IETF Logo Mail Archive

Re: [ietf-822] WSJ/gmail/ML, was a permission to...

Ned Freed <ned.freed@mrochek.com> Mon, 05 May 2014 14:41 UTC

Return-Path: <ned.freed@mrochek.com>
X-Original-To: ietf-822@ietfa.amsl.com
Delivered-To: ietf-822@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B9A601A036F for <ietf-822@ietfa.amsl.com>; Mon, 5 May 2014 07:41:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.653
X-Spam-Level:
X-Spam-Status: No, score=-2.653 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.651, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FxG3a57AUiSm for <ietf-822@ietfa.amsl.com>; Mon, 5 May 2014 07:41:43 -0700 (PDT)
Received: from mauve.mrochek.com (mauve.mrochek.com [66.159.242.17]) by ietfa.amsl.com (Postfix) with ESMTP id CE2BF1A00B3 for <ietf-822@ietf.org>; Mon, 5 May 2014 07:41:43 -0700 (PDT)
Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01P7FZA5A3A8000K2C@mauve.mrochek.com> for ietf-822@ietf.org; Mon, 5 May 2014 07:36:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mrochek.com; s=mauve; t=1399300591; bh=I0G3TTT07yl2Gf0XopXjaxmlYz1t01EoNXRf8sFAYMQ=; h=Cc:Date:From:Subject:In-reply-to:References:To; b=rB5CYyqBPsGtZAYPCHSBfIZvCtUPbYvUVkKvzzJcTNas3eo7bKgqRaIHHtxwEpWiC Xzg99Sy9benVvRO8mJ0uco8chpNDupAyijeRCStFQAkMQLm2RIZCj0yv38/idTHY/y 438fkQ6LBx2vrFvGyQv4NyYhFoYmNfrz2OIO158E=
MIME-version: 1.0
Content-type: TEXT/PLAIN; CHARSET="iso-8859-1"; Format="flowed"
Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01P7EXXVVVA8000052@mauve.mrochek.com>; Mon, 05 May 2014 07:36:27 -0700 (PDT)
Message-id: <01P7FZA2GORS000052@mauve.mrochek.com>
Date: Mon, 05 May 2014 07:30:46 -0700
From: Ned Freed <ned.freed@mrochek.com>
In-reply-to: "Your message dated Mon, 05 May 2014 10:03:08 -0400" <alpine.BSF.2.00.1405050957230.56860@joyce.lan>
References: <20140418123721.3610.qmail@joyce.lan> <5365357D.2020101@tana.it> <CABa8R6tSpasb7od7ixQXLXnV0Q+3jFNPVKAw+-+Fd_7traumiQ@mail.gmail.com> <alpine.BSF.2.00.1405050957230.56860@joyce.lan>
To: John R Levine <johnl@taugh.com>
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf-822/n0T6g_gSMQprW-XYnEZ4QGLGwgQ
Cc: Brandon Long <blong@google.com>, ietf-822@ietf.org
Subject: Re: [ietf-822] WSJ/gmail/ML, was a permission to...
X-BeenThere: ietf-822@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion of issues related to Internet Message Format \[RFC 822, RFC 2822, RFC 5322\]" <ietf-822.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-822/>
List-Post: <mailto:ietf-822@ietf.org>
List-Help: <mailto:ietf-822-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 May 2014 14:41:45 -0000

> >> Those two problems can be solved in different ways.  Gmail could use a
> >> third party's submission server just like they use its pop/imap one.
> >
> > Gmail does allow you to use a third party submission server, and it looks
> > like we may have to encourage its use even more in the future.

> I'm not sure how realistic that is in practice for users who aren't
> uber-nerds.

> To set up to use Yahoo's submission server from Gmail, I tried to
> configure it in the popup Gmail provided, which failed with an error
> message that told me to go log in at Yahoo.  I did, didn't help.  After
> some poking around I found a message in my Yahoo inbox that suggested I
> needed an app specific password.  (How many people will realize that Yahoo
> considers Gmail to be an app?)  It provided a link to the place in their
> credential server to create such a password, which is otherwise not easy
> to find.  So I finally found it, and made a password for Gmail, and then
> went back to Gmail, and used it, and indeed it worked.

> But how many people without CS degrees are going to be able to go through
> all that?

That's just the beginning. Even if you get the interface right (other
providers reportedly do this a bit better than Gmail), you now have the
problem that the submission server can't see the actual client IP address,
which is needed for logging and filtering purposes.

Of course there's a way to solve this problem: The XCLIENT extension or
a standardized variant of it. But for this to work there has to be
a recognizable relationship between all submission servers and all
send-on-behalf-of agents. Which sure looks like O(N*M) to me.

				Ned

v2.23.0 | Report a Bug | By Email