IETF Logo Mail Archive

Re: [ietf-822] one can re-sign without a permission to re-sign header

Brandon Long <blong@google.com> Mon, 05 May 2014 18:32 UTC

Return-Path: <blong@google.com>
X-Original-To: ietf-822@ietfa.amsl.com
Delivered-To: ietf-822@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EF51A1A0429 for <ietf-822@ietfa.amsl.com>; Mon, 5 May 2014 11:32:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.029
X-Spam-Level:
X-Spam-Status: No, score=-2.029 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4jw1tMp1MICi for <ietf-822@ietfa.amsl.com>; Mon, 5 May 2014 11:32:37 -0700 (PDT)
Received: from mail-qc0-x22e.google.com (mail-qc0-x22e.google.com [IPv6:2607:f8b0:400d:c01::22e]) by ietfa.amsl.com (Postfix) with ESMTP id C3AF41A040D for <ietf-822@ietf.org>; Mon, 5 May 2014 11:32:36 -0700 (PDT)
Received: by mail-qc0-f174.google.com with SMTP id x13so149438qcv.5 for <ietf-822@ietf.org>; Mon, 05 May 2014 11:32:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=EtMb2G35Tmiat5KRW6Z1cMZZkHHJhMXZMOCNHPwt68I=; b=TlbeifWVDwYjTijaLm32MIgnvw2GySGoikYO1UZgnSShnwxgsxfkkSA9BMYt1Iy1gB /1sO9LpESPp+qTdseAZoDQJno5LkD+EdLs1DoyStbcHBur/0PipQazeL4JNkvQOPw/9Z 1qucNGveCiSGa6qNeuyTDPrR5VqmyEbZQw2PuD1gDlaGkGcoSEbvqqoIr2CDAOFegr/R LjHCVi9BWjgNkUa0s4Vs0QRYNpDUHXxL+DaNeJ9+R/JhXvtPySK89rAU0y1kS4vJLI21 qM/tWGcGNKWHZZiMMrhbG/jrrlhgwMV7jYrdb8FN+hjrELllBkjk4ChQgS80w+Q3arp0 IfBQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=EtMb2G35Tmiat5KRW6Z1cMZZkHHJhMXZMOCNHPwt68I=; b=O/KknWcSuQUPdzvVcejBOso0oYEm7gXmyXrLtOc1AvmERmuLVnCjETk02x10P/Uvem kiO+wWduESPyZ9jKujh7+Vr/RTNFY2AzAxy3xF40DBPa+Wm6/EJXfz1+B6rhTBnFm1N3 7kgRyUjqC05hE6pM+KOPQLZDXur6s7B9SIz4Oe1AZwOQEpTAdZVRqQu5VaLRty2T7FQT XsC0aAj0Xzox7oiVLWRWXt0BmYaJDgnvK2xY3LdAAqa2SvgGXEgHMVOHf8ew9hdyA1dJ TchGHzaGklVDYuRRpoO6ZGBMQRX28J0UoEvVc16FCplf0+SWsGGNHFCmLPO0MJpOiPEH AmEQ==
X-Gm-Message-State: ALoCoQmo5OB6tq///XnBA9/zuK9SNfrhuuvFcWyQLoUPoDbDjkcZLzaipkdQnF1LIhVUIOl3BqTJ
MIME-Version: 1.0
X-Received: by 10.140.34.198 with SMTP id l64mr44393902qgl.85.1399314753057; Mon, 05 May 2014 11:32:33 -0700 (PDT)
Received: by 10.229.36.200 with HTTP; Mon, 5 May 2014 11:32:32 -0700 (PDT)
In-Reply-To: <536750E7.3030009@pscs.co.uk>
References: <20140501195449.68225.qmail@joyce.lan> <5363ACA6.1010203@qti.qualcomm.com> <alpine.BSF.2.00.1405021036010.79573@joyce.lan> <536750E7.3030009@pscs.co.uk>
Date: Mon, 05 May 2014 11:32:32 -0700
Message-ID: <CABa8R6vpYXHvYo19tyivy1KGkyy=KQcVUBJRChUVC7Ae9ENwhQ@mail.gmail.com>
From: Brandon Long <blong@google.com>
To: Paul Smith <paul@pscs.co.uk>
Content-Type: multipart/alternative; boundary="001a11c06f2ec92a6104f8ab5abc"
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf-822/Q_QaMlnTTHv03junjYcbjUVnF3w
Cc: ietf-822@ietf.org
Subject: Re: [ietf-822] one can re-sign without a permission to re-sign header
X-BeenThere: ietf-822@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion of issues related to Internet Message Format \[RFC 822, RFC 2822, RFC 5322\]" <ietf-822.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-822/>
List-Post: <mailto:ietf-822@ietf.org>
List-Help: <mailto:ietf-822-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 May 2014 18:32:41 -0000

On Mon, May 5, 2014 at 1:50 AM, Paul Smith <paul@pscs.co.uk> wrote:

> On 02/05/2014 15:42, John R Levine wrote:
>
>> I don't see any replay protection in here at all. Nothing that says to
>>> keep the signature expiration relatively short, and nothing which a mailing
>>> list recipient could not subsequently use to send spam. The first issue
>>> just needs a mention. It's the second issue that needs to be addressed IMO:
>>>
>>
>> Yeah, that occurred to me about five minutes after I posted it. Here's a
>> tweaked version where the mf tag is now mf=list.domain, with handwaving
>> about how a may-forward signature doesn't count unless there's also a
>> signature from the list domain.  Given lengthy discussions about how little
>> abuse comes from real mailing lists, that'd probably be adequate.
>>
>> http://datatracker.ietf.org/doc/draft-levine-may-forward/
>>
> Could this be 'extended' to include message-ids in the MF signature?
>
> That would provide some replay protection, especially if the forwarder
> checks for duplicate message-ids (the recipient could also check for
> dupes). Without it, I could see one of your messages on a list, then send
> messages to everyone on the list, pretending to be you.


I was wondering if we wanted a new canonicalization which would allow for
the Subject to be included but stripped of "standard" MLM subject prefixes,
ie something similar to the reply_regexp in mutt (
http://www.mutt.org/doc/devel/manual.html#reply-regexp)

Brandon

v2.23.0 | Report a Bug | By Email