IETF Logo Mail Archive

Re: [ietf-smtp] Public Key Look Up

John Levine <johnl@taugh.com> Tue, 11 May 2021 18:55 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: ietf-smtp@ietfa.amsl.com
Delivered-To: ietf-smtp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DAC023A2286 for <ietf-smtp@ietfa.amsl.com>; Tue, 11 May 2021 11:55:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.851
X-Spam-Level:
X-Spam-Status: No, score=-1.851 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=U/87Y1ru; dkim=pass (2048-bit key) header.d=taugh.com header.b=Jsan5YHR
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Je7ZWwwYVNns for <ietf-smtp@ietfa.amsl.com>; Tue, 11 May 2021 11:55:48 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6A4503A2284 for <ietf-smtp@ietf.org>; Tue, 11 May 2021 11:55:48 -0700 (PDT)
Received: (qmail 43007 invoked from network); 11 May 2021 18:55:45 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=a7fc.609ad331.k2105; bh=lUMw1ECMcASPpQgH86dd9BEszvfIkVPK5F/jyv57seQ=; b=U/87Y1ruG033nPyPfsNTUGnLQtYQsTxWcPSejG4gmolN6glWVLEQf+8PQdW/yO0NvfwlA1yp1UFm9J6BTIOoZsz4Y2WQTLzxRWr8RNo/7VwIVaiW0vQmh8kiWk25lwLrOnmvGt/3/HpC/B/etJjPPD7nmJlv+/FagO2ioBF63vzkGuS7jVYWXPmklbqHf7/3goFCP6C3QSYKwASkbJ+Knch+8HLVYw01fu6bSrm8LMXmLNaiNw9hM/cjoddDp+eoCYDRwRfnthmf2aqmkCsqTaooOSjG0G9N+qaMrmnayklhST4k0H9DVTAidhtnqSGVnWrGNFWQPHNRm1dJvRCDIw==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=a7fc.609ad331.k2105; bh=lUMw1ECMcASPpQgH86dd9BEszvfIkVPK5F/jyv57seQ=; b=Jsan5YHR9vXqI+w1jf0H+H/Bjw/MUWbXoPiS7uaN9GQoS5jV8twG5TGjZaMeeBGGBkV27IHNifR6bvB4WUrSbeDl/nHBDX+b8mCBzi2zwi7saHD/fXos9kJMhIyZ8QmKj5ovkshUPLN2q53gEStCq4H6a9M9UJV9ZJQ5CWFrfWqj4sm6ww6bhhAFUrfmxGwwAtPPJYWChhgUq/AFcY2EnGm/n8YFHVfvCja2n4g/cdKQAPbZwoeSFCQI+7/14P6U+bLUmOX/F08SdXvZ3GCHWZeRvEW8yrjBsIvOtDURBbUeyk6OGDODNLBOCyPaAVWFB0WIPU9bDk3zc878jsBrsA==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 11 May 2021 18:55:45 -0000
Received: by ary.qy (Postfix, from userid 501) id C751179052B; Tue, 11 May 2021 14:55:42 -0400 (EDT)
Date: Tue, 11 May 2021 14:55:42 -0400
Message-Id: <20210511185543.C751179052B@ary.qy>
From: John Levine <johnl@taugh.com>
To: ietf-smtp@ietf.org
Cc: vesely@tana.it
In-Reply-To: <69c31dc0-f9b4-d983-e3e5-345773f27211@tana.it>
Organization: Taughannock Networks
X-Headerized: yes
Cleverness: minimal
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-smtp/3Ag2G2Wq4MkE068hjNS-MVwBf8I>
Subject: Re: [ietf-smtp] Public Key Look Up
X-BeenThere: ietf-smtp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of issues related to Simple Mail Transfer Protocol \(SMTP\) \[RFC 821, RFC 2821, RFC 5321\]" <ietf-smtp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-smtp/>
List-Post: <mailto:ietf-smtp@ietf.org>
List-Help: <mailto:ietf-smtp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 May 2021 18:55:54 -0000

It appears that Alessandro Vesely  <vesely@tana.it> said:
>> I think it's a terrible idea both because it puts the keys in the wrong
>> place and the reasons you gave, extensions are optional which means
>> not implemented.
>
>I'm not clear why a domain's MX would be the wrong place.

Because you can't tell the user's relation to the domain.  Would you
want Google to be the authoritative source of keys for every gmail
user?  Apollo Global Management for every Yahoo and AOL user?

Personally, as a passive-aggressive mail system operator, the only keys
my MX would publish would be proxy ones that let my MTA decode the
mail and do spam and malware filtering.  If my users don't like that,
they can manage their own fripping keys.

R's,
John

v2.23.0 | Report a Bug | By Email