IETF Logo Mail Archive

Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc)

Dave Crocker <dhc@dcrocker.net> Tue, 15 July 2014 16:23 UTC

Return-Path: <dhc@dcrocker.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 68CE61B28DA for <ietf@ietfa.amsl.com>; Tue, 15 Jul 2014 09:23:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BuB20qUJGE3B for <ietf@ietfa.amsl.com>; Tue, 15 Jul 2014 09:23:22 -0700 (PDT)
Received: from sbh17.songbird.com (sbh17.songbird.com [72.52.113.17]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C6C291B28C7 for <ietf@ietf.org>; Tue, 15 Jul 2014 09:23:22 -0700 (PDT)
Received: from [192.168.1.66] (76-218-8-156.lightspeed.sntcca.sbcglobal.net [76.218.8.156]) (authenticated bits=0) by sbh17.songbird.com (8.13.8/8.13.8) with ESMTP id s6FGNCtn002733 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Tue, 15 Jul 2014 09:23:15 -0700
Message-ID: <53C55509.8050108@dcrocker.net>
Date: Tue, 15 Jul 2014 09:21:29 -0700
From: Dave Crocker <dhc@dcrocker.net>
Organization: Brandenburg InternetWorking
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: ned+ietf@mauve.mrochek.com, Viktor Dukhovni <ietf-dane@dukhovni.org>
Subject: Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc)
References: <20140714164212.22974.20340.idtracker@ietfa.amsl.com> <4450964.7UmRiHm4KW@scott-latitude-e6320> <20140715001549.GG2595@mournblade.imrryr.org> <2270075.AYnCC6OxAQ@scott-latitude-e6320> <20140715033346.GL2595@mournblade.imrryr.org> <026301cfa01a$7ebdde40$4001a8c0@gateway.2wire.net> <20140715112023.GU2595@mournblade.imrryr.org> <01PA78TOWR4O007ZXF@mauve.mrochek.com>
In-Reply-To: <01PA78TOWR4O007ZXF@mauve.mrochek.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.0 (sbh17.songbird.com [72.52.113.66]); Tue, 15 Jul 2014 09:23:15 -0700 (PDT)
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/LsxKNc9YmFoelXq2j_yg_ug_jYg
Cc: ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: dcrocker@bbiw.net
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jul 2014 16:23:24 -0000

On 7/15/2014 8:12 AM, ned+ietf@mauve.mrochek.com wrote:
>> On Tue, Jul 15, 2014 at 09:06:55AM +0100, t.p. wrote:
>>>> MUAs should expose message origin when different from author.
...
>>> A fine idea, but, as a pragmatic engineer, I know that changes to an MUA
>>> will take five, may be ten, years to achieve widespread deployment,
>>> whereas changes to MTA could happen in a matter of weeks, if needs must.
...
>> The expedient approach has not worked, it should have been done right
>> long ago, and should still be done right in the present.
> 
> You know, I'm finding it difficult to argue with this.

I'm not.

1. For one thing, I don't know what the reference to 'expedient
approach' means.  Mostly this thread seems to be making very generic,
simple assumptions and assertions about problems and remedies.  Without
specific details on what problem is to be solved, what use cases it will
satisfy, and why we should believe they will work, the thread is not
likely to be constructive.

2. References to changes in MUA appear to be pointing to assumptions
about efficacy of what is displayed to users.  Such assumptions are
empirically incorrect, and mostly serve to demonstrate why the IETF is
the wrong place for discussion about UI/UX/UCD and human usability
issues.  Really, the disconnect between that one assumption and what is
actually known about email user behavior is fundamental.

3.  Nonetheless, the language in the draft charter provides for the
possibility of making incompatible changes to DMARC.  However it
requires /very/ careful documentation of the basis.  See #1, above.


> I've long been a supporter of using From/Sender semantics, but I've also bought
> into the assumption that current client behavior made use of these semantics
> problematic.

Cleaning up From:/Sender: semantics and usage is a worthy goal, as is
generally developing a much cleaner model of identifying and
authenticating the various actors involved with a message.

But it's not likely to have much to do with DMARC, anytime soon.

d/
 --
-- 
Dave Crocker
Brandenburg InternetWorking
bbiw.net

v2.23.0 | Report a Bug | By Email