Re: [Mailsec] CLIENTID with PIPELINING

Andrew C Aitchison <ietf@aitchison.me.uk> Wed, 15 March 2023 22:37 UTC

Return-Path: <ietf@aitchison.me.uk>
X-Original-To: mailsec@ietfa.amsl.com
Delivered-To: mailsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92B80C14CF1E for <mailsec@ietfa.amsl.com>; Wed, 15 Mar 2023 15:37:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.097
X-Spam-Level:
X-Spam-Status: No, score=-7.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=aitchison.me.uk
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wT3IGc_rFElL for <mailsec@ietfa.amsl.com>; Wed, 15 Mar 2023 15:37:13 -0700 (PDT)
Received: from mx1.mythic-beasts.com (mx1.mythic-beasts.com [IPv6:2a00:1098:0:86:1000:0:2:1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E8D67C14CF0D for <mailsec@ietf.org>; Wed, 15 Mar 2023 15:37:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=aitchison.me.uk; s=mythic-beasts-k1; h=Subject:To:From:Date; bh=V3mzIGjCAUxV7X8v20flrENbQjZS1+PjPmbrGd4sVyA=; b=APVl+1Op3JQoh2pUoE6DXVr03G G/7YpdkDKrHCD+Q6HZtQXer0iPmQGpxaxea+ay6vrJ++SVYQ8Hz5t8/XiBb1tkSSwPrgNtFoiM81J JRiXlVXS4hnSyq/4/y7RrJute8+RHNVl1jo68/77B622Yi707rT0w5nDPyj4XGkJPxgIO1PMaEsRo WF2qOxhV07PwwRqFpzRVf86aCTRjrNy5AR5jFYX7LFoKiLhSl2yNoA1m9cfEpJPHAcBE+peVppl7w 3WHN+aa6N7TWoH+kOg8GCc9IS0hX17CTJdU+/RUEZBksugBHCaceaWu75cBTjFfKH+DWY6nrbcTys Id0Y+D+A==;
Received: by mailhub-cam-d.mythic-beasts.com with esmtpsa (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <ietf@aitchison.me.uk>) id 1pcZk5-001gih-Lz for mailsec@ietf.org; Wed, 15 Mar 2023 22:37:10 +0000
Date: Wed, 15 Mar 2023 22:37:03 +0000
From: Andrew C Aitchison <ietf@aitchison.me.uk>
To: mailsec@ietf.org
Message-ID: <9248d705-0292-1f69-0fb6-8918f1775d89@aitchison.me.uk>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"; charset="US-ASCII"
X-BlackCat-Spam-Score: 9
Archived-At: <https://mailarchive.ietf.org/arch/msg/mailsec/Kvh-yRk3YN2VP0ROFTrkgjBjxO8>
Subject: Re: [Mailsec] CLIENTID with PIPELINING
X-BeenThere: mailsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Email Security Issues <mailsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mailsec>, <mailto:mailsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mailsec/>
List-Post: <mailto:mailsec@ietf.org>
List-Help: <mailto:mailsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mailsec>, <mailto:mailsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Mar 2023 09:14:47 -0000

[ Apologies if this doesn't thread properly.
   My MUA doesn't have access to the message to which I am replying. ]

Michael Peddemors:
>  in my humble opinion, when advertising CLIENTID support, it
> should NOT advertise PIPELINE support

I have options for each of PIPELINE, PIPECONNECT* and CLIENTID
just to advertise to selected hosts (default *)
but how else could I determine which to use ?
Two options I can see:
1 prefer PIPELINE in plain and CLIENTID when encrypted, or
2 CLIENTID in SUBMISSIONS (port 465) but PIPELINE on port 25 ?
Any other thoughts ?

-- 
Andrew C. Aitchison                      Kendal, UK
                    andrew@aitchison.me.uk