IETF Logo Mail Archive

Re: [secdir] Review of draft-ietf-marf-dkim-reporting-11

"Murray S. Kucherawy" <msk@cloudmark.com> Fri, 09 March 2012 04:49 UTC

Return-Path: <msk@cloudmark.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE89921E8063; Thu, 8 Mar 2012 20:49:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.571
X-Spam-Level:
X-Spam-Status: No, score=-102.571 tagged_above=-999 required=5 tests=[AWL=0.028, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nWqYtqQuZL3H; Thu, 8 Mar 2012 20:49:51 -0800 (PST)
Received: from ht1-outbound.cloudmark.com (ht1-outbound.cloudmark.com [72.5.239.25]) by ietfa.amsl.com (Postfix) with ESMTP id 824BA21E804B; Thu, 8 Mar 2012 20:49:51 -0800 (PST)
Received: from EXCH-MBX901.corp.cloudmark.com ([fe80::addf:849a:f71c:4a82]) by EXCH-HTCAS901.corp.cloudmark.com ([fe80::2966:6846:8d89:4681%12]) with mapi id 14.01.0355.002; Thu, 8 Mar 2012 20:49:51 -0800
From: "Murray S. Kucherawy" <msk@cloudmark.com>
To: Barry Leiba <barryleiba@computer.org>
Thread-Topic: Review of draft-ietf-marf-dkim-reporting-11
Thread-Index: AQHM+7Jn5hDXdigsDk2cMOfl5q2RKJZd1I8ggAMhkID//73RAIABHPkA//+XlfA=
Date: Fri, 09 Mar 2012 04:49:50 +0000
Message-ID: <9452079D1A51524AA5749AD23E00392808166E@exch-mbx901.corp.cloudmark.com>
References: <20310.13509.461991.185885@fireball.kivinen.iki.fi> <9452079D1A51524AA5749AD23E00392807D2D5@exch-mbx901.corp.cloudmark.com> <20312.47947.44384.921886@fireball.kivinen.iki.fi> <9452079D1A51524AA5749AD23E003928080B06@exch-mbx901.corp.cloudmark.com> <CALaySJKie1voEVa2xtZXS5X_GnOWNUROYJB9S=pzom25tRUOsA@mail.gmail.com>
In-Reply-To: <CALaySJKie1voEVa2xtZXS5X_GnOWNUROYJB9S=pzom25tRUOsA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [67.160.203.60]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, "draft-ietf-marf-dkim-reporting.all@tools.ietf.org" <draft-ietf-marf-dkim-reporting.all@tools.ietf.org>
Subject: Re: [secdir] Review of draft-ietf-marf-dkim-reporting-11
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Mar 2012 04:49:52 -0000

> -----Original Message-----
> From: barryleiba@gmail.com [mailto:barryleiba@gmail.com] On Behalf Of Barry Leiba
> Sent: Thursday, March 08, 2012 7:03 PM
> To: Murray S. Kucherawy
> Cc: Tero Kivinen; draft-ietf-marf-dkim-reporting.all@tools.ietf.org;
> iesg@ietf.org; secdir@ietf.org
> Subject: Re: Review of draft-ietf-marf-dkim-reporting-11
> 
> ...I'd like to see an extreme-case (but a very-possible-case) example,
> thus:
> 
>        Consider, for example, the situation if someone should send out a
>        multi-million-message spam run, and include in the messages a fake
>        DKIM signature containing "d=example.com; r=y".  It won't matter that
>        those signatures couldn't possibly be real: each will fail verification,
>        and any implementations that support this specification will report
>        those failures, in the millions and in short order, to example.com.
> 
> I don't think the text that's there lays out the scary possibilities
> clearly enough.  I think something like this does.

Fair enough.  Added almost verbatim for -13.

-MSK

v2.23.0 | Report a Bug | By Email