Re: [ietf-smtp] Variable HELO name, was DSNs
Ned Freed <ned.freed@mrochek.com> Sun, 26 April 2020 14:37 UTC
Return-Path: <ned.freed@mrochek.com>
X-Original-To: ietf-smtp@ietfa.amsl.com
Delivered-To: ietf-smtp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4A9BE3A0657 for <ietf-smtp@ietfa.amsl.com>; Sun, 26 Apr 2020 07:37:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mrochek.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QywQROtcgJvx for <ietf-smtp@ietfa.amsl.com>; Sun, 26 Apr 2020 07:37:28 -0700 (PDT)
Received: from plum.mrochek.com (plum.mrochek.com [172.95.64.195]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 818B73A0651 for <ietf-smtp@ietf.org>; Sun, 26 Apr 2020 07:37:27 -0700 (PDT)
Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01RK5LAUWOI8006GJJ@mauve.mrochek.com> for ietf-smtp@ietf.org; Sun, 26 Apr 2020 07:32:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mrochek.com; s=201712; t=1587911539; bh=sFne3icNvcgIiEx6IjUsr8NIXSUrBWneoUYN0lSYVec=; h=Cc:Date:From:Subject:In-reply-to:References:To:From; b=SDOydhrfStKk12bTaxRBQobuB0NyVw7zP5yrK5pddI65H0Qngqr3KSEs95BnVymcE LrYaKDUKmkl4HVHkUTA2LPZExtsoIu6/A48Gbif9KRHgfkgD2jT69v1oYes67U9Gc+ NL8THXMxJuErE9bVoOiGHavPGFe2MHMO6csIXs5Q=
MIME-version: 1.0
Content-transfer-encoding: 7bit
Content-type: TEXT/PLAIN; CHARSET="us-ascii"
Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01RJM3XSTRLC000058@mauve.mrochek.com>; Sun, 26 Apr 2020 07:32:14 -0700 (PDT)
Cc: ietf-smtp@ietf.org
Message-id: <01RK5LARPA1U000058@mauve.mrochek.com>
Date: Sun, 26 Apr 2020 07:20:52 -0700
From: Ned Freed <ned.freed@mrochek.com>
In-reply-to: "Your message dated Sun, 26 Apr 2020 12:04:12 +0200" <129b193e-81ed-6f59-4f54-cc2d45b6dfb8@tana.it>
References: <20200409230011.F039B17637D0@ary.qy> <alpine.OSX.2.22.407.2004091945050.80689@ary.qy> <20200410090430.GA75736@kiel.esmtp.org> <29104A0F-B9ED-4CD7-99B3-5A042375C68B@dukhovni.org> <r7fq4k$1nm5$1@gal.iecc.com> <C1A5FAAA942E0F363CA177C0@PSB> <20200425013624.GV41308@straasha.imrryr.org> <01RK47G4QUK0000058@mauve.mrochek.com> <22e05a3b-bf47-9d83-a340-720ca9a373c4@dcrocker.net> <01RK4LP3NYJK000058@mauve.mrochek.com> <21987cb0-1cc2-e5ce-363f-5bb713333e8e@dcrocker.net> <CCD9771E28F1C5438052BB1A@PSB> <129b193e-81ed-6f59-4f54-cc2d45b6dfb8@tana.it>
To: Alessandro Vesely <vesely@tana.it>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-smtp/4_r6-AHgdwgi68rSfODXUTfoxEg>
Subject: Re: [ietf-smtp] Variable HELO name, was DSNs
X-BeenThere: ietf-smtp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of issues related to Simple Mail Transfer Protocol \(SMTP\) \[RFC 821, RFC 2821, RFC 5321\]" <ietf-smtp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-smtp/>
List-Post: <mailto:ietf-smtp@ietf.org>
List-Help: <mailto:ietf-smtp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Apr 2020 14:37:30 -0000
> On 26/04/2020 00:41, John C Klensin wrote: > > > > Suppose there were correspondents, or even domains, for which I have found > > read receipts useful and something I'm willing to let them use. So, because > > of them, I advertise the availability of that feature in the EHLO response. > > When the MAIL command comes along and doesn't contain that domain or > > mailbox, I reject the request. Now, which mailboxes or domains to accept is > > an operational decision, but the behavior, AFAICT, is fully conforming and > > it certainly don't mean that the features doesn't work, just that I have an > > operational policy prohibiting its use in most circumstances. There are lots of ways to offer NOTIFY=SUCCESS selectively depending on what you're trying to accomplish. Keeping in mind that it's a RCPT TO parameter, another possibiity is to only allow it on domains within the ADMD. Given all the possible uses and ways of authorizing them, it is perhaps better to focus on the one problematic case: Relay between ADMDs where the server doesn't trust the client. > Wow, I never tried that at home! > A decade ago we fantasized about a Verified Hello, whereby: > Non-empty arguments of the MAIL FROM commands are restricted to > addresses whose domain part consists of the authenticated Domain. > https://tools.ietf.org/html/draft-vesely-vhlo-06#section-3.4.1 > Otherwise, the reply code is ambiguous. For example: > 4xx HELO name/MAIL FROM inconsistency, try another session. > AFAIK, the HELO name is practically constant for most mailouts, so the above > reply will make the relevant message bounce for days, until timeout. The EHLO name is necessarily consistent with the DNS entries for the client IP. It most certainly is not reliably the same as the MAIL FROM domain, especially when operating at scale. And foccing a disconnect/reconnect in such cases is highly problematic given that we have no means of indicating that's what's needed, and even if we added one, no existing client would understand it. Ned
- [ietf-smtp] SMTP, DSNs, and enhanced replies (was… John C Klensin
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies … Hector Santos
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies … Dave Crocker
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies … Brandon Long
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies … John Levine
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies Dave Crocker
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies John R Levine
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies … Ned Freed
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies Ned Freed
- Re: [ietf-smtp] SMTP, DSNs, and enhanced replies Jeremy Harris
- Re: [ietf-smtp] DSNs Claus Assmann
- Re: [ietf-smtp] DSNs Viktor Dukhovni
- Re: [ietf-smtp] DSNs John Levine
- Re: [ietf-smtp] DSNs John C Klensin
- Re: [ietf-smtp] DSNs John Levine
- Re: [ietf-smtp] DSNs Alessandro Vesely
- Re: [ietf-smtp] DSNs Viktor Dukhovni
- Re: [ietf-smtp] DSNs Ned Freed
- Re: [ietf-smtp] DSNs Dave Crocker
- Re: [ietf-smtp] DSNs Viktor Dukhovni
- Re: [ietf-smtp] DSNs Dave Crocker
- Re: [ietf-smtp] DSNs Ned Freed
- Re: [ietf-smtp] DSNs Dave Crocker
- Re: [ietf-smtp] DSNs Jeremy Harris
- Re: [ietf-smtp] DSNs John C Klensin
- Re: [ietf-smtp] DSNs Scott Kitterman
- Re: [ietf-smtp] DSNs John C Klensin
- [ietf-smtp] Variable HELO name, was DSNs Alessandro Vesely
- Re: [ietf-smtp] DSNs Arnt Gulbrandsen
- Re: [ietf-smtp] Variable HELO name, was DSNs Ned Freed
- Re: [ietf-smtp] Variable HELO name, was DSNs John C Klensin
- Re: [ietf-smtp] DSNs John C Klensin
- Re: [ietf-smtp] DSNs Dave Crocker
- Re: [ietf-smtp] DSNs Ned Freed
- Re: [ietf-smtp] DSNs Viktor Dukhovni
- Re: [ietf-smtp] DSNs John Levine
- Re: [ietf-smtp] DSNs Sam Varshavchik
- Re: [ietf-smtp] DSNs Valdis Kl ē tnieks
- Re: [ietf-smtp] DSNs Scott Kitterman
- Re: [ietf-smtp] DSNs John Levine
- Re: [ietf-smtp] DSNs Sam Varshavchik
- Re: [ietf-smtp] DSNs Valdis Kl ē tnieks
- Re: [ietf-smtp] DSNs Laura Atkins
- Re: [ietf-smtp] DSNs Sam Varshavchik
- Re: [ietf-smtp] DSNs John Levine
- Re: [ietf-smtp] DSNs Sam Varshavchik
- Re: [ietf-smtp] DSNs John Levine
- Re: [ietf-smtp] DSNs Sam Varshavchik
- Re: [ietf-smtp] DSNs Ned Freed
- Re: [ietf-smtp] DSNs Viktor Dukhovni
- Re: [ietf-smtp] DSNs Sam Varshavchik