Re: [Extra] Is this a plausible IMAP extension ?

"John Levine" <johnl@taugh.com> Thu, 28 February 2019 01:57 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: extra@ietfa.amsl.com
Delivered-To: extra@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 15785130ED1 for <extra@ietfa.amsl.com>; Wed, 27 Feb 2019 17:57:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1536-bit key) header.d=iecc.com header.b=gXphi0lU; dkim=pass (1536-bit key) header.d=taugh.com header.b=M3NFgO73
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2UYccamP0YA4 for <extra@ietfa.amsl.com>; Wed, 27 Feb 2019 17:57:05 -0800 (PST)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0A697130ECF for <extra@ietf.org>; Wed, 27 Feb 2019 17:57:04 -0800 (PST)
Received: (qmail 69009 invoked from network); 28 Feb 2019 01:57:02 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=10d8e.5c773fee.k1902; bh=C2GqWQT8Wfq/ry0ysDzGs/sz0C9f37kY3Mp3nf7AD78=; b=gXphi0lUTFR1OSuDmeqpCiK0nAKXZ68eQTsTSyjyggZ4+HS7i8rK52i5QFvXOt1a5RV/4Df/OXsX9mD62kWdWFb+psag1SU22YKnyIpLxJoB+AO736HVql1eCi0cZONgsiZ1C5gSS/Vmeity1PtIyw6gOh+tetmy3MpeQlYHR5eF/8mU7o/bIFUXQ2CS33A4IkmlbYnOL/rXc89Va4lS+NiTGol7D3zcJMl43VQuR1JQy+xrSyWU/yB3CcUCZ21Y
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=10d8e.5c773fee.k1902; bh=C2GqWQT8Wfq/ry0ysDzGs/sz0C9f37kY3Mp3nf7AD78=; b=M3NFgO73Vas6KYk1XZSPPQCjWxrSzgkfEL7TcyMQvnct3s+eql3HYRJk3oQAafP4I2j5gtLOCkj9dUocuh1+q1+0pF2hEt/7DkO5d3Xx+B2zEUIIDZtdRw6xWgFe8DUUG/WSG4wTRjFISXQRfuQpGN7Prl8nT1uKStcjSRFf71HL0HeAtu73T/C8/Urou91aj57TkZWtNDI5qLr+aDeNjPSkwnsMbTgVMOStrjzDMS5E6KIl4AbRhtX5noOmCVe6
Received: from ary.local ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTP via TCP6; 28 Feb 2019 01:57:02 -0000
Received: by ary.local (Postfix, from userid 501) id 5B252200F6CDEE; Wed, 27 Feb 2019 20:57:01 -0500 (EST)
Date: 27 Feb 2019 20:57:01 -0500
Message-Id: <20190228015702.5B252200F6CDEE@ary.local>
From: "John Levine" <johnl@taugh.com>
To: extra@ietf.org
Cc: brong@fastmailteam.com
In-Reply-To: <a05121fb-a105-458a-bd69-9d6c289860b2@www.fastmail.com>
Organization: Taughannock Networks
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset=utf-8
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/extra/QFTy0SFvMSzbWVtrb_94gsqYtW4>
Subject: Re: [Extra] Is this a plausible IMAP extension ?
X-BeenThere: extra@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Email mailstore and eXtensions To Revise or Amend <extra.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/extra>, <mailto:extra-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/extra/>
List-Post: <mailto:extra@ietf.org>
List-Help: <mailto:extra-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/extra>, <mailto:extra-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Feb 2019 01:57:07 -0000

In article <a05121fb-a105-458a-bd69-9d6c289860b2@www.fastmail.com> you write:
>The keyword has a restricted ACL such that the user can't modify it afterwards. Not OK. Dislike. Unnecessary and likely
>to cause many issues.

I had a chat with some of the BIMI people and pointed out that
privileged IMAP flags are unlikely to work well, and in any event, if
you have IMAP clients that can put malicious stuff into your
mailstore, you've got worse problems than what logo appears next to
the phish.

R's,
John