IETF Logo Mail Archive

Re: Last Call: <draft-ietf-spfbis-4408bis-19.txt> (Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1) to Proposed Standard

Scott Kitterman <scott@kitterman.com> Wed, 28 August 2013 14:39 UTC

Return-Path: <scott@kitterman.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A901C21F9A96 for <ietf@ietfa.amsl.com>; Wed, 28 Aug 2013 07:39:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IIhtOga4VEUV for <ietf@ietfa.amsl.com>; Wed, 28 Aug 2013 07:39:23 -0700 (PDT)
Received: from mailout02.controlledmail.com (mailout02.controlledmail.com [72.81.252.18]) by ietfa.amsl.com (Postfix) with ESMTP id A5F8621F8F9A for <ietf@ietf.org>; Wed, 28 Aug 2013 07:39:11 -0700 (PDT)
Received: from mailout02.controlledmail.com (localhost [127.0.0.1]) by mailout02.controlledmail.com (Postfix) with ESMTP id 3850220E410F; Wed, 28 Aug 2013 10:39:11 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=kitterman.com; s=2007-00; t=1377700751; bh=3hfrzh07ELYI7m2hR7TPQcWrKRWY2e+DijIcakDSzIQ=; h=From:To:Subject:Date:In-Reply-To:References:From; b=o7Rb9tFSyD+2jRuuN+VJzcjztvL9WbcaiYymFf2zU2c/Ztlr+5auwkXiaXhRPZTzO gnavl0K/DyRGv+8TMOzhsypwoWN7N1RIgnsam0pis9DKJ7sZHHyqcmPZVH5kh9HeTv sOk5hQbVDZkYEj9pLIE7J+KbR7HAz3SwesCj7KW8=
Received: from scott-latitude-e6320.localnet (static-72-81-252-21.bltmmd.fios.verizon.net [72.81.252.21]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mailout02.controlledmail.com (Postfix) with ESMTPSA id 1C9FA20E40CB; Wed, 28 Aug 2013 10:39:10 -0400 (EDT)
From: Scott Kitterman <scott@kitterman.com>
To: ietf@ietf.org
Subject: Re: Last Call: <draft-ietf-spfbis-4408bis-19.txt> (Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1) to Proposed Standard
Date: Wed, 28 Aug 2013 10:39:10 -0400
Message-ID: <5302045.mhsSG3B5bL@scott-latitude-e6320>
User-Agent: KMail/4.10.5 (Linux/3.8.0-29-generic; KDE/4.10.5; i686; ; )
In-Reply-To: <521E0759.7090504@dcrocker.net>
References: <9884B9CD-0ED3-4D89-A100-58D05EA4BC98@gmail.com> <6.2.5.6.2.20130828044224.06ee3980@resistor.net> <521E0759.7090504@dcrocker.net>
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
X-AV-Checked: ClamAV using ClamSMTP
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Aug 2013 14:39:28 -0000

On Wednesday, August 28, 2013 07:21:13 Dave Crocker wrote:
> On 8/28/2013 5:24 AM, S Moonesamy wrote:
> > It's difficult, some might say impossible, to get agreement on
> > draft-ietf-spfbis-4408bis.  I would like to ask each of you, and anyone
> > else, to provide your opinion about the following:
> 
> > RFC 5507 primarily raises three concerns about TXT records:
> RFC 5507 is irrelevant to consideration of the SPFbis draft.
> 
> Really.
> 
> RFC 5507 concerns approaches to design.  However the SPFbis draft is not
> designing a new capability.  It is documenting a mechanism that has
> existed for quite a long time, is very widely deployed, and has become
> an essential part of Internet Mail's operational infrastructure that
> works to counter abuse.
> 
> Internet Mail already relies on SPF and has for many years.
> 
> To consider RFC 5507 with respect to SPFbis is to treat the current
> draft as a matter of new work, which it isn't.
> 
> No one is arguing that SPF's use of the TXT record is preferable.  All
> newer uses of the TXT record use a scoping mechanism (through an
> underscore-based node name) to avoid all of the classic TXT record
> ambiguity concerns.
> 
> My professional assessment of SPF is that there are many ways it could
> have been designed better.  My other professional assessment is that the
> design quality of SPF ceased to be a relevant consideration, as soon as
> it gained widespread traction.
> 
> Wide deployment equals very large-scale consensus and quite a lot of
> running code.  The IETF says it cares about those two attributes.
> 
> If IETF technical work is to have any relation to the operational
> Internet, it needs to treat solid, real-world deployment as having
> higher priority than theoretical technical perfection.

Yes.  Please.

Scott K

v2.23.0 | Report a Bug | By Email