Re: [ietf-smtp] DSNs

Viktor Dukhovni <> Tue, 05 May 2020 16:48 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 6DF003A09C6 for <>; Tue, 5 May 2020 09:48:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id SH9R3cPV0dTL for <>; Tue, 5 May 2020 09:48:43 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id CDACE3A09BE for <>; Tue, 5 May 2020 09:48:42 -0700 (PDT)
Received: by (Postfix, from userid 1001) id E2C1F29DA36; Tue, 5 May 2020 12:48:40 -0400 (EDT)
Date: Tue, 5 May 2020 12:48:40 -0400
From: Viktor Dukhovni <>
Message-ID: <>
References: <20200426203307.97DFB1863A8B@ary.qy> <>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <>
User-Agent: Mutt/1.12.2 (2019-09-21)
Archived-At: <>
Subject: Re: [ietf-smtp] DSNs
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of issues related to Simple Mail Transfer Protocol \(SMTP\) \[RFC 821, RFC 2821, RFC 5321\]" <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 05 May 2020 16:48:46 -0000

On Sun, Apr 26, 2020 at 05:02:04PM -0400, Sam Varshavchik wrote:

> Incoming mail is addressed to a valid mailbox. Your MTA accepts it. As such,  
> the sender already knows it is a valid recipient.

When I set edge systems in environments with multiple internal mail
stores, with external mail arriving to user@theorg.example for internal
redistribution to wherever that user's email is actually delivered, the
envelope recipient address is rewritten to help the mail along to its
finan destination, but this is not "forwarding", it is still "relay".

The internal mailstore topology is none of the sender's concern, but
also I do not wish to be a source of backscatter if the envelope sender
address is fake.

> I don't follow what information is getting leaked, if a second later a  
> success DSN gets sent to the sender. The sender already knows it's a valid  
> mailbox, by the virtue of the fact that the mail was accepted.

The success DSN would originate deeper inside the ADMD, from whence I
prefer to neither send such DSNs, nor promise their delivery.  Instead
the sender's ADMD sends the SUCCESS notice when I accept the message
without advertising DSN support.