Re: [Ietf-dkim] Rechartering
Scott Kitterman <sklist@kitterman.com> Mon, 28 November 2022 10:34 UTC
Return-Path: <sklist@kitterman.com>
X-Original-To: ietf-dkim@ietfa.amsl.com
Delivered-To: ietf-dkim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 290DFC1522A7 for <ietf-dkim@ietfa.amsl.com>; Mon, 28 Nov 2022 02:34:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=kitterman.com header.b=Jm+hO669; dkim=pass (2048-bit key) header.d=kitterman.com header.b=XmxV8PRD
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uH809Yhi9IZl for <ietf-dkim@ietfa.amsl.com>; Mon, 28 Nov 2022 02:34:16 -0800 (PST)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EF9FAC1522A2 for <ietf-dkim@ietf.org>; Mon, 28 Nov 2022 02:34:15 -0800 (PST)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) by interserver.kitterman.com (Postfix) with ESMTPS id 328FBF8035B; Mon, 28 Nov 2022 05:34:12 -0500 (EST)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903e; t=1669631652; h=date : from : to : subject : in-reply-to : references : message-id : mime-version : content-type : content-transfer-encoding : from; bh=GilvAxlYH25HidmouX7z6SGJrpuEeJ9Tl2BqxOD7puU=; b=Jm+hO669cL1F3nRNJwxtfupn3cIJuIPCxiBWYnoOz0cllyFpIxb/7AwyRheOvn+jtbKwu JERdEwohXbTDAIzDg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903r; t=1669631652; h=date : from : to : subject : in-reply-to : references : message-id : mime-version : content-type : content-transfer-encoding : from; bh=GilvAxlYH25HidmouX7z6SGJrpuEeJ9Tl2BqxOD7puU=; b=XmxV8PRD9ceNzWTlm0CBHbbwbrvolDiJ+aCrYlvXBBqnQOJrM8J2ejXOSb9RqMywKaMGo CJrSWQoIJtbyqaw0O32KmAD2SHKgQUaW6f9rE8Y5fTBFRPrhUfdedQvMfLGcJjwW489algL EeM0MmNWej075CdfxPkZXM502EduBHZmWh0G9OKWvzWiIyE8Tawl/ZheELRo/a8anOlzt34 MTrS9CaRo8QmAOZb0GjrBCa3ltm65mzxqXOCJ8mIAV2I8xWaB7DRK+mEIXLyZo0ZVkARI2o Fy0453QKh0OST9ThDh8cxwsgpdwGeLEoYj1K45SheuSkISYuIMUkuJn9IQ4w==
Received: from [127.0.0.1] (static-72-81-252-22.bltmmd.fios.verizon.net [72.81.252.22]) by interserver.kitterman.com (Postfix) with ESMTPSA id EB695F8017B; Mon, 28 Nov 2022 05:34:11 -0500 (EST)
Date: Mon, 28 Nov 2022 10:34:13 +0000
From: Scott Kitterman <sklist@kitterman.com>
To: ietf-dkim@ietf.org
In-Reply-To: <CAL0qLwbMmz+MjK14R9Les9u1uOo00JW3i5wv=yHQBQWtdHNnHA@mail.gmail.com>
References: <CAL0qLwZQAtLyDoAXgFoaNmsm3CCrLESr=P8foWe_YybWmC=PjA@mail.gmail.com> <9075884.CecrZPpXPB@localhost> <CAL0qLwbMmz+MjK14R9Les9u1uOo00JW3i5wv=yHQBQWtdHNnHA@mail.gmail.com>
Message-ID: <31592853-927F-4880-AB70-EDFBD5F78307@kitterman.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-dkim/bu1F7eaV3LjKtRsRhk2cH9NF7SA>
Subject: Re: [Ietf-dkim] Rechartering
X-BeenThere: ietf-dkim@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DKIM List <ietf-dkim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-dkim/>
List-Post: <mailto:ietf-dkim@ietf.org>
List-Help: <mailto:ietf-dkim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Nov 2022 10:34:20 -0000
On November 28, 2022 8:17:21 AM UTC, "Murray S. Kucherawy" <superuser@gmail.com> wrote: >On Sun, Nov 27, 2022 at 9:34 PM Scott Kitterman <sklist@kitterman.com> >wrote: > >> I would add mention of the problem statement draft. I think it may turn >> out >> to be the most important of the ones we have now. >> > >Do you mean: Mention it as a mandatory deliverable? > >Should we still produce that document even if we conclude replay can't be >solved? I had been thinking about it as an input, since that document more fully describes the problem. > >> I still think "compatible with DKIM's broad deployment" is too narrow. >> Also, >> I think it's one reasonable conclusion the group might reach is that the >> cure >> is worse than the disease and a resolution along the lines of "remove >> signatures during delivery" and "be more careful about what you sign >> because >> signing bad things will hurt your domain's reputation" may be the most >> appropriate approach. >> > >Yes, I think it's always implied that a working group can throw in the >towel if consensus is to do that. I've never seen it spelled out in a >charter that this is an available option, but we can make it explicit if >people feel doing so would help set the scope. As long as there's a consensus in the group for a solution, even if it's not new protocol, I don't think that's giving up. If we quit because we can't reach rough consensus on a way forward, I think that could reasonably be characterized as throwing in the towel. > >> How about instead of "The DKIM working group will produce one or more >> technical specifications that describe the abuse and propose >> replay-resistant >> mechanisms that are compatible with DKIM's broad deployment" we say "The >> DKIM >> working group will evaluate potential mechanisms to mitigate this attack >> and >> produce one or more technical specifications that describe the abuse and >> propose improvements which, consistent with compatibility with DKIM's >> broad >> deployment and general email protocols, will reduce the impact of replay >> attacks". >> > >I think those say approximately the same thing, so I'm fine with either. > I agree it's not a large difference, but I'd prefer to be more explicit about general email compatibility. Thanks, Scott K
- [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Scott Kitterman
- Re: [Ietf-dkim] Rechartering Wei Chuang
- Re: [Ietf-dkim] Rechartering Scott Kitterman
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Scott Kitterman
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Laura Atkins
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Alessandro Vesely
- Re: [Ietf-dkim] Rechartering Scott Kitterman
- Re: [Ietf-dkim] Rechartering Laura Atkins
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Stephen Farrell
- Re: [Ietf-dkim] Rechartering Jon Callas
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Jon Callas
- Re: [Ietf-dkim] Rechartering Scott Kitterman
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Scott Kitterman
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Laura Atkins
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Jim Fenton
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Scott Kitterman
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Barry Leiba
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Wei Chuang
- Re: [Ietf-dkim] Rechartering Evan Burke
- Re: [Ietf-dkim] Rechartering Todd Herr
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Todd Herr
- Re: [Ietf-dkim] Rechartering Wei Chuang
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Alessandro Vesely
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Wei Chuang
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Wei Chuang
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Michael Thomas
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Alessandro Vesely
- Re: [Ietf-dkim] Rechartering Alessandro Vesely
- Re: [Ietf-dkim] Rechartering Dave Crocker
- Re: [Ietf-dkim] Rechartering Murray S. Kucherawy
- Re: [Ietf-dkim] Rechartering Michael Thomas