IETF Logo Mail Archive

Re: [ietf-smtp] Possible cont4ibution to moving forward with RFC5321bis SMTP

Hector Santos <hsantos@isdg.net> Thu, 02 January 2020 15:48 UTC

Return-Path: <hsantos@isdg.net>
X-Original-To: ietf-smtp@ietfa.amsl.com
Delivered-To: ietf-smtp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 729A7120091 for <ietf-smtp@ietfa.amsl.com>; Thu, 2 Jan 2020 07:48:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isdg.net header.b=amlBJW36; dkim=pass (1024-bit key) header.d=beta.winserver.com header.b=EXu5UhlY
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YKsSWx-MXOeX for <ietf-smtp@ietfa.amsl.com>; Thu, 2 Jan 2020 07:48:03 -0800 (PST)
Received: from mail.winserver.com (dkim.winserver.com [76.245.57.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AA98C120024 for <ietf-smtp@ietf.org>; Thu, 2 Jan 2020 07:48:03 -0800 (PST)
DKIM-Signature: v=1; d=isdg.net; s=tms1; a=rsa-sha1; c=simple/relaxed; l=1274; t=1577980079; atps=ietf.org; atpsh=sha1; h=Received:Received:Received:Received:Message-ID:Date:From: Organization:To:Subject:List-ID; bh=wLsFXYJFzcxnp+C75yJo36/tfE4=; b=amlBJW36NnWsiATEnfVAsA9c9RDzxCvn7nn14+rbQWKnUD3kPzpRtmKcpi7H9J /e1zhxoH5bCSq1Tx48/6cZHrJYJulGdKD3+L8rE3LKTtA1QRHFjPzWZ7miZK9XZw /YofN9Owfrd23Z0gFy0TdUm5DS1yjoFJ64Fyw0vRQJYuc=
Received: by winserver.com (Wildcat! SMTP Router v8.0.454.9) for ietf-smtp@ietf.org; Thu, 02 Jan 2020 10:47:59 -0500
Authentication-Results: dkim.winserver.com; dkim=pass header.d=beta.winserver.com header.s=tms1 header.i=beta.winserver.com; dmarc=pass policy=reject author.d=isdg.net signer.d=beta.winserver.com (atps signer);
Received: from beta.winserver.com ([76.245.57.74]) by winserver.com (Wildcat! SMTP v8.0.454.9) with ESMTP id 1592446545.1.3828; Thu, 02 Jan 2020 10:47:58 -0500
DKIM-Signature: v=1; d=beta.winserver.com; s=tms1; a=rsa-sha256; c=simple/relaxed; l=1274; t=1577979900; h=Received:Received: Message-ID:Date:From:Organization:To:Subject:List-ID; bh=l2SviVl zpAA/WnqSWE5erJiO5KNSc57Xt3RCwtz3Xgo=; b=EXu5UhlYUXGwSknyEhXHRfR 4xNO6aNruoxnOF00lJ+/BHItbHfs6LrBNdWWmzDrnY6DPl1k/2GPUH9EtvchycA/ K4VT3ds500rlJn4m1Cr5UNoi3AmLx8sZS/Zi4p9VkmHiHO6yEp2mWi8YMJG8hAJH viTx615khqrzkIxXryXE=
Received: by beta.winserver.com (Wildcat! SMTP Router v8.0.454.9) for ietf-smtp@ietf.org; Thu, 02 Jan 2020 10:45:00 -0500
Received: from [192.168.1.68] ([75.26.216.248]) by beta.winserver.com (Wildcat! SMTP v8.0.454.9) with ESMTP id 2155080734.1.3568; Thu, 02 Jan 2020 10:44:59 -0500
Message-ID: <5E0E10AF.30808@isdg.net>
Date: Thu, 02 Jan 2020 10:47:59 -0500
From: Hector Santos <hsantos@isdg.net>
Reply-To: hsantos@isdg.net
Organization: Santronics Software, Inc.
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.8.1
MIME-Version: 1.0
To: ietf-smtp@ietf.org
References: <20191230013034.2C3E111D376E@ary.qy> <f894c448-ac91-6d27-98d6-0803de4ea535@network-heretics.com> <alpine.OSX.2.21.99999.374.1912292129450.44159@ary.qy> <d3dc48b0-332b-c2fe-704a-d6dc69eb5424@network-heretics.com> <5E0B8658.2060703@isdg.net> <fc8d4d71-39a4-6ca0-608a-d2113b206c5f@network-heretics.com>
In-Reply-To: <fc8d4d71-39a4-6ca0-608a-d2113b206c5f@network-heretics.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-smtp/KK0GtDVFNRp5hnZpvel0tOwIGZY>
Subject: Re: [ietf-smtp] Possible cont4ibution to moving forward with RFC5321bis SMTP
X-BeenThere: ietf-smtp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of issues related to Simple Mail Transfer Protocol \(SMTP\) \[RFC 821, RFC 2821, RFC 5321\]" <ietf-smtp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-smtp/>
List-Post: <mailto:ietf-smtp@ietf.org>
List-Help: <mailto:ietf-smtp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Jan 2020 15:48:06 -0000

On 12/31/2019 1:23 PM, Keith Moore wrote:
> On 12/31/19 12:33 PM, Hector Santos wrote:
>
>> I have two SMTP compliancy-based deterministic filters:
>>
>> - Machine name ip-literal matching connecting ip because SMTP tells
>> us it is defined as the IP address of the connecting client, and
>
> This is something that should be clarified in 5321bis, IMO.

+1.

You pointed out much of this, I see four basic issues:

a) Get rid of it,
b) Double down on its original purpose and field definition,
c) Clarify whether either a FQDN or IP-Literal can be used, and
d) Provide rejection insights focused on SMTP compliancy.

With hosted end-users, the false positives seen with NATs has been 
addressed with the SUBMIT protocol or some other client authentication 
that raised the SMTP bar and allowed for receiver restrictions.

With SUBMIT, the wcSMTP server will relaxed EHLO validation since the 
session is expected to be ESMTP AUTHenticated.  It was the first thing 
seen when I added the IP-literal check. I did private and publicly 
noted to the SUBMIT editors the implementation experience because 
SUBMIT would allow for "authorized" EHLO validation and rejection. 
But to me, it would be unnecessary under an expected ESMTP AUTH session.

-- 
HLS

v2.23.0 | Report a Bug | By Email