Re: DMARC and yahoo

Hector Santos <> Wed, 16 April 2014 11:07 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id 7F09A1A0139 for <>; Wed, 16 Apr 2014 04:07:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.771
X-Spam-Status: No, score=-1.771 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, FREEMAIL_REPLYTO_END_DIGIT=0.25, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.272, SPF_PASS=-0.001] autolearn=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id UuXCJcL1OTxX for <>; Wed, 16 Apr 2014 04:07:22 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id 876071A012C for <>; Wed, 16 Apr 2014 04:07:22 -0700 (PDT)
Received: from [] by with NNFMP; 16 Apr 2014 11:07:19 -0000
Received: from [] by with NNFMP; 16 Apr 2014 11:07:19 -0000
Received: from [] by with NNFMP; 16 Apr 2014 11:07:19 -0000
X-Yahoo-Newman-Property: ymail-3
Received: (qmail 27707 invoked by uid 60001); 16 Apr 2014 11:07:19 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=s1024; t=1397646438; bh=auR14E+MAxsuIgWAZu57scRhq5K0twT2Um4j2/Ws18s=; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=IaisrWUBB0NHPmZfgRVafvnefZ78it5OrPaZaLlnWZuCd9oSpdv5+o728t32AnytK0DejGPi8+rmZID8oPL5b2k8UzHYiTP9oQIvGVBGkbRXtsjdwpV865ONFj8qdN64EKiU5UguzWGiIC7pFq+y7GAk99LK2vcKRAG7v+BuCec=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024;; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=tDz8VlMnH5oKd0OwzpTogMjb+OUNZtt87nhNEKyUzSBIuzBbAW7QW9PNZDJyBIhtVqClQq33WaZKg8se11/ViIKi5x3LXyAr4B0De4o75gDUqmNFd9dBgHXKJngOApssIYIWf4cQrkCjZUFp62Amd9Rr8ZcIpKqSz5I7oNmw0w4=;
X-YMail-OSG: OdBi1WoVM1kGEIjj4MOfW87jn2Sy5AGlO1MF3Fofeh6SZld .wFJ94OzO5UCexw9ljyna9dTKvkZBLJmXrmD1EWlUM9QclXlETpkPz3FJoY2 HOMgXWoszqQp4ffZy8VIrESp77Z9.IfalTggyuNCFQQjApXfEs3_Ygr6C7Xw 5.bs0gNFZJRDZl.C3VoEaVkIUJOrwhA5PVBHbYpeFWf6MxJuemEttFMrflca ZKv7fTH76cKvKrbYrmEMMlHueFGAkjbqgt0RrhR1t05fSFxDjcPa69K_0uif hX.7vbztaiVjsW_lNLAGd7QfFZ7K94bVFXMTlm.RQxKX9HbABwCSO_6cIpV7 Q7k8wwh8bc4.tXjp.JIKmM8Vei6I.ZaDWZri4pNNyaH1k64p_oANHiCZ5KNQ lLpA8vK61IURRlezegSN_Xx_xnOC6G6aWT_aAnTlQU..KXVx1f49GpTuIFSO CcyYii39.WRuic1.x4_QrEg8CNEcMxfDxhNRshJpmi7IGEmXQ.3W.6VjR9Hf SQQfdWZIhJ7iWD1o4AD6BNnUiqQngxP4DTafIDHPaWt6je4HF_DM29RIIpU9 L4ZdbOgPOgWRM10GiEvshsN21CKr1Hw--
Received: from [] by via HTTP; Wed, 16 Apr 2014 04:07:18 PDT
X-Rocket-MIMEInfo: 002.001, VGhpcyBpcyBtb3N0bHkgYSB0ZXN0IHdpdGggbXkganVuayB5YWhvby5jb20gdGVzdGluZyBhY2NvdW50IHRvIHNlZSB3aGF0IGhhcHBlbnMgaGVyZS4gwqDCoAoKU3RlcGhlbiwgeW91IGFyZSByaWdodCwgYnV0IHdlIGhhdmUgYmVlbiBvbiB0aGlzIGZvciBvdmVyIDkgeWVhcnMuIMKgV2l0aCBhbGwgZHVlIHJlc3BlY3QgdG8gQ3JvY2tlciBhbmQgTGV2aW5lLCB3aG8gZm91Z2h0IMKgaGFyZCBhZ2FpbnN0IERLSU0gU2VjdXJpdHkgUG9saWN5IGJhc2VkIHNvbHV0aW9ucyBzdGFydGluZyB3aXRoIFNTUCwgdGgBMAEBAQE-
X-Mailer: YahooMailWebService/
References: <> <> <> <> <> <> <> <>
Message-ID: <>
Date: Wed, 16 Apr 2014 04:07:18 -0700 (PDT)
From: Hector Santos <>
Subject: Re: DMARC and yahoo
To: Stephen Farrell <>, Michael Richardson <>, Theodore Ts'o <>
In-Reply-To: <>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="1625196408-161270130-1397646438=:42236"
Cc: "" <>
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Hector Santos <>
List-Id: IETF-Discussion <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 16 Apr 2014 11:07:26 -0000

This is mostly a test with my junk testing account to see what happens here.   

Stephen, you are right, but we have been on this for over 9 years.  With all due respect to Crocker and Levine, who fought  hard against DKIM Security Policy based solutions starting with SSP, then ADSP which Levine authored as a poison pill many believe, he never supported his own work. The industry was quite aware of what was coming and it took DMARC, an external development, which Eric Allman predicted would happen when SSP was demoted by ADSP, to highlight the very high interest in the technology and tremendous need for an self-signing, low cost, email authentication protocol. DKIM was it and without a policy that Crocker and Levine tried to remove, the payoff was low and signatures were worthless.   So we have to give some credit to Yahoo for pushing the issue, finally.   Some will continue to fight it and  some will continue to work with it.   I choose to work with it now as I did with ADSP.

HLS via Yahoo
On Wednesday, April 16, 2014 6:13 AM, Stephen Farrell <> wrote:
Hash: SHA1

On 04/16/2014 03:23 AM, Michael Richardson wrote:

> So, as a WG chair, a person known to me just tried to post to the
> list From a brand new mail account.  They aren't
> subscribed with that address.  I would normally just approve, and
> add them...
> It seems to me that I must now actually reject, because it would
> affect other subscribers.
> I'm now thinking that we need to remove all the
> addresses from posting to ietf mailing lists.

This is probably obvious, but had done what
has done, that could I guess have a pretty significant impact on
the IETF getting stuff done for a while since a lot of folks in
the last few years seem to have migrated their IETF mail to as a reasonable way to get around corporate this-and-that

Maybe people who've done that might want to consider whether its
such a good plan for so many IETF participants to be dependent on
just one service now that we have a demonstration that s/none/reject/
in one TXT RR can have such an impact.


Version: GnuPG v1.4.14 (GNU/Linux)