Re: [dmarc-ietf] Publishing and Registration Concerns
Douglas Otis <doug.mtview@gmail.com> Thu, 16 April 2015 20:57 UTC
Return-Path: <doug.mtview@gmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DD8791A1BEF for <dmarc@ietfa.amsl.com>; Thu, 16 Apr 2015 13:57:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZT8yu0HC99JG for <dmarc@ietfa.amsl.com>; Thu, 16 Apr 2015 13:57:49 -0700 (PDT)
Received: from mail-pd0-x22f.google.com (mail-pd0-x22f.google.com [IPv6:2607:f8b0:400e:c02::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3674A1A1E0E for <dmarc@ietf.org>; Thu, 16 Apr 2015 13:57:49 -0700 (PDT)
Received: by pdbqd1 with SMTP id qd1so104695635pdb.2 for <dmarc@ietf.org>; Thu, 16 Apr 2015 13:57:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=J1kBdjtkwwDNB1xpuVlgq6a2ozDWh0cPqozfmgGycnU=; b=ZEgCqDyku/bURdri1kcZEHxkrdiYhzTVIXWECiG9515D4eKtL8A3WLaXa7fEljbSoj x0CCaFsnrqJPQkYGs0RXksE07KiSxirhiXENfzfGHDZrYGa9hTi5562xslTurWQUfEN4 svp1uH+z5rUdxjmTaV54amGtKuFgnr+4PyJ/NLF2CajiE8HmtPHuu2eon4xw7xM6P4ox 73ogUXEo7ou1gfaFizFIMP9RM8slTcWyhW9W8pttSqhOoGq9M19bEWqjMOJZVKjHdVO1 lzaPI99ZUUyuKFDa8QYzSP9iZaEGafNNeJmETX79J0FsEjRmox8pw8BYS1a0/Vykqpbl 6/yw==
X-Received: by 10.66.66.43 with SMTP id c11mr968423pat.20.1429217868881; Thu, 16 Apr 2015 13:57:48 -0700 (PDT)
Received: from US-DOUGO-MAC.local (107-0-5-6-ip-static.hfc.comcastbusiness.net. [107.0.5.6]) by mx.google.com with ESMTPSA id jz10sm7998918pbc.48.2015.04.16.13.57.45 for <dmarc@ietf.org> (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 16 Apr 2015 13:57:47 -0700 (PDT)
Message-ID: <55302247.3060002@gmail.com>
Date: Thu, 16 Apr 2015 13:57:43 -0700
From: Douglas Otis <doug.mtview@gmail.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:31.0) Gecko/20100101 Thunderbird/31.6.0
MIME-Version: 1.0
To: dmarc@ietf.org
References: <20150410170856.730.qmail@ary.lan> <CAL0qLwav2-My0pN=xR=M_yjFXX0QPyTgXmgsrW8o72zxCLVWbQ@mail.gmail.com> <552EB0E0.1080603@isdg.net> <2135687.mun7GpbTUA@kitterma-e6430> <552F06BA.7040505@isdg.net> <BL2SR01MB6052776959E672947DB83CD96E40@BL2SR01MB605.namsdf01.sdf.exchangelabs.com>
In-Reply-To: <BL2SR01MB6052776959E672947DB83CD96E40@BL2SR01MB605.namsdf01.sdf.exchangelabs.com>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/dmarc/wGd0YopBUUPNlo4XnQIOIt0AjqY>
Subject: Re: [dmarc-ietf] Publishing and Registration Concerns
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Apr 2015 20:57:51 -0000
Dear Terry, Since DMARC assertions cause compliance issues for third-party domains, and since some think customers would be unable to manage a third-party exception list needed for draft-otis-tpa-label, draft-levine-dkim-conditional, draft-kucherawy-dkim-delegate, and rfc6541, one solution would use DMARC assertions to delegate the heavy lifting to a separate organization specializing at handling third-party conflicts. That would allow all of their customers to expend little effort in their system configuration such as _dmarc TXT "v=DMARC1; p=quarantine; tpa=third-party-authority.com; This way, the most that administrator would concern themselves with is dealing with is simple TXT records from their perspective. Perhaps hotmail might even offer their zone on a fee basis. It also seems like an ideal way to ensure your customers are likely to remain happy and not leave. I would be happy to make tpa-label look more like atps, but I don't think the reasons for the additional terms were clearly understood. These terms ensure third-party messages could be differentiated from direct mailing using simple sort criteria. It would be equally wrong to suggest anything included in the dkim-conditional header would be indicating exactly what a malefactor needs to add to their message for acceptance. More on that later. Regards, Douglas Otis On 4/15/15 5:55 PM, Terry Zink wrote: > Hi, Hector, > >> For the umpteenth time, not everyone need 4000 domains. Most of the >> domains that will or may utilize it, simply don't need this scale. > I'm not sure you get the point that the others are trying to make. While this *may* scale for small domains (a big maybe), it won't scale for large domains like Hotmail, Yahoo, Google, AOL, and a lot of other large providers who are unlikely to implement it. They make up a small number of implementers but a massive number of users. If it won't work for this massive user base, then it's not worth implementing even on a small scale because for the average user (of which there are millions), the people they try to send to (Hotmail, Google, Yahoo) aren't supporting this. > > -- Terry > > -----Original Message----- > From: dmarc [mailto:dmarc-bounces@ietf.org] On Behalf Of Hector Santos > Sent: Wednesday, April 15, 2015 5:48 PM > To: dmarc@ietf.org > Subject: Re: [dmarc-ietf] Publishing and Registration Concerns > > On 4/15/2015 4:39 PM, Scott Kitterman wrote: >> For the umpteenth time, the issue isn't managing a DNS zone. That's the easy >> part. The hard part is knowing what to put in it. > Right. I never said it was hard problem. This didn't stop the large > domain with SPF in adding INCLUDE and still have an unknown result. > >> Many companies, not even >> the really big ones, have thousands of domains. > and millions more does not. > >> Go publish SPF, DKIM key, and DMARC records for 4,000 domains and then tell me >> it's all easy to then figure out what the right list of authorized forwarders >> should be for each one. > For the umpteenth time, not everyone need 4000 domains. Most of the > domains that will or may utilize it, simply don't need this scale. > >> P.S. I'm done on the topic of is keeping a list of forwarders a useful >> solution for the group to work on. No matter how you wrap it up, it's not. > So move on, scott. >
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- [dmarc-ietf] Updated mandatory tag/conditional si… John Levine
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Anne Bennett
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Rolf E. Sonneveld
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Rolf E. Sonneveld
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… MH Michael Hammer (5304)
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Douglas Otis
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… John Levine
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… John Levine
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… John Levine
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… John R Levine
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Scott Kitterman
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Brandon Long
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Douglas Otis
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Rolf E. Sonneveld
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… John Levine
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Scott Kitterman
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Douglas Otis
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Rolf E. Sonneveld
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Scott Kitterman
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Douglas Otis
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Douglas Otis
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Scott Kitterman
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Scott Kitterman
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Scott Kitterman
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Scott Kitterman
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Stephen J. Turnbull
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Scott Kitterman
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Douglas Otis
- [dmarc-ietf] Publishing and Registration Concerns Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Terry Zink
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Murray S. Kucherawy
- Re: [dmarc-ietf] Publishing and Registration Conc… Douglas Otis
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Publishing and Registration Conc… Douglas Otis
- Re: [dmarc-ietf] Publishing and Registration Conc… Terry Zink
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Publishing and Registration Conc… Murray S. Kucherawy
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Rolf E. Sonneveld
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… MH Michael Hammer (5304)
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Murray S. Kucherawy
- Re: [dmarc-ietf] Publishing and Registration Conc… Scott Kitterman
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Updated mandatory tag/conditiona… Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Terry Zink
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Douglas Otis
- Re: [dmarc-ietf] Publishing and Registration Conc… Scott Kitterman
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Murray S. Kucherawy
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Terry Zink
- Re: [dmarc-ietf] Publishing and Registration Conc… Scott Kitterman
- Re: [dmarc-ietf] Publishing and Registration Conc… Terry Zink
- Re: [dmarc-ietf] Publishing and Registration Conc… Murray S. Kucherawy
- Re: [dmarc-ietf] Publishing and Registration Conc… Steve Atkins
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Terry Zink
- Re: [dmarc-ietf] Publishing and Registration Conc… Hector Santos
- Re: [dmarc-ietf] Publishing and Registration Conc… Douglas Otis