Re: [ietf-dkim] Role of Sender header as signing domain
Douglas Otis <dotis@mail-abuse.org> Tue, 28 November 2006 18:13 UTC
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1Gp7SA-0007nr-Tx for ietf-dkim-archive@lists.ietf.org; Tue, 28 Nov 2006 13:13:10 -0500
Received: from sb7.songbird.com ([208.184.79.137]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1Gp7S8-0005Q6-QB for ietf-dkim-archive@lists.ietf.org; Tue, 28 Nov 2006 13:13:10 -0500
Received: from sb7.songbird.com (sb7.songbird.com [127.0.0.1]) by sb7.songbird.com (8.12.11.20060308/8.12.11) with ESMTP id kASIAQvg015715; Tue, 28 Nov 2006 10:10:26 -0800
Received: from b.mail.sonic.net (b.mail.sonic.net [64.142.19.5]) by sb7.songbird.com (8.12.11.20060308/8.12.11) with ESMTP id kASIAItr015676 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <ietf-dkim@mipassoc.org>; Tue, 28 Nov 2006 10:10:18 -0800
Received: from [10.2.164.130] (SJC-Office-NAT-218.Mail-Abuse.ORG [168.61.10.218]) (authenticated bits=0) by b.mail.sonic.net (8.13.8.Beta0-Sonic/8.13.7) with ESMTP id kASIA1ET012453 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Tue, 28 Nov 2006 10:10:01 -0800
In-Reply-To: <op.tjp8jhoh6hl8nm@clerew.man.ac.uk>
References: <198A730C2044DE4A96749D13E167AD37E7E714@MOU1WNEXMB04.vcorp.ad.vrsn.com> <91A3FD7B-8B4A-4F78-9C5F-9BC66F86614D@mail-abuse.org> <4563C8D8.40909@santronics.com> <45647C86.36F3@xyzzy.claranet.de> <45648A1A.9030302@santronics.com> <op.tjg51tkv6hl8nm@clerew.man.ac.uk> <4567E1D7.6050002@cisco.com> <op.tjod3xh26hl8nm@clerew.man.ac.uk> <456AE2F6.2040809@cs.tcd.ie> <op.tjp8jhoh6hl8nm@clerew.man.ac.uk>
Mime-Version: 1.0 (Apple Message framework v752.2)
Content-Type: text/plain; charset="US-ASCII"; delsp="yes"; format="flowed"
Message-Id: <CD1DF441-182E-4960-A3D1-CFF5E74675E1@mail-abuse.org>
Content-Transfer-Encoding: 7bit
From: Douglas Otis <dotis@mail-abuse.org>
Subject: Re: [ietf-dkim] Role of Sender header as signing domain
Date: Tue, 28 Nov 2006 10:09:58 -0800
To: Charles Lindsey <chl@clerew.man.ac.uk>
X-Mailer: Apple Mail (2.752.2)
X-Songbird: Clean, Clean
Cc: DKIM <ietf-dkim@mipassoc.org>
X-BeenThere: ietf-dkim@mipassoc.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF DKIM Discussion List <ietf-dkim.mipassoc.org>
List-Unsubscribe: <http://mipassoc.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@mipassoc.org?subject=unsubscribe>
List-Archive: <http://mipassoc.org/pipermail/ietf-dkim>
List-Post: <mailto:ietf-dkim@mipassoc.org>
List-Help: <mailto:ietf-dkim-request@mipassoc.org?subject=help>
List-Subscribe: <http://mipassoc.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@mipassoc.org?subject=subscribe>
Sender: ietf-dkim-bounces@mipassoc.org
Errors-To: ietf-dkim-bounces@mipassoc.org
X-SongbirdInformation: support@songbird.com for more information
X-Songbird-From: ietf-dkim-bounces@mipassoc.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: a87a9cdae4ac5d3fbeee75cd0026d632
On Nov 28, 2006, at 4:48 AM, Charles Lindsey wrote: > On Mon, 27 Nov 2006 13:07:02 -0000, Stephen Farrell > <stephen.farrell@cs.tcd.ie> wrote: > >> Charles Lindsey wrote: >>> On Sat, 25 Nov 2006 06:25:27 -0000, Jim Fenton <fenton@cisco.com> >>> wrote: >>> >>>> It's not entirely forgotten; section 2.3 of draft-allman-dkim- >>>> ssp-02 discusses multiple From addresses. We thought about >>>> resolving the ambiguity by (1) arbitrarily picking the first >>>> address in the From header field, (2) picking the address in the >>>> Sender header field, or (3) querying SSP for all addresses in >>>> the From header field, and combining them somehow. We picked >>>> (1), ... >>> >>> And there I think you picked the wrong one. >> >> Fair enough that you disagree, but the main point though is that >> the WG reached rough consensus. >> >>> I have seen sufficient comments from others to the effect that >>> the Sender needs to be looked at in many situations that this >>> matter probably ought to be reviewed (does that mean raising an >>> Issue?). >> >> No. For base, Barry and I are using a scheme where re-opening a >> decided issue (which is what you'd presumably like in this case) >> requires N people supporting, for some informally defined, but >> increasing, value of N .... > > That is fair comment, but there seem to be an awful lot of people > still discussing the Role of Sender (and even List-ID and Return- > Path) as possible signing domains. > > OK, this is a petition for reopening this Issue. That gives 1 vote, > but you will need lots more to take action. So I invite anyone else > who supports this view to reply with a +1. If there is insufficient > support, then I will shut up. +1! Selection of the From address is premised upon a bad assumption that by only "authorizing" this header, spoofing an "author" of the message can be prevented. This concept remains highly flawed for the following reasons: 1) Only the display name may be visible. 2) The display name may appear as the actual email-address. 3) UTF-8 support makes human checking impossible. 4) Look-alike and cousin domains are not prevented. 5) Increases likelihood of multiple From email-address use. 6) Not likely able to incorporate EAI email-address versions. 7) Establishes credibility of phishing attempts by self "authorization". 8) Reduces email delivery integrity in many scenarios. 9) Requires excessive DNS overhead climbing label trees for every unsigned message to satisfy a small percentage of domains that will publish an "all From headers should be signed." This narrow view overlooks a far more protective alternative that: 1) Thwarts look-alike and cousin domains spoofing. 2) Is compatible with any EAI scheme. 3) Will not increase credibility of phishing attempts. 4) Will increase email delivery integrity. 5) Will not require excessive DNS overhead. 6) Can be implemented by the recipient and email-address domain owner independent of their providers. 7) Eliminates exchange of private keys with providers, zone delegations to the provider, or negotiations with the provider the selector locations for a series of CNAME records. The alternative is protection by an annotation scheme checking two basic items: 1) Is a signed email-address known by the recipient (i.e. in the address-book)? 2) Is the signing domain designated by this email-address domain? (Obvious only when same domain.) When other headers are used to communicate with a recipient, then which headers gets annotated can still be controlled by the domain of the email-address ONLY when other headers are allowed to make associations! Setting flags regarding whether all such headers are signed can be added. However, such flags should not be checked by most recipients. A false expectation of blocking abuse by way of "authorization" has been shown not to work, but this seems to be what is behind most participants motivations. This limits their thinking to only the use of the From header. Allowing associations to support an annotation scheme has not been considered. The same association scheme can also prevent white-listing abuse and ensure DSNs once this approach is considered more carefully. -Doug _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
- [ietf-dkim] "I sign everything" yes/no J.D. Falk
- Re: [ietf-dkim] "I sign everything" yes/no Stephen Farrell
- Re: [ietf-dkim] "I sign everything" yes/no Dave Crocker
- Re: [ietf-dkim] "I sign everything" yes/no Hector Santos
- Re: [ietf-dkim] "I sign everything" yes/no Douglas Otis
- Re: [ietf-dkim] "I sign everything" yes/no Paul Hoffman
- RE: [ietf-dkim] "I sign everything" yes/no Hallam-Baker, Phillip
- Re: [ietf-dkim] "I sign everything" yes/no Douglas Otis
- Re: [ietf-dkim] "I sign everything" yes/no Hector Santos
- Re: [ietf-dkim] "I sign everything" yes/no Douglas Otis
- [ietf-dkim] Re: "I sign everything" yes/no Frank Ellermann
- Re: [ietf-dkim] Re: "I sign everything" yes/no Hector Santos
- RE: [ietf-dkim] "I sign everything" yes/no Hallam-Baker, Phillip
- [ietf-dkim] ISSUE: Better definition of "DKIM sig… Frank Ellermann
- Re: [ietf-dkim] "I sign everything" yes/no Douglas Otis
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Stephen Farrell
- Re: [ietf-dkim] Re: "I sign everything" yes/no Charles Lindsey
- Re: [ietf-dkim] Re: "I sign everything" yes/no Hector Santos
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Charles Lindsey
- [ietf-dkim] Re: Role of Sender header as signing … Frank Ellermann
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Hector Santos
- Re: [ietf-dkim] Re: "I sign everything" yes/no Douglas Otis
- Re: [ietf-dkim] Re: "I sign everything" yes/no Hector Santos
- Re: [ietf-dkim] Re: "I sign everything" yes/no Douglas Otis
- [ietf-dkim] Re: ISSUE: Better definition of "DKIM… Frank Ellermann
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Charles Lindsey
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Stephen Farrell
- Re: [ietf-dkim] Re: "I sign everything" yes/no Hector Santos
- Re: [ietf-dkim] Re: "I sign everything" yes/no Charles Lindsey
- [ietf-dkim] Re: "I sign everything" yes/no Frank Ellermann
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Hector Santos
- Re: [ietf-dkim] Re: "I sign everything" yes/no Hector Santos
- Re: [ietf-dkim] Re: "I sign everything" yes/no Hector Santos
- Re: [ietf-dkim] Re: "I sign everything" yes/no Stephen Farrell
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- [ietf-dkim] Re: ISSUE: Better definition of "DKIM… Frank Ellermann
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- [ietf-dkim] OT: Return-Path considerations (was: … Frank Ellermann
- [ietf-dkim] EAI + SSP status (was: "I sign everyt… Frank Ellermann
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Stephen Farrell
- [ietf-dkim] Re: ISSUE: Better definition of "DKIM… Frank Ellermann
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Stephen Farrell
- [ietf-dkim] Re: ISSUE: Better definition of "DKIM… Frank Ellermann
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Stephen Farrell
- [ietf-dkim] Last calls for lemonade (was: ISSUE: … Frank Ellermann
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Charles Lindsey
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Charles Lindsey
- [ietf-dkim] ISSUE: Is "sender" in 4.1 4th paragra… Frank Ellermann
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Stephen Farrell
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Stephen Farrell
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Eliot Lear
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Michael Thomas
- [ietf-dkim] Re: ISSUE: Better definition of "DKIM… Frank Ellermann
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Charles Lindsey
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Charles Lindsey
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Charles Lindsey
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Charles Lindsey
- Re: [ietf-dkim] Re: "I sign everything" yes/no Charles Lindsey
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… william(at)elan.net
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… Hector Santos
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- Re: [ietf-dkim] ISSUE: Better definition of "DKIM… John Levine
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Jim Fenton
- Re: [ietf-dkim] Re: "I sign everything" yes/no Jim Fenton
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… william(at)elan.net
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Michael Thomas
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Eliot Lear
- Re: [ietf-dkim] Re: "I sign everything" yes/no Eliot Lear
- [ietf-dkim] Re: ISSUE: Better definition of "DKIM… Frank Ellermann
- RE: [ietf-dkim] Re: "I sign everything" yes/no Hallam-Baker, Phillip
- Re: [ietf-dkim] Re: news and lists again, was "I … John Levine
- Re: [ietf-dkim] Re: ISSUE: Better definition of"D… Hector Santos
- Re: [ietf-dkim] Re: "I sign everything" yes/no Hector Santos
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- [ietf-dkim] Resend-cruft (was: ISSUE: Better defi… Frank Ellermann
- Re: [ietf-dkim] Re: "I sign everything" yes/no Jim Fenton
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Charles Lindsey
- Re: [ietf-dkim] Re: "I sign everything" yes/no Charles Lindsey
- Re: [ietf-dkim] Re: "I sign everything" yes/no Stephen Farrell
- Re: [ietf-dkim] Re: "I sign everything" yes/no Charles Lindsey
- Re: [ietf-dkim] Re: "I sign everything" yes/no Charles Lindsey
- Re: [ietf-dkim] Re: "I sign everything" yes/no Stephen Farrell
- [ietf-dkim] Future uses of DKIM in Netnews (was: … Frank Ellermann
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Douglas Otis
- Re: [ietf-dkim] Future uses of DKIM in Netnews (w… Charles Lindsey
- [ietf-dkim] Role of Sender header as signing doma… Charles Lindsey
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Charles Lindsey
- Re: [ietf-dkim] Role of Sender header as signing … Scott Kitterman
- Re: [ietf-dkim] Re: "I sign everything" yes/no Eliot Lear
- Re: [ietf-dkim] Role of Sender header as signing … Hector Santos
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- [ietf-dkim] Re: Role of Sender header as signing … Frank Ellermann
- Re: [ietf-dkim] Role of Sender header as signing … John Levine
- Re: [ietf-dkim] Re: Role of Sender header as sign… Scott Kitterman
- Re: [ietf-dkim] Role of Sender header as signing … Steve Atkins
- Re: [ietf-dkim] Re: "I sign everything" yes/no Michael Thomas
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Michael Thomas
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Damon
- Re: [ietf-dkim] Re: ISSUE: Better definition of "… Hector Santos
- Re: [ietf-dkim] Role of Sender header as signing … Douglas Otis
- Re: [ietf-dkim] Re: Role of Sender header as sign… Scott Kitterman
- Re: [ietf-dkim] Re: Role of Sender header as sign… Michael Thomas
- Re: [ietf-dkim] Re: Role of Sender header as sign… Douglas Otis
- Re: [ietf-dkim] Re: Role of Sender header as sign… Charles Lindsey
- Re: [ietf-dkim] Re: Role of Sender header as sign… Charles Lindsey
- Re: [ietf-dkim] Role of Sender header as signing … Charles Lindsey
- Re: [ietf-dkim] Re: Role of Sender header as sign… Eliot Lear
- Re: [ietf-dkim] Role of Sender header as signing … Hector Santos
- Re: [ietf-dkim] Re: Role of Sender header as sign… Scott Kitterman
- Re: [ietf-dkim] Role of Sender header as signing … Stephen Farrell
- Re: [ietf-dkim] Re: Role of Sender header as sign… william(at)elan.net
- Re: [ietf-dkim] Re: Role of Sender header as sign… Douglas Otis
- Re: [ietf-dkim] Re: Role of Sender header as sign… Damon
- Re: [ietf-dkim] Re: Role of Sender header as sign… Eliot Lear
- Re: [ietf-dkim] Re: Role of Sender header as sign… Charles Lindsey
- Re: [ietf-dkim] Re: Role of Sender header as sign… Charles Lindsey
- Re: [ietf-dkim] Re: Role of Sender header as sign… Charles Lindsey
- Re: [ietf-dkim] Re: Role of Sender header as sign… Scott Kitterman
- RE: [ietf-dkim] Re: Role of Sender header as sign… Bill.Oxley
- Re: [ietf-dkim] Re: Role of Sender header as sign… Michael Thomas
- Re: [ietf-dkim] Re: Role of Sender header as sign… Douglas Otis
- Re: [ietf-dkim] Re: Role of Sender header as sign… Douglas Otis
- Re: [ietf-dkim] Re: Role of Sender header as sign… Charles Lindsey
- Re: [ietf-dkim] Re: Role of Sender header as sign… Charles Lindsey
- Re: [ietf-dkim] Re: Role of Sender header as sign… Charles Lindsey
- Re: [ietf-dkim] Re: Role of Sender header as sign… Wietse Venema
- Re: [ietf-dkim] Re: Role of Sender header as sign… Douglas Otis
- Re: [ietf-dkim] Re: Role of Sender header as sign… Scott Kitterman
- Re: [ietf-dkim] Re: Role of Sender header as sign… Hector Santos
- RE: [ietf-dkim] Re: Role of Sender header as sign… Bill.Oxley
- Re: [ietf-dkim] Re: Role of Sender header as sign… John Glube
- Re: [ietf-dkim] Re: Role of Sender header as sign… Hector Santos
- Re: [ietf-dkim] Re: Role of Sender header as sign… John Glube
- Re: [ietf-dkim] Re: Role of Sender header as sign… Scott Kitterman
- Re: [ietf-dkim] Re: Role of Sender header as sign… Douglas Otis
- Re: [ietf-dkim] Re: Role of Sender header as sign… Hector Santos
- Re: [ietf-dkim] Re: Role of Sender header as sign… Damon
- Re: [ietf-dkim] Re: Role of Sender header as sign… Stephen Farrell
- Re: [ietf-dkim] Re: Role of Sender header as sign… Steve Atkins
- [ietf-dkim] receiver role in ssp Bill.Oxley
- Re: [ietf-dkim] Re: Role of Sender header as sign… Douglas Otis
- Re: [ietf-dkim] Re: Role of Sender header as sign… Damon
- Re: [ietf-dkim] Re: Role of Sender header as sign… Douglas Otis