IETF Logo Mail Archive

Re: [Jmap] Submission

Ned Freed <ned.freed@mrochek.com> Sun, 23 April 2017 23:54 UTC

Return-Path: <ned.freed@mrochek.com>
X-Original-To: jmap@ietfa.amsl.com
Delivered-To: jmap@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6AE4412751F for <jmap@ietfa.amsl.com>; Sun, 23 Apr 2017 16:54:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.003
X-Spam-Level:
X-Spam-Status: No, score=-2.003 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mrochek.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZEWqlAm5WT0o for <jmap@ietfa.amsl.com>; Sun, 23 Apr 2017 16:54:43 -0700 (PDT)
Received: from mauve.mrochek.com (mauve.mrochek.com [68.183.62.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E49D91270B4 for <jmap@ietf.org>; Sun, 23 Apr 2017 16:54:42 -0700 (PDT)
Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01QDIUI8MI4W006AFI@mauve.mrochek.com> for jmap@ietf.org; Sun, 23 Apr 2017 16:49:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=mrochek.com; s=mauve; t=1492991376; bh=ajPMJ9RmEgUpa8dAW1wJRS822kPoFatIFIH/17+AR/A=; h=Cc:Date:From:Subject:In-reply-to:References:To; b=MGbm3QtIzPTx2VGLqhNUMzfkftr3WjVqv7sOOsz1APK3XQueeBQkjE9TbswJdKRw7 bsIt90G2DYqEhVc74O7vpfs0ObQwXeP0kOijy646Q7B7jzXMR8KM15GMgAC6juH3OY AYhGTXgOIL9109hRmCIth9XyHVMUZ3pjK/HngZOQ=
MIME-version: 1.0
Content-transfer-encoding: 7bit
Content-type: TEXT/PLAIN; CHARSET="us-ascii"; Format="flowed"
Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01QD64433M0W00005B@mauve.mrochek.com>; Sun, 23 Apr 2017 16:49:34 -0700 (PDT)
Cc: jmap@ietf.org
Message-id: <01QDIUI7C57800005B@mauve.mrochek.com>
Date: Sun, 23 Apr 2017 16:37:29 -0700
From: Ned Freed <ned.freed@mrochek.com>
In-reply-to: "Your message dated Fri, 21 Apr 2017 15:34:44 +0100" <4471fa93-2321-4a7e-87b0-fbb00927d584@gulbrandsen.priv.no>
References: <20170419163429.8556.qmail@ary.lan> <87d1c873cf.fsf@fifthhorseman.net> <alpine.OSX.2.20.1704191353500.43511@ary.qy> <01QDEV2QM6XC00005O@mauve.mrochek.com> <BC098A22-2837-4316-822A-27232A896EF1@fugue.com> <4471fa93-2321-4a7e-87b0-fbb00927d584@gulbrandsen.priv.no>
To: Arnt Gulbrandsen <arnt@gulbrandsen.priv.no>
Archived-At: <https://mailarchive.ietf.org/arch/msg/jmap/nLYjrYKUzTfRgc-WhE9cOjX2TIA>
Subject: Re: [Jmap] Submission
X-BeenThere: jmap@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: JSON Message Access Protocol <jmap.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jmap>, <mailto:jmap-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jmap/>
List-Post: <mailto:jmap@ietf.org>
List-Help: <mailto:jmap-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jmap>, <mailto:jmap-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 23 Apr 2017 23:54:44 -0000

> Won't the nexthop generally be the thing that the port-587 server forwards
> to?

That's highly unlikely. There's quite a lot of activity associated with
message submission: Access control, auditing, spam/virus checks, content
filtering, etc. JMAP doesn't make any of that magically vanish.

Of course this doesn't mean that messages are going to be submitted using
the SUBMIT protocol. But there has to be some kind of agent that performs
these functions, irrespective of how you talk to it.

> After all, JMAP already handles authentication, and it's not clear to
> me that a typical JMAP server is easily able to authenticate on behalf of
> the end user in a way that a port-587 server accepts.

Proxy authentication is widely if not universally supported using any
number of techniques. And again, you don't get rid of the need to
perform any number of actions based on the submitters identity just because
the user already authenticated to JMAP.

> Assuming that JMAP forwards to the filter or smarthost, then requiring that
> JMAP servers be able to forward SMTP extensions looks really odd.

I have no idea what this "filter or smarthost" thing is that you're talking
about, but I can assure you that if it isn't directly integrated into the
SUBMIT server so it has direct access to credentials and can return immediate
failures rather than delayed DSNs, you have a serious implementation problem.

> A submission server on port 587 cannot forward SMTP extensions from its
> nexthop, why should one on port 443 have to?

Of course it can. Ours does this routinely.

> The usual answer is "so as to not need a corresponding JMAP RFC whenever
> there's a new SMTP RFC". That strikes me as poor. A new extension requires
> an RFC and three kinds of implementations (SMTP client, submission server,
> filter server). The RFC publication bit isn't usually the bottleneck among
> those four.

I guess you missed the recent discussion about the incredibly high cost of
RFCs. (Not that I agree, but one of the reasons I disagree is that we've worked
hard to eliminate the need to generate gratuitous material from the process.)

				Ned

v2.23.0 | Report a Bug | By Email