IETF Logo Mail Archive

Re: [Extra] Meeting minutes and notes from today

Bron Gondwana <brong@fastmailteam.com> Mon, 08 January 2018 00:05 UTC

Return-Path: <brong@fastmailteam.com>
X-Original-To: extra@ietfa.amsl.com
Delivered-To: extra@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29647120727 for <extra@ietfa.amsl.com>; Sun, 7 Jan 2018 16:05:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fastmailteam.com header.b=Eb5DHJjy; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=Znh1R7AV
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YmI14jRgagkH for <extra@ietfa.amsl.com>; Sun, 7 Jan 2018 16:05:38 -0800 (PST)
Received: from out3-smtp.messagingengine.com (out3-smtp.messagingengine.com [66.111.4.27]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3F35B120227 for <extra@ietf.org>; Sun, 7 Jan 2018 16:05:38 -0800 (PST)
Received: from compute6.internal (compute6.nyi.internal [10.202.2.46]) by mailout.nyi.internal (Postfix) with ESMTP id 0F5EB20BBE for <extra@ietf.org>; Sun, 7 Jan 2018 19:05:37 -0500 (EST)
Received: from web2 ([10.202.2.212]) by compute6.internal (MEProxy); Sun, 07 Jan 2018 19:05:37 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= fastmailteam.com; h=content-transfer-encoding:content-type:date :from:in-reply-to:message-id:mime-version:references:subject:to :x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=FF2Q070Lf/9N4pFOg rP4lhWjK5B6qh9SIgK/0iWIsLo=; b=Eb5DHJjyYUYOts/AIQnn/zfEBdJxvJrcu i8V5mStbpFeIugVqB0xlIIACFxYER9SFt16uc42n959wt5qWM5DbWFg/wQkwqm2s qi1FkgOXmzTIBUs5SsNwRkNjLoNL2lA2pZuzP92125uQ7Op4DDFu8fvkU5Fix1GE X2/21QrmrTdE5Qg/aDQFUJUgSLtwLYbXY1M5t3I+AbN0UkIKd+Lk55Y73mztc1rw RO3M3zyPbLWRESDr6lIAWXx/77W53vFCOsA8C4chgk5n0UVr3HoDIB7Mp+fEbUgR OIMB8QT/DuQHAy+IjXJpTk+EJgcP5gdsqyiPQ8gcEq/RdVJNBfemw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=FF2Q07 0Lf/9N4pFOgrP4lhWjK5B6qh9SIgK/0iWIsLo=; b=Znh1R7AVhEXUVBjY2/xgNL BQWV87kfM4FytdBzxFJIQhALQ6XQBWIhiAvfxO1EMDvhVdUA858OK1H/8Cxr2tnj HBIkStymnCe10ITY0PFSj269k60C1qRQyhN2iPvcxZOZ0vl3CRxJxqJ1+GJUyeqI v/nS2ebWQ6JHbi03IhQC1DJzojBPiZ+JBo8/vEZ0a2J5nvIpnhyC22wP+fZH3aK8 ekjXADfP6FPCRuNjSamJ8XAp1oDLXo/wkreIVpsoAxLiEL7dl9UVKlm3Egxj3NEF mybv+McsOtjbJvJ4ock66WbJXQNxU8o59eGZdPUP5W6aBvwCkKOwFtc8AjXx99fA ==
X-ME-Sender: <xms:0LVSWivsqB_NJah7S4fTOQEEJhz-1MUxYiGoXlOCGYyouONiy-LamA>
Received: by mailuser.nyi.internal (Postfix, from userid 99) id DB64262B9E; Sun, 7 Jan 2018 19:05:36 -0500 (EST)
Message-Id: <1515369936.2716353.1227337920.5333B762@webmail.messagingengine.com>
From: Bron Gondwana <brong@fastmailteam.com>
To: extra@ietf.org
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: multipart/alternative; boundary="_----------=_151536993627163532"
X-Mailer: MessagingEngine.com Webmail Interface - ajax-1d83f2c7
Date: Mon, 08 Jan 2018 11:05:36 +1100
In-Reply-To: <01QNK51YQ2JI000051@mauve.mrochek.com>
References: <1510734636.1704307.1173072248.27572238@webmail.messagingengine.com> <C0D8D552-4B1C-49D9-8CCC-E6F57F225C1A@glyphein.mailforce.net> <1515028094.3135331.1223576440.053F86DC@webmail.messagingengine.com> <01QNFXVO7LVS000051@mauve.mrochek.com> <2d0523cb-5b0b-4cd0-8fd5-301ccbbc4342@gulbrandsen.priv.no> <01QNG1OISUGO000051@mauve.mrochek.com> <POP7FOEK+etgKJuCJ9thXhV0WM4xpgCJwo6h5JvDnRc=.sha-256@antelope.email> <01QNK51YQ2JI000051@mauve.mrochek.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/extra/Z90q694yEp6CotdfHj89nyaJBW8>
Subject: Re: [Extra] Meeting minutes and notes from today
X-BeenThere: extra@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Email mailstore and eXtensions To Revise or Amend <extra.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/extra>, <mailto:extra-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/extra/>
List-Post: <mailto:extra@ietf.org>
List-Help: <mailto:extra-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/extra>, <mailto:extra-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Jan 2018 00:05:40 -0000

On Mon, 8 Jan 2018, at 02:33, Ned Freed wrote:
>> Right. I feel that the main disconnect here is that the reject/fcc
>> combination may cause one party (the site/company/...) to make
>> a false>> representation about delivery on the instructions of another (the
>> addressee).
> 
> That's part of it, but not the entire story. The main issue is
> undoubtedly> the ability of a user to get the site as a whole to lie about
> whether or> mail was delivered to them.
> 
> But consider the case of system-level use of reject :fcc. This is also> problematic. For one thing, if this results in a 5YZ response in
> the SMTP> diaglogue, the :fcc copy is going to differ from the DSN that's
> sent to the> originator (assuming a DSN is even sent - what about SUBMIT?). So
> what you> have here is a different form of lying: The administrator (or however> owns the system-level sieve) gets a wholly synthetic DSN that may
> differ substantially from what the remote system actually sent.
> 
> I suppose you could address this issue by making the action of :fcc
> conditional> on whether or not a DSN/MDN, on the theory that the point of :fcc is
> to capture> the DSN/MDN, not the underlying message.
> 
> I also note in passing that it's not a reliable means of capturing the> underlying message, since the DSN/MDN may not include the whole
> thing. So it's> actually kind of a worst case: You can't be sure that the message is
> there, but> you also can't assume it isn't.
> 
>> When those two are the same, this is okayish. Lying on my
>> own accord is not pretty, but it is better than lying because someone>> else told me to.
> 
>> The right answer may be that reject/fcc should be
>> available only when the mta owner and the script owner are the
>> same. Or>> that may be unwarranted complexity, and the right answer is to
>> cater to>> one of the two cases and knowingly disregard the other.
> 
> I don't think this addresses all the issues. What does appear to me to
> do so is> to require the use of an MDN for user-level reject :fcc. As for
> system-level,> I'll again point out that we lack the necessary context for
> discussing this in> our documents, but if we were to do so I'd say :fcc on a system-
> level sieve> only provides a copy of the DSN if the system produced one.
> 
> Ned

That seems fine to me.  I think there's some confusion about the point
of FCC, and we might need some clarifying text.
FCC in supposed to be a copy of the message that was sent on your
behalf, so if the system didn't generate a message, there's
nothing to store.
Basically, I want to be able to have sieve take a copy of any message it
generates, even if that message includes part of the original text of a
message that wasn't accepted.
Bron.

--
  Bron Gondwana, CEO, FastMail Pty Ltd
  brong@fastmailteam.com

v2.23.0 | Report a Bug | By Email