Re: SMTP RFC: "MUST NOT" change or delete Received header

Dave Crocker <dhc@dcrocker.net> Mon, 31 March 2014 02:16 UTC

Message-ID: <5338CF6A.20304@dcrocker.net>
Date: Sun, 30 Mar 2014 19:14:02 -0700
From: Dave Crocker <dhc@dcrocker.net>
Organization: Brandenburg InternetWorking
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.4.0
MIME-Version: 1.0
To: Ted Lemon <ted.lemon@nominum.com>
Subject: Re: SMTP RFC: "MUST NOT" change or delete Received header
References: <20140330151432.2721.qmail@joyce.lan> <A3DE810811F791EDC532BDFB@JcK-HP8200.jck.com> <CAMm+LwjrY44GhdMCkqEL_YssNNR=isx-cSQ6KZH-1bkXO7RJWQ@mail.gmail.com> <86005B600BB2261DFDEE715B@JcK-HP8200.jck.com> <9EC12CC9-81CD-4C3E-ADD1-283615767B17@nominum.com>
In-Reply-To: <9EC12CC9-81CD-4C3E-ADD1-283615767B17@nominum.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/UNVUGOzdPSKmY7FDsm8joG0uYkk
Cc: IETF Discussion Mailing List <ietf@ietf.org>
Precedence: list
Reply-To: dcrocker@bbiw.net

On 3/30/2014 5:38 PM, Ted Lemon wrote:
> On Mar 30, 2014, at 6:44 PM, John C Klensin <john-ietf@jck.com> wrote:
>> Whether one accepts it or not, "been here already" tests are not
>> about debugging.  They are about loop detection and DoS attacks.
>
> Are there MTAs that make use of the Received: header for loop detection?

MMDF had it, probably from the early 1980s, but certainly sometime 
during the 80s.

I have a vague recollection of adding it to the code, though that could 
be an invented memory.  The Received header field was not in RFC 733, 
and was standardized in late 1982 (RFC 822), just before I stopped doing 
MMDF work.

More likely, it was added by the folk who did the follow-on work for 
MMDF II, but still probably early/mid 1980s.

Back then, passing through the same host more than a couple of times 
would be a good indication of looping.

d/
-- 
Dave Crocker
Brandenburg InternetWorking
bbiw.net

SMTP RFC: "MUST NOT" change or delete Received he… Kevin M. Gallagher
Re: SMTP RFC: "MUST NOT" change or delete Receive… Randy Bush
Re: SMTP RFC: "MUST NOT" change or delete Receive… Dave Cridland
Re: SMTP RFC: "MUST NOT" change or delete Receive… Eliot Lear
Re: SMTP RFC: "MUST NOT" change or delete Receive… Ted Lemon
Re: SMTP RFC: "MUST NOT" change or delete Receive… Dave Aronson
Re: SMTP RFC: "MUST NOT" change or delete Receive… David Morris
Re: SMTP RFC: "MUST NOT" change or delete Receive… John Levine
Re: SMTP RFC: "MUST NOT" change or delete Receive… Dale R. Worley
Re: SMTP RFC: "MUST NOT" change or delete Receive… Dave Crocker
Re: SMTP RFC: "MUST NOT" change or delete Receive… Scott Brim
Re: SMTP RFC: "MUST NOT" change or delete Receive… Hector Santos
Re: SMTP RFC: "MUST NOT" change or delete Receive… Hector Santos
Re: SMTP RFC: "MUST NOT" change or delete Receive… David Morris
Re: SMTP RFC: "MUST NOT" change or delete Receive… Ted Lemon
Re: SMTP RFC: "MUST NOT" change or delete Receive… John Levine
Re: SMTP RFC: "MUST NOT" change or delete Receive… Dick Franks
Re: SMTP RFC: "MUST NOT" change or delete Receive… Hector Santos
Re: SMTP RFC: "MUST NOT" change or delete Receive… Hector Santos
RE: SMTP RFC: "MUST NOT" change or delete Receive… Christian Huitema
Re: SMTP RFC: "MUST NOT" change or delete Receive… Phillip Hallam-Baker
Re: SMTP RFC: "MUST NOT" change or delete Receive… John Levine
Re: SMTP RFC: "MUST NOT" change or delete Receive… John C Klensin
Re: SMTP RFC: "MUST NOT" change or delete Receive… Phillip Hallam-Baker
Re: SMTP RFC: "MUST NOT" change or delete Receive… John C Klensin
Re: SMTP RFC: "MUST NOT" change or delete Receive… Randy Bush
Re: SMTP RFC: "MUST NOT" change or delete Receive… Randy Bush
Re: SMTP RFC: "MUST NOT" change or delete Receive… Ted Lemon
Re: SMTP RFC: "MUST NOT" change or delete Receive… John Levine
Re: SMTP RFC: "MUST NOT" change or delete Receive… John Levine
Re[2]: SMTP RFC: "MUST NOT" change or delete Rece… mohammed serrhini
Re: SMTP RFC: "MUST NOT" change or delete Receive… Dave Crocker
Re: SMTP RFC: "MUST NOT" change or delete Receive… John C Klensin
Re: SMTP RFC: "MUST NOT" change or delete Receive… Dave Cridland
Re: SMTP RFC: "MUST NOT" change or delete Receive… Hector Santos
Re: SMTP RFC: "MUST NOT" change or delete Receive… Michael Richardson
Re: SMTP RFC: "MUST NOT" change or delete Receive… John C Klensin
Re: SMTP RFC: "MUST NOT" change or delete Receive… John C Klensin
Mail System Reliability [was: Re: SMTP RFC: "MUST… Hector Santos
Re: SMTP RFC: "MUST NOT" change or delete Receive… Phillip Hallam-Baker
Re: SMTP RFC: "MUST NOT" change or delete Receive… Murray S. Kucherawy