IETF Logo Mail Archive

Re: [ietf-smtp] Public Key Look Up

John R Levine <johnl@taugh.com> Wed, 12 May 2021 16:25 UTC

Return-Path: <johnl@taugh.com>
X-Original-To: ietf-smtp@ietfa.amsl.com
Delivered-To: ietf-smtp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB7613A0EB5 for <ietf-smtp@ietfa.amsl.com>; Wed, 12 May 2021 09:25:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=p59XYSOd; dkim=pass (2048-bit key) header.d=taugh.com header.b=QGZKC9oU
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yMfBfVzjgs0r for <ietf-smtp@ietfa.amsl.com>; Wed, 12 May 2021 09:25:05 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 851373A0EAD for <ietf-smtp@ietf.org>; Wed, 12 May 2021 09:25:04 -0700 (PDT)
Received: (qmail 36274 invoked from network); 12 May 2021 16:25:02 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:subject:in-reply-to:references:mime-version:content-type; s=8daf.609c015e.k2105; bh=6ER26FeWrDzZ6FhLnpU7h2XZfkbWRpNkcJ83zzblM0c=; b=p59XYSOdn2rxGHE/9CeRufkraxmZ87nFSGQwXxWE/3j0Poo/hsTyMshf7j6z8/7jSJ4UnfOi68EwtSNPeNgQP4U3khu5/fvl7pn1qPS/fg+U1G6AuDH8iH0Ebh+QH14qJVuY6osUuoUtY0iE9PwOPz/OTXUve8SemBzz1f5ctLAQVx2dRBQ8Y2iHxbuQNXv6xz2CZSzKjIg4VrYD/g7Ozq+kFktibGEX5BUSpjk5PO2ItMSuhm1/cdoeH32CMfHfhKdu3OhQ+u9yF7tUkSIdGF42jMQuZxb9IOBXIXvWqI1nV4vcgfNUm8rJ+lDWhZIscwidYpbs2F2HBwx+kDJJpQ==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:subject:in-reply-to:references:mime-version:content-type; s=8daf.609c015e.k2105; bh=6ER26FeWrDzZ6FhLnpU7h2XZfkbWRpNkcJ83zzblM0c=; b=QGZKC9oUeJ+5vQtMKUwSQKkZFJoIHZMCYZyLGW/F2u7TSmJPuj4aVxWchzi7K+cy6+WSkZvSJiGCBPokcgmv46e4pepbPGvPTZz8p2PWtgTvxLwfnkpzCh0KQNXnhAvKIKpCPqX5+TdHwkgFk+79Pm97tSgsO1j8lLiQDfCvt+ahc7gR2p03UEljff5EpkEnBCqdfSvM9j6+zYQcAx9RAF/fl9a1CQHmzHlXCjCK2Ys+pYwVbBZgYy2qXeucW9TCEfwSYwkzP2QNEgBzW4ZuwO0I1x08vkk72m3q8hQKZ6qTY1/9/1SFogHcF75ZOLVdvefCmY4WjR5OC455stvDYw==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 12 May 2021 16:25:02 -0000
Received: by ary.qy (Postfix, from userid 501) id 810C57A66BD; Wed, 12 May 2021 12:25:00 -0400 (EDT)
Received: from localhost (localhost [127.0.0.1]) by ary.qy (Postfix) with ESMTP id DFC027A669F; Wed, 12 May 2021 12:25:00 -0400 (EDT)
Date: Wed, 12 May 2021 12:25:00 -0400
Message-ID: <65ed77dd-78fb-3f1a-7c21-63977620a510@taugh.com>
From: John R Levine <johnl@taugh.com>
To: John C Klensin <john-ietf@jck.com>, ietf-smtp@ietf.org
X-X-Sender: johnl@ary.qy
In-Reply-To: <D7EABCF7E8976BE735927C69@PSB>
References: <20210511185543.C751179052B@ary.qy> <D7EABCF7E8976BE735927C69@PSB>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-smtp/TERJpj4-14fFB9ZizK1DLkhQq6g>
Subject: Re: [ietf-smtp] Public Key Look Up
X-BeenThere: ietf-smtp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of issues related to Simple Mail Transfer Protocol \(SMTP\) \[RFC 821, RFC 2821, RFC 5321\]" <ietf-smtp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-smtp/>
List-Post: <mailto:ietf-smtp@ietf.org>
List-Help: <mailto:ietf-smtp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 May 2021 16:25:11 -0000

On Tue, 11 May 2021, John C Klensin wrote:
>>> I'm not clear why a domain's MX would be the wrong place. ..,

> Well, if the keys were signed by entities I trusted, I wouldn't
> be worried about what "authoritative source" means.  And if they
> weren't, not only would I not like that, but it would probably
> turn the whole idea into theater rather than security.

Indeed.  But if the keys include signatures, it doesn't matter where they 
come from, so we're back to asking why nobody seems to use the key servers 
that already exist.

Regards,
John Levine, johnl@taugh.com, Taughannock Networks, Trumansburg NY
Please consider the environment before reading this e-mail. https://jl.ly

v2.23.0 | Report a Bug | By Email