Re: DMARC and yahoo

Hector Santos <hector.santos45@yahoo.com> Wed, 16 April 2014 11:07 UTC

Return-Path: <hector.santos45@yahoo.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F09A1A0139 for <ietf@ietfa.amsl.com>; Wed, 16 Apr 2014 04:07:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.771
X-Spam-Level:
X-Spam-Status: No, score=-1.771 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, FREEMAIL_REPLYTO_END_DIGIT=0.25, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.272, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UuXCJcL1OTxX for <ietf@ietfa.amsl.com>; Wed, 16 Apr 2014 04:07:22 -0700 (PDT)
Received: from nm22-vm1.bullet.mail.bf1.yahoo.com (nm22-vm1.bullet.mail.bf1.yahoo.com [98.139.212.127]) by ietfa.amsl.com (Postfix) with ESMTP id 876071A012C for <ietf@ietf.org>; Wed, 16 Apr 2014 04:07:22 -0700 (PDT)
Received: from [98.139.215.143] by nm22.bullet.mail.bf1.yahoo.com with NNFMP; 16 Apr 2014 11:07:19 -0000
Received: from [98.139.212.251] by tm14.bullet.mail.bf1.yahoo.com with NNFMP; 16 Apr 2014 11:07:19 -0000
Received: from [127.0.0.1] by omp1060.mail.bf1.yahoo.com with NNFMP; 16 Apr 2014 11:07:19 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 113851.91087.bm@omp1060.mail.bf1.yahoo.com
Received: (qmail 27707 invoked by uid 60001); 16 Apr 2014 11:07:19 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1397646438; bh=auR14E+MAxsuIgWAZu57scRhq5K0twT2Um4j2/Ws18s=; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=IaisrWUBB0NHPmZfgRVafvnefZ78it5OrPaZaLlnWZuCd9oSpdv5+o728t32AnytK0DejGPi8+rmZID8oPL5b2k8UzHYiTP9oQIvGVBGkbRXtsjdwpV865ONFj8qdN64EKiU5UguzWGiIC7pFq+y7GAk99LK2vcKRAG7v+BuCec=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=tDz8VlMnH5oKd0OwzpTogMjb+OUNZtt87nhNEKyUzSBIuzBbAW7QW9PNZDJyBIhtVqClQq33WaZKg8se11/ViIKi5x3LXyAr4B0De4o75gDUqmNFd9dBgHXKJngOApssIYIWf4cQrkCjZUFp62Amd9Rr8ZcIpKqSz5I7oNmw0w4=;
X-YMail-OSG: OdBi1WoVM1kGEIjj4MOfW87jn2Sy5AGlO1MF3Fofeh6SZld .wFJ94OzO5UCexw9ljyna9dTKvkZBLJmXrmD1EWlUM9QclXlETpkPz3FJoY2 HOMgXWoszqQp4ffZy8VIrESp77Z9.IfalTggyuNCFQQjApXfEs3_Ygr6C7Xw 5.bs0gNFZJRDZl.C3VoEaVkIUJOrwhA5PVBHbYpeFWf6MxJuemEttFMrflca ZKv7fTH76cKvKrbYrmEMMlHueFGAkjbqgt0RrhR1t05fSFxDjcPa69K_0uif hX.7vbztaiVjsW_lNLAGd7QfFZ7K94bVFXMTlm.RQxKX9HbABwCSO_6cIpV7 Q7k8wwh8bc4.tXjp.JIKmM8Vei6I.ZaDWZri4pNNyaH1k64p_oANHiCZ5KNQ lLpA8vK61IURRlezegSN_Xx_xnOC6G6aWT_aAnTlQU..KXVx1f49GpTuIFSO CcyYii39.WRuic1.x4_QrEg8CNEcMxfDxhNRshJpmi7IGEmXQ.3W.6VjR9Hf SQQfdWZIhJ7iWD1o4AD6BNnUiqQngxP4DTafIDHPaWt6je4HF_DM29RIIpU9 L4ZdbOgPOgWRM10GiEvshsN21CKr1Hw--
Received: from [99.121.4.27] by web160803.mail.bf1.yahoo.com via HTTP; Wed, 16 Apr 2014 04:07:18 PDT
X-Rocket-MIMEInfo: 002.001, VGhpcyBpcyBtb3N0bHkgYSB0ZXN0IHdpdGggbXkganVuayB5YWhvby5jb20gdGVzdGluZyBhY2NvdW50IHRvIHNlZSB3aGF0IGhhcHBlbnMgaGVyZS4gwqDCoAoKU3RlcGhlbiwgeW91IGFyZSByaWdodCwgYnV0IHdlIGhhdmUgYmVlbiBvbiB0aGlzIGZvciBvdmVyIDkgeWVhcnMuIMKgV2l0aCBhbGwgZHVlIHJlc3BlY3QgdG8gQ3JvY2tlciBhbmQgTGV2aW5lLCB3aG8gZm91Z2h0IMKgaGFyZCBhZ2FpbnN0IERLSU0gU2VjdXJpdHkgUG9saWN5IGJhc2VkIHNvbHV0aW9ucyBzdGFydGluZyB3aXRoIFNTUCwgdGgBMAEBAQE-
X-Mailer: YahooMailWebService/0.8.185.657
References: <CAKW6Ri6OUmxGaBOGR2hoWpDOGWsVQ9tQ2Q9ogkT5wzFhFJLBbQ@mail.gmail.com> <534D9C2C.8010606@gmail.com> <20140415214348.GL4456@thunk.org> <1397607352.389753533@f361.i.mail.ru> <534DCFFB.4080102@gmail.com> <20140416012205.GC12078@thunk.org> <24986.1397615002@sandelman.ca> <534E57BC.1060501@cs.tcd.ie>
Message-ID: <1397646438.42236.YahooMailNeo@web160803.mail.bf1.yahoo.com>
Date: Wed, 16 Apr 2014 04:07:18 -0700 (PDT)
From: Hector Santos <hector.santos45@yahoo.com>
Subject: Re: DMARC and yahoo
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Michael Richardson <mcr+ietf@sandelman.ca>, Theodore Ts'o <tytso@mit.edu>
In-Reply-To: <534E57BC.1060501@cs.tcd.ie>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="1625196408-161270130-1397646438=:42236"
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/e0Qe0eVrOhYJMNiC3A7DL_Si0jU
Cc: "ietf@ietf.org" <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Hector Santos <hector.santos45@yahoo.com>
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Apr 2014 11:07:26 -0000

This is mostly a test with my junk yahoo.com testing account to see what happens here.   

Stephen, you are right, but we have been on this for over 9 years.  With all due respect to Crocker and Levine, who fought  hard against DKIM Security Policy based solutions starting with SSP, then ADSP which Levine authored as a poison pill many believe, he never supported his own work. The industry was quite aware of what was coming and it took DMARC, an external development, which Eric Allman predicted would happen when SSP was demoted by ADSP, to highlight the very high interest in the technology and tremendous need for an self-signing, low cost, email authentication protocol. DKIM was it and without a policy that Crocker and Levine tried to remove, the payoff was low and signatures were worthless.   So we have to give some credit to Yahoo for pushing the issue, finally.   Some will continue to fight it and  some will continue to work with it.   I choose to work with it now as I did with ADSP.

--
HLS via Yahoo
On Wednesday, April 16, 2014 6:13 AM, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:
 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



On 04/16/2014 03:23 AM, Michael Richardson wrote:

> 
> So, as a WG chair, a person known to me just tried to post to the
> list From a brand new yahoo.com mail account.  They aren't
> subscribed with that address.  I would normally just approve, and
> add them...
> 
> It seems to me that I must now actually reject, because it would
> affect other subscribers.
> 
> I'm now thinking that we need to remove all the @yahoo.com
> addresses from posting to ietf mailing lists.
> 

This is probably obvious, but had gmail.com done what yahoo.com
has done, that could I guess have a pretty significant impact on
the IETF getting stuff done for a while since a lot of folks in
the last few years seem to have migrated their IETF mail to
gmail.com as a reasonable way to get around corporate this-and-that
issues.

Maybe people who've done that might want to consider whether its
such a good plan for so many IETF participants to be dependent on
just one service now that we have a demonstration that s/none/reject/
in one TXT RR can have such an impact.

S.


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)

iQEcBAEBAgAGBQJTTle3AAoJEC88hzaAX42i7jQIALBIZ3Z+jp1RbGCiJp4IVztN
qWa0aEUcx2Skp4gtM/vQnEEsCjYFAnRaoMofJqyUBuvTs3H0q/GMkcONcOPJW6wH
R/HpKKr24UpYsfpdYKx99b7D27kVNgzML3e0bD3csR1MNC/yR7wvsnTHTwbv2mxk
eb7O5Wp6kvKw/gRYjPHncMPSgBUyc+KixY6IDHzDk4IdCQP4CyVkhI4EV7dlu8nM
T1RNhljdzCmJBLd0y1USS1UmKrPVhoFgBXShvnxabseqJN/m2bz5WVSuJgIwWRov
duU5vRgbdQ5jTn9TBzEPdJ5LRbQczlHyLVdnjvOHApQ8HtNrQxKOe89C0b32+7A=
=cS/m
-----END PGP SIGNATURE-----