Re: [ietf-smtp] Quoted-Printable-8bit and downgrade

John Levine <johnl@taugh.com> Wed, 31 March 2021 19:40 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: ietf-smtp@ietfa.amsl.com
Delivered-To: ietf-smtp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 809FE3A33F2 for <ietf-smtp@ietfa.amsl.com>; Wed, 31 Mar 2021 12:40:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.85
X-Spam-Level:
X-Spam-Status: No, score=-1.85 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=B4P+FF84; dkim=pass (2048-bit key) header.d=taugh.com header.b=KhnWu96D
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id COuh6jKmNFUb for <ietf-smtp@ietfa.amsl.com>; Wed, 31 Mar 2021 12:40:53 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7771B3A33E0 for <ietf-smtp@ietf.org>; Wed, 31 Mar 2021 12:40:52 -0700 (PDT)
Received: (qmail 21073 invoked from network); 31 Mar 2021 19:40:49 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=524f.6064d041.k2103; bh=9l4Mw/zCHhqAoQbYNX9pzcWpUiZcLdiiWdRcbs0Uv9w=; b=B4P+FF84CKH2bJWm4MupT+PcEBgY6DYzjNqOlNJYTt6a81CZ5Y3B5S13TQG3iz8fqFdQofQFswV5U/8FpFVcMMDsmR3EcYzoElc+Df1Q7eIZV2Dzz3sTdC1w4YoZFvbzaamCFjJi81S/KRSXhqjjV4blbfkweZfwaKdJazNlYWVTMsni+axL3tmt9DgkiG2o7rU5hRrBvQkroJCY0nMC/FdMpjYWz7ESgj6GW+/EOIyFXxsM+Mt0/Y3I9VeiJa7WgglAMXK030vUILWslhSRDCg6SzcfUJgxbPZtf7UWKDdv8WJPDoQ++x59BROkGNquRC8fDqzWxPrHZwEfvI55Jw==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=524f.6064d041.k2103; bh=9l4Mw/zCHhqAoQbYNX9pzcWpUiZcLdiiWdRcbs0Uv9w=; b=KhnWu96D/n0St/Ofix+EPTRDRPhwsz0p+XVBGnOORk0vl3xRRJCs9SBOCfLG0KGc4uh1+mQx0M/fm97m20FNmn/c2UYUNu9ExMMGRVTvtsSU71wkpfQyO4SoAcghCO0DdTqctH9nDmI0NPphgCVWuDdWrnSQVzMEc/WXpBHcjzk9jqdnaIbpbYNnBqq0faDbYo1Fb+Hmm7SHAmZetH6PxAADmKSdpZXd2uYYPtKHx9QCCWhLQ2ZVf78VjaQM3CeFWJASCSpEjZPsvCCQ30kAPAgvtOvm5hesp5VJKdJ7o6T/tYxiTIOT01f9mHyALIBoN4guXbrzx/6IeyNJxXAilw==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 31 Mar 2021 19:40:49 -0000
Received: by ary.qy (Postfix, from userid 501) id BCDE771B77F2; Wed, 31 Mar 2021 15:40:48 -0400 (EDT)
Date: 31 Mar 2021 15:40:48 -0400
Message-Id: <20210331194048.BCDE771B77F2@ary.qy>
From: "John Levine" <johnl@taugh.com>
To: ietf-smtp@ietf.org
In-Reply-To: <E0266D51-002A-4CA1-83DF-8E36F1542C08@dukhovni.org>
Organization: Taughannock Networks
X-Headerized: yes
Cleverness: minimal
Mime-Version: 1.0
Content-type: text/plain; charset=utf-8
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-smtp/Edem2IukECUj2KRYmIx-3h68DDo>
Subject: Re: [ietf-smtp] Quoted-Printable-8bit and downgrade
X-BeenThere: ietf-smtp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of issues related to Simple Mail Transfer Protocol \(SMTP\) \[RFC 821, RFC 2821, RFC 5321\]" <ietf-smtp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-smtp/>
List-Post: <mailto:ietf-smtp@ietf.org>
List-Help: <mailto:ietf-smtp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Mar 2021 19:40:59 -0000

It appears that Viktor Dukhovni  <ietf-smtp@ietf.org> said:
>I take no issue with that.  Just observing that whether it is MUST
>or not is mostly moot, unless we're also deprecating 7-bit downgrade.

Interesting question.  I presume there are still MTAs that can do downgrades
but how common is it in practice?

It breaks DKIM signatures unless the MTA can find the signing keys and resign
on the fly which seems a bit much.

R's,
John