IETF Logo Mail Archive

Re: [EAI] draft-leiba-5322upd-from-group discussion

ned+ima@mrochek.com Mon, 09 July 2012 05:19 UTC

Return-Path: <ned+ima@mrochek.com>
X-Original-To: ima@ietfa.amsl.com
Delivered-To: ima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 22D4821F881D for <ima@ietfa.amsl.com>; Sun, 8 Jul 2012 22:19:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lQKb--XfBCo3 for <ima@ietfa.amsl.com>; Sun, 8 Jul 2012 22:19:45 -0700 (PDT)
Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by ietfa.amsl.com (Postfix) with ESMTP id 0C24921F8818 for <ima@ietf.org>; Sun, 8 Jul 2012 22:19:44 -0700 (PDT)
Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01OHMFVDZI2O00503E@mauve.mrochek.com> for ima@ietf.org; Sun, 8 Jul 2012 22:15:05 -0700 (PDT)
Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01OHLKS3CK340006TF@mauve.mrochek.com> (original mail from NED@mauve.mrochek.com) for ima@ietf.org; Sun, 8 Jul 2012 22:15:02 -0700 (PDT)
From: ned+ima@mrochek.com
Message-id: <01OHMFVC3IY00006TF@mauve.mrochek.com>
Date: Sun, 08 Jul 2012 22:10:55 -0700
In-reply-to: "Your message dated Mon, 02 Jul 2012 10:57:51 -0400" <CALaySJ+A-zpeQx09V7i-8o6aZNNvZKDQu0btSEisP87jJun1Gg@mail.gmail.com>
MIME-version: 1.0
Content-type: TEXT/PLAIN
References: <CALaySJ+A-zpeQx09V7i-8o6aZNNvZKDQu0btSEisP87jJun1Gg@mail.gmail.com>
To: Barry Leiba <barryleiba@computer.org>
Cc: ima@ietf.org
Subject: Re: [EAI] draft-leiba-5322upd-from-group discussion
X-BeenThere: ima@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "EAI \(Email Address Internationalization\)" <ima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ima>, <mailto:ima-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ima>
List-Post: <mailto:ima@ietf.org>
List-Help: <mailto:ima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ima>, <mailto:ima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Jul 2012 05:19:46 -0000

> I think the subject document will do; please review it:
> http://datatracker.ietf.org/doc/draft-leiba-5322upd-from-group

> The "replacement for 3.6.2" section should be solid except for one
> issue, noted: one sentence needs to change, for our purposes, and we
> need to decide how to make the change.

>    If the from field contains more than one address in the address-list,
>    then the sender field, containing the field name "Sender" and a
>    single mailbox specification, MUST appear in the message.

> I don't believe that we plan to use the "Sender" field in the cases
> where we'll use group syntax in "From", so that MUST can't stay.

Then I guess I'm confused. The cases I'm familiar with in EAI at least involve
constructing empty groups. The text says "more than one", not "anything 
other than one", so the MUST would not be violated.

If there's a use-case for creating a From: field using a group that
ends up containing multiple addreseses, I'd like to know what it is so I can
evaluate whether it warrants overrding the MUST.

> The
> simple change would be to make it SHOULD and have done with it, but
> I'm not entirely happy with that.  The alternative is to leave the
> MUST, but add "unless...", and then we have to craft the "unless"
> text.

> Please also review the Security Considerations, and make sure I got that
> right.

The one I don't see is possible exploits involving different clients handling
of something that used to not be allowed.

					Ned

v2.30.2 | Report a Bug | By Email | System Status