Re: IETF Policy on dogfood consumption or avoidance - SMTP version
John C Klensin <john-ietf@jck.com> Mon, 16 December 2019 04:12 UTC
Return-Path: <john-ietf@jck.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D82E1200B4 for <ietf@ietfa.amsl.com>; Sun, 15 Dec 2019 20:12:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MG7gumI3zUB3 for <ietf@ietfa.amsl.com>; Sun, 15 Dec 2019 20:12:41 -0800 (PST)
Received: from bsa2.jck.com (bsa2.jck.com [70.88.254.51]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0DB1F120059 for <ietf@ietf.org>; Sun, 15 Dec 2019 20:12:41 -0800 (PST)
Received: from [198.252.137.10] (helo=PSB) by bsa2.jck.com with esmtp (Exim 4.82 (FreeBSD)) (envelope-from <john-ietf@jck.com>) id 1ighkC-0005tn-DM; Sun, 15 Dec 2019 23:12:28 -0500
Date: Sun, 15 Dec 2019 23:12:21 -0500
From: John C Klensin <john-ietf@jck.com>
To: John R Levine <johnl@taugh.com>, Valdis Klētnieks <valdis.kletnieks@vt.edu>, Subramanian Moonesamy <sm+ietf@elandsys.com>
cc: IETF general list <ietf@ietf.org>
Subject: Re: IETF Policy on dogfood consumption or avoidance - SMTP version
Message-ID: <18926580F5114CCCADABE398@PSB>
In-Reply-To: <alpine.OSX.2.21.99999.374.1912151831300.63353@ary.qy>
References: <20191215222928.9DE5A1164C5A@ary.qy> <754203.1576450681@turing-police> <alpine.OSX.2.21.99999.374.1912151831300.63353@ary.qy>
X-Mailer: Mulberry/4.0.8 (Win32)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-SA-Exim-Connect-IP: 198.252.137.10
X-SA-Exim-Mail-From: john-ietf@jck.com
X-SA-Exim-Scanned: No (on bsa2.jck.com); SAEximRunCond expanded to false
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/y05Jh14hM-WnZPJ9Vv4rcpC0KXU>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Dec 2019 04:12:42 -0000
--On Sunday, December 15, 2019 18:32 -0500 John R Levine <johnl@taugh.com> wrote: >> RCPT TO:<ietf-bounces@ietf.org> >> 550 5.7.1 <[A.B.C.D]>: Helo command rejected: RFC2821 >> violation >> >> Personally, my opinion is that if there's indication that a >> lot of spam or other malicious mail is arriving from "address >> literal EHLO" sources, it's appropriate to respond with a >> "550 5.7.1 Rejected due to policy reasons", > > I agree we should fix the message. It has been a very long > time since I saw any legit mail from a host that identified > itself with an IP other than someone trying to make a point > that I don't understand. John, Valdis, Subramanian, and maybe a few others, First of all, I read John's message too quickly and had forgotten that the rejection message attributing the problem to EHLO does not appear until after a RCPT command is sent. So SM's test is the important one; John's just didn't go far enough. There are also a number of issues raised by the error message. The problem condition should not be attributed to RFC 2821; it probably shouldn't refer to the "Helo command" when EHLO was used; it is, as suggested above, a policy matter and not a requirement of any IETF protocol specification; and, while the specification arguably permits it, accepting the EHLO and then rejecting the mail transaction only after processing the MAIL and at least one RCPT command is probably at least in bad taste. Some of those issues suggest changes or clarification that should be applied when and if RFC 5321 is updated and replaced. Most of them have been discussed, at length, on the ietf-smtp list; I assume the others soon will be. Interpretation is up to the SAA team but, given that the ietf-smtp@ietf.org list exists and a productive discussion of the technical parts of this topic has already occurred there, I hope we can avoid either repeating that discussion on this list or forking it and expecting people to follow and integrate both. None of the above has much of anything to do with the key issue that I thought was worth raising on this list. According to the response to the trouble ticket, the Secretariat was told to block mail transactions that used IP address literals in the EHLO command. No matter how pragmatically desirable that may be (see the ietf-smtp list for a discussion on that topic too), at least as I read it (and wrote it) RFC 5321 prohibits that rejection, making the IETF mail servers non-conforming to the standard. So, again, the first question for this list is whether we are comfortable with servers run in the IETF's name being non-conforming to IETF standards. I see objections to that on ethical and credibility ground, but others may disagree. If we do believe that our not -conforming to our standards may be appropriate in some circumstances, should there be a mechanism for at least informing, and possibly consulting, the community before that is done or are we comfortable not knowing about it until someone stumbles over the problem. I'm not going silent on the second topic because I want to see what others have to say. And, because I believe the technical issues and tradeoffs belong on the ietf-smtp list, I'm not going to comment further on them here until the SAA team or some AD requests that I do otherwise. best, john
- Re: IETF Policy on dogfood consumption or avoidan… Valdis Kl=?utf-8?Q?=c4=93?=tnieks
- IETF Policy on dogfood consumption or avoidance -… John C Klensin
- Re: IETF Policy on dogfood consumption or avoidan… Viktor Dukhovni
- Re: IETF Policy on dogfood consumption or avoidan… Randy Bush
- Re: IETF Policy on dogfood consumption or avoidan… John Levine
- Re: IETF Policy on dogfood consumption or avoidan… Viktor Dukhovni
- Re: IETF Policy on dogfood consumption or avoidan… Nick Hilliard
- Re: IETF Policy on dogfood consumption or avoidan… Keith Moore
- Re: IETF Policy on dogfood consumption or avoidan… John C Klensin
- Re: IETF Policy on dogfood consumption or avoidan… Viktor Dukhovni
- Re: IETF Policy on dogfood consumption or avoidan… Salz, Rich
- Re: IETF Policy on dogfood consumption or avoidan… Keith Moore
- Re: IETF Policy on dogfood consumption or avoidan… Valdis Kl=?utf-8?Q?=c4=93?=tnieks
- Re: IETF Policy on dogfood consumption or avoidan… John R Levine
- Re: IETF Policy on dogfood consumption or avoidan… Randy Bush
- Re: IETF Policy on dogfood consumption or avoidan… John C Klensin
- Re: IETF Policy on dogfood consumption or avoidan… Keith Moore
- Re: IETF Policy on dogfood consumption or avoidan… Nick Hilliard
- Re: IETF Policy on dogfood consumption or avoidan… S Moonesamy
- Re: IETF Policy on dogfood consumption or avoidan… Glen
- Re: IETF Policy on dogfood consumption or avoidan… Nick Hilliard
- Re: IETF Policy on dogfood consumption or avoidan… Phillip Hallam-Baker
- Re: IETF Policy on dogfood consumption or avoidan… Glen
- Re: IETF Policy on dogfood consumption or avoidan… Viktor Dukhovni
- Re: IETF Policy on dogfood consumption or avoidan… Andrew G. Malis
- Re: IETF Policy on dogfood consumption or avoidan… John C Klensin
- Re: IETF Policy on dogfood consumption or avoidan… Andrew G. Malis
- Re: IETF Policy on dogfood consumption or avoidan… Randy Bush
- Re: IETF Policy on dogfood consumption or avoidan… Jay Daley
- Re: IETF Policy on dogfood consumption or avoidan… Andrew G. Malis
- Re: IETF Policy on dogfood consumption or avoidan… Jay Daley
- Re: IETF Policy on dogfood consumption or avoidan… Rob Sayre
- Re: IETF Policy on dogfood consumption or avoidan… John C Klensin
- Re: IETF Policy on dogfood consumption or avoidan… Salz, Rich
- Re: IETF Policy on dogfood consumption or avoidan… Alissa Cooper
- Re: IETF Policy on dogfood consumption or avoidan… Jay Daley
- Re: IETF Policy on dogfood consumption or avoidan… Hector Santos
- Re: IETF Policy on dogfood consumption or avoidan… Viktor Dukhovni
- Re: IETF Policy on dogfood consumption or avoidan… Brian E Carpenter
- Re: [ietf-smtp] IETF Policy on dogfood consumptio… Hector Santos
- Re: [ietf-smtp] IETF Policy on dogfood consumptio… Salz, Rich
- Re: [ietf-smtp] IETF Policy on dogfood consumptio… Keith Moore
- Re: [ietf-smtp] the inedible parts of IETF dogfoo… John Levine
- Re: [ietf-smtp] the inedible parts of IETF dogfoo… Keith Moore
- Re: [ietf-smtp] the inedible parts of IETF dogfoo… George Michaelson
- Re: [ietf-smtp] IETF Policy on dogfood consumptio… Randy Bush
- Re: [ietf-smtp] IETF Policy on dogfood consumptio… Hector Santos
- Re: [ietf-smtp] IETF Policy on dogfood consumptio… Hector Santos
- Re: IETF Policy on dogfood consumption or avoidan… John C Klensin
- Re: IETF Policy on dogfood consumption or avoidan… Eliot Lear
- Re: IETF Policy on dogfood consumption or avoidan… Alissa Cooper
- Re: [ietf-smtp] epostage is still a bad idea, the… John R Levine
- Re: [ietf-smtp] IETF Policy on dogfood consumptio… Salz, Rich
- Re: [ietf-smtp] epostage is still a bad idea, the… Phillip Hallam-Baker
- Re: IETF Policy on dogfood consumption or avoidan… Keith Moore
- Re: IETF Policy on dogfood consumption or avoidan… Hector Santos
- Re: IETF Policy on dogfood consumption or avoidan… John C Klensin
- Re: IETF Policy on dogfood consumption or avoidan… Eliot Lear
- Re: IETF Policy on dogfood consumption or avoidan… Alessandro Vesely
- Re: IETF Policy on dogfood consumption or avoidan… Viktor Dukhovni
- Re: IETF Policy on dogfood consumption or avoidan… Eliot Lear
- Re: IETF Policy on dogfood consumption or avoidan… Hector Santos
- Re: [ietf-smtp] epostage is still a bad idea, the… Brandon Long
- Re: [ietf-smtp] epostage is still a bad idea, the… Phillip Hallam-Baker
- Re: IETF Policy on dogfood consumption or avoidan… Valdis Kl=?utf-8?Q?=c4=93?=tnieks
- Re: IETF Policy on dogfood consumption or avoidan… Hector Santos
- The dogfood discussion (was: Re: IETF Policy on d… John C Klensin
- Re: The dogfood discussion (was: Re: IETF Policy … Viktor Dukhovni
- Re: The dogfood discussion (was: Re: IETF Policy … Eliot Lear (elear)