Re: Last Call: <draft-melnikov-smtp-priority-tunneling-02.txt> (Tunneling of SMTP Message Transfer Priorities) to Experimental RFC
SM <sm@resistor.net> Wed, 06 June 2012 21:47 UTC
Return-Path: <sm@resistor.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5BBF311E80AC for <ietf@ietfa.amsl.com>; Wed, 6 Jun 2012 14:47:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.503
X-Spam-Level:
X-Spam-Status: No, score=-102.503 tagged_above=-999 required=5 tests=[AWL=0.096, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UfXMZe4tvrnT for <ietf@ietfa.amsl.com>; Wed, 6 Jun 2012 14:47:32 -0700 (PDT)
Received: from mx.ipv6.elandsys.com (mx.ipv6.elandsys.com [IPv6:2001:470:f329:1::1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BACD11E80A1 for <ietf@ietf.org>; Wed, 6 Jun 2012 14:47:31 -0700 (PDT)
Received: from SUBMAN.resistor.net (IDENT:sm@localhost [127.0.0.1]) (authenticated bits=0) by mx.elandsys.com (8.14.5/8.14.5) with ESMTP id q56LlQmd010512; Wed, 6 Jun 2012 14:47:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=opendkim.org; s=mail2010; t=1339019251; i=@resistor.net; bh=v+dH7rssrDKFf8wCSmgkeTcpxnb+5q+jaBiNOMxEZuk=; h=Date:To:From:Subject:Cc:In-Reply-To:References; b=UgHKSWqJyX3hXg8cjo1f7hrVxQYo6fnb4Dz5/6DDduRPOeuKY+yjXsUfijG3WSskM vclWnkq3Dwcr1tuH/GVKXbN4YrE5d2tforuGTDAD+iUG9bs4dSLswwftz7Uy47evag BAxyTjo1sjd/RW7qgcYGQfYFbYvzCVvNHBZAfhq8=
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=resistor.net; s=mail; t=1339019251; i=@resistor.net; bh=v+dH7rssrDKFf8wCSmgkeTcpxnb+5q+jaBiNOMxEZuk=; h=Date:To:From:Subject:Cc:In-Reply-To:References; b=r4qXHJu+QHOlOabGM3iwz4saL53x1G7vJdRwPwGzAMG+AzPakXRXYu/9cn6QRYpZS HawdfjFWwxlby/8qWZq0+yFNd0ofabttcjxA170H3AMirrmmDns1SYmiWhWQ4GJK6A HDy568zbJ4pT+UizjfGqV7DBsE9lC4SFCbGAgq7U=
Message-Id: <6.2.5.6.2.20120605113303.0aa1b028@resistor.net>
X-Mailer: QUALCOMM Windows Eudora Version 6.2.5.6
Date: Wed, 06 Jun 2012 14:39:36 -0700
To: ietf@ietf.org
From: SM <sm@resistor.net>
Subject: Re: Last Call: <draft-melnikov-smtp-priority-tunneling-02.txt> (Tunneling of SMTP Message Transfer Priorities) to Experimental RFC
In-Reply-To: <20120604200531.8859.1367.idtracker@ietfa.amsl.com>
References: <20120604200531.8859.1367.idtracker@ietfa.amsl.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Cc: draft-melnikov-smtp-priority-tunneling@tools.ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Jun 2012 21:47:34 -0000
At 13:05 04-06-2012, The IESG wrote:
>The IESG has received a request from an individual submitter to consider
>the following document:
>- 'Tunneling of SMTP Message Transfer Priorities'
> <draft-melnikov-smtp-priority-tunneling-02.txt> as Experimental RFC
>
>The IESG plans to make a decision in the next few weeks, and solicits
>final comments on this action. Please send substantive comments to the
In the Introduction section:
Typo: scenarious.
In Section 3.1:
"This specification inserts the following between steps 3 and 4 in
Section 4.1 of [SMTP-PRIORITY]:"
The specification would be updating draft-melnikov-smtp-priority
according to the above.
"3b. In absence of both the MT-PRIORITY MAIL FROM parameter and the
MT-Priority header field, other message header fields, such as
Priority [RFC2156] and X-Priority, MAY be used for determining
the priority under this "Priority Message Handling" SMTP
extension. But note that the Importance [RFC2156] header field
MUST NOT be used for determining the priority under this
"Priority Message Handling" SMTP extension, as it has different
semantics: the Importance header field is aimed at the user
recipient and not at the nodes responsible for transferring the
message."
X-Priority, for example, is undocumented. If I understood the above
correctly, the MTA chooses some higher priority when it sees any of
these header fields.
In Section 7:
"Thus it is important to ensure that an MTA receiving a message
containing the MT-Priority header field can trust that it
was set by an authorized agent. Such trust can be realized, for
example, by using DKIM Section 7.1 to sign the MT-Priority header
field value, S/MIME, or by keeping a list of trusted senders (e.g.
within a close environment)."
I don't see how DKIM can be used to ensure that the header field was
set by an authorized agent. I assume that any SMTP client within the
(DKIM) signing domain could generate a MT-Priority header field as I
don't know the DKIM signing policy. As an example, I consider that
msg-id 3D9B1776-6DFD-4B80-97C6-FA8774DB7BA9@ietf.org as was generated
by an authorized agent on behalf of the IETF Chair but I would not
describe it as trusted.
"Message Submission Agents MUST implement a policy that only allows"
I suggest using the same text as in draft-melnikov-smtp-priority.
"To protect MT-Priority header field from modification or insertion,
MUAs, MSAs and MTAs inserting it into messages SHOULD use message
header protection mechanism such as DKIM [RFC6376]."
I read Section 7.1 as a case for not following the above
recommendation. Any attempt to change priority means breaking the
DKIM signature.
I am not proposing text to avoid a significant rewrite of the proposal.
Regards,
-sm