

Of course it has power of its own: It is interpreted. You can object to 
the way it is interpreted, but if we have operational experience that it 
is interpreted in particular ways that cause delivery failures that we 
expect should complete reasonably, then it is incumbent on us to 
document that some DMARC policies MUST NOT be used in certain 
circumstances with known failures. I understand that some people wish 
the IETF produced conformance standards, but that's not what we do. When 
we see running code that consistently produces bad results, we write the 
standard to document that state of affairs.

> The previous and proposed DMARC specifications are misleading because 
> they
> communicate false certainty.   The only thing that a sender can assert 
> is
> that all of the messages originated by him will be properly signed by 
> him.

Well, that's a bit misleading itself. The directive is not "p=signed". 
It is called "p=reject" for a reason, and that word is used elsewhere in 
the document. It carries meaning. The fact that it has been interpreted 
in a particular way should not be surprising. And given that historical 
interpretation, we now have an interoperability problem that needs to be 
documented appropriately.

pr
-- 
Pete Resnick https://www.episteme.net/
All connections to the world are tenuous at best

v2.23.0 | Report a Bug | By Email