IETF Logo Mail Archive

Re: Bad/Good ideas and damage control by experienced participants

John Levine <johnl@taugh.com> Tue, 21 June 2022 15:28 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D7509C15AACD for <ietf@ietfa.amsl.com>; Tue, 21 Jun 2022 08:28:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.86
X-Spam-Level:
X-Spam-Status: No, score=-1.86 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=Xl7cHZsS; dkim=pass (2048-bit key) header.d=taugh.com header.b=Sg/y3Dai
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id erFXgx4IhSSF for <ietf@ietfa.amsl.com>; Tue, 21 Jun 2022 08:28:19 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6C352C15AACA for <ietf@ietf.org>; Tue, 21 Jun 2022 08:28:19 -0700 (PDT)
Received: (qmail 79278 invoked from network); 21 Jun 2022 15:28:17 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=1359e.62b1e391.k2206; bh=DDocXzGA4qLGKI2JdJZg2YjpNZ5dXbMdF0zUubIH8Ws=; b=Xl7cHZsSfDtsT1JCEoYfSYF5YMzsL7RTGvA11HPGuP9gFAKhrhGumEZDZYYGwJJVNNZYCtAUkHTdbpp4i5ZZiPat+bmc7C0FYJ8c5QFTTjOTutDt9Ac031RkMfr0EiimzhMCMXnfFzllcJOgaeClLLngQyn5k+gaAzmZW/5VjQpwVKMahbpzGCHxy5KKsRlMhFSRuxfex4lvLS17vE/StPmnfggTgmJ8RqVOi6IwMapSg/kC7xt53g2oahH6XTSkh6iV/PiVp8k4YTWaHgApx4SfR5QEOpTGs+w5QeBxbOwi+C2BBUKU4Xcc+0peFjJF/SzMkix84C+e/SC1Y7U+1w==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=1359e.62b1e391.k2206; bh=DDocXzGA4qLGKI2JdJZg2YjpNZ5dXbMdF0zUubIH8Ws=; b=Sg/y3DaivIJV3Zc1KuCF41nKkSw/i8kWNeRrQExJwtBZUW2yx9bFndj211zOffS43SmnyDX6hXQUcbfG7/jHdv4DBKcw/3s6l+8BAURAggFedMF0GGjlf/vnCyeQ5Xc571EOXTbjyi0+DfdBru3PTYiFSoLoN+HplRRV9w/SaT6shkHDK8hjinEY+IpVjLGXOFrRcFdxVadWYk9hWh6o47D9eeoytfn9SBsOKtsPcr+ImMfsN0rs5RLKzmblvmPg7PVYTzO5Ayr74LXymLqCfzdazsvz2mAhM0U0uR4CQzM+L8VGN16QEBc6s3clBD84eEvUb7BLKBPCKjgns6B4mQ==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.3 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 21 Jun 2022 15:28:16 -0000
Received: by ary.qy (Postfix, from userid 501) id 38D0743EE646; Tue, 21 Jun 2022 11:28:15 -0400 (EDT)
Date: Tue, 21 Jun 2022 11:28:15 -0400
Message-Id: <20220621152816.38D0743EE646@ary.qy>
From: John Levine <johnl@taugh.com>
To: ietf@ietf.org
Subject: Re: Bad/Good ideas and damage control by experienced participants
In-Reply-To: <acf2152d-9da8-d7d3-a313-54970de8ac72@foobar.org>
Organization: Taughannock Networks
X-Headerized: yes
Cleverness: minimal
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/rt52xdF0BTzgvciHqU2OQ_SyTq8>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jun 2022 15:28:24 -0000

It appears that Nick Hilliard  <nick@foobar.org> said:
>> It seems like, these days, all people do is promulgate broken mechanisms 
>> (e.g., DMARC), in the name of blocking resource sharing & collaboration 
>> - bringing us back to the days of a walled gardens and closer to the 
>> days of the Tower of Babel, at the same time no less.  And they do it, 
>> largely, by going around IETF processes entirely.
>
>the issue is not whether this is true, but how it is presented to people 
>who stumble on the same blocks that we stumbled on when we started.

DMARC is an interesting example.  As originally designed and implemented,
it was a reasonable approach to a real problem, phishing mail that
impersonates famous brands, notably Paypal.  Unfortunately a few years
later it was repurposed by AOL and Yahoo, after they each let crooks
steal their users' address books, to outsource the costs of spam they
were getting with mail "from" their own users.  I suppose it was
inevitable in retrospect that someone would do that but I know I was
not the only one who was surprised when they did, and particularly
that Yahoo did it in full knowledge that it would screw up every
discussion list to which their users were subscribed.

Many of the people who designed DMARC were and are active in the IETF, 
but I don't blame them for not doing it here because they'd be overrun
with people who have no idea what the issues are in running large
mail systems and would just say it's broken, go away.  I am certainly
not saying that DMARC is wonderful, and the band-aid ARC that is intended
to fix some of the mailing list issues is rolling out much too slowly,
but doing nothing was and is not an option.

R's,
John

v2.23.0 | Report a Bug | By Email