Re: [ietf-smtp] MTA-STS reports via HTTPS

Brian Godiksen <brian@socketlabs.com> Thu, 09 April 2020 22:06 UTC

Return-Path: <brian@socketlabs.com>
X-Original-To: ietf-smtp@ietfa.amsl.com
Delivered-To: ietf-smtp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 02B5B3A108D for <ietf-smtp@ietfa.amsl.com>; Thu, 9 Apr 2020 15:06:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=socketlabs.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RxuEBPNuEPDg for <ietf-smtp@ietfa.amsl.com>; Thu, 9 Apr 2020 15:06:17 -0700 (PDT)
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (mail-mw2nam10on2137.outbound.protection.outlook.com [40.107.94.137]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E55BC3A109B for <ietf-smtp@ietf.org>; Thu, 9 Apr 2020 15:06:15 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=iVIxgHtNzgMCZXjrroht0BBqI42GPKnqtgrxpScVsDCSNm0hAfmOmZM94OHpXp2GobyGTLen8r8O5hoWz270yEhRKx+keusxN132I8FapLbtb0bV6HDNdhGJIH1CawhHW+dDetniKCB3LrIIi3WRn2BROdYt2zliryfu2S8nAXWpJ46W+MnMdNhl/CjUJJz6EdEKnGiDEOK8C8dXvGCMyzkVlfbye+xC2q5u8jzUZkEldM2owntu8np9xFCrxj7htngoS9qAgKJvi/1ZEPqvvuKsTrwyKsxeoJfYDhJsJ6SkWJ8J7fZUIU7yMgTBRpOEHUtTvc2wJ2FMVn1bMVnCrQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xAo0ELf57AoAD30u0X5jErCW9vdpn+Dl97qaDdTdRK8=; b=jNeURyipkBDQ1+aXzEjZD12DF7f/F8YLW7uZE2fq0scT6+g83jxpNaa7bBC0AAwQikmB1G2ac4Qb2XaVOJUDsaFow2LtjhD1MIzQFPImiTzOSxVJLzULm7DsarbB6GQ3WmjNOIYm8eGIZXQZ7KW4sGMBwPn3e2yFTrNP6NE5m+i1mgHcfB2ir+QtehQB+MkmRZu3IANssI1k+Ji/3MsmbYLXD43EW/wSaxWIvIdLFej+bAwP37MpIx572Uu7qP1Da/5hEf7YPSUHeur5xV2hSJrPDDRiNMIfq9LpHaHsn4mMrAfrdFPXz+xP4wPB40cXJ4SxvST1lRiQJxhDBvdCyQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=socketlabs.com; dmarc=pass action=none header.from=socketlabs.com; dkim=pass header.d=socketlabs.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=socketlabs.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xAo0ELf57AoAD30u0X5jErCW9vdpn+Dl97qaDdTdRK8=; b=j8LEfLb1JAT8HPgzRy+ppyIV3OldgIDRgb5Gj0FpHJ6OnUWWjf1kqktE5OUCDVtk9ODWpQZFGb0VwOICM5Jt0QDpDafnc/SmR0RHqnSPJiK3tSf5OHZfp7TqSXLnqpU3NHEhKgZ/eTJR2sL1QQzUmI1bRzyz7Wi8uxenTcPsKok=
Received: from DM6PR12MB3066.namprd12.prod.outlook.com (2603:10b6:5:11a::20) by DM6PR12MB3291.namprd12.prod.outlook.com (2603:10b6:5:186::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2878.19; Thu, 9 Apr 2020 22:06:13 +0000
Received: from DM6PR12MB3066.namprd12.prod.outlook.com ([fe80::91dc:f0d1:abd1:f2a0]) by DM6PR12MB3066.namprd12.prod.outlook.com ([fe80::91dc:f0d1:abd1:f2a0%6]) with mapi id 15.20.2878.022; Thu, 9 Apr 2020 22:06:13 +0000
From: Brian Godiksen <brian@socketlabs.com>
To: "ietf-smtp@ietf.org" <ietf-smtp@ietf.org>
Thread-Topic: [ietf-smtp] MTA-STS reports via HTTPS
Thread-Index: AQHWDpjWIBIAOd4SnEiy0JOrp6/HoahxWPcA
Date: Thu, 9 Apr 2020 22:06:12 +0000
Message-ID: <FFE6E0C4-51D4-4858-9092-791F8983B881@socketlabs.com>
References: <alpine.OSX.2.22.407.2004091338360.79592@ary.qy>
In-Reply-To: <alpine.OSX.2.22.407.2004091338360.79592@ary.qy>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.60.0.2.5)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=brian@socketlabs.com;
x-originating-ip: [71.235.90.196]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 06c1677b-bc5e-45a0-8f4c-08d7dcd237b1
x-ms-traffictypediagnostic: DM6PR12MB3291:
x-microsoft-antispam-prvs: <DM6PR12MB3291E88B686AE097FAD710B1DAC10@DM6PR12MB3291.namprd12.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0368E78B5B
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR12MB3066.namprd12.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(10019020)(396003)(39830400003)(136003)(346002)(376002)(366004)(6916009)(91956017)(76116006)(5660300002)(6486002)(33656002)(6506007)(6512007)(66574012)(83080400001)(66556008)(66476007)(66446008)(2906002)(53546011)(66946007)(64756008)(8676002)(81166007)(36756003)(8936002)(26005)(86362001)(2616005)(966005)(508600001)(81156014)(71200400001)(316002)(186003); DIR:OUT; SFP:1102;
received-spf: None (protection.outlook.com: socketlabs.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: m8FXQ7pEpyPSqs2RyYhfSx3mRyjIBEBWcUnQAJ55cydX082ccI7m/TJsGn32o/i9dagXKzWnYYPCou0bdloLlVowYIpr2pGIBeoo3Rk5zmwc1PJnvHP2XQL5jkYmqvWxpq5ROWJ07t/zaSIE2Y4yHw==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <F2B56FA1EAF22E428A054175A4D15700@namprd12.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: socketlabs.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 06c1677b-bc5e-45a0-8f4c-08d7dcd237b1
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Apr 2020 22:06:13.0081 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ea0955a-d620-4c0e-a1f8-74c73308f6b5
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: k1MYrhr3xbkohK/XMroHPT0Rqr7rPph4b6alYlZyjHzFzDVpLko5o6+YuMh/FIblaXkyvMRXoCtGR8Zp/5Sx7hvGMRyMLT3YN8k42Iy9g4M=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR12MB3291
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-smtp/j6ZnfdsXqX6AW2PNLZ7wv61hMXo>
Subject: Re: [ietf-smtp] MTA-STS reports via HTTPS
X-BeenThere: ietf-smtp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of issues related to Simple Mail Transfer Protocol \(SMTP\) \[RFC 821, RFC 2821, RFC 5321\]" <ietf-smtp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-smtp/>
List-Post: <mailto:ietf-smtp@ietf.org>
List-Help: <mailto:ietf-smtp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-smtp>, <mailto:ietf-smtp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Apr 2020 22:06:25 -0000

Adoption rates of those looking to receive TLS reports via https are as low as those sending them.  Https reports account for about 0.2% of the total reports that we send. I would love to see more adoption here, as I agree in your thought that they are preferable.  

Our biggest gripe with the current spec is specific to DKIM and the suggestion of using a service type declaration of “s=tlsrpt” in the DKIM public key.  Support for this service type at receiving systems appears to be rather abysmal based on our logs and DMARC reports.  While we originally included this service type in our key, we’ve since removed it to reduce DMARC failures.

Thanks,
Brian Godiksen
SocketLabs

> On Apr 9, 2020, at 2:00 PM, John R. Levine <johnl@iecc.com> wrote:
> 
> While avoiding actual work I twiddled my STS reporting setup to get reports for some of my domains by https rather than mailto.  So far I have one (1) report from Socketlabs and nothing from anyone else.
> 
> Does anyone else send reports by https?  If anything it's easier than sending them by mail since there's no DKIM or other verification needed, just do a POST and you're done.
> 
> Regards,
> John Levine, johnl@taugh.com, Primary Perpetrator of "The Internet for Dummies",
> Please consider the environment before reading this e-mail. https://jl.ly
> 
> _______________________________________________
> ietf-smtp mailing list
> ietf-smtp@ietf.org
> https://www.ietf.org/mailman/listinfo/ietf-smtp