IETF Logo Mail Archive

Re: [Extra] Sieve REJECT and :fcc [was Re: Meeting minutes and notes from today]

Stan Kalisch <stan@glyphein.mailforce.net> Sun, 07 January 2018 23:30 UTC

Return-Path: <stan@glyphein.mailforce.net>
X-Original-To: extra@ietfa.amsl.com
Delivered-To: extra@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B4EA6124B17 for <extra@ietfa.amsl.com>; Sun, 7 Jan 2018 15:30:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mailforce.net header.b=i/W4aIa4; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=OF+5MEW6
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Vj2QG3B3kMvR for <extra@ietfa.amsl.com>; Sun, 7 Jan 2018 15:30:39 -0800 (PST)
Received: from out3-smtp.messagingengine.com (out3-smtp.messagingengine.com [66.111.4.27]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8268D126DC2 for <extra@ietf.org>; Sun, 7 Jan 2018 15:30:39 -0800 (PST)
Received: from compute7.internal (compute7.nyi.internal [10.202.2.47]) by mailout.nyi.internal (Postfix) with ESMTP id E5FBB20B16 for <extra@ietf.org>; Sun, 7 Jan 2018 18:30:38 -0500 (EST)
Received: from frontend1 ([10.202.2.160]) by compute7.internal (MEProxy); Sun, 07 Jan 2018 18:30:38 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mailforce.net; h=content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-sender :x-me-sender:x-sasl-enc; s=fm2; bh=m8Ek0/nf1C11Rjrioa1DnWBl0+KcX QlplGcp2jO8IvY=; b=i/W4aIa4J8HW6c271Q7neLXM4JNeYB4FJ0XBdnmwdun58 J6pXIiBEn8w5QJL+Flb3IwTYSVuag5GwqIKA74aXkQ+QzQAOzVZf0+UKTg12ZO7d ELy1gOGJXCootwyJUESwd3/xvbGTErsUSVbXkj1jk/v2F46ICUvJ5Sj5Oarf9exA ak5fZj6Y0BaIa7iV7l/vg6upT3C+PXcW6qznis7y8U+3eKaLpEqphGq+1HCD6mgS cX+8Q2wk1uyD75F1JKXDobzXpBTN1dtv2SS8Wjl7Et4ADR3iBKxkQtLysHsJh4DI 72s49PslzVHdzU/WuxLRSp9WgQ1tRonOPTwJ+ILpA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=m8Ek0/ nf1C11Rjrioa1DnWBl0+KcXQlplGcp2jO8IvY=; b=OF+5MEW6VZiCefearmX+hs 8JU7ZVZla5WG3i/VdaRxWstmxkNTB0eyw7u9q8HB5+aTYZqI5TKk6LsPAmiejAsb 0trNkn6eKL5kjVeJYa+Y6ME112oXdcd3rq2mSc0RFQtj2ydqAoadPUcwtbOyuxpv 0m2zNJpZ5Brp7+uuX5gARyP/FkyFREhDsuQw0wnubPo9A7qNqPXlWISquE6KSMeM rT1Y9oll1s6B4EQ7yiZYHi+sZ7LDRwjBLwcrlUFSDwr2eDftqEzOBjPSb0cAvZz/ 1Xgytd4n3UHo/VZeGumX0yR6d3p5XY+WKJAQfHvWx2v0KXGCy6jR8XMGd1G4KZDA ==
X-ME-Sender: <xms:nq1SWn1rv3zIR6RkprDjXyLRodgqs6WDer4DQXZd_iV2sdWINXEJGw>
Received: from [192.168.1.71] (108-84-31-27.lightspeed.tukrga.sbcglobal.net [108.84.31.27]) by mail.messagingengine.com (Postfix) with ESMTPA id 8A12B7E430 for <extra@ietf.org>; Sun, 7 Jan 2018 18:30:38 -0500 (EST)
References: <1510734636.1704307.1173072248.27572238@webmail.messagingengine.com> <C0D8D552-4B1C-49D9-8CCC-E6F57F225C1A@glyphein.mailforce.net> <1515028094.3135331.1223576440.053F86DC@webmail.messagingengine.com> <01QNFXVO7LVS000051@mauve.mrochek.com> <BE46D703-89FF-4250-BFF8-EB194729D4CF@glyphein.mailforce.net> <4ae4f1d5-bf40-483a-ae88-befe01d3adef@gulbrandsen.priv.no> <7C65B98D-6755-4957-A181-CBA08354D11B@glyphein.mailforce.net> <1515109224.681625.1224717176.520E1500@webmail.messagingengine.com> <01QNK0MRGMKC000052@mauve.mrochek.com> <D430964D-F882-4482-B5FB-B5167BEB33E3@glyphein.mailforce.net> <01QNKHFPA38A000051@mauve.mrochek.com>
From: Stan Kalisch <stan@glyphein.mailforce.net>
Content-Type: text/plain; charset="utf-8"
X-Mailer: iPhone Mail (13G36)
In-Reply-To: <01QNKHFPA38A000051@mauve.mrochek.com>
Message-Id: <252F7193-FFAD-4F5D-967F-708D79AA2661@glyphein.mailforce.net>
Date: Sun, 07 Jan 2018 18:30:37 -0500
To: extra@ietf.org
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (1.0)
Archived-At: <https://mailarchive.ietf.org/arch/msg/extra/KEPaatCEAgPKV39krycFIS8i5Ng>
Subject: Re: [Extra] Sieve REJECT and :fcc [was Re: Meeting minutes and notes from today]
X-BeenThere: extra@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Email mailstore and eXtensions To Revise or Amend <extra.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/extra>, <mailto:extra-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/extra/>
List-Post: <mailto:extra@ietf.org>
List-Help: <mailto:extra-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/extra>, <mailto:extra-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Jan 2018 23:30:42 -0000

On Jan 7, 2018, at 4:21 PM, Ned Freed <ned.freed@mrochek.com> wrote:

>> On Jan 7, 2018, at 8:39 AM, Ned Freed <ned.freed@mrochek.com> wrote:
> 
>>>> Is everybody OK with having fcc not include reject, and having a
>>>> separate capability (fcc-reject or similar) which administrators can
>>>> decide whether or not to allow - and indeed, software implementations
>>>> the choice whether or not to implement.
>>> 
>>> Not without the added condition that a MDN MUST be used if :fcc is present.
> 
>> Again, RFC 5429 explicitly mentions messages that have been rejected and
>> then archived.
> 
> You're referring to this paragraph:

Yes.

>  However, there are existing laws requiring certain organizations to
>  archive all received messages, even the rejected ones.  Also, it can
>  be quite useful to save copies of rejected messages for later
>  analysis.
> 
> This is in reference to legal intercept, compliance archiving, and similar
> mechanisms. This has nothing whatsoever to do with giving random users
> the means to falsely claim that a message wasn't delivered when in fact
> it was.

"Random users" can do things like archive messages for their own legal counsel (something I've done, actually) or law enforcement while not wanting to read the messages, themselves.

>> It does not require MDNs for them.
> 
> Of course it doesn't. In many cases legal intercept requirements call for
> the interception to be done invisibly.

I only made these comments in response to your assertions that random users find it convenient to get the system to lie.  Etc.

The technical argument is different entirely.

Again, if the argument is the appetite isn't there for further development, then I'm in agreement with your stipulation about the use of MDNs.  Which basically applies to the rest of my comments below.  Most of this discussion has unfortunately been the two of us talking past one another; I think we're basically in agreement.

>> In fact, the section where it discusses archiving rejected messages refers
>> to both MDNs and DSNs.  How does using :fcc/:fcc-reject meaningfully
>> semantically differ from just chaining fileinto and reject?
> 
> See above. One is a tool for users to keep track of the messages sent on their
> behalf by sending them a copy of those messages; the other is a tool for
> organizations and law enforcement intended to monitor some subset of the
> traffic the site receives.

Again, a user can retain a subset of communications for, say, legal counsel.

> Semantically they aren't even close.
> 
> I'll also note that the requirements of legal intercept are in general
> not met by keeping copies of MDNs and DSNs for rejected messages; in many
> if not most cases those MDNs and DSNs do not contain the entire message and
> even when they do the message may not be in its original form.
> 
>> The only additional thing you retain is the outgoing rejection message; the
>> original message that was rejected is still (per the requirements of the spec)
>> the same.
> 
> The same as what the sieve agent received. Which can be and often is markedly
> dissimilar to what came in over the wire. Legal intercept tends to favor
> collection of the latter, and may require it.
> 
>>>> That fixes both issues - those who really want the ability to lie can do
>>>> so, but it's clear that they're enabling that facility, and it's also
>>>> possible for both software vendors and administrators to not provide the
>>>> facility in the first place.
>>> 
>>> My issue is that we have no business messing with the meaning of a 5YZ
>>> code in response to a message transder.
> 
>> I think it's a bit hasty to say "messing".  After all, 5YZ codes were adapted
>> over the years for spam

I should have said "the purposes for which 5YZ codes have been used."

I think we basically agree about careless implementations and security implications.  I don't think we agree on the purposes users have, but that's neither here nor there at this point.  I certainly have no disagreement about your comments about side-channel attacks—I don't think those points can be overstated.


Thanks,
Stan

> Actually, no. AFAIK the only time RFC 5321 has been updated to add a 5YZ
> code is by RFC 7504, which adds 521 and 556:
> 
>  521 Host does not accept mail
>  556 Domain does not accept mail
> 
> Neither of these have anything to do with handling spam.
> 
>> No one is suggesting to overtly add "stalking" or
>> something like that to the IANA registry.  But why throw the baby out with the
>> bathwater and close the door to a possible future algorithm or procedure that
>> carefully attempts to address at least a subset of these things?
> 
> I have no idea what this is in reference to. I'm only talking about the
> handling of reject :fcc here.
> 
>               Ned
> 
> _______________________________________________
> Extra mailing list
> Extra@ietf.org
> https://www.ietf.org/mailman/listinfo/extra

v2.23.0 | Report a Bug | By Email