IETF Logo Mail Archive

Re: [Extra] Sieve REJECT and :fcc [was Re: Meeting minutes and notes from today]

Stan Kalisch <stan@glyphein.mailforce.net> Thu, 04 January 2018 19:40 UTC

Return-Path: <stan@glyphein.mailforce.net>
X-Original-To: extra@ietfa.amsl.com
Delivered-To: extra@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EEE96126CD8 for <extra@ietfa.amsl.com>; Thu, 4 Jan 2018 11:40:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.621
X-Spam-Level:
X-Spam-Status: No, score=-2.621 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mailforce.net header.b=VF1UxW1A; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=L7eTXuW8
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9z6uczsAEZEI for <extra@ietfa.amsl.com>; Thu, 4 Jan 2018 11:40:40 -0800 (PST)
Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 855441201F2 for <extra@ietf.org>; Thu, 4 Jan 2018 11:40:40 -0800 (PST)
Received: from compute7.internal (compute7.nyi.internal [10.202.2.47]) by mailout.nyi.internal (Postfix) with ESMTP id C4BAF20CBB; Thu, 4 Jan 2018 14:40:39 -0500 (EST)
Received: from frontend1 ([10.202.2.160]) by compute7.internal (MEProxy); Thu, 04 Jan 2018 14:40:39 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mailforce.net; h=cc:content-transfer-encoding:content-type:date:from :in-reply-to:message-id:mime-version:references:subject:to :x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=JNueB+8t6G3srR25o MlgLbGJKsO8OBPtM/H5pQmR/hw=; b=VF1UxW1AEysgqGtvpcWTMWi5bc95IKNYL 8KK8o9tvtYt2RdyWOwcuwwpgWFyXqqSd15rICfUxAY1ZL4QTl5GQGZaQTKphjRTt 6BFYJxbWPNQm7O9du1KZL8Ocfgb4Tph0KeoCJQRagKKcc5h9+wdK2JR27AHTj45y g9sqiKWCp0vy3UJoVoA+hwbsn3+d5e4IwzM6qQDBEEb8RAHGDNr/9S0w5Udhm6Dh bb6Qo9wDABjWMrdVuUFbe5C/H7GEOn9LJ+NE4t0WQStaCDihRs9nTa2uCsJFtBgG Kg+BXkFQdRXue7vhkdajvUSwGgIgHvBJQ5JZe9/BHLbBw3SeRTrhA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=JNueB+ 8t6G3srR25oMlgLbGJKsO8OBPtM/H5pQmR/hw=; b=L7eTXuW8BTGW3XJq+sSIbD 3h1U5Gw5BBAuLj1CbeZAbSHRo47bAWyc0FI1rhMi9ZCqssZNnzgiHU7HTxFYogX5 BN1bZagYQ2a/NHqlvW71f+YzBe3luyeZrUrCeAoxhuYdgirVMs3BW12gnoMtSFse rv9NI+wBApKOGURzaG1CUtINLAOuaerJCskYZlOEZ+0rjEzNj1JPwzRKlsWC4pIX kRLkBKKYLtzV8nRO9dcv0eMHnOY3TDOo4PoL+F1rf9qp70hY5F06s6yx5Cpid7eX hRqMzcvUKJPctRgTbsXqBwzKICacge0leHd6GJkXs/SEc/+obtv1ofUgSywH2iqw ==
X-ME-Sender: <xms:N4NOWihmHFqeG9-u_OY1Ol8bkwB0GbR98KYVJgsqFA3SSU_eaxd5AQ>
Received: from [192.168.1.71] (108-84-31-27.lightspeed.tukrga.sbcglobal.net [108.84.31.27]) by mail.messagingengine.com (Postfix) with ESMTPA id 43BD57E353; Thu, 4 Jan 2018 14:40:39 -0500 (EST)
References: <1510734636.1704307.1173072248.27572238@webmail.messagingengine.com> <C0D8D552-4B1C-49D9-8CCC-E6F57F225C1A@glyphein.mailforce.net> <1515028094.3135331.1223576440.053F86DC@webmail.messagingengine.com> <01QNFXVO7LVS000051@mauve.mrochek.com>
In-Reply-To: <01QNFXVO7LVS000051@mauve.mrochek.com>
Mime-Version: 1.0 (1.0)
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"
Message-Id: <BE46D703-89FF-4250-BFF8-EB194729D4CF@glyphein.mailforce.net>
Cc: Bron Gondwana <brong@fastmailteam.com>, extra@ietf.org, Murchison Ken <murch@fastmail.com>
X-Mailer: iPhone Mail (13G36)
From: Stan Kalisch <stan@glyphein.mailforce.net>
Date: Thu, 04 Jan 2018 14:40:36 -0500
To: Ned Freed <ned.freed@mrochek.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/extra/jLLX6oyAJDAWUX8qszSz0gEw2BQ>
Subject: Re: [Extra] Sieve REJECT and :fcc [was Re: Meeting minutes and notes from today]
X-BeenThere: extra@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Email mailstore and eXtensions To Revise or Amend <extra.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/extra>, <mailto:extra-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/extra/>
List-Post: <mailto:extra@ietf.org>
List-Help: <mailto:extra-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/extra>, <mailto:extra-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Jan 2018 19:40:43 -0000

On Jan 4, 2018, at 10:17 AM, Ned Freed <ned.freed@mrochek.com> wrote:

>>> On Fri, 17 Nov 2017, at 09:06, Stan Kalisch wrote:
>>> 
>>> Hi,
>>> 
>>> On Nov 15, 2017, at 3:30 AM, Bron Gondwana
>>> <brong@fastmailteam.com> wrote:>> *There is an open question for this one:*
>>>> 
>>>> https://datatracker.ietf.org/doc/draft-ietf-extra-sieve-fcc/
>>>> 
>>>> Ned Freed objected to supporting :fcc for the REJECT action because
>>>> it allows the sieve server to "lie" about whether it's keeping a copy
>>>> of the message.  There was debate about whether we should stop people
>>>> lying at this level, especially since a mail flow could take a copy
>>>> of every single email before it reached sieve.>
> 
> That's true but beside the point. Making service-level copies of messages is
> one thing, giving users a direct way to conveniently say "I didn't get this
> message" when they actually did is quite another.

Perhaps, but, after all, reject already provides that facility.  But that's not the central point of my argument in favor of allowing reject to invoke :fcc.

Some users have arguably (at least, certainly morally) legitimate reasons to lie about the delivery of mail.  The users who first come to my mind are survivors of domestic violence and/or sexual assault.  Google surely had in mind stalking and harassment when it provided Google Voice a mechanism to lie about whether or not someone had placed a call to a user's valid phone number.  Granted, backscatter, MDN, DSN, etc., of course, aren't even peripheral considerations in rolling out something like that for phone calls.  But, again, we're only talking about :fcc; reject's ship has already sailed.

I acknowledge your point that "delivery failed" is conspicuous by virtue of the fact that it is missing from RFC 8098.  And I can't say that this gives me no pause of any kind.  But it still seems to me, when you look at both the technical and very real human considerations, that this effort is more trouble than it's worth—I'm having a hard time believing adding :fcc to reject is substantially going to increase reject's (mis)use.  So this strikes me as something that, in effect, merely serves as a lecture to users who may lie, but 1) are not necessarily sanguine or happy about lying, and 2) may actually have the need to lie.  That is a scenario that is not implausible at all.  It is a privacy issue.  I don't want to *encourage* users to lie, but, on the other hand, I don't think the technical arguments are strong enough for the IETF to dictate that a language does or does not deal with such problems.  That should really be entrusted to users and administrators.  Some things, in the end, have to be entrusted to the community.


Thanks,
Stan

>>> I haven't been able to watch any video of the meeting yet, but would
>>> it be fair to say the main points of this debate were laid out in this
>>> thread on the Sieve mailing list earlier this year?>
>>> https://www.ietf.org/mail-archive/web/sieve/current/msg05362.html
> 
> I would have thought so, but since the point that service-level
> copying of messages made above is still deemed relevant, apparently not.
> 
>> I don't know if this was ever resolved.  I prefer the user to be allowed
>> to lie, Ned objects to that.
> 
> Very strongly.
> 
>> I don't actually care that much though, so
>> I'm happy to say no :fcc on REJECT.  It's not like I would actually use
>> it because sieve REJECT is bad anyway, it creates backscatter.
> 
> Not if it's properly implemented around delivery time and at the SMTP level.
> (LMTP level is too late.) Perhap this is the key point - it's one thing to
> cause a DSN to be sent saying "this message was never delivered" when in fact
> it was. It's quite another to send a MDN saying "I threw this message away."
> 
> The latter carries no implication the message wasn't read and the content
> possibly retained by the user in some way. The former does carry such an
> implication.
> 
> And sure enough, if you check RFC 8098 you'll find that the disposition types
> allowed in an MDN are "displayed", "deleted", "dispatched", and "processed". 
> (If the sieve reject action uses an MDN it's required to set the type to
> "deleted".) "delivery failed" is conspicuous by it's absence.
> 
>> So Ken - I'm happy to go ahead with "not supported on reject".
> 
> The alternative is to require an MDN be used in this case. Which of course
> creates a possible source of backscatter.
> 
>> The other open issue was separate capability string.  I don't think
>> that's necessary, and nobody else seems to have commented on it.
> 
> Certainly not if :fcc only applies to vacation. However, if it applies
> to reject in a way that forces that extension to behave in a way some
> people find undesirable, things get a little more tricky.
> 
>> I've created one task for each:
> 
>> https://github.com/ietfextra/tracking/issues/14
>> https://github.com/ietfextra/tracking/issues/15
> 
> Can you apply :fcc to a notify action that generates an email message? If
> not why not?
> 
> And for that matter, can you apply :fcc to a notify action that generates some
> other kind of notification that could be mapped to an email?
> 
>            Ned
> 
> _______________________________________________
> Extra mailing list
> Extra@ietf.org
> https://www.ietf.org/mailman/listinfo/extra

v2.23.0 | Report a Bug | By Email