IETF Logo Mail Archive

Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc)

Viktor Dukhovni <ietf-dane@dukhovni.org> Tue, 15 July 2014 01:33 UTC

Return-Path: <ietf-dane@dukhovni.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AAEA71B27CD for <ietf@ietfa.amsl.com>; Mon, 14 Jul 2014 18:33:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qItqrHl-IBbj for <ietf@ietfa.amsl.com>; Mon, 14 Jul 2014 18:33:09 -0700 (PDT)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [38.117.134.19]) (using TLSv1.1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2A3241B27C7 for <ietf@ietf.org>; Mon, 14 Jul 2014 18:33:09 -0700 (PDT)
Received: by mournblade.imrryr.org (Postfix, from userid 1034) id 44BD62AB0CC; Tue, 15 Jul 2014 01:33:08 +0000 (UTC)
Date: Tue, 15 Jul 2014 01:33:08 +0000
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: ietf@ietf.org
Subject: Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc)
Message-ID: <20140715013308.GI2595@mournblade.imrryr.org>
References: <20140714164212.22974.20340.idtracker@ietfa.amsl.com> <53C413EB.5060408@dcrocker.net> <4450964.7UmRiHm4KW@scott-latitude-e6320> <20140715001549.GG2595@mournblade.imrryr.org> <6C10A695-8F29-4D94-8CF5-FAA0E975A33E@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <6C10A695-8F29-4D94-8CF5-FAA0E975A33E@gmail.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/9A9dLbC5MuBe8vHUGm0rTZ4_wzc
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: ietf@ietf.org
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jul 2014 01:33:21 -0000

On Mon, Jul 14, 2014 at 06:20:35PM -0700, Douglas Otis wrote:

> > This is a solved problem, the "Rfc822.Sender" field should have
> > from the outset trumped the "Rfc822.From" field when determining
> > message origin, and the DMARC policy should be that of the "Sender"
> > domain.  Some MUAs already expose "Sender != From" by displaying
> > "From <sender> on behalf of <author>".  This needs to become standard
> > MUA behaviour.
> 
> Viktor,
> 
> You are right, but this provides a domain not always seen by
> recipients.  Only the From header field is surely displayed.

That means that some corner cases will remain unsolved until MUAs
evolve to catch up.  Pretending there is no elephant in the room
is a poor long-term strategy.

Work to improve the deficient MUAs.

-- 
	Viktor.

v2.23.0 | Report a Bug | By Email