IETF Logo Mail Archive

[ietf-smtp] Re: Examples of pseudonymous email services

Hector Santos <hsantos@isdg.net> Tue, 28 May 2024 20:27 UTC

Return-Path: <hsantos@isdg.net>
X-Original-To: ietf-smtp@ietfa.amsl.com
Delivered-To: ietf-smtp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4339CC180B4A for <ietf-smtp@ietfa.amsl.com>; Tue, 28 May 2024 13:27:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isdg.net header.b="YE4HAXXo"; dkim=pass (1024-bit key) header.d=beta.winserver.com header.b="fEwvGlvf"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k-_tzjupLsQD for <ietf-smtp@ietfa.amsl.com>; Tue, 28 May 2024 13:27:26 -0700 (PDT)
Received: from mail.winserver.com (mail.winserver.com [3.137.120.140]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EACDDC151066 for <ietf-smtp@ietf.org>; Tue, 28 May 2024 13:27:25 -0700 (PDT)
DKIM-Signature: v=1; d=isdg.net; s=tms1; a=rsa-sha256; c=simple/relaxed; l=24465; t=1716928037; atps=ietf.org; atpsh=sha1; h=Received:Received:Received:Received:From:Subject:Date:To: Message-Id:Organization:List-ID; bh=2NBbJI2PGfc+38T1t1BW28Rd6qFE +nljfNZpPN1osIA=; b=YE4HAXXoHWtI2UqXiUYcfe0kqWybNqL6042DqujSl6l9 UiOPS6anb1YjgISQlYbYGKRzCueTk7L9d0TUZyv7gOgkGJlGWwvf9tdM9gS/sb0J 0E+szEFHE+sNE+qrX9HsstWNTuBUuxKO/6c0gcvvxKjE7tYF867wv8xF9AeYbaA=
Received: by winserver.com (Wildcat! SMTP Router v8.0.454.14) for ietf-smtp@ietf.org; Tue, 28 May 2024 16:27:17 -0400
Authentication-Results: dkim.winserver.com; dkim=pass header.d=beta.winserver.com header.s=tms1 header.i=beta.winserver.com; adsp=none author.d=isdg.net signer.d=beta.winserver.com; dmarc=pass policy=reject author.d=isdg.net signer.d=beta.winserver.com (atps signer);
Received: from beta.winserver.com ([3.132.92.116]) by winserver.com (Wildcat! SMTP v8.0.454.14) with ESMTP id 2960320214.1.6300; Tue, 28 May 2024 16:27:16 -0400
DKIM-Signature: v=1; d=beta.winserver.com; s=tms1; a=rsa-sha256; c=simple/relaxed; l=24465; t=1716928035; h=Received:Received: From:Subject:Date:To:Message-Id:Organization:List-ID; bh=2NBbJI2 PGfc+38T1t1BW28Rd6qFE+nljfNZpPN1osIA=; b=fEwvGlvfiYEyszqKh7nkgDt mjY2bhbUmP7AvMkMPTCQIdV8/CzaeLJrz0u2Ahs3TgPLI263Dojaj7n/ysL8dcqJ Blwx73KkNtuVIxyXw+x9j36WJRcINI8sZWel21dZ1J+eDWADv1HN8I7sbM2L2f0I RU49UagTdLg56aN57J0M=
Received: by beta.winserver.com (Wildcat! SMTP Router v8.0.454.12) for ietf-smtp@ietf.org; Tue, 28 May 2024 16:27:15 -0400
Received: from smtpclient.apple ([99.122.210.89]) by beta.winserver.com (Wildcat! SMTP v8.0.454.12) with ESMTP id 3406616527.1.5048; Tue, 28 May 2024 16:27:12 -0400
From: Hector Santos <hsantos@isdg.net>
Content-Type: multipart/alternative; boundary="Apple-Mail=_6DDB970D-9279-4257-81C5-A75558399296"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.600.62\))
Date: Tue, 28 May 2024 16:26:59 -0400
References: <fee648a3-879b-42b9-b0b2-3f26ade06fe9@dcrocker.net> <cc393072-3cb7-49e7-ae75-8606afa34b80@wizmail.org>
To: ietf-smtp <ietf-smtp@ietf.org>
In-Reply-To: <cc393072-3cb7-49e7-ae75-8606afa34b80@wizmail.org>
Message-Id: <A5C33FAD-7B86-441D-813E-4B248903DB01@isdg.net>
X-Mailer: Apple Mail (2.3774.600.62)
Message-ID-Hash: ZVNGYNQVLN7APMGZE6FNNQDVGOCP4NNL
X-Message-ID-Hash: ZVNGYNQVLN7APMGZE6FNNQDVGOCP4NNL
X-MailFrom: hsantos@isdg.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ietf-smtp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [ietf-smtp] Re: Examples of pseudonymous email services
List-Id: "Discussion of issues related to Simple Mail Transfer Protocol (SMTP) [RFC 821, RFC 2821, RFC 5321]" <ietf-smtp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-smtp/XRPr7DAlcpCjRjLETlaxYNptUvM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-smtp>
List-Help: <mailto:ietf-smtp-request@ietf.org?subject=help>
List-Owner: <mailto:ietf-smtp-owner@ietf.org>
List-Post: <mailto:ietf-smtp@ietf.org>
List-Subscribe: <mailto:ietf-smtp-join@ietf.org>
List-Unsubscribe: <mailto:ietf-smtp-leave@ietf.org>

> On May 28, 2024, at 12:28 PM, Jeremy Harris <jgh@wizmail.org> wrote:
> 
> On 28/05/2024 17:00, Dave Crocker wrote:
>> What are some examples of this being done?
> 
> I can't tell what you asking for with "what are...".

To me, the term “pseudonymous" means there is still accountability with the usage of an obscure user ID. It is not completely hidden, and traceability is available. Therefore, I consider the term more like or closer to “alias” as opposed to a pure “anonymous” ID with little or no traceability.

> The private provider I help operate does it, by adding
> an entry into the DB used for mapping aliases to accounts.
> The receiving MTA uses the existence of an alias for
> deciding to accept or reject inbound messages.
> The MDA uses the mapping to find a file to deliver to.

+1. I agree, it is pretty traditional. In the early days with UUCP, acceptance, rejection, and bounces were all done post-transfer of data. With the introduction of SMTP and its nimbler implementations, we now have the flexibility to use dynamic shims and hooks for immediate RCPT TO: temporary or permanent responses.   Today,  higher overhead SMTP sessions that include:

Connect: IP Geo Location filtering, Rate Limiting
Helo/Ehlo: Stronger Client Host Name filtering
Mail From: SPF checking of the return-path and possibly the Client Host Name
Rcpt To: User DB check for direct vs remote address (requires authorization)
DATA Filtering: DKIM, ADSP, ATPS, DMARC, ARC, “Spam Words” “Spam Assassin” filtering possibilities
(What is your current SMTP session residence time?  .5ms?  1-3 or more secs?)

The Return Path is checked in many ways, with the most successful being CBV (Call Back Verifier). Despite its controversy, it remains effective. However, we still need to address the issue of compliant bad actors. Even if a sender adheres to all rules from SPF to DMARC, anonymous names can still pose a problem.

All the best,
Hector Santos

v2.39.1 | Report a Bug | By Email | System Status