IETF Logo Mail Archive

Re: [ietf-822] one can re-sign without a permission to re-sign header

Douglas Otis <doug.mtview@gmail.com> Fri, 27 June 2014 21:48 UTC

Return-Path: <doug.mtview@gmail.com>
X-Original-To: ietf-822@ietfa.amsl.com
Delivered-To: ietf-822@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3A3FD1A019E for <ietf-822@ietfa.amsl.com>; Fri, 27 Jun 2014 14:48:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P0rp09a3NgxX for <ietf-822@ietfa.amsl.com>; Fri, 27 Jun 2014 14:48:52 -0700 (PDT)
Received: from mail-pd0-x22d.google.com (mail-pd0-x22d.google.com [IPv6:2607:f8b0:400e:c02::22d]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B5D411A00EA for <ietf-822@ietf.org>; Fri, 27 Jun 2014 14:48:52 -0700 (PDT)
Received: by mail-pd0-f173.google.com with SMTP id r10so4912815pdi.4 for <ietf-822@ietf.org>; Fri, 27 Jun 2014 14:48:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=azzt0gxo3Jph1CXavnGKb2kLzibRWlJusolBItgunck=; b=K2GOzKeTn1sHuphDFZpMCPIqyvZYXwGrtV92I6HLIv6Ve6IdWc8f1jHzhU4i2F6HiV /mIamozNPNqa25rvX+mq/gY/y+WfnzNFuzIxsn0tRVS1BYnTopwPGupS3wuwePOCXsgH iv+adIkLlS4SuyhtfrifyyWs5Vc03Qt/VnFa3WSQwqHn4tQJnGoC/QyTre3JVNU9D3nk +yW1c0dy4zgKwDbpznRjIyylxG+EBGvrbO6MNYapF/6I4XNcOzD2Fo6Cg78MMDcIuiJa 4SBJJi4AYiGFlhzdc9oJdm8M1wM7G/gbeuNsmpa3P0qGQRLX/qsHVyOskUXCW1tmxsl7 syjw==
X-Received: by 10.68.193.100 with SMTP id hn4mr33680654pbc.50.1403905732417; Fri, 27 Jun 2014 14:48:52 -0700 (PDT)
Received: from [192.168.0.54] (107-0-5-6-ip-static.hfc.comcastbusiness.net. [107.0.5.6]) by mx.google.com with ESMTPSA id qv3sm16221254pbb.87.2014.06.27.14.48.51 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Fri, 27 Jun 2014 14:48:51 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.2\))
From: Douglas Otis <doug.mtview@gmail.com>
In-Reply-To: <20140501195449.68225.qmail@joyce.lan>
Date: Fri, 27 Jun 2014 14:48:50 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <1E62F82B-9752-4A0C-84F3-7F4EBEDD567F@gmail.com>
References: <20140501195449.68225.qmail@joyce.lan>
To: John Levine <johnl@taugh.com>
X-Mailer: Apple Mail (2.1878.2)
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf-822/8AY7WuwndoV98_H75nLCLC7Vje0
Cc: ietf-822@ietf.org, presnick@qti.qualcomm.com
Subject: Re: [ietf-822] one can re-sign without a permission to re-sign header
X-BeenThere: ietf-822@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion of issues related to Internet Message Format \[RFC 822, RFC 2822, RFC 5322\]" <ietf-822.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-822/>
List-Post: <mailto:ietf-822@ietf.org>
List-Help: <mailto:ietf-822-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Jun 2014 21:48:54 -0000

On May 1, 2014, at 12:54 PM, John Levine <johnl@taugh.com> wrote:

>> author's site. That shouldn't require the mailing list to communicate 
>> with the author's site, but it might require the author's site to get 
>> something from the mailing list's site.
> 
> That seems overcomplicated.  Just make the expiration time fairly
> short, since it's a rare mailing list that takes more than a day to do
> its thing.
> 
>>> Perhaps it's time for a more concrete proposal to be written down.
> 
> It occurred to me that there's a very simple way to do this:
> 
> http://datatracker.ietf.org/doc/draft-levine-may-forward/

Dear John,

This scheme permits replay of From header fields with _any_ content irrespective of actual sources.  DKIM-Delegate at least indicates who to trust, irrespective of how the message is identified.  Neither of these schemes will be effective at dealing with spoofing attacks. 

Once one stops ignoring the overhead associated with DKIM and the like, a straight forward authorization scheme becomes far more reasonable from the overhead standpoint and much more effective at mitigating spoofing attacks.  Such a scheme would only come into play for non-aligned messages and does not involve passing around hapless signed tokens as with DKIM-Delegate or DKIM-May-Forward.

Regards,
Douglas Otis

v2.23.0 | Report a Bug | By Email