IETF Logo Mail Archive

Re: DMARC and ietf.org

Miles Fidelman <mfidelman@meetinghouse.net> Sun, 20 July 2014 18:53 UTC

Return-Path: <mfidelman@meetinghouse.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E6B61B2CA9 for <ietf@ietfa.amsl.com>; Sun, 20 Jul 2014 11:53:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.319
X-Spam-Level:
X-Spam-Status: No, score=0.319 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_110=0.6, J_CHICKENPOX_16=0.6, MISSING_HEADERS=1.021, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6HDPRj3QPIKq for <ietf@ietfa.amsl.com>; Sun, 20 Jul 2014 11:53:28 -0700 (PDT)
Received: from server1.neighborhoods.net (server1.neighborhoods.net [207.154.13.48]) by ietfa.amsl.com (Postfix) with ESMTP id ED58F1B2CA7 for <ietf@ietf.org>; Sun, 20 Jul 2014 11:53:27 -0700 (PDT)
Received: from localhost (localhost.localdomain [127.0.0.1]) by server1.neighborhoods.net (Postfix) with ESMTP id 5F907CC086 for <ietf@ietf.org>; Sun, 20 Jul 2014 14:53:27 -0400 (EDT)
X-Virus-Scanned: by amavisd-new-2.6.2 (20081215) (Debian) at neighborhoods.net
Received: from server1.neighborhoods.net ([127.0.0.1]) by localhost (server1.neighborhoods.net [127.0.0.1]) (amavisd-new, port 10024) with LMTP id zKCY82lMzcap for <ietf@ietf.org>; Sun, 20 Jul 2014 14:53:22 -0400 (EDT)
Received: from new-host-3.home (pool-173-76-155-14.bstnma.fios.verizon.net [173.76.155.14]) by server1.neighborhoods.net (Postfix) with ESMTPSA id 49D41CC08B for <ietf@ietf.org>; Sun, 20 Jul 2014 14:53:22 -0400 (EDT)
Message-ID: <53CC1020.9050209@meetinghouse.net>
Date: Sun, 20 Jul 2014 14:53:20 -0400
From: Miles Fidelman <mfidelman@meetinghouse.net>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:29.0) Gecko/20100101 Firefox/29.0 SeaMonkey/2.26.1
MIME-Version: 1.0
CC: ietf@ietf.org
Subject: Re: DMARC and ietf.org
References: <CAL0qLwYZPO9L9e7MHA6zP5vcTbQEJmwCSonLdMeQiOw4CUoiFw@mail.gmail.com> <20140718174827.652621ADAF@ld9781.wdf.sap.corp> <6.2.5.6.2.20140719235353.0c50d260@resistor.net> <25621.1405862805@sandelman.ca> <53CBF7BD.1090806@meetinghouse.net> <53CC0CCC.3020309@gmail.com>
In-Reply-To: <53CC0CCC.3020309@gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/81leJyf3mXDr9Ta7KpMXq9djI10
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 20 Jul 2014 18:53:30 -0000

Brian E Carpenter wrote:
> On 21/07/2014 05:09, Miles Fidelman wrote:
> ...
>> Leaving aside the question of whether or not IETF should use a
>> workaround, I thought there was a mailman patch to deal with re-writing
>> from addresses for DMARC p=reject.
> No, it isn't selective for addresses from a domain with a p=reject policy.
> It's clearly unacceptable to rewrite addresses that don't need to be
> rewritten.

Seems to be now.  From the Mailman site:

Implemented now for release in 2.1.18 are the following:

  * The from_is_list feature from 2.1.16 is always available.
  * There are new settings in Privacy options - Sender filters:
      o dmarc_moderaction_action is a five valued setting with values
          + Accept - accept the post without rewriting From: or wrapping
            the message
          + Munge From - rewrite the From: and Reply-To: as in from_is_list
          + Wrap Message - wrap the message as in from_is_list
          + Reject - reject the post
          + Discard - Discard the post
      o dmarc_moderaction_notice is a custom reject message to replace
        the default Reject message.
  * The above options other than Accept override thefrom_is_list setting
    for messages whose original From: domain publishes a DMARC policy of
    p=reject or p=quarantine. A per-list option is available to limit
    this to just p=reject or to apply it to either p=reject or
    p=quarantine. If the option is Accept, the from_is_list setting applies.
  * There is a site option to set the default for
    dmarc_moderaction_action and list admins may not set the action to a
    setting which is above the site default in the above list. E.g., if
    the site default is Reject, list admins can only set Reject or
    Discard; if the site default is Munge From, list admins can select
    anything but Accept.

Miles





-- 
In theory, there is no difference between theory and practice.
In practice, there is.   .... Yogi Berra

v2.23.0 | Report a Bug | By Email