Re: [ietf-822] [dmarc-ietf] Request for feedback: draft-ser-authentication-results-openpgp
John Levine <johnl@taugh.com> Tue, 20 October 2020 01:24 UTC
Return-Path: <johnl@iecc.com>
X-Original-To: ietf-822@ietfa.amsl.com
Delivered-To: ietf-822@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B64663A08DA for <ietf-822@ietfa.amsl.com>; Mon, 19 Oct 2020 18:24:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.85
X-Spam-Level:
X-Spam-Status: No, score=-1.85 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=B5q5aJxj; dkim=pass (2048-bit key) header.d=taugh.com header.b=FCGTdhc6
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pBFn39aGuBu1 for <ietf-822@ietfa.amsl.com>; Mon, 19 Oct 2020 18:24:25 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F1B943A08C4 for <ietf-822@ietf.org>; Mon, 19 Oct 2020 18:24:24 -0700 (PDT)
Received: (qmail 22637 invoked from network); 20 Oct 2020 01:24:22 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:reply-to:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=586b.5f8e3c46.k2010; bh=4vl5Wjziog+bQUTlrlfLH1Xaxm79hsMoh+zXCd2MhDg=; b=B5q5aJxjvaNTk8t/yUvyg/L0dv/uQfvfau/1/RJSLJfL+qhXYAfjkxYwor7fwzd/57RXmxpTL7vU9DRcguPnwsZ4W0sItdJHVrl/JBbkRJmSVW72BC2nN2dOH9VMvmnO8MsOKyj/NO8cXkLMFGWaECOGl5qvfgByUrbhFMr9i6ZYcGUzQhHfV/sizBUVjeFglyidehQb+CgsX/e/Iz56hvyXBlu08LtwHFeiWFVN/uA2/yxKrpKRmi87q/EENbPhWtMUns2/RjsXgXjpvoFQ6l7H+1obTYboKm/+L8Wn8rcqq1KQkVyP2GvqVLwwwWGhMdjn6WdoknHsnK5m4j53aA==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:reply-to:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=586b.5f8e3c46.k2010; bh=4vl5Wjziog+bQUTlrlfLH1Xaxm79hsMoh+zXCd2MhDg=; b=FCGTdhc6a8GjS1IYYkoLREqHtwTtJJb+gg6p+nQrPYNOlWZ/U86UnrJp0KizpJu7Nd/6WeUZj2H8mo5PXdx8jk3hEKulfh5lq9cgX92Hfx+AYYRoBS0Q6C31acZqUUd06bdACaAt1J7g0Hj/lFOViLyQcOVTm7tbCYMTfqo5p0dYM1Dv8HKdF0IzgvlN71f6h6KKgft2Lae4UXIlIFEt1MJet5/CxFbdVQvOn01UkqzaZG0hRkmqPNtv9mB91yxNrt+uJKdhJwg3efKFndAVdg0xB3QUv3NK4v50HwB33j0rt6WAem/3LMDfnjyAuWYU8UjL4gfsSQqLNhRZomB7xA==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 20 Oct 2020 01:24:21 -0000
Received: by ary.qy (Postfix, from userid 501) id 4A46623B1365; Mon, 19 Oct 2020 21:24:20 -0400 (EDT)
Date: Mon, 19 Oct 2020 21:24:20 -0400
Message-Id: <20201020012421.4A46623B1365@ary.qy>
From: John Levine <johnl@taugh.com>
Reply-To: ietf-822@ietf.org
To: dmarc@ietf.org, ietf-822@ietf.org
Cc: contact@emersion.fr
In-Reply-To: <ZxWD3Yo-oiRI8Rq8k9H-7vG3Rgogp5lhNRwW3JcDUpFjHlfxgubW8rC5g4jQKWnhFazItAexGXsB4xMb69mZg2jRtuXEC7l1GxfmqdBbCOU=@emersion.fr>
Organization: Taughannock Networks
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-822/-Ptf2OrKl1fV4JLPW7EpAJV0vqY>
Subject: Re: [ietf-822] [dmarc-ietf] Request for feedback: draft-ser-authentication-results-openpgp
X-BeenThere: ietf-822@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of issues related to Internet Message Format \[RFC 822, RFC 2822, RFC 5322\]" <ietf-822.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-822/>
List-Post: <mailto:ietf-822@ietf.org>
List-Help: <mailto:ietf-822-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Oct 2020 01:24:27 -0000
[ Replies sent to ietf-822 since this is unrelated to DMARC ] In article <ZxWD3Yo-oiRI8Rq8k9H-7vG3Rgogp5lhNRwW3JcDUpFjHlfxgubW8rC5g4jQKWnhFazItAexGXsB4xMb69mZg2jRtuXEC7l1GxfmqdBbCOU=@emersion.fr> you write: >I've submitted a draft for a new Authentication-Results method a while >back [1]. I'd like to get some feedback. > >My use-case is: on a mailing list system [2], I'd like to display PGP >signature status, if a PGP signature is present. ... >[1]: https://datatracker.ietf.org/doc/draft-ser-authentication-results-openpgp/ >[2]: https://lists.sr.ht >Does this sounds like something worth doing? Maybe, but probably not. DKIM is intended as a signature for messages in transit, applied as a message leaves its sending system and verified as it arrives at the recipient system. The sorts of changs made by list managers often break DKIM signatures, causing all sorts of excitement when DMARC is involved. PGP signatures (and S/MIME signatures) are normally applied and verified by the end-user mail programs. They're in the message body and the changes that list managers typically make, tagging the signature or adding body headers or footers, are unlikely to break a PGP signature. Or to put it another way, if your A-R header said the PGP signature on the message contents was good, but the end user found it was bad, that would suggest something was screwed up, not normal mailing list processing. R's, John PS: It's not unreasonble for a list manager to use a PGP signature to verify that it should forward a message, but there's not much use to adding a header saying it did so.