Re: DMARC stuff
JORDI PALET MARTINEZ <jordi.palet@consulintel.es> Thu, 22 October 2015 16:42 UTC
Return-Path: <prvs=1737b76c72=jordi.palet@consulintel.es>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 99C1B1AD259 for <ietf@ietfa.amsl.com>; Thu, 22 Oct 2015 09:42:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -93.763
X-Spam-Level:
X-Spam-Status: No, score=-93.763 tagged_above=-999 required=5 tests=[BAYES_50=0.8, FH_HOST_ALMOST_IP=1.889, HELO_MISMATCH_COM=0.553, HOST_EQ_STATIC=1.172, HOST_EQ_STATICIP=1.511, HOST_MISMATCH_NET=0.311, MIME_QP_LONG_LINE=0.001, USER_IN_WHITELIST=-100] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JVGPeEmcRH2z for <ietf@ietfa.amsl.com>; Thu, 22 Oct 2015 09:42:06 -0700 (PDT)
Received: from mail.consulintel.com (132.Red-213-0-69.staticIP.rima-tde.net [213.0.69.132]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 74BB21AD23D for <ietf@ietf.org>; Thu, 22 Oct 2015 09:42:02 -0700 (PDT)
X-MDAV-Processed: mail.consulintel.com, Thu, 22 Oct 2015 18:42:00 +0200
Received: from [10.10.10.212] by mail.consulintel.com (MDaemon PRO v11.0.3) with ESMTP id md50000314307.msg for <ietf@ietf.org>; Thu, 22 Oct 2015 18:41:59 +0200
X-Spam-Processed: mail.consulintel.com, Thu, 22 Oct 2015 18:41:59 +0200 (not processed: spam filter heuristic analysis disabled)
X-MDOP-RefID: re=0.000,fgs=0 (_st=1 _vt=0 _iwf=0)
X-Return-Path: prvs=1737b76c72=jordi.palet@consulintel.es
X-Envelope-From: jordi.palet@consulintel.es
X-MDaemon-Deliver-To: ietf@ietf.org
User-Agent: Microsoft-MacOutlook/0.0.0.151008
Date: Thu, 22 Oct 2015 18:41:54 +0200
Subject: Re: DMARC stuff
From: JORDI PALET MARTINEZ <jordi.palet@consulintel.es>
To: ietf@ietf.org
Message-ID: <0E103615-C7F2-46BF-B79E-EE114D177BE7@consulintel.es>
Thread-Topic: DMARC stuff
References: <CABtrr-Vh-+hLwYX8qjqC5rYrkE-8WZqy0YCgwHquFMAsdFqBaA@mail.gmail.com> <20151022154248.4070.qmail@ary.lan>
In-Reply-To: <20151022154248.4070.qmail@ary.lan>
Mime-version: 1.0
Content-type: text/plain; charset="UTF-8"
Content-transfer-encoding: quoted-printable
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/vUBELhIkajKclBWxpqWXvEv42Bw>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: jordi.palet@consulintel.es
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Oct 2015 16:42:08 -0000
There is a much bigger problem with the IETF mail servers, I’ve reported it several times to AMS and other folks from the IAOC have been informed as I understand, but nobody is providing any solution, and as a consequence, we are subjected to receive SPAM, as we are accepting emails from subscribers which are in spam black-lists. This problem also means that if you own mail server (which many of us don’t control), is configured to reject messages from black-listed IPs, then when you reject emails from such folks, the IETF considers that your email address is bouncing, and unsubscribes you. I’ve this problem every other week, in the general area list and also in some others related to DNS (which probably means that the black-listed servers are from people contributing mainly to DNS exploders). This is my view about the problem, which has been ignored up to now: 1) IETF is accepting messages from subscribers with MX which are Blacklisted. 2) IETF send those emails also with the original headers. —> that’s why when AMS staff send the logs that I requested, it appears like the IETF is black-listed, which is not the case, but a couple of senders to IETF exploders. 3) Mail servers inspect the IETF and original headers looking for black-listed servers. 4) If they are strict, bounce emails from IETF even if the IETF records aren’t black-listed but the original sender MX is black-listed So, we need a policy here. Either: A) IETF doesn’t accept messages from black-listed servers. ——> if we don’t do so, we may be affecting ALL the subscribers, and even worst, a SPAMER could subscribe to IETF and send SPAM to ALL our subscribers. An even worst, once IETF mail es bounced because the black-list, some antispam systems increase the IETF rating as “possible spammer”, which is not good. Or B) IETF clean-up the original sender header (before sending to the mail exploder) to avoid bounces. Alternatively, not sure how this will work, we could just allow “bounces” from subscribers (may be even a big number such as 40-50), instead of disabling the membership. We may need to retry more times sending emails to subscribers, increasing the time between retries, and after no bouncing for “x” many days, resetting counters for this subscriber. When I got the logs from AMS (august 2015), the offenders where: 149.171.193.32 - Australia Sydney University Of New South Wales, black-listed by sorbs And 198.57.247.250 - United States New York City Unified Layer, black-listed by spamhaus Regards, Jordi -----Mensaje original----- De: ietf <ietf-bounces@ietf.org> en nombre de John Levine <johnl@taugh.com> Responder a: <johnl@taugh.com> Fecha: jueves, 22 de octubre de 2015, 17:42 Para: <ietf@ietf.org> Asunto: DMARC stuff >>Totally the wrong thread, so I'll apologize profusely now. > >Subject line changed. > >>GMail is set to turn on DMARC reject strict by sometime early next >>year [1] being one of the last big web mail providers to do so; so, >>Mailman "From:" rewriting (or turning on the ability for IETF list >>subscribers to toggle this for their sends) might need to be done for >>IETF lists. > >Members of the DMARC group have submitted two drafts >draft-andersen-arc-00 and draft-jones-arc-usage-00 which describe a >mutation of DKIM intended to let mailing lists coexist with DMARC >without having to do ugly hacks like rewriting the From: line. I have >reason to believe that several large mail systems intend to implement >this reasonably soon. > >The obvious place to discuss this is the DMARC WG, not here. > >R's, >John > >
- Help test IMAP access to the IETF archives Robert Sparks
- Re: Help test IMAP access to the IETF archives Robert Sparks
- Re: Help test IMAP access to the IETF archives Ralph Droms
- Re: Help test IMAP access to the IETF archives Tim Wicinski
- Re: Help test IMAP access to the IETF archives Joseph Lorenzo Hall
- Re: Help test IMAP access to the IETF archives Robert Sparks
- Google threatens to break Gmail Brian E Carpenter
- Re: Google threatens to break Gmail Brian E Carpenter
- Re: Google threatens to break Gmail Ross Finlayson
- Re: Google threatens to break Gmail Andrew G. Malis
- Re: Help test IMAP access to the IETF archives John Dickinson
- Re: Help test IMAP access to the IETF archives Rich Kulawiec
- Re: Google threatens to break Gmail Russ Housley
- Re: Google threatens to break Gmail Andrew G. Malis
- Re: Help test IMAP access to the IETF archives Dave Crocker
- Re: Google threatens to break Gmail Paul Wouters
- Re: Help test IMAP access to the IETF archives Robert Sparks
- Re: Google threatens to break Gmail Phillip Hallam-Baker
- DMARC stuff John Levine
- Re: Google threatens to break Gmail John Levine
- Re: DMARC stuff Michael Richardson
- mailman [was: Google threatens to break Gmail] Miles Fidelman
- Re: DMARC stuff JORDI PALET MARTINEZ
- Re: Google threatens to break Gmail Rich Kulawiec
- Re: DMARC stuff John R Levine
- Re: Google threatens to break Gmail Rich Kulawiec
- Re: DMARC stuff Dave Crocker
- Re: DMARC stuff Dave Crocker
- Re: DMARC stuff David Morris
- Re: DMARC stuff JORDI PALET MARTINEZ
- Re: Google threatens to break Gmail Brian E Carpenter
- Re: DMARC stuff Rich Kulawiec
- RE: Google threatens to break Gmail Christian Huitema
- Re: DMARC stuff John R Levine
- Re: DMARC stuff Dave Crocker
- Re: Google threatens to break Gmail Dave Crocker
- Re: Google threatens to break Gmail Martin Rex
- Re: Google threatens to break Gmail Joseph Lorenzo Hall
- Re: mailman [was: Google threatens to break Gmail] John Levine
- Re: Google threatens to break Gmail Rich Kulawiec
- Re: Google threatens to break Gmail Rich Kulawiec
- Re: Google threatens to break Gmail Brian E Carpenter
- Re: Google threatens to break Gmail John Levine
- Re: Google threatens to break Gmail Randy Bush
- Re: mailman [was: Google threatens to break Gmail] Pierre-Elliott Bécue
- Re: Google threatens to break Gmail Ted Lemon
- Re: Google threatens to break Gmail Harald Alvestrand
- Re: Google threatens to break Gmail Randy Bush
- Re: Google threatens to break Gmail Harald Alvestrand
- Re: Google threatens to break Gmail Ted Lemon
- Re: Google threatens to break Gmail Paul Wouters
- Re: Google threatens to break Gmail Phillip Hallam-Baker
- Re: Google threatens to break Gmail John C Klensin
- Re: Google threatens to break Gmail ned+ietf
- Re: Google threatens to break Gmail Philip Homburg
- Re: Google threatens to break Gmail John Levine
- Re: Google threatens to break Gmail Philip Homburg
- Re: Google threatens to break Gmail John C Klensin
- Re: Google threatens to break Gmail Brian E Carpenter
- Re: Google threatens to break Gmail Jelte Jansen
- Re: Google threatens to break Gmail John R Levine
- Re: Google threatens to break Gmail Phillip Hallam-Baker
- Re: Google threatens to break Gmail John C Klensin
- RE: Google threatens to break Gmail Ted Lemon
- Re: Google threatens to break Gmail John R Levine
- Re: Google threatens to break Gmail Mark Rousell
- RE: Google threatens to break Gmail John C Klensin
- Re: Google threatens to break Gmail Viktor Dukhovni
- Re: Google threatens to break Gmail Ted Lemon
- Incremental hacks and letting abusers control the… Dave Crocker
- Re: Incremental hacks and letting abusers control… John C Klensin
- Re: Google threatens to break Gmail Martin Rex
- Re: Google threatens to break Gmail John Levine
- Re: Google threatens to break Gmail Niels Dettenbach (Syndicat.com)
- Re: Google threatens to break Gmail Dave Crocker
- Re: Incremental hacks and letting abusers control… Ted Lemon
- Re: Google threatens to break Gmail Dave Crocker
- Re: Google threatens to break Gmail Viktor Dukhovni
- Re: Google threatens to break Gmail Martin Rex
- Re: Google threatens to break Gmail Niels Dettenbach
- RE: Google threatens to break Gmail Ted Lemon
- RE: Google threatens to break Gmail {dkim-fail} ned+ietf
- Re: Google threatens to break Gmail {dkim-fail} Hector Santos