Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications
Robert Burrell Donkin <robertburrelldonkin@gmail.com> Fri, 31 July 2009 09:15 UTC
Return-Path: <owner-ietf-mta-filters@mail.imc.org>
X-Original-To: ietfarch-sieve-archive-Aet6aiqu@core3.amsl.com
Delivered-To: ietfarch-sieve-archive-Aet6aiqu@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 27C603A6D4E for <ietfarch-sieve-archive-Aet6aiqu@core3.amsl.com>; Fri, 31 Jul 2009 02:15:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9xBXxa-GqCs7 for <ietfarch-sieve-archive-Aet6aiqu@core3.amsl.com>; Fri, 31 Jul 2009 02:15:19 -0700 (PDT)
Received: from balder-227.proper.com (properopus-pt.tunnel.tserv3.fmt2.ipv6.he.net [IPv6:2001:470:1f04:392::2]) by core3.amsl.com (Postfix) with ESMTP id CE0C33A6D37 for <sieve-archive-Aet6aiqu@ietf.org>; Fri, 31 Jul 2009 02:15:18 -0700 (PDT)
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V979Ce054334 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 31 Jul 2009 02:07:09 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6V979a8054333; Fri, 31 Jul 2009 02:07:09 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f
Received: from mail-fx0-f211.google.com (mail-fx0-f211.google.com [209.85.220.211]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V9772R054327 for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 02:07:08 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com)
Received: by fxm7 with SMTP id 7so1233940fxm.10 for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 02:07:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=TsfLYCiHSw1DSlNf2P18DhSmp1a+rLNipJEh7RMTylc=; b=S36JVU60gyxGFBaM5rXVsOCDWfHfMrEzW8F9nQSLTWKRWIeys5GvOX5hxdn7+DeDPG OZmMlJs1Jr5rj0j8QL1h4XLsiUuIAuDJ4MUrIm7j4teq+oLmu0unux6WB/sC2fT8RGYY eG9X3P7iQw98iI22515iZSgqTZMlptW41J5/U=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=chAxlP324gCXPab+4LnbUybr9ErrwQf7pQ06gvCOA7f7MKhpHkALNR5gtCKajqSvl6 Qa/I7muNYz1Cfq/Nqc/wEeWDWHfR+EgM630dmXCmzNanj0PjURqi5N84J04F49MkPOQc 62hZQOwqCMkTOX4nHmr1rHSAXCFAGN5nKzdg8=
MIME-Version: 1.0
Received: by 10.204.71.68 with SMTP id g4mr396409bkj.81.1249031226609; Fri, 31 Jul 2009 02:07:06 -0700 (PDT)
In-Reply-To: <A480B5AA6D83C5DD183FD045@atlantis.pc.cs.cmu.edu>
References: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> <01NBX96VF9EO00007A@mauve.mrochek.com> <6c9fcc2a0907301039x471ec237q79400f3b92f38754@mail.gmail.com> <f470f68e0907302358m7cc00f7dn5e9f817d64769977@mail.gmail.com> <08E84498685FF2F84ED5D5EA@atlantis.pc.cs.cmu.edu> <f470f68e0907310109v2b2647f8r2ab99f433c246cbf@mail.gmail.com> <A480B5AA6D83C5DD183FD045@atlantis.pc.cs.cmu.edu>
Date: Fri, 31 Jul 2009 10:07:06 +0100
Message-ID: <f470f68e0907310207g5defc879v4abcd2475f3fe73a@mail.gmail.com>
Subject: Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications
From: Robert Burrell Donkin <robertburrelldonkin@gmail.com>
To: Jeffrey Hutzelman <jhutz@cmu.edu>
Cc: barryleiba@computer.org, Ned Freed <ned.freed@mrochek.com>, MTA filtering mailing list <ietf-mta-filters@imc.org>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Sender: owner-ietf-mta-filters@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/>
List-ID: <ietf-mta-filters.imc.org>
List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe>
On Fri, Jul 31, 2009 at 9:13 AM, Jeffrey Hutzelman<jhutz@cmu.edu> wrote: > --On Friday, July 31, 2009 09:09:23 AM +0100 Robert Burrell Donkin > <robertburrelldonkin@gmail.com> wrote: > >> yes - that's been made clear (a summary of those discussions would >> have been more useful than just a re-iteration) > > I'm sure there will be a summary in the WG minutes, when they're done. i'm sure that there will it would have been polite to inform the mailing list that changes - of a fundamental nature - had been agreed at the meeting, and that any discussions on - or analysis of - the recently posted draft 00 would be wasted - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V979Ce054334 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 31 Jul 2009 02:07:09 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6V979a8054333; Fri, 31 Jul 2009 02:07:09 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f211.google.com (mail-fx0-f211.google.com [209.85.220.211]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V9772R054327 for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 02:07:08 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm7 with SMTP id 7so1233940fxm.10 for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 02:07:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=TsfLYCiHSw1DSlNf2P18DhSmp1a+rLNipJEh7RMTylc=; b=S36JVU60gyxGFBaM5rXVsOCDWfHfMrEzW8F9nQSLTWKRWIeys5GvOX5hxdn7+DeDPG OZmMlJs1Jr5rj0j8QL1h4XLsiUuIAuDJ4MUrIm7j4teq+oLmu0unux6WB/sC2fT8RGYY eG9X3P7iQw98iI22515iZSgqTZMlptW41J5/UDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=chAxlP324gCXPab+4LnbUybr9ErrwQf7pQ06gvCOA7f7MKhpHkALNR5gtCKajqSvl6 Qa/I7muNYz1Cfq/Nqc/wEeWDWHfR+EgM630dmXCmzNanj0PjURqi5N84J04F49MkPOQc 62hZQOwqCMkTOX4nHmr1rHSAXCFAGN5nKzdg8MIME-Version: 1.0 Received: by 10.204.71.68 with SMTP id g4mr396409bkj.81.1249031226609; Fri, 31 Jul 2009 02:07:06 -0700 (PDT) In-Reply-To: <A480B5AA6D83C5DD183FD045@atlantis.pc.cs.cmu.edu> References: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> <01NBX96VF9EO00007A@mauve.mrochek.com> <6c9fcc2a0907301039x471ec237q79400f3b92f38754@mail.gmail.com> <f470f68e0907302358m7cc00f7dn5e9f817d64769977@mail.gmail.com> <08E84498685FF2F84ED5D5EA@atlantis.pc.cs.cmu.edu> <f470f68e0907310109v2b2647f8r2ab99f433c246cbf@mail.gmail.com> <A480B5AA6D83C5DD183FD045@atlantis.pc.cs.cmu.edu> Date: Fri, 31 Jul 2009 10:07:06 +0100 Message-ID: <f470f68e0907310207g5defc879v4abcd2475f3fe73a@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: Jeffrey Hutzelman <jhutz@cmu.edu> Cc: barryleiba@computer.org, Ned Freed <ned.freed@mrochek.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Fri, Jul 31, 2009 at 9:13 AM, Jeffrey Hutzelman<jhutz@cmu.edu> wrote: > --On Friday, July 31, 2009 09:09:23 AM +0100 Robert Burrell Donkin > <robertburrelldonkin@gmail.com> wrote: > >> yes - that's been made clear (a summary of those discussions would >> have been more useful than just a re-iteration) > > I'm sure there will be a summary in the WG minutes, when they're done. i'm sure that there will it would have been polite to inform the mailing list that changes - of a fundamental nature - had been agreed at the meeting, and that any discussions on - or analysis of - the recently posted draft 00 would be wasted - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V8wj9n053665 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 31 Jul 2009 01:58:45 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6V8wj51053664; Fri, 31 Jul 2009 01:58:45 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f211.google.com (mail-fx0-f211.google.com [209.85.220.211]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V8wgtK053651 for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 01:58:43 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm7 with SMTP id 7so1229970fxm.10 for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 01:58:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=kzfmrrbgALi8qIT7X2EwZ3KXGa9URS7f0ZX2ptX15nw=; b=oKxk5JzTWGE21UwQIy7bLmJQnrjMlh9NcH/CvpkqV+5ESWd2DZvhFaHRybBC1zd6iX 2pUrvMI0JW51o1XtT2tU1iYumiEtuNoZR042OtUq6PGzjmNz46XDze9SC9bv/4PM8/Gn 8mdXvO7FsthKFI1jQU1xHQUKN3ag9Iugl5GZQDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=ZpEvpEAQyACAAjFWTiFzWgCnoQtaInwJH/nsi/dJYZ4LXWj2TN5Wi9jR8CIoXbfZzm GK4BjzZvcI54Uj4O0nXNtkJdqDL+MQrr1VduVAAuAYp4TfES55tWDcCgeaiu3JiTY6IY XQJuhQnKzO4TvZwj0ZYP2JKMwrTCaUMQuvQ4AMIME-Version: 1.0 Received: by 10.204.102.14 with SMTP id e14mr2465147bko.183.1249030721876; Fri, 31 Jul 2009 01:58:41 -0700 (PDT) In-Reply-To: <6c9fcc2a0907301036t3f96bedehb27c56632d0a987b@mail.gmail.com> References: <f470f68e0907300524w6116f6aet4ce9b95546486862@mail.gmail.com> <01NBX999C2K200007A@mauve.mrochek.com> <6c9fcc2a0907301036t3f96bedehb27c56632d0a987b@mail.gmail.com> Date: Fri, 31 Jul 2009 09:58:41 +0100 Message-ID: <f470f68e0907310158h1f8d935ax57ab90fd19c8d581@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] 2.2 Allow Extensions To Use List From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: barryleiba@computer.org Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Thu, Jul 30, 2009 at 6:36 PM, Barry Leiba<barryleiba.mailing.lists@gmail.com> wrote: >> Require implementations to raise a compile time error when list >> is used with an unsupported test. > > That's already what happens when there are such errors in scripts. > Why should we say it explicitly here, and not everywhere else? philosophically, i believe in full and complete specifications, with any areas of variance clearly indicated practically, as the draft 00 stands, i feel that an implementator might reasonably elect to test the combination of test and match-type at compile time, at run time or not verify the condition at all. my strong preference would be to just issue a warning with an option for raising a runtime error. so, though my implementation preference would be excluded by this proposal, at least the expected behaviour would be clearly specified >> Implementations MAY support other tests but MUST raise a compile >> time error when a script contains any standard test where support has >> not been explicitly specified. > > Not explicitly specified by whom? How? yes - i'm not happy with the wholley language either probably better just to specify those tests which should not be supported > How does this make scripts portable? i'm a little confused by this when a script contains an extension, it will only compile on engines that support that extension. asking extensions to abide by the description of list in this draft (if they support it) means that at least that may be relied upon by the script writer. > This seems to encourage private > extensions, which has really become a thorn in the web. an extremely controversial statement ATM (but i'm going to avoid taking the bait) happily, sieve is extensible so this philosophical question has already been resolved in the original specification. i think that a revision of RFC 5228 would be the right place to start for anyone who disagrees with this fundamental design decision. what needs to be decided by this working group is whether the group thinks that list should work uniformly across all extensions - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V8DtTi050318 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 31 Jul 2009 01:13:55 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6V8DtUM050317; Fri, 31 Jul 2009 01:13:55 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from smtp02.srv.cs.cmu.edu (SMTP02.SRV.CS.CMU.EDU [128.2.217.197]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V8DrGm050310 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verifyúIL) for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 01:13:54 -0700 (MST) (envelope-from jhutz@cmu.edu) Received: from atlantis-home.pc.cs.cmu.edu (SIRIUS.FAC.CS.CMU.EDU [128.2.216.216]) (authenticated bits=0) by smtp02.srv.cs.cmu.edu (8.13.6/8.13.6) with ESMTP id n6V8DjRa020124 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 31 Jul 2009 04:13:45 -0400 (EDT) Date: Fri, 31 Jul 2009 04:13:44 -0400 From: Jeffrey Hutzelman <jhutz@cmu.edu> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com> cc: barryleiba@computer.org, Ned Freed <ned.freed@mrochek.com>, MTA filtering mailing list <ietf-mta-filters@imc.org>, jhutz@cmu.edu Subject: Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications Message-ID: <A480B5AA6D83C5DD183FD045@atlantis.pc.cs.cmu.edu> In-Reply-To: <f470f68e0907310109v2b2647f8r2ab99f433c246cbf@mail.gmail.com> References: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> <01NBX96VF9EO00007A@mauve.mrochek.com> <6c9fcc2a0907301039x471ec237q79400f3b92f38754@mail.gmail.com> <f470f68e0907302358m7cc00f7dn5e9f817d64769977@mail.gmail.com> <08E84498685FF2F84ED5D5EA@atlantis.pc.cs.cmu.edu> <f470f68e0907310109v2b2647f8r2ab99f433c246cbf@mail.gmail.com> X-Mailer: Mulberry/4.0.8 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Scanned-By: mimedefang-cmuscs on 128.2.217.197 Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> --On Friday, July 31, 2009 09:09:23 AM +0100 Robert Burrell Donkin <robertburrelldonkin@gmail.com> wrote: > yes - that's been made clear (a summary of those discussions would > have been more useful than just a re-iteration) I'm sure there will be a summary in the WG minutes, when they're done. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V89VqH049696 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 31 Jul 2009 01:09:31 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6V89VBY049695; Fri, 31 Jul 2009 01:09:31 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-bw0-f227.google.com (mail-bw0-f227.google.com [209.85.218.227]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V89Ohx049683 for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 01:09:30 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by bwz27 with SMTP id 27so1108005bwz.10 for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 01:09:23 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=oNBoZMjX8f8NxhUK8h7q/J4Zk/3ApSyJWe3JlNl/I3s=; b=K/MKVWw0dltgLwfRkL4Fe1iZ4uVQ5IPFqJueWQ/nq4eo5WSAgJT8Q2UBO/kZOI/zrd 4PMgGZZeYyZpmelMHSxh9BM+zyls+UnD55Bra8EGlH+bWVGkDgU1fV2Tkfw3rrEK1kFm 1d82vIrbOi8S+tkvW3Ys7mAFJ4m+dJcCR5lboDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=yFCa9qIMjWFANUL5L+jnXjCQXtY3MfoQ2F/HGErMEciZv2M8HL4shq1EPxqrgKme9R bWU1FGpIvXtLcW+T2ubFH4YTNcBwYGTt8qAfERDRozBpEHTZQqiQNGvtO6VcOCCaJFyl 77qTqGLGnfN7ZhKRIoToVbgtKAqlMmSIeskEMMIME-Version: 1.0 Received: by 10.204.102.14 with SMTP id e14mr2406177bko.183.1249027763564; Fri, 31 Jul 2009 01:09:23 -0700 (PDT) In-Reply-To: <08E84498685FF2F84ED5D5EA@atlantis.pc.cs.cmu.edu> References: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> <01NBX96VF9EO00007A@mauve.mrochek.com> <6c9fcc2a0907301039x471ec237q79400f3b92f38754@mail.gmail.com> <f470f68e0907302358m7cc00f7dn5e9f817d64769977@mail.gmail.com> <08E84498685FF2F84ED5D5EA@atlantis.pc.cs.cmu.edu> Date: Fri, 31 Jul 2009 09:09:23 +0100 Message-ID: <f470f68e0907310109v2b2647f8r2ab99f433c246cbf@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: Jeffrey Hutzelman <jhutz@cmu.edu> Cc: barryleiba@computer.org, Ned Freed <ned.freed@mrochek.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Fri, Jul 31, 2009 at 8:54 AM, Jeffrey Hutzelman<jhutz@cmu.edu> wrote: > --On Friday, July 31, 2009 07:58:35 AM +0100 Robert Burrell Donkin > <robertburrelldonkin@gmail.com> wrote: > >> >> On Thu, Jul 30, 2009 at 6:39 PM, Barry >> Leiba<barryleiba.mailing.lists@gmail.com> wrote: >>> >>> This whole issue may be moot, because we're likely significantly >>> changing the way the name is specified, after discussion in Stockholm. >> >> i am disappointed to have missed some indication or warning posted >> that the draft was undergoing extensive review and revision off list > > There was extensive discussion of this issue during the working group > meeting this week. yes - that's been made clear (a summary of those discussions would have been more useful than just a re-iteration) - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V7si3b048826 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 31 Jul 2009 00:54:44 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6V7sifq048825; Fri, 31 Jul 2009 00:54:44 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from smtp02.srv.cs.cmu.edu (SMTP02.SRV.CS.CMU.EDU [128.2.217.197]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V7sZ4q048795 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verifyúIL) for <ietf-mta-filters@imc.org>; Fri, 31 Jul 2009 00:54:43 -0700 (MST) (envelope-from jhutz@cmu.edu) Received: from atlantis-home.pc.cs.cmu.edu (SIRIUS.FAC.CS.CMU.EDU [128.2.216.216]) (authenticated bits=0) by smtp02.srv.cs.cmu.edu (8.13.6/8.13.6) with ESMTP id n6V7sRsx017947 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 31 Jul 2009 03:54:29 -0400 (EDT) Date: Fri, 31 Jul 2009 03:54:27 -0400 From: Jeffrey Hutzelman <jhutz@cmu.edu> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com>, barryleiba@computer.org cc: Ned Freed <ned.freed@mrochek.com>, MTA filtering mailing list <ietf-mta-filters@imc.org>, jhutz@cmu.edu Subject: Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications Message-ID: <08E84498685FF2F84ED5D5EA@atlantis.pc.cs.cmu.edu> In-Reply-To: <f470f68e0907302358m7cc00f7dn5e9f817d64769977@mail.gmail.com> References: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> <01NBX96VF9EO00007A@mauve.mrochek.com> <6c9fcc2a0907301039x471ec237q79400f3b92f38754@mail.gmail.com> <f470f68e0907302358m7cc00f7dn5e9f817d64769977@mail.gmail.com> X-Mailer: Mulberry/4.0.8 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Scanned-By: mimedefang-cmuscs on 128.2.217.197 Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> --On Friday, July 31, 2009 07:58:35 AM +0100 Robert Burrell Donkin <robertburrelldonkin@gmail.com> wrote: > > On Thu, Jul 30, 2009 at 6:39 PM, Barry > Leiba<barryleiba.mailing.lists@gmail.com> wrote: >> This whole issue may be moot, because we're likely significantly >> changing the way the name is specified, after discussion in Stockholm. > > i am disappointed to have missed some indication or warning posted > that the draft was undergoing extensive review and revision off list There was extensive discussion of this issue during the working group meeting this week. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V6wcd7045099 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 23:58:38 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6V6wcJA045098; Thu, 30 Jul 2009 23:58:38 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f211.google.com (mail-fx0-f211.google.com [209.85.220.211]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6V6wa2i045079 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 23:58:37 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm7 with SMTP id 7so1181878fxm.10 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 23:58:35 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=Q4D+JUfO+gJ4uvschJdVHAoZcIp/DceD02No5XjQE9A=; b=Iafmg47cd05wUWggg8Q4Wi5SnT+dxJ91Bu9eW8CAxkVA8Pi3wQAQqRdJh5KC2NzZrR IewQ1CfcV2RLd/7+nkGpJjf4L2PbWDpyXfDqDmxITaX4VUmMNYlPpiG+1XNnyYC5ybeN KLvH706uQJ06MAqYoxj8uSld92XrlRqXWAZBoDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=DPYzd436+MuAzQwxSMxPa2PXh6uz1RtSjk+r9U1u1Fol62S11tM8V4TRVrwyLJOcrK bO5HKfOVEIw1NZs1Ut3veWGnBG/CdwuAY0a7IUt3hfeOB9vAHXU90XOF792cypdO4j7E QGExl9T565jzXpUVGn99ab1B4kiDx30Lw94ioMIME-Version: 1.0 Received: by 10.204.67.80 with SMTP id q16mr2024588bki.116.1249023515347; Thu, 30 Jul 2009 23:58:35 -0700 (PDT) In-Reply-To: <6c9fcc2a0907301039x471ec237q79400f3b92f38754@mail.gmail.com> References: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> <01NBX96VF9EO00007A@mauve.mrochek.com> <6c9fcc2a0907301039x471ec237q79400f3b92f38754@mail.gmail.com> Date: Fri, 31 Jul 2009 07:58:35 +0100 Message-ID: <f470f68e0907302358m7cc00f7dn5e9f817d64769977@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: barryleiba@computer.org Cc: Ned Freed <ned.freed@mrochek.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Thu, Jul 30, 2009 at 6:39 PM, Barry Leiba<barryleiba.mailing.lists@gmail.com> wrote: > This whole issue may be moot, because we're likely significantly > changing the way the name is specified, after discussion in Stockholm. i am disappointed to have missed some indication or warning posted that the draft was undergoing extensive review and revision off list - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UHfE4S098292 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 10:41:14 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UHfEFj098291; Thu, 30 Jul 2009 10:41:14 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-px0-f192.google.com (mail-px0-f192.google.com [209.85.216.192]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UHfDl3098282 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 10:41:13 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by pxi30 with SMTP id 30so1035116pxi.16 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 10:41:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=zBhXbpvn7rEPkun/dtUm35jNAzzjZvYdynAJffV65yo=; b=PBU4FFJOC5Nv/sSnAhtipm+2tXAM5MICbjX1FGKinKjPWn7HNUT1Dp6ZdZ/Z+JZ2yM 7xX/C4g4QH9Ok3ATHaVUKn30q+uvTw407oO1a/stufDX83g+PZf3ETdYZnIpNUoXu3ey yUfHZdyux2QSxu/TazeHv1YnKtsxAq3plWK+EDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; b=uumkFCqaaZvJvTrA+60lEszr+qgYiCgRV8EtKV3LNnMZAetaJzeBfmohNjMYRMbbA4 t/4zUvJcJsmCfj/QOqcj41MPa1S447l7Ua8KdowkP3LkkB2/r6dVH7kFcEJvNNenh4j7 4X4oJBXQHrRCTKZtZUmOZpu/cWHs0UZEEL1jgMIME-Version: 1.0 Received: by 10.114.136.7 with SMTP id j7mr2006666wad.30.1248975672853; Thu, 30 Jul 2009 10:41:12 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <01NBXB0MEN9Y00007A@mauve.mrochek.com> References: <f470f68e0907300544g76f5f4f5i811d2f6fd3ebe2cb@mail.gmail.com> <01NBXB0MEN9Y00007A@mauve.mrochek.com> Date: Thu, 30 Jul 2009 13:41:12 -0400 Message-ID: <6c9fcc2a0907301041x63ec10f9r24f230d12927ab3c@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] 3. Security Considerations, Paragraph 3 From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Ned Freed <ned.freed@mrochek.com> Cc: Robert Burrell Donkin <robertburrelldonkin@gmail.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> This entire section has already been rewritten, but the version hasn't been posted as an I-D yet. Wait until the next version is out, and re-review. Barry Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UHdpTp098155 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 10:39:51 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UHdpx6098154; Thu, 30 Jul 2009 10:39:51 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.180]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UHdif4098144 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 10:39:50 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by wa-out-1112.google.com with SMTP id n7so259721wag.26 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 10:39:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=/2+P7TydFAiuilxCexXW/J7UXdedgfEkCO1goiGA/J8=; b=RQnQpE6gkjVYtCEEnqOMNTY0ASBM/3V21Do8Pi7ZD3YVEXz4JAdg2QcoqrHT06VEB/ VWL+9HtvwleGZNLWiLxpJ5gt5qK+XcxFTKQG5rfNwGyUDs6nyy7gPUy8NLHyPEaJY1YS d97kyK607j4kESPmu8koAJdjbDNBDAHRujC5IDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; b=n7DUabVTiLc9dn1aJNazTPF9xSstKxNnn0pd0TzEpazIEbe0z5khurckugCxHbouQk PNv+hywhIc45Y6A4ZeZeijDR0UERsm453oov57bFFiPCoOPHeUe4Z1uDXiiSk3Kz7lgJ i55ubVoO+IVvCWbRn5ZMuUFt/xc5q4n8W7vUsMIME-Version: 1.0 Received: by 10.114.112.14 with SMTP id k14mr1967651wac.139.1248975583534; Thu, 30 Jul 2009 10:39:43 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <01NBX96VF9EO00007A@mauve.mrochek.com> References: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> <01NBX96VF9EO00007A@mauve.mrochek.com> Date: Thu, 30 Jul 2009 13:39:43 -0400 Message-ID: <6c9fcc2a0907301039x471ec237q79400f3b92f38754@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Ned Freed <ned.freed@mrochek.com> Cc: Robert Burrell Donkin <robertburrelldonkin@gmail.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> This whole issue may be moot, because we're likely significantly changing the way the name is specified, after discussion in Stockholm. Barry Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UHaQqB097975 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 10:36:26 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UHaQmO097974; Thu, 30 Jul 2009 10:36:26 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-pz0-f188.google.com (mail-pz0-f188.google.com [209.85.222.188]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UHaNjI097967 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 10:36:24 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by pzk26 with SMTP id 26so1076987pzk.16 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 10:36:23 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=ZOmWZsrh/sXGUejhEjeWIkLGsKmtdRjGPRTkWdyE1Gc=; b=FPBMtqTbSpVkKVuHpx4tQIuoKy6BG5ImZe//RVfTK4wGOXRot2DvcbqJBT/Th7Ubtk cy+fL1YfnNoEpyvC496mGDTk8xTP/90QwMzzXZ/LOV/BVcV8ZJEO72lP9sNP1KEVVJca F6bU1i1w78fKypdEcarSw9WvTu8kUS8h0/l/cDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; bû4gu/0U7t4EALL9TT0nrQeixk4+Dn6JVlooQTnUpuoHGHO6Pe9C+3+3zTP7tmbLri Kn2HIpeILl54hUZmDNH8RIxOEFw7Tnue1/r20J2iV9nxYmTywKVsLDrFaAnlphaMhVne YZR0TLEnGnpQbSGpyAhFlQk6qyGxiNcQ0RzLoMIME-Version: 1.0 Received: by 10.115.109.19 with SMTP id l19mr2001005wam.45.1248975383087; Thu, 30 Jul 2009 10:36:23 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <01NBX999C2K200007A@mauve.mrochek.com> References: <f470f68e0907300524w6116f6aet4ce9b95546486862@mail.gmail.com> <01NBX999C2K200007A@mauve.mrochek.com> Date: Thu, 30 Jul 2009 13:36:23 -0400 Message-ID: <6c9fcc2a0907301036t3f96bedehb27c56632d0a987b@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] 2.2 Allow Extensions To Use List From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com> Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > Require implementations to raise a compile time error when list > is used with an unsupported test. That's already what happens when there are such errors in scripts. Why should we say it explicitly here, and not everywhere else? > Implementations MAY support other tests but MUST raise a compile > time error when a script contains any standard test where support has > not been explicitly specified. Not explicitly specified by whom? How? How does this make scripts portable? This seems to encourage private extensions, which has really become a thorn in the web. Barry Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UFulnL089586 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 08:56:47 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UFulv4089585; Thu, 30 Jul 2009 08:56:47 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UFukTs089579 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 08:56:46 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBXB0NBUGW0050OI@mauve.mrochek.com> for ietf-mta-filters@imc.org; Thu, 30 Jul 2009 08:56:45 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBWGT18MS000007A@mauve.mrochek.com>; Thu, 30 Jul 2009 08:56:43 -0700 (PDT) Date: Thu, 30 Jul 2009 08:47:44 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: [draft-melnikov-sieve-external-lists] 3. Security Considerations, Paragraph 3 In-reply-to: "Your message dated Thu, 30 Jul 2009 13:44:39 +0100" <f470f68e0907300544g76f5f4f5i811d2f6fd3ebe2cb@mail.gmail.com> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com> Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Message-id: <01NBXB0MEN9Y00007A@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN Content-transfer-encoding: 7BIT References: <f470f68e0907300544g76f5f4f5i811d2f6fd3ebe2cb@mail.gmail.com> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > "Protocols/APIs used to retrieve/verify external list membership MUST > provide at least the same level of confidentiality as protocols/APIs > used to retrieve Sieve scripts. For example, if Sieve scripts are > retrieved using LDAP secured with Transport Layer Security (TLS) > encryption, then the protocol used to retrieve external list > membership must use a comparable mechanism for providing connection > confidentiality. In particular, the protocol used to retrieve > external list membership must not be lacking encryption." > Use Case One: Public FOAF > how does banning access to public resources improve security? > Use Case Two: Web Services > how should an implementation judge whether a web service discovered > over UDDI (say) is more or less confidential than script storage in > LDAP (say)? Complete agreement on all points. There are going to be all kinds of external lists where the degree of confidentiality provided is an intrinsic characteristic of the list itself and isn't under the control of the Sieve implementation. There are also going to be cases where the Sieve implementation is accessing the list through an intermediary and has no way of determining what security, if any, is being employed in accessing the list. Specific examples of the latter would be a list provided by an LDAP proxy server or a list provided by an LDAP server where the underlying attributes are virtual and are resolved through some form of callout. Such setups are quite common in practice. The entire notion of there being a confidentiality requirement for external lists independent of the list in question is completely silly. Let's change this to say that both list content as well as the query stream against the list MAY be confidential in nature and appopriate security measures MUST be employed when they are. Ned Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UF6UXJ085067 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 08:06:30 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UF6UUO085066; Thu, 30 Jul 2009 08:06:30 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UF6Sdl085052 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 08:06:28 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBX99A53C0000N2I@mauve.mrochek.com> for ietf-mta-filters@imc.org; Thu, 30 Jul 2009 08:06:26 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBWGT18MS000007A@mauve.mrochek.com>; Thu, 30 Jul 2009 08:06:25 -0700 (PDT) Date: Thu, 30 Jul 2009 08:05:54 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: [draft-melnikov-sieve-external-lists] 2.2 Allow Extensions To Use List In-reply-to: "Your message dated Thu, 30 Jul 2009 13:24:55 +0100" <f470f68e0907300524w6116f6aet4ce9b95546486862@mail.gmail.com> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com> Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Message-id: <01NBX999C2K200007A@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN Content-transfer-encoding: 7BIT References: <f470f68e0907300524w6116f6aet4ce9b95546486862@mail.gmail.com> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> This proposal seems OK to me. Ned > Proposal - Clarify Expected Behaviour For Unsupported Tests > =============================> Change > ------ > Require implementations to raise a compile time error when list > is used with an unsupported test. > Rationale > --------- > Adopting a single clear rule on error handling increases interoperability. > Requiring a compile time error seems cleaner than alternatives such as > silently failing the test. > Proposal - Allow Extension Tests To Use Link > ====================== > Change > ------ > Add explicit permission for implementations to support list for other > tests. > Rationale > --------- > Extensions which find "list" useful should be encouraged to use it > as described. > Use Case: Mailing List Local Test > --------------------------------- > if mailinglist :list "tag:example.org,2009-07-24:IEFT" { > fileinto "standards"; > } > -------------------------------------------------------------------------- > [1] Proposal > -------------------------------------------------------------------------- > 2.2. :list match type > ABNF: > MATCH-TYPE =/ ":list" > ; only valid for supported tests > The new ":list" match type changes the interpretation of the "key- > list" parameter to supported tests. When the match type is ":list", > the key-list becomes a list of names of externally stored lists. > The external lists are queried, perhaps through a list-specific > mechanism, and the test evaluates to "true" if any of the specified > values matches any member of one or more of the lists. > Implementations MUST support "address", "envelope" and "header" tests. > Implementations MAY support other tests but MUST raise a compile > time error when a script contains any standard test where support has > not been explicitly specified. > -------------------------------------------------------------------------- > [2] Original Text > -------------------------------------------------------------------------- > 2.2. :list match type for "address", "envelope", and "header" tests > ABNF: > MATCH-TYPE =/ ":list" > ; only valid for "address", "envelope", and "header" tests > The new ":list" match type changes the interpretation of the "key- > list" parameter to the "address"/"envelope"/"header" test. When the > match type is ":list", the key-list becomes a list of names of > externally stored lists. The external lists are queried, perhaps > through a list-specific mechanism, and the test evaluates to "true" > if any of the specified values matches any member of one or more of > the lists. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UF4lBa084900 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 08:04:47 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UF4lvn084899; Thu, 30 Jul 2009 08:04:47 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UF4XtO084885 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 08:04:44 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBX96WOQCG000N2I@mauve.mrochek.com> for ietf-mta-filters@imc.org; Thu, 30 Jul 2009 08:04:32 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBWGT18MS000007A@mauve.mrochek.com>; Thu, 30 Jul 2009 08:04:30 -0700 (PDT) Date: Thu, 30 Jul 2009 07:51:37 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications In-reply-to: "Your message dated Thu, 30 Jul 2009 13:18:52 +0100" <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com> Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Message-id: <01NBX96VF9EO00007A@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN Content-transfer-encoding: 7BIT References: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > Proposal: Separate Section For Discussion of TAG > ========================> Changes > ------- > Split first paragraph into sections. > Rationale > --------- > Clarity > Proposal: Clarify Expected Error Handling Behaviour > =========================> Changes > ------- > Specify that unsupported URI schemas are compile time > errors and that resolution failures are runtime errors. While I agree it's a good idea to report errors at as early a phase as possible, unless we're willing to specify that variable substitutions cannot be used in list names, this can at most be a SHOULD, not a MUST. > Rationale > --------- > Practical implementations will not be able to support > all feasible URI schemes, protocols, discovery mechanisms > and resource semantics. > Any URI schema which is not supported by the engine > will never be resolved. In this case, it is clearer and > cleaner to fail at compile time. Note that this case > also includes malformed URIs. > Resources may be dynamic. A resource whose semantics > could not be understood at compile time may have been > replaced by one that could be at runtime. Resource > resolution may be dynamic: a resource which could not > be resolved at compile time may be resolvable at > runtime. Services may be dynamic. A service with > suitable semantics may become available at runtime > which was not at compile time. Conversely, > resources, resource resolution and service discovery > may fail at runtime after it succeeded at compile > time. > So, failures to resolve, locate or parse a resource > referred to by the script should only be raised at > runtime. Agreed, however, it isn't clear to me that throwing an error is the right thing to do when a given list resource is unavailable. Handling the unavailability of a given resource is well within the purview of a properly constructed portable script, I should think. > Proposal: Require Implementations To Support [TAG-URI] > =========================== > Changes > ------- > Require that all implementations support tag, plus any other > URI schemes of their choice. > Rationale > --------- > Insisting that implementations support at least one protocol > sets a minimum level for script portability. Picking one > particular web protocol such as LDAP, HTTP or FTP would impose > a unnecessary burden on implementations and > unnecessarily involve the specification in the semantics of > engine-list server interactions. > A credible alternative choice would be relative URIs. It's unclear what "support" means in this context. In our implementtation list URIs are parsed and then passed to what amounts to a callout. We can of course make it so tag: is always a legal URL type when that check is done, but we cannot force tag: to work. > -------------------------------------------------------------------------- > [1] Proposal > -------------------------------------------------------------------------- > 2.4. Syntax of an externally stored list name > A name of an externally stored list is always an absolute URI [URI]. > Implementations might find URLs such as [LDAP], [CardDAV], or > [TAG-URI] to be useful for naming external lists. > Implementations MUST raise a compile time error when a list name > cannot be parsed into a URI scheme supported by the implementation. See above. This needs to be a SHOULD. > Resolution of the resource MAY involve resource location and service > discovery. Resources MAY change dynamically. Resolution of the > resource MUST be perform at script execution time. When the resource > cannot be located or the resource type is found to be unsupported > then the implementation MUST raise a runtime error. If we're going to throw an error like this in a test I think we need a way to test and see if the resource is available. > Implementations MAY attempt to resolve the URI at compile time but > MUST NOT raise a compile time error on failure. > 2.4.1 The Tag Scheme > The "tag" URI scheme [TAG-URI] can be used to represent opaque, but > user friendlier identifiers. > Resolution of such identifiers is going to be implementation specific > and it can help in hiding the complexity of an implementation from > end users. For example, an implementation can provide a web interface > for managing lists of users stored in LDAP. Requiring users to know > generic LDAP URL syntax might not be very practical, due to its > complexity. An implementation can instead use a fixed tag URI prefix > such as "tag:example.com,<date>:" (where <date> can be, for example, > a date generated once on installation of the web interface and left > untouched upon upgrades) and the prefix doesn't even need to be shown > to end users. > Implementations MUST support the [TAG-URI] URI scheme. I think some elaboration on what "support" means would be good here. > 2.4.2 Other URI Schemes > Implementations MAY support other URI schemes. Ned Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UD9tRm075816 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 06:09:55 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UD9tQ4075815; Thu, 30 Jul 2009 06:09:55 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from daboo.name (daboo.name [151.201.22.177]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UD9sH2075806 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 06:09:54 -0700 (MST) (envelope-from cyrus@daboo.name) Received: from localhost (localhost [127.0.0.1]) by daboo.name (Postfix) with ESMTP id 89A1F1767E08 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 09:09:53 -0400 (EDT) X-Virus-Scanned: amavisd-new at daboo.name Received: from daboo.name ([127.0.0.1]) by localhost (chewy.mulberrymail.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sdnCspnT3OYY for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 09:09:53 -0400 (EDT) Received: from dhcp-10ae.meeting.ietf.org (dhcp-10ae.meeting.ietf.org [130.129.16.174]) by daboo.name (Postfix) with ESMTP id 922CF1767DFD for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 09:09:52 -0400 (EDT) Date: Thu, 30 Jul 2009 15:09:48 +0200 From: Cyrus Daboo <cyrus@daboo.name> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Subject: Working Group Last Call for draft-freed-sieve-notary-05 Message-ID: <1F58D2E3D2C1B77D3B9562C0@dhcp-10ae.meeting.ietf.org> X-Mailer: Mulberry/4.1.0a1 (Mac OS X) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline; size96 Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Hi folks, We are starting a two week last call on draft-freed-sieve-notary-05. We've had a last call on this document before but some new "deliverby" features have been added since then, so we need adequate review of those from the WG before we can hand this off to the IESG. So the last call starts today and will complete on August 13th. Please send comments to the list. -- Cyrus Daboo Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UCr8RS074355 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 05:53:08 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UCr8HH074354; Thu, 30 Jul 2009 05:53:08 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-bw0-f227.google.com (mail-bw0-f227.google.com [209.85.218.227]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UCqwbY074341 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 05:53:07 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by bwz27 with SMTP id 27so598482bwz.10 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 05:52:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type:content-transfer-encoding; bh=ivy35eFu9dLK2Gz9h/csdnapV3hj0pMSIx3AW+XLot8=; b=hQCcjIGKgcObJy0hrlCB+nr7CcEaiIkvEsyqKIn6qxKa7+uAXTBx6URuhuEYiv9Y8C +DvQXatVtOeRv+HB9Bt68J+pFbCanEuYj1/L6aDuf/FLGB0Ds4S6cncfo5733OR/FqA+ YNfz4znsltp3o4w/NSRNK/+iSZy/ODe53+Q6IDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type :content-transfer-encoding; b=NLXijBr28e5YWHkQWGg+XGvynZYfYG0/CgwdSXBH0nNNUiJ1yq/ph3VCatE99MFBMJ ilp2sTruCPTUnhxHRKaMGwW+Bx04+ZWhi+w8rG/qeGVzXXoCtQpXOxi0WBmRPH/hyxmQ LE9r+v8UM5xcnsZ7SQx8JGZHlV0ZLVERj6bRsMIME-Version: 1.0 Received: by 10.204.102.14 with SMTP id e14mr1117237bko.183.1248958377799; Thu, 30 Jul 2009 05:52:57 -0700 (PDT) Date: Thu, 30 Jul 2009 13:52:57 +0100 Message-ID: <f470f68e0907300552x127e9553h56935cc90a58f6e@mail.gmail.com> Subject: [draft-melnikov-sieve-external-lists] 3. Security Considerations, Paragraph 2 From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> <blockquote cite='http://www.ietf.org/id/draft-ietf-sieve-external-lists-00.txt'> A failure to retrieve data due to the server storing the external list membership being down or otherwise inaccessible may alter the result of Sieve processing. So implementations SHOULD treat a temporary failure to retrieve or verify external list membership in the same manner as a temporary failure to retrieve a Sieve script. For example, if the Sieve script is stored in the Lightweight Directory Access Protocol (LDAP) and the script can't be retrieved when a message is processed, then the agent performing Sieve processing can, for example, assume that the script doesn't exist or delay message delivery until the script can be retrieved successfully. External list memberships should be treated as if they are a part of the script itself, so a temporary failure to retrieve them should be handled in the same way as a temporary failure to retrieve the Sieve script itself. </blockquote> how does this error handling behaviour improve security? what are the advantages of this new error handling language to that already established in RFC 5228? - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UCigvS073455 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 05:44:42 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UCig8e073452; Thu, 30 Jul 2009 05:44:42 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f221.google.com (mail-fx0-f221.google.com [209.85.220.221]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UCieDD073420 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 05:44:41 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm21 with SMTP id 21so612056fxm.27 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 05:44:39 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type:content-transfer-encoding; bh=+Ra5ofht3XVQzewFckfXWeDv98d8AV9Xde4s8aU5cNk=; b=CNTgNiO18X940NtOIje7PEqqVhg/2fQ8Xgvm6RBsr53QuVO9UuYGjC/gPAVyHKiGxL NXu9VfYSDRjKqES1m5JFL49ESLqG+Ak+bUuMwn8FEYmcQBfsVLuSmFW9dN/miZkggrSb jNkaqaG0rNL+7UDdbBVDUogfxjzFxSvrGIMvUDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type :content-transfer-encoding; b=xsB9+QqAX9rZ2UqVZ+R3eZ6Oa13vJWhor4iisuuNS88hp7WeZBq5oc3bUMUAkoiRHC 47uilyVTH6WFSDO3Jz+PY6q+wLrz7vG88+WRu13RCrFyEn1DoaFl752ePx5AWm5B32Rm td6fnABKnUE+n0+fsVkExx7g61Qj82wnGLbiQMIME-Version: 1.0 Received: by 10.204.102.14 with SMTP id e14mr1108554bko.183.1248957879380; Thu, 30 Jul 2009 05:44:39 -0700 (PDT) Date: Thu, 30 Jul 2009 13:44:39 +0100 Message-ID: <f470f68e0907300544g76f5f4f5i811d2f6fd3ebe2cb@mail.gmail.com> Subject: [draft-melnikov-sieve-external-lists] 3. Security Considerations, Paragraph 3 From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> "Protocols/APIs used to retrieve/verify external list membership MUST provide at least the same level of confidentiality as protocols/APIs used to retrieve Sieve scripts. For example, if Sieve scripts are retrieved using LDAP secured with Transport Layer Security (TLS) encryption, then the protocol used to retrieve external list membership must use a comparable mechanism for providing connection confidentiality. In particular, the protocol used to retrieve external list membership must not be lacking encryption." Use Case One: Public FOAF how does banning access to public resources improve security? Use Case Two: Web Services how should an implementation judge whether a web service discovered over UDDI (say) is more or less confidential than script storage in LDAP (say)? - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UCOwYo072104 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 05:24:58 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UCOwPo072103; Thu, 30 Jul 2009 05:24:58 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f221.google.com (mail-fx0-f221.google.com [209.85.220.221]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UCOuxF072093 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 05:24:57 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm21 with SMTP id 21so600448fxm.27 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 05:24:55 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type:content-transfer-encoding; bh=pRRCaYeS5aThfSdlq8kBZBE2jmeAHQeEn+o4qhSOjWU=; b=mJYXiWyRjetAvqSRVLI/vdImElSZoGllo7wn8LWm0mNR1HEZLaXiWcESOMRCIDZwYY zUHGzaUP1s0p1Yk4/BFxycuDePOAfmnHNy0HzrCU9I5kVV06BLps0VBocnJM4VYdZ4E0 THIrS0ihia4QzAVpjVGfAMYNCl7e0V1AOQNYUDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type :content-transfer-encoding; b=XoDOtJFFpgLkwNSfdtoHsKPbvR7YkwTUDJ2ImTiXv4tTn1CTUBNEtspwLoHQ1xf+KI t3V2yuOk+C+zMESx0pDy95Xgkm2kQ/mgWD6CpnVtMMCodO1Gqwrko2l0y3/0gNsqMypQ 1JJuQOzS6US9WNgZhyuxLPbS9gJWw77Y9m7xsMIME-Version: 1.0 Received: by 10.204.118.12 with SMTP id t12mr1097653bkq.158.1248956695051; Thu, 30 Jul 2009 05:24:55 -0700 (PDT) Date: Thu, 30 Jul 2009 13:24:55 +0100 Message-ID: <f470f68e0907300524w6116f6aet4ce9b95546486862@mail.gmail.com> Subject: [draft-melnikov-sieve-external-lists] 2.2 Allow Extensions To Use List From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Proposal - Clarify Expected Behaviour For Unsupported Tests =============================Change ------ Require implementations to raise a compile time error when list is used with an unsupported test. Rationale --------- Adopting a single clear rule on error handling increases interoperability. Requiring a compile time error seems cleaner than alternatives such as silently failing the test. Proposal - Allow Extension Tests To Use Link ====================== Change ------ Add explicit permission for implementations to support list for other tests. Rationale --------- Extensions which find "list" useful should be encouraged to use it as described. Use Case: Mailing List Local Test --------------------------------- if mailinglist :list "tag:example.org,2009-07-24:IEFT" { fileinto "standards"; } -------------------------------------------------------------------------- [1] Proposal -------------------------------------------------------------------------- 2.2. :list match type ABNF: MATCH-TYPE =/ ":list" ; only valid for supported tests The new ":list" match type changes the interpretation of the "key- list" parameter to supported tests. When the match type is ":list", the key-list becomes a list of names of externally stored lists. The external lists are queried, perhaps through a list-specific mechanism, and the test evaluates to "true" if any of the specified values matches any member of one or more of the lists. Implementations MUST support "address", "envelope" and "header" tests. Implementations MAY support other tests but MUST raise a compile time error when a script contains any standard test where support has not been explicitly specified. -------------------------------------------------------------------------- [2] Original Text -------------------------------------------------------------------------- 2.2. :list match type for "address", "envelope", and "header" tests ABNF: MATCH-TYPE =/ ":list" ; only valid for "address", "envelope", and "header" tests The new ":list" match type changes the interpretation of the "key- list" parameter to the "address"/"envelope"/"header" test. When the match type is ":list", the key-list becomes a list of names of externally stored lists. The external lists are queried, perhaps through a list-specific mechanism, and the test evaluates to "true" if any of the specified values matches any member of one or more of the lists. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UCJ466071642 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 05:19:04 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UCJ4vR071641; Thu, 30 Jul 2009 05:19:04 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f223.google.com (mail-fx0-f223.google.com [209.85.220.223]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UCIs66071622 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 05:19:03 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm23 with SMTP id 23so1360868fxm.6 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 05:18:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type:content-transfer-encoding; bh=FYHrTSpoO0R6eo1vuMjo6cepohW/57xCXOBg6JhWuYE=; b=DVjfXOWIN2UmvZBpk8dS7dfAydjqnivlPg/QV2ppoBwZhzUhCaaB57km+IEnbpnHBu TSBJTROpaZzVn/HLR3JUu9yRAMuYnE75azFgsUKaDpuImVndf/wQheijbYW1MYXLdEqH Gh05rD9DCcaURUfb+Hii5u8abDtwMumrnsO6YDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type :content-transfer-encoding; b=agynpAp/b9MxLZT9KanelvpRVfcDK22jvgm2c/DRYQAH0lHsnBiNNnVmQ1IdjbHHS7 VlxCGjOc0GRQYGSL26/phHypq3MSPhbT09jdVDKgU/u5DQ4qiINKYxfL+mP80MX1uG/N KVPhitHmgRbMpSEO2ZhlIzBsRRTK4BvmJjY+QMIME-Version: 1.0 Received: by 10.204.114.194 with SMTP id f2mr1129157bkq.17.1248956332858; Thu, 30 Jul 2009 05:18:52 -0700 (PDT) Date: Thu, 30 Jul 2009 13:18:52 +0100 Message-ID: <f470f68e0907300518xf914a5dq597bfbdb7eafac7e@mail.gmail.com> Subject: [draft-melnikov-sieve-external-lists] 2.4 Proposed Error Handling Clarifications From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Proposal: Separate Section For Discussion of TAG ========================Changes ------- Split first paragraph into sections. Rationale --------- Clarity Proposal: Clarify Expected Error Handling Behaviour =========================Changes ------- Specify that unsupported URI schemas are compile time errors and that resolution failures are runtime errors. Rationale --------- Practical implementations will not be able to support all feasible URI schemes, protocols, discovery mechanisms and resource semantics. Any URI schema which is not supported by the engine will never be resolved. In this case, it is clearer and cleaner to fail at compile time. Note that this case also includes malformed URIs. Resources may be dynamic. A resource whose semantics could not be understood at compile time may have been replaced by one that could be at runtime. Resource resolution may be dynamic: a resource which could not be resolved at compile time may be resolvable at runtime. Services may be dynamic. A service with suitable semantics may become available at runtime which was not at compile time. Conversely, resources, resource resolution and service discovery may fail at runtime after it succeeded at compile time. So, failures to resolve, locate or parse a resource referred to by the script should only be raised at runtime. Proposal: Require Implementations To Support [TAG-URI] =========================== Changes ------- Require that all implementations support tag, plus any other URI schemes of their choice. Rationale --------- Insisting that implementations support at least one protocol sets a minimum level for script portability. Picking one particular web protocol such as LDAP, HTTP or FTP would impose a unnecessary burden on implementations and unnecessarily involve the specification in the semantics of engine-list server interactions. A credible alternative choice would be relative URIs. -------------------------------------------------------------------------- [1] Proposal -------------------------------------------------------------------------- 2.4. Syntax of an externally stored list name A name of an externally stored list is always an absolute URI [URI]. Implementations might find URLs such as [LDAP], [CardDAV], or [TAG-URI] to be useful for naming external lists. Implementations MUST raise a compile time error when a list name cannot be parsed into a URI scheme supported by the implementation. Resolution of the resource MAY involve resource location and service discovery. Resources MAY change dynamically. Resolution of the resource MUST be perform at script execution time. When the resource cannot be located or the resource type is found to be unsupported then the implementation MUST raise a runtime error. Implementations MAY attempt to resolve the URI at compile time but MUST NOT raise a compile time error on failure. 2.4.1 The Tag Scheme The "tag" URI scheme [TAG-URI] can be used to represent opaque, but user friendlier identifiers. Resolution of such identifiers is going to be implementation specific and it can help in hiding the complexity of an implementation from end users. For example, an implementation can provide a web interface for managing lists of users stored in LDAP. Requiring users to know generic LDAP URL syntax might not be very practical, due to its complexity. An implementation can instead use a fixed tag URI prefix such as "tag:example.com,<date>:" (where <date> can be, for example, a date generated once on installation of the web interface and left untouched upon upgrades) and the prefix doesn't even need to be shown to end users. Implementations MUST support the [TAG-URI] URI scheme. 2.4.2 Other URI Schemes Implementations MAY support other URI schemes. -------------------------------------------------------------------------- [2] Original Text -------------------------------------------------------------------------- 2.4. Syntax of an externally stored list name A name of an externally stored list is always an absolute URI [URI]. Implementations might find URLs such as [LDAP], [CardDAV], or [TAG-URI] to be useful for naming external lists. The "tag" URI scheme [TAG-URI] can be used to represent opaque, but user friendlier identifiers. Resolution of such identifiers is going to be implementation specific and it can help in hiding the complexity of an implementation from end users. For example, an implementation can provide a web interface for managing lists of users stored in LDAP. Requiring users to know generic LDAP URL syntax might not be very practical, due to its complexity. An implementation can instead use a fixed tag URI prefix such as "tag: example.com,<date>:" (where <date> can be, for example, a date generated once on installation of the web interface and left untouched upon upgrades) and the prefix doesn't even need to be shown to end users. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UAWBnj049961 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 03:32:11 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UAWBOF049960; Thu, 30 Jul 2009 03:32:11 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f221.google.com (mail-fx0-f221.google.com [209.85.220.221]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UAW9lG049949 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 03:32:10 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm21 with SMTP id 21so537213fxm.27 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 03:32:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bhNPGpa7PE9gGO+HomFaIj8O5i7PGEoTMF/pX0POjAGY=; b=G/oMQJ8fp9KZgvhsELweIbJHOvDbBbT5nFAph+v6pImZGdE2zobMTl330gke4XSTw6 ThMYa6LCsry5a00s+V8cs9TKeRjNEN6QnLnBfv1cBOI9muSASBzYgkeM/FRYTtvdqKDa h0D84zxN/3+IsW0piP5w2v89wCdpO9CYrtBo0DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=aTyE+I9FOYPCFzHsf6WUmkw66fWFxoyrvuWajBhUPj7QUku98aLWRY1RzX1QN/r9wf JpD8p8FnGSo1rX49Rt0p3DRKrQMu8Gkvu3uKV39f8EeqlIk9R5Jalr6d+Ban0DF6QVCo V11uaeEvDgKTD8OWolGaFT3mWKVGTlxouxqxAMIME-Version: 1.0 Received: by 10.204.50.195 with SMTP id a3mr1005960bkg.94.1248949928877; Thu, 30 Jul 2009 03:32:08 -0700 (PDT) In-Reply-To: <6c9fcc2a0907280039t1c964e4fqc4eaa1cc0f2abf4e@mail.gmail.com> References: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> <7b14652e916b216b17cf7f3063c6bd34@serendipity.cx> <eb5f610ed00d1a77855c4ac290a1b8ca@serendipity.cx> <6c9fcc2a0907280039t1c964e4fqc4eaa1cc0f2abf4e@mail.gmail.com> Date: Thu, 30 Jul 2009 11:32:08 +0100 Message-ID: <f470f68e0907300332gd5917eco38bd673918c41909@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] Proposed Addition To Section 2.4 From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: barryleiba@computer.org Cc: Aaron Stone <aaron@serendipity.cx>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Tue, Jul 28, 2009 at 8:39 AM, Barry Leiba<barryleiba.mailing.lists@gmail.com> wrote: <snip> > I'll also point out that in most cases (us geeks > notwithstanding), the script will be generated under the covers. So > the user might, indeed, just type "MyList", and the icky-looking URI > would be filled in for her. how might such a generator discover how to map "MyList" to "tag:MyList" (say) in an interoperable fashion? - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UAO34P049294 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 03:24:03 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UAO3F3049293; Thu, 30 Jul 2009 03:24:03 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f221.google.com (mail-fx0-f221.google.com [209.85.220.221]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UAO1Ie049286 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 03:24:02 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm21 with SMTP id 21so533236fxm.27 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 03:24:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=x0X6ALq2TLmDfm9GgnASz6JZHUQqMTIX9MO+cA44GG0=; b=myOBo1srS0ND/9OVVsST7VIN6nce9dAvpaUI9NQRpD9tnOopkWwyIZSfE7yCa7rcCZ LCS6YPlwIKAYsi53kfYel+fDQuf2i0ZazxfsFURhbht2iexuli2iZSJi9T+b9fumF53K 8p4FQzRcCyl+WxG5GwLyzkbPORK3FCv+pCVskDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=aXIgeXD552Zo90qjqAAeY7VcATEEA3aQ5hLonNi4NLYvCCuAAdvnqoupxZjLtvqZOi WwU0RWfESarwnvWm4Fc/CG32gaFYZI0BgmVKlv99lM2gNAPnLvZ1rC9duR3Weoa2Z8Fy 7dq5up9FdPp65tIIc1AmCLkRr56rDTz4BQjrwMIME-Version: 1.0 Received: by 10.204.102.14 with SMTP id e14mr963576bko.183.1248949440873; Thu, 30 Jul 2009 03:24:00 -0700 (PDT) In-Reply-To: <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> References: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> Date: Thu, 30 Jul 2009 11:24:00 +0100 Message-ID: <f470f68e0907300324g4578beb0jf2b858a86736d943@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] Proposed Addition To Section 2.4 From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: barryleiba@computer.org Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Sat, Jul 25, 2009 at 7:23 PM, Barry Leiba<barryleiba.mailing.lists@gmail.com> wrote: >> Use relative URIs to represent resources managed transparently by the >> Sieve Engine. > > This was my thought as well, when Alexey first brought the idea up. > Originally, the idea was that the list name was just a string, > understood by the Sieve processor. It quickly became clear that that > was problematic, and we should go with URIs. Some thought they should > always be absolute, and I thought relative ones should be allowed. We > batted that around for some while, and settled on absolute. > > Apart from the reason you mention -- that it can be confusing -- the > main argument against using relative URIs is the difficulty in clearly > (and interoperably) defining what the relative ones mean. Saying that > the Sieve processor understands what they mean ignores the real > problem with making sure the user (and/or the client) also understands > it. > > I think we should stay with absolute URIs. the location and interpretation of resources with arbitrary semantics across arbitrary protocols is - i think - too difficult a problem to be tackle by this draft. therefore, we should be satisfied now just by specifying what we can and leaving these difficult interoperability problems to other expert groups. - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UADhnk048670 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 30 Jul 2009 03:13:43 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6UADhnc048669; Thu, 30 Jul 2009 03:13:43 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f221.google.com (mail-fx0-f221.google.com [209.85.220.221]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6UADVaT048628 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 03:13:42 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm21 with SMTP id 21so528173fxm.27 for <ietf-mta-filters@imc.org>; Thu, 30 Jul 2009 03:13:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh·WozqQnfkHW/2HYO/xsECd62iwkHTSlXaeLoAUtH+A=; b=pGPXuK3K7T+UXkMrwea5FfcLj08ADy5Z4CE6kS8NfreIUlBh/L55ppB43tLZvkTJIZ VkarF+DlkkZ9x7YJZcqVrB8rfTH6wrwApwKCSlyMNPwdipQr0/1tri2UMN4I1qm3Kop4 6Ws5f+yXWzpTS+SGhyOZ52oeJuCO86pao0TvsDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=Nm5qKAEEZ6Gt7y6oGHF0YR2hBidlBRHiJoC3kcJrpcrSJP5xGD5PDOoOC4qYETflkx ZkuuQB3igL1kiUxuWsZDzUmVoiXnmvuNundOoSV8nVu9ikfPMQs2wq/uqLJK2oNDoPIx uhAN7ecC6zLi04l6/JGPp5lN/lIAX7fHgkYD0MIME-Version: 1.0 Received: by 10.204.54.198 with SMTP id r6mr945668bkg.191.1248948811070; Thu, 30 Jul 2009 03:13:31 -0700 (PDT) In-Reply-To: <6c9fcc2a0907280039t1c964e4fqc4eaa1cc0f2abf4e@mail.gmail.com> References: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> <7b14652e916b216b17cf7f3063c6bd34@serendipity.cx> <eb5f610ed00d1a77855c4ac290a1b8ca@serendipity.cx> <6c9fcc2a0907280039t1c964e4fqc4eaa1cc0f2abf4e@mail.gmail.com> Date: Thu, 30 Jul 2009 11:13:31 +0100 Message-ID: <f470f68e0907300313ve22fc28q3fd254835678c16d@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] Proposed Addition To Section 2.4 From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: barryleiba@computer.org Cc: Aaron Stone <aaron@serendipity.cx>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Tue, Jul 28, 2009 at 8:39 AM, Barry Leiba<barryleiba.mailing.lists@gmail.com> wrote: >> [As IC:] <snip> >> I do like the idea of just writing ':list "MyList"' and not needed much >> else. It does seem a bit overkill to be typing my own email address into >> the Sieve script for the very same account. > > I like the idea also, but I see the problems in interpreting it, what difficulties do you see? > especially as one tries to move scripts form one implementation to > another. could you explain when - given a server instance capable of supporting at least two sieve implementations and with access to resources mapped by a relative URL - moving a script from one implementation to another should create special difficulties? - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6TN0Eie004265 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 29 Jul 2009 16:00:25 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6TN0EHq004264; Wed, 29 Jul 2009 16:00:14 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail.ietf.org (mail.ietf.org [64.170.98.32]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6TN04Dx004252 for <ietf-mta-filters@imc.org>; Wed, 29 Jul 2009 16:00:14 -0700 (MST) (envelope-from root@core3.amsl.com) Received: by core3.amsl.com (Postfix, from userid 0) id CBC2E3A6E9C; Wed, 29 Jul 2009 16:00:01 -0700 (PDT) From: Internet-Drafts@ietf.org To: i-d-announce@ietf.org Cc: ietf-mta-filters@imc.org Subject: I-D Action:draft-ietf-sieve-include-03.txt Content-Type: Multipart/Mixed; Boundary="NextPart" Mime-Version: 1.0 Message-Id: <20090729230001.CBC2E3A6E9C@core3.amsl.com> Date: Wed, 29 Jul 2009 16:00:01 -0700 (PDT) Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> --NextPart A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Sieve Mail Filtering Language Working Group of the IETF. Title : Sieve Email Filtering: Include Extension Author(s) : C. Daboo, A. Stone Filename : draft-ietf-sieve-include-03.txt Pages : 14 Date : 2009-07-29 The Sieve Email Filtering "include" extension permits users to include one Sieve script inside another. This can make managing large scripts or multiple sets of scripts much easier, and allows a site and its users to build up libraries of scripts. Users are able to include their own personal scripts or site-wide scripts. Change History (to be removed prior to publication as an RFC) Changes from ietf-02 to ietf-03: a. Setting a variable then calling global on it is an error (something like 'use strict'). b. Specify that the 'global' keyword is only available when 'variables' has also been required. c. Uploading a script that includes a nonexistent script is not an error at upload time. Changes from ietf-01 to ietf-02: a. Require that script names must be constant strings, not subject to variable expansion. b. Try the phrase immediate script instead of current script. c. Clarify that "global 'varname'" and "global.varname" refer to the same variable. d. Drop the requirement the global keywords come after require and before anything else. Changes from ietf-00 to ietf-01: a. Replaced import/export with global. b. Added :once modifier to include. c. Added global namespace to see if it holds water. Changes from daboo-06 to ietf-00: a. None Changes from -05 to -06: a. Aaron Stone joins as author. b. Removed | characters from the script examples. c. Updated draft references to published RFCs. Changes from -04 to -05: a. Fixed examples. b. Relaxed requirement that imported/exported variables be set before being used. Changes from -03 to -04: a. Fixed missing 2119 definitions. b. Defined interaction with variables through use of import and export commands. Changes from -02 to -03: a. Refreshing expired draft (updated for nits). b. Syntax -> Usage. c. Updated to 3028bis reference. Changes from -01 to -02: a. Minor formatting changes only - refreshing expired draft. Changes from -00 to -01: a. Added IPR boiler plate. b. Re-ordered sections at start to conform to RFC style. c. Moved recursion comment into General Considerations section. d. Switched to using optional parameter to indicate personal vs global. e. Explicitly state that an error occurs when a missing script is included. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-sieve-include-03.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. --NextPart Content-Type: Message/External-body; name="draft-ietf-sieve-include-03.txt"; site="ftp.ietf.org"; access-type="anon-ftp"; directory="internet-drafts" Content-Type: text/plain Content-ID: <2009-07-29154612.I-D@ietf.org> --NextPart-- Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6SE04Mr055361 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Tue, 28 Jul 2009 07:00:04 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6SE04Qh055360; Tue, 28 Jul 2009 07:00:04 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail.ietf.org (mail.ietf.org [64.170.98.32]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6SE046D055354 for <ietf-mta-filters@imc.org>; Tue, 28 Jul 2009 07:00:04 -0700 (MST) (envelope-from root@core3.amsl.com) Received: by core3.amsl.com (Postfix, from userid 0) id 0DE0D3A6CE1; Tue, 28 Jul 2009 07:00:01 -0700 (PDT) From: Internet-Drafts@ietf.org To: i-d-announce@ietf.org Cc: ietf-mta-filters@imc.org Subject: I-D Action:draft-ietf-sieve-external-lists-00.txt Content-Type: Multipart/Mixed; Boundary="NextPart" Mime-Version: 1.0 Message-Id: <20090728140002.0DE0D3A6CE1@core3.amsl.com> Date: Tue, 28 Jul 2009 07:00:02 -0700 (PDT) Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> --NextPart A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Sieve Mail Filtering Language Working Group of the IETF. Title : Sieve Extension: Externally Stored Lists Author(s) : A. Melnikov Filename : draft-ietf-sieve-external-lists-00.txt Pages : 7 Date : 2009-07-05 Sieve scripting language can be used for implementing of whitelisting, blacklisting and personal distribution lists. Currently this requires that all members of such lists be hardcoded in the script itself. Whenever a member of such list is added or deleted, the script needs to be updated and possibly uploaded to a mail server. This document defines a Sieve extension for accessing externally stored mailing lists, i.e. list whose members are stored externally to the script, for example in LDAP (RFC 4510), ACAP (RFC 2244) or a relational database. ToDo o Need a way to advertise supported URI schemas in ManageSieve and ihave. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-sieve-external-lists-00.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. --NextPart Content-Type: Message/External-body; name="draft-ietf-sieve-external-lists-00.txt"; site="ftp.ietf.org"; access-type="anon-ftp"; directory="internet-drafts" Content-Type: text/plain Content-ID: <2009-07-28065019.I-D@ietf.org> --NextPart-- Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6S7dDGu025503 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Tue, 28 Jul 2009 00:39:13 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6S7dCD5025502; Tue, 28 Jul 2009 00:39:12 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.180]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6S7d0XE025488 for <ietf-mta-filters@imc.org>; Tue, 28 Jul 2009 00:39:11 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by wa-out-1112.google.com with SMTP id n7so598339wag.26 for <ietf-mta-filters@imc.org>; Tue, 28 Jul 2009 00:39:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=3OgawDgOjlin+YVuFoqlzeDv7+fgJpLdXC+e1x/yas0=; b=RxSmo3m5lvr/CXIi24CLoKZqj3eVCsGjM6C50MY5Jb0fMwW8rWuPplq+I2ExD477eu vRt2KhkVy8oM4uFoTyMeKec9ggzflOuSHw3DK4bz08alt0KRUhPZjoHGY5GJw2QwFaBs F2t5GMqebQb5G7i5ikECJ/9Ogcu4u3me3KkxcDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; b=JCn7PMP55kughWZeLe99SJcwjV0YTx6hVd1cRV3T/WvWqgPNyXl+eVdL0I8rKfB38S H44eVdlwQz7yK+a9INMKGIGb+pI571dTOXVLbv6UMuEYgvEPpickzXTGnxvTvyKq1Blf ASyN0fxKDbngQUEe1uw6/zLodGpVtYaHumjSoMIME-Version: 1.0 Received: by 10.114.102.20 with SMTP id z20mr11685950wab.175.1248766740503; Tue, 28 Jul 2009 00:39:00 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <eb5f610ed00d1a77855c4ac290a1b8ca@serendipity.cx> References: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> <7b14652e916b216b17cf7f3063c6bd34@serendipity.cx> <eb5f610ed00d1a77855c4ac290a1b8ca@serendipity.cx> Date: Tue, 28 Jul 2009 03:39:00 -0400 Message-ID: <6c9fcc2a0907280039t1c964e4fqc4eaa1cc0f2abf4e@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] Proposed Addition To Section 2.4 From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Aaron Stone <aaron@serendipity.cx> Cc: Robert Burrell Donkin <robertburrelldonkin@gmail.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > [As IC:] "IC"? > Personally, I'm concerned about potential ugliness of the identifiers if a > UI thinks it's hidden, but that's kind of an omnipresent issue around here. Sorry; I can't make sense of that. Try rephrasing? > I do like the idea of just writing ':list "MyList"' and not needed much > else. It does seem a bit overkill to be typing my own email address into > the Sieve script for the very same account. I like the idea also, but I see the problems in interpreting it, especially as one tries to move scripts form one implementation to another. I'll also point out that in most cases (us geeks notwithstanding), the script will be generated under the covers. So the user might, indeed, just type "MyList", and the icky-looking URI would be filled in for her. Barry Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6S01ICR098869 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Mon, 27 Jul 2009 17:01:18 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6S01Ir0098868; Mon, 27 Jul 2009 17:01:18 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail.serendipity.cx (75-101-96-32.dsl.static.sonic.net [75.101.96.32] (may be forged)) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6S01HSG098862 for <ietf-mta-filters@imc.org>; Mon, 27 Jul 2009 17:01:18 -0700 (MST) (envelope-from aaron@serendipity.cx) Received: from serendipity.cx (unknown [10.10.10.34]) by mail.serendipity.cx (Postfix) with ESMTP id EBC8C16CE; Mon, 27 Jul 2009 17:01:26 -0700 (PDT) MIME-Version: 1.0 Date: Mon, 27 Jul 2009 17:01:26 -0700 From: Aaron Stone <aaron@serendipity.cx> To: <barryleiba@computer.org>, Robert Burrell Donkin <robertburrelldonkin@gmail.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Subject: Re: [draft-melnikov-sieve-external-lists] Proposed Addition To =?UTF-8?Q? Section 2.4?In-Reply-To: <7b14652e916b216b17cf7f3063c6bd34@serendipity.cx> References: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> <7b14652e916b216b17cf7f3063c6bd34@serendipity.cx> Message-ID: <eb5f610ed00d1a77855c4ac290a1b8ca@serendipity.cx> X-Sender: aaron@serendipity.cx User-Agent: RoundCube Webmail/0.2 Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="UTF-8" Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Mon, 27 Jul 2009 16:07:36 -0700, Aaron Stone <aaron@serendipity.cx> wrote: > On Sat, 25 Jul 2009 14:23:29 -0400, Barry Leiba > <barryleiba.mailing.lists@gmail.com> wrote: >>> Use relative URIs to represent resources managed transparently by the >>> Sieve Engine. >> >> This was my thought as well, when Alexey first brought the idea up. >> Originally, the idea was that the list name was just a string, >> understood by the Sieve processor. It quickly became clear that that >> was problematic, and we should go with URIs. Some thought they should >> always be absolute, and I thought relative ones should be allowed. We >> batted that around for some while, and settled on absolute. >> >> Apart from the reason you mention -- that it can be confusing -- the >> main argument against using relative URIs is the difficulty in clearly >> (and interoperably) defining what the relative ones mean. Saying that >> the Sieve processor understands what they mean ignores the real >> problem with making sure the user (and/or the client) also understands >> it. >> >> I think we should stay with absolute URIs. > > [As IC:] > > With the tag: URI scheme, you do get the effect of a server-specific URI, > and with a clear indication that that's what you're looking at (since it > begins literally with "tag:"). Does that address the concerns here? [Still an IC:] Sorry, I didn't read the original comment and text. Of course this is exactly what's at issue. Personally, I'm concerned about potential ugliness of the identifiers if a UI thinks it's hidden, but that's kind of an omnipresent issue around here. I do like the idea of just writing ':list "MyList"' and not needed much else. It does seem a bit overkill to be typing my own email address into the Sieve script for the very same account. Aaron Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6RN7egU095839 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Mon, 27 Jul 2009 16:07:40 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6RN7ero095838; Mon, 27 Jul 2009 16:07:40 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail.serendipity.cx (75-101-96-32.dsl.static.sonic.net [75.101.96.32] (may be forged)) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6RN7Srk095820 for <ietf-mta-filters@imc.org>; Mon, 27 Jul 2009 16:07:38 -0700 (MST) (envelope-from aaron@serendipity.cx) Received: from serendipity.cx (unknown [10.10.10.34]) by mail.serendipity.cx (Postfix) with ESMTP id 9910716CE; Mon, 27 Jul 2009 16:07:36 -0700 (PDT) MIME-Version: 1.0 Date: Mon, 27 Jul 2009 16:07:36 -0700 From: Aaron Stone <aaron@serendipity.cx> To: <barryleiba@computer.org> Cc: Robert Burrell Donkin <robertburrelldonkin@gmail.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Subject: Re: [draft-melnikov-sieve-external-lists] Proposed Addition To =?UTF-8?Q? Section 2.4?In-Reply-To: <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> References: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> Message-ID: <7b14652e916b216b17cf7f3063c6bd34@serendipity.cx> X-Sender: aaron@serendipity.cx User-Agent: RoundCube Webmail/0.2 Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="UTF-8" Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Sat, 25 Jul 2009 14:23:29 -0400, Barry Leiba <barryleiba.mailing.lists@gmail.com> wrote: >> Use relative URIs to represent resources managed transparently by the >> Sieve Engine. > > This was my thought as well, when Alexey first brought the idea up. > Originally, the idea was that the list name was just a string, > understood by the Sieve processor. It quickly became clear that that > was problematic, and we should go with URIs. Some thought they should > always be absolute, and I thought relative ones should be allowed. We > batted that around for some while, and settled on absolute. > > Apart from the reason you mention -- that it can be confusing -- the > main argument against using relative URIs is the difficulty in clearly > (and interoperably) defining what the relative ones mean. Saying that > the Sieve processor understands what they mean ignores the real > problem with making sure the user (and/or the client) also understands > it. > > I think we should stay with absolute URIs. [As IC:] With the tag: URI scheme, you do get the effect of a server-specific URI, and with a clear indication that that's what you're looking at (since it begins literally with "tag:"). Does that address the concerns here? Aaron Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6RGJfGh067728 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Mon, 27 Jul 2009 09:19:41 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6RGJfLR067727; Mon, 27 Jul 2009 09:19:41 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from daboo.name (daboo.name [151.201.22.177]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6RGJUwR067700 for <ietf-mta-filters@imc.org>; Mon, 27 Jul 2009 09:19:41 -0700 (MST) (envelope-from cyrus@daboo.name) Received: from localhost (localhost [127.0.0.1]) by daboo.name (Postfix) with ESMTP id 43389174C4A3 for <ietf-mta-filters@imc.org>; Mon, 27 Jul 2009 12:19:29 -0400 (EDT) X-Virus-Scanned: amavisd-new at daboo.name Received: from daboo.name ([127.0.0.1]) by localhost (chewy.mulberrymail.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mu0dBjDHSf7n for <ietf-mta-filters@imc.org>; Mon, 27 Jul 2009 12:19:28 -0400 (EDT) Received: from dhcp-10ae.meeting.ietf.org (dhcp-10ae.meeting.ietf.org [130.129.16.174]) by daboo.name (Postfix) with ESMTP id 0F750174C498 for <ietf-mta-filters@imc.org>; Mon, 27 Jul 2009 12:19:27 -0400 (EDT) Date: Mon, 27 Jul 2009 18:19:25 +0200 From: Cyrus Daboo <cyrus@daboo.name> To: SIEVE <ietf-mta-filters@imc.org> Subject: Slides for meeting uploaded Message-ID: <B0522AE30BDF2C40452B4280@dhcp-10ae.meeting.ietf.org> X-Mailer: Mulberry/4.1.0a1 (Mac OS X) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline; size$2 Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Hi folks, I have uploaded a set of slides to the IETF meeting materials site for Wednesday's meeting. Please review and let me know of any corrections or additions. <http://www3.ietf.org/proceedings/75/slides/sieve-0.pdf> -- Cyrus Daboo Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6PIPqpl002163 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sat, 25 Jul 2009 11:25:52 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6PIPqYo002162; Sat, 25 Jul 2009 11:25:52 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-pz0-f188.google.com (mail-pz0-f188.google.com [209.85.222.188]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6PIPffG002154 for <ietf-mta-filters@imc.org>; Sat, 25 Jul 2009 11:25:52 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by pzk26 with SMTP id 26so1493362pzk.16 for <ietf-mta-filters@imc.org>; Sat, 25 Jul 2009 11:25:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=JXNwbWU8ldQVVjBGXcYsAwp2lhIaZHXdanPpMiF9MSc=; b=rNIO3tTXU3F15T+PlscgPalPbUdmMps947TQSvqthZLMQaD7738K5iqO3yZWwoWrj9 NWy8VQVFcSKGHnd3mYc0Nq+TYoi/afyikpsgsR4CCoJ8THHk9d40QRaeLIXxm1B82zjl X7MOnkAZ1CoyCJfNSqmLhDGHI4GNMi6VAQgfsDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; bê/5ikKaHYUrBDmE11Ke313AHyjwKwlbEhJxYj+dCumZN4rrMlBLFGnMPJdpPDV4QF pMAGFS7LYPJrnH2BTheB3uG7YeGoeJ3N9geMy2do6KmaqcH9/K+QEb1+ZjoTmHQjvD2A jbtyPD2WnNGqR1gxlHM1vsWhrE5W3LxEF7gY0MIME-Version: 1.0 Received: by 10.115.106.6 with SMTP id i6mr6667311wam.168.1248546341367; Sat, 25 Jul 2009 11:25:41 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <f470f68e0907240204n5b77e33bh5fac3c637227e096@mail.gmail.com> References: <f470f68e0907240204n5b77e33bh5fac3c637227e096@mail.gmail.com> Date: Sat, 25 Jul 2009 14:25:41 -0400 Message-ID: <6c9fcc2a0907251125w38bb9306x4f227ad142809850@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] Proposed Changes To Section 2.3 From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com> Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> I don't strongly object to the change Robert suggests, below, but I think it's useful to explain the situation, to explain why there might be issues here. I'd rather not eliminate the paragraph that gives that explanation. I'm happier, if we want to use Robert's text, to leave at least some of the eliminated paragraph in as an informative note. Barry On Fri, Jul 24, 2009 at 5:04 AM, Robert Burrell Donkin<robertburrelldonkin@gmail.com> wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Changes > - ------- > Revise and consolidate existing paragraphs 3 and 4 into a shorter functional > description. > > Rationale > - --------- > Paragraphs 3 and 4 in 2.3 specify complex, hard to test requirements for > little clear gain. Regarding the redirection as a black box makes the > specification > more concise and allows more space for novel approaches. > > - -------------------------------------------------------------------------- > [1] Proposed Text > - -------------------------------------------------------------------------- > > 2.3. :list tagged argument to the "redirect" action > > Usage: redirect :list > > The "redirect" action with the ":list" argument is used to send the > message to one or more email addresses stored in the externally > stored list 'ext-list-name'. This variant of the redirect command > can be used to implement a personal distribution list. > > The Sieve engine and list server SHOULD collaborate to achieve a > redirection consistent with the semantics described in [Sieve]. If > they are unable to do so then the situation MUST result in a > runtime error. > > See Section 2.4 for the detailed description of syntax used for > naming externally stored lists. > > - -------------------------------------------------------------------------- > [2] Original Text > - -------------------------------------------------------------------------- > 2.3. :list tagged argument to the "redirect" action > > Usage: redirect :list > > The "redirect" action with the ":list" argument is used to send the > message to one or more email addresses stored in the externally > stored list 'ext-list-name'. This variant of the redirect command > can be used to implement a personal distribution list. > > Use of this feature requires that the list resolve to a list of email > addresses, and that the Sieve engine be able to enumerate those > addresses. [[anchor5: Alexey would like the option of allowing the > list handler to enumerate the addresses and do the redirect there. > Barry thinks that's contrary to Sieve, which expects to queue the > redirect action for processing at a later stage, and that it would be > a bad idea to have the redirect happen in the list handler. The WG > needs to resolve this issue.]] In cases where, for example, a list > contains hashed email address values or an email address pattern > ("sz*@example.com", "*+ietf@example.net"), it will not be possible to > redirect to that list. > > If the Sieve engine [[anchor6: or list handler?]] is permanently > unable to enumerate the list or the list does not resolve to email > addresses, the situation MUST result in a runtime error in the Sieve > script. > > See Section 2.4 for the detailed description of syntax used for > naming externally stored lists. > Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6PINfCX002072 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sat, 25 Jul 2009 11:23:41 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6PINfmv002071; Sat, 25 Jul 2009 11:23:41 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-px0-f192.google.com (mail-px0-f192.google.com [209.85.216.192]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6PINUi9002059 for <ietf-mta-filters@imc.org>; Sat, 25 Jul 2009 11:23:40 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by pxi30 with SMTP id 30so1433990pxi.16 for <ietf-mta-filters@imc.org>; Sat, 25 Jul 2009 11:23:30 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=wDfXANjk21Mp6vmWTrFA/NV8NrQTvWRz2RPkYe6Ufao=; b=WAzBAHI96Lgx+Jz+MCrLkk0DKa1zi9pL3ZC2FByI8jcvjx3dVpuR2ORPLL3NIxPvEs ovtMFQYoEBYitmWukPKikMJvLbVIYCYAfQzEPfxYJ1t35CU++u9wIZaPm5AizUlhEIcZ tr8Mvc7Urc1SDYgCzmVnvy47jb9AUuKfsVsnADomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; b=CmPmagBVgTfowhMcVken8Qb3VR/WR9+YSIcGOoAu4GrI++4KaJOkZ9OWOrMzWBJZd0 1H25qObwAJrsDUxhZzskobfIuLj8Ng16igxENKIjjrGUV7ZODqljBkWNy+CAEdNck4+9 JE5z2Pp87gJuSDf7HFsGRMskBRT2VGi8m3ArkMIME-Version: 1.0 Received: by 10.114.161.3 with SMTP id j3mr6614360wae.10.1248546209922; Sat, 25 Jul 2009 11:23:29 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> References: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> Date: Sat, 25 Jul 2009 14:23:29 -0400 Message-ID: <6c9fcc2a0907251123q3cf2cc21xd884154adbcee124@mail.gmail.com> Subject: Re: [draft-melnikov-sieve-external-lists] Proposed Addition To Section 2.4 From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com> Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > Use relative URIs to represent resources managed transparently by the > Sieve Engine. This was my thought as well, when Alexey first brought the idea up. Originally, the idea was that the list name was just a string, understood by the Sieve processor. It quickly became clear that that was problematic, and we should go with URIs. Some thought they should always be absolute, and I thought relative ones should be allowed. We batted that around for some while, and settled on absolute. Apart from the reason you mention -- that it can be confusing -- the main argument against using relative URIs is the difficulty in clearly (and interoperably) defining what the relative ones mean. Saying that the Sieve processor understands what they mean ignores the real problem with making sure the user (and/or the client) also understands it. I think we should stay with absolute URIs. Barry Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6OEBg5D099323 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 24 Jul 2009 07:11:42 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6OEBgip099322; Fri, 24 Jul 2009 07:11:42 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-bw0-f215.google.com (mail-bw0-f215.google.com [209.85.218.215]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6OEBTup099295 for <ietf-mta-filters@imc.org>; Fri, 24 Jul 2009 07:11:40 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by bwz11 with SMTP id 11so1506509bwz.10 for <ietf-mta-filters@imc.org>; Fri, 24 Jul 2009 07:11:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=OmgRTweum3OaLLl5/y5PjzDZoHEpC7bPy0TDijkUn14=; b=vBYDui/ctxtBm/7+CMf/31LfVWD0Lz6hhYgGUk8aP/bK7eBj2grV8gnN7Yd0CTxuA0 BkNq+zEyeDE8MFkwqWShurhE4ka46AXXc9X6lYxLGUahdhFGqLO/Io6U6DX1//XlPGxI dtu6VwSxCZsp9UhuLVawoKnbVW8WqvUPz1z1ADomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=qdfWXjokMWv4KRyvyQ8PjfvlGinUHYkZdsVvIlFEwImKKcg1bMekQYDSZrSbKhXkgE Qkvt5zwisNEETur//rw9l+kvw4A25ewZ2DjhobQ2cZTGTs+OhEaMgyaRfAK3OOAwj3hy aotlrSa6/v1xVgbn374XTyOm7lPX2GXDp5eqgMIME-Version: 1.0 Received: by 10.204.112.130 with SMTP id w2mr3316680bkp.56.1248444688858; Fri, 24 Jul 2009 07:11:28 -0700 (PDT) In-Reply-To: <01NBOQZIKDF000007A@mauve.mrochek.com> References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <01NBII89YRHO00007A@mauve.mrochek.com> <f470f68e0907231448n764a85deo9b490cbf26e13008@mail.gmail.com> <01NBOQZIKDF000007A@mauve.mrochek.com> Date: Fri, 24 Jul 2009 15:11:28 +0100 Message-ID: <f470f68e0907240711j686d2dd5qbc759fb791cc5329@mail.gmail.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Cc: =?windows-1251?B?xOjr/+0gz+Dr4PPn7uI=?= <dilyan.palauzov@aegee.org>, Alexey Melnikov <alexey.melnikov@isode.com> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> (apologies for messing up the reply-to foo first time 8-) On Fri, Jul 24, 2009 at 1:55 PM, Ned Freed<ned.freed@mrochek.com> wrote: > >> 2009/7/20 Ned Freed <ned.freed@mrochek.com>: >> > >> > >> >> Hello, >> > >> >> > Would we need to have :list-is, :list-matches, :list-contains, or can we >> >> > get away with just :list, which would check for the exact match? >> > >> >> As far as I understood Ned, it is the list who decides on the exact >> >> match type : it is not up to the script to prescribe the matching. So >> >> "just :list". >> > >> >> Any use cases where :list-is, :list-contains ... make sense and "just >> >> :list" would be insufficient? >> > >> > Sure, you can have lists that support more than one kind of matching, >> > although >> > I expect such cases to be the exception rather than the rule. In such cases >> > I >> > would propose that the type of matching be embedded in the list name >> > somehow. >> > >> > This then gets to the idea of using URLs for list names. A tag: URL is of >> > course completely capable of handling additional embedded material. Other >> > URL schemes, not so much. In fact I'm not entirely sure how this is supposed >> > to >> > work with LDAP URLs with reasonable efficiency. >> > >> > Consider the fairly typical case of whitelisting based on a personal address >> > book in LDAP. Assuming everyone is OK with users being able to construct >> > and perform their own LDAP searches and have no problem knowing and hard >> > coding >> > the base DN of their entries (both very big ifs), this would call for >> > something >> > like: >> > >> > if address :list "from" >> > "ldap:///cn=me,o=pab?mail?sub?(objectclass=regularentry)" { >> > ... whitelist ... >> > } >> > >> > The problem with this is we're again back to enumeration - that URL produces >> > a (potentially very large) list of addresses, which would have to be >> > compared >> > one by one to the address(es) extracted from the "from" field. >> > >> > But consider the URL: >> > >> > ldap:///cn=me,o=pab?mail?sub?(&(objectclass=regularentry)(mail=a@b)) >> > >> > This flips the problem around - now the address you're looking for is >> > specified >> > in the URL itself. Now it's up to the LDAP server to find the match, and the >> > simple fact it returned a response is enough to conclude the address is on >> > the >> > list. >> > >> > This is much more efficient, especially if the LDAP server has proper >> > indexing. >> > But now the URL is something that has to be constructed by knowing what >> > you're >> > searching for. >> > >> > I will also note that LDAP URLs can embed very complex matching criteria of >> > their own. >> > >> > Now, I guess I have no problem with using tag: URLs that end up getting >> > converted to the more efficient LDAP URLs seen here. But I really have to >> > question whether anyone is actually going to allow, as the specification >> > implies, the direct use of LDAP URLs or other URLs with similar >> > characteristics. > >> +1 > >> the Sieve engine will face problems of semantics, resolution and >> authentication with direct URLs > > The last item is an important point. Anyone who allows, say LDAP URls, is going > to have a fun time analyzing those URls to make sure they don't do anything > naughty. +1 i spent some time this morning thinking about the HTTP case - and it's very interesting :-) i have some comments related to this but i need some more thinking time before i post them to the list (i've pushed them to github[1] just in case anyone wants to see where they're going ATM) - robert [1] http://github.com/RobertBurrellDonkin/ietf-mta-filters/tree/master follow links to ExternallyStoredLists/00 Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6OCv776093930 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 24 Jul 2009 05:57:07 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6OCv7TM093928; Fri, 24 Jul 2009 05:57:07 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6OCuuQi093916 for <ietf-mta-filters@imc.org>; Fri, 24 Jul 2009 05:57:07 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBOQZKO6V40089U7@mauve.mrochek.com> for ietf-mta-filters@imc.org; Fri, 24 Jul 2009 05:56:53 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBO2ULHOF400007A@mauve.mrochek.com>; Fri, 24 Jul 2009 05:56:50 -0700 (PDT) Date: Fri, 24 Jul 2009 05:55:10 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt In-reply-to: "Your message dated Thu, 23 Jul 2009 22:48:50 +0100" <f470f68e0907231448n764a85deo9b490cbf26e13008@mail.gmail.com> To: Robert Burrell Donkin <robertburrelldonkin@gmail.com> Cc: Ned Freed <ned.freed@mrochek.com>, =?windows-1251?B?xOjr/+0gz+Dr4PPn7uI=?= <dilyan.palauzov@aegee.org>, Alexey Melnikov <alexey.melnikov@isode.com>, ietf-mta-filters@imc.org Message-id: <01NBOQZIKDF000007A@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=ISO-8859-1 Content-transfer-encoding: 8BIT References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <01NBII89YRHO00007A@mauve.mrochek.com> <f470f68e0907231448n764a85deo9b490cbf26e13008@mail.gmail.com> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > 2009/7/20 Ned Freed <ned.freed@mrochek.com>: > > > > > >> Hello, > > > >> > Would we need to have :list-is, :list-matches, :list-contains, or can we > >> > get away with just :list, which would check for the exact match? > > > >> As far as I understood Ned, it is the list who decides on the exact > >> match type : it is not up to the script to prescribe the matching. So > >> "just :list". > > > >> Any use cases where :list-is, :list-contains ... make sense and "just > >> :list" would be insufficient? > > > > Sure, you can have lists that support more than one kind of matching, > > although > > I expect such cases to be the exception rather than the rule. In such cases > > I > > would propose that the type of matching be embedded in the list name > > somehow. > > > > This then gets to the idea of using URLs for list names. A tag: URL is of > > course completely capable of handling additional embedded material. Other > > URL schemes, not so much. In fact I'm not entirely sure how this is supposed > > to > > work with LDAP URLs with reasonable efficiency. > > > > Consider the fairly typical case of whitelisting based on a personal address > > book in LDAP. Assuming everyone is OK with users being able to construct > > and perform their own LDAP searches and have no problem knowing and hard > > coding > > the base DN of their entries (both very big ifs), this would call for > > something > > like: > > > > if address :list "from" > > "ldap:///cn=me,o=pab?mail?sub?(objectclass=regularentry)" { > > ... whitelist ... > > } > > > > The problem with this is we're again back to enumeration - that URL produces > > a (potentially very large) list of addresses, which would have to be > > compared > > one by one to the address(es) extracted from the "from" field. > > > > But consider the URL: > > > > ldap:///cn=me,o=pab?mail?sub?(&(objectclass=regularentry)(mail=a@b)) > > > > This flips the problem around - now the address you're looking for is > > specified > > in the URL itself. Now it's up to the LDAP server to find the match, and the > > simple fact it returned a response is enough to conclude the address is on > > the > > list. > > > > This is much more efficient, especially if the LDAP server has proper > > indexing. > > But now the URL is something that has to be constructed by knowing what > > you're > > searching for. > > > > I will also note that LDAP URLs can embed very complex matching criteria of > > their own. > > > > Now, I guess I have no problem with using tag: URLs that end up getting > > converted to the more efficient LDAP URLs seen here. But I really have to > > question whether anyone is actually going to allow, as the specification > > implies, the direct use of LDAP URLs or other URLs with similar > > characteristics. > +1 > the Sieve engine will face problems of semantics, resolution and > authentication with direct URLs The last item is an important point. Anyone who allows, say LDAP URls, is going to have a fun time analyzing those URls to make sure they don't do anything naughty. Ned Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6OBcsu3088179 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 24 Jul 2009 04:38:54 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6OBcs2W088169; Fri, 24 Jul 2009 04:38:54 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-bw0-f215.google.com (mail-bw0-f215.google.com [209.85.218.215]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6OBcp7F088142 for <ietf-mta-filters@imc.org>; Fri, 24 Jul 2009 04:38:52 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by bwz11 with SMTP id 11so1427125bwz.10 for <ietf-mta-filters@imc.org>; Fri, 24 Jul 2009 04:38:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type:content-transfer-encoding; bh=LFkcQMtrvixNgXymWAIFF1Fl8+EQp/J4eMsEa959b7Q=; b=S4+np4O0DEAF3aE0sWnDIjVcqw+jU4wwHsnHDPlv/updjCO16gva0JWdUl4bmDXoBW w+x45Kl7n5QUye2Anxboy2z4KPHusJnv4O7Pz2g/U199nI3fH6a3WQKC70MdAWbGXCqS +9JBSPQWuUQ4S6TWkzHbNZ+R9aEy5R1wV6q9ADomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type :content-transfer-encoding; b=lnee0dk2MISMucmyxF1WTn/KCDVTkjgzvMwoExEQX/SHpAavvy7AWHucs4b6NlF5W2 QPapdYTd7Kpz7uQrPHUSnXV4ipEi7b1/dp3i8iN/Mrxu2nmCOxzRRhdSpYVO7r8ikUe3 D7MWBaV4NiHNtuGs4SUvN+MBhaCQji3HrU3KIMIME-Version: 1.0 Received: by 10.204.59.14 with SMTP id j14mr3181213bkh.39.1248435531262; Fri, 24 Jul 2009 04:38:51 -0700 (PDT) Date: Fri, 24 Jul 2009 12:38:51 +0100 Message-ID: <f470f68e0907240438r554e91cdq90466a7116ec98d0@mail.gmail.com> Subject: [draft-melnikov-sieve-external-lists] Proposed Addition To Section 2.4 From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Proposal ==== Use relative URIs to represent resources managed transparently by the Sieve Engine. Rationale ====A little syntactic sugar to simplify scripts. For example, the following forms might be functionally equivalent: redirect :list "tag:example.com,2009-05-28:mylist" redirect :list "MyList" but the relative URI form is more concise. Disadvantages ======* It is not obvious that the list name is an URI. Some users may therefore be surprised to learn that URI naming rules apply. Sample Use Cases ======== Shared Blacklist Maintained By The System Administrator ------------------------------------------------------- if address :list "/blacklist" { discard; } Shared Distribution List Maintained By The System Administrator --------------------------------------------------------------- redirect :list "/staff" Private Whitelist Maintained By The System For The User ------------------------------------------------------- if header :list "from" "MyFriends" { keep; } -------------------------------------------------------------------------- [1] Proposed Insertion -------------------------------------------------------------------------- 2.4. Syntax of an externally stored list name A name of an externally stored list MUST be an URI [URI]. 2.4.1 Relative URIs A relative URI MAY be interpreted by a Sieve engine as a reference to a list service resource managed by the implementation. An implementation which does not support relative URIs SHOULD raise an error at compile time when a list name is a relative URI. 2.4.2 Absolute URIs An absolute URI indicates an external list processing resource. Implementations might find URLs such as [LDAP], [CardDAV], or [etc, continuing as per original] -------------------------------------------------------------------------- [2] Original Text -------------------------------------------------------------------------- 2.4. Syntax of an externally stored list name A name of an externally stored list is always an absolute URI [URI]. Implementations might find URLs such as [LDAP], [CardDAV], or [TAG-URI] to be useful for naming external lists. The "tag" URI scheme [TAG-URI] can be used to represent opaque, but user friendlier identifiers. Resolution of such identifiers is going to be implementation specific and it can help in hiding the complexity of an implementation from end users. For example, an implementation can provide a web interface for managing lists of users stored in LDAP. Requiring users to know generic LDAP URL syntax might not be very practical, due to its complexity. An implementation can instead use a fixed tag URI prefix such as "tag: example.com,<date>:" (where <date> can be, for example, a date generated once on installation of the web interface and left untouched upon upgrades) and the prefix doesn't even need to be shown to end users. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6O94fYX076165 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Fri, 24 Jul 2009 02:04:41 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6O94fYC076164; Fri, 24 Jul 2009 02:04:41 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-bw0-f215.google.com (mail-bw0-f215.google.com [209.85.218.215]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6O94QlP076148 for <ietf-mta-filters@imc.org>; Fri, 24 Jul 2009 02:04:37 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by bwz11 with SMTP id 11so1358705bwz.10 for <ietf-mta-filters@imc.org>; Fri, 24 Jul 2009 02:04:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type:content-transfer-encoding; bhµqkiCHxoMUXRJdHj9hEa0u4Rxktp9Wns2XuZM57G58=; b=qwWMCNSrUT4noGhKlddZcX+AV2zki8wWEjNAgsOgI1588pX2pp2r5LouPpYc7r+3Wl 8EKi74Zq3bLBLBVtFoK99S3auh0kkKpgWurFaQXSX/krcxBlmYDOHRpgsLy9r2MrGj7l tkU0MHJcmDFFnU3xst00b+SNY9fHg4reG7qF8DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type :content-transfer-encoding; b=meRojeReDlewOZ8mhGfAIFLd5G2H0OCoTFkQI1VNO7JM2/jqMkckR7AaO10Fa3p4p7 2asOLNkyr9W67kiPAWAZk7cpAKqaNYZMUEpgW7rJis8Hr+A7/xEOc4ER3EfQCS+xbVfE b5ygYWsQgKwbKhvZ7NPFmFgY4JHidHDpgV2goMIME-Version: 1.0 Received: by 10.204.116.208 with SMTP id n16mr2989652bkq.96.1248426266024; Fri, 24 Jul 2009 02:04:26 -0700 (PDT) Date: Fri, 24 Jul 2009 10:04:25 +0100 Message-ID: <f470f68e0907240204n5b77e33bh5fac3c637227e096@mail.gmail.com> Subject: [draft-melnikov-sieve-external-lists] Proposed Changes To Section 2.3 From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Changes - ------- Revise and consolidate existing paragraphs 3 and 4 into a shorter functional description. Rationale - --------- Paragraphs 3 and 4 in 2.3 specify complex, hard to test requirements for little clear gain. Regarding the redirection as a black box makes the specification more concise and allows more space for novel approaches. - -------------------------------------------------------------------------- [1] Proposed Text - -------------------------------------------------------------------------- 2.3. :list tagged argument to the "redirect" action Usage: redirect :list The "redirect" action with the ":list" argument is used to send the message to one or more email addresses stored in the externally stored list 'ext-list-name'. This variant of the redirect command can be used to implement a personal distribution list. The Sieve engine and list server SHOULD collaborate to achieve a redirection consistent with the semantics described in [Sieve]. If they are unable to do so then the situation MUST result in a runtime error. See Section 2.4 for the detailed description of syntax used for naming externally stored lists. - -------------------------------------------------------------------------- [2] Original Text - -------------------------------------------------------------------------- 2.3. :list tagged argument to the "redirect" action Usage: redirect :list The "redirect" action with the ":list" argument is used to send the message to one or more email addresses stored in the externally stored list 'ext-list-name'. This variant of the redirect command can be used to implement a personal distribution list. Use of this feature requires that the list resolve to a list of email addresses, and that the Sieve engine be able to enumerate those addresses. [[anchor5: Alexey would like the option of allowing the list handler to enumerate the addresses and do the redirect there. Barry thinks that's contrary to Sieve, which expects to queue the redirect action for processing at a later stage, and that it would be a bad idea to have the redirect happen in the list handler. The WG needs to resolve this issue.]] In cases where, for example, a list contains hashed email address values or an email address pattern ("sz*@example.com", "*+ietf@example.net"), it will not be possible to redirect to that list. If the Sieve engine [[anchor6: or list handler?]] is permanently unable to enumerate the list or the list does not resolve to email addresses, the situation MUST result in a runtime error in the Sieve script. See Section 2.4 for the detailed description of syntax used for naming externally stored lists. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (GNU/Linux) Comment: Use GnuPG with Firefox : http://getfiregpg.org (Version: 0.7.6) iQIcBAEBAgAGBQJKaXkZAAoJEHl6NpRAqILLt74P/2VpgofdttuAXkn0TZg60DJC p3QT+jnnBMNNnBhGXKAQbG+h3REKThAvdDHgsfaAGXWLSQyCqz0ymdHU4S2Stp6w WvhWJbQ9su1W54+lH7GjND0BCVw9X8ZqSvCSBtUKw+5p9oSOI29mSoR/ytPUspP0 y9qtQHBCjqTpslrOAqva3jtl7mK1iV6kBInfeqrhf/+V4jqAZQxXe3CMxOxPGU2Y p+pT1cQgl/og76H1ZPomBmyO6RMQFhhELnXoDBp+kDWiHoW/0wpeiNGOl36zMd+H KwdhxxWRqo26Za+w7oYP8VbV2mohepYEsN+PDcKCnTU+/U+zaS/Wk3HM1u/yVdmj VGOijT/2NzUyeZZdloBYqN0cG9FLuQ1WBgILGSAyyYgDhHxe9Iss1gHwwfDy4mn7 djVnWBrS1vtr0SEo4Iaxypc7/s8ng3k1/557VZ070+cKuagtimya1qITGUtldU27 gZhwkxhrk3EXszZJBx8Op4qzk44ccZTVaG4i3CeDgSrF3AVF7J2PJnI/Qj4s2vM8 Qpcu+T1UDKOeWAapSPb7OmreKze/RTWi9gT0xiZA9Un3JZ4XcMLnq7BVZHYYzm40 x5ygqW1CWeQ+LOoxSM3wFuV7iAGrJnrtHV4qmCBaD2O9xHm8hEEGgVvfxbQnxWfe HBXczQZuO61ojHSMCW4U =g4tW -----END PGP SIGNATURE----- Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6NLn34e032769 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 23 Jul 2009 14:49:03 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6NLn3lM032768; Thu, 23 Jul 2009 14:49:03 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-fx0-f208.google.com (mail-fx0-f208.google.com [209.85.220.208]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6NLmp3j032749 for <ietf-mta-filters@imc.org>; Thu, 23 Jul 2009 14:49:02 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by fxm4 with SMTP id 4so1147327fxm.10 for <ietf-mta-filters@imc.org>; Thu, 23 Jul 2009 14:48:50 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=HZzwNSvV4YllO2sayYlTeu7VsM/IJDWVmqpkVixsc0w=; b=cuWO6oVMkl8Rg874Snt9okl5q9AktjCFsVpZGZuWmXMq7LT20EnA+f0wVcedIoL4aO JLvXofXH9iwrOpP5QwZx/F1H4yGGQimOi6uZRFgJ1GQzjzt+rz5bXo7peOpmHzqOu7CT wrOHbm8g2G00/hInpQx/sN3NXz16Xh9JiTxAIDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=pSUlockzkxZ5oKPRuainQTwcwxydvaD5Zb8/Aiw4Xl/rf9zS/ogaTwF3waL3doh9bL JAGpDyh2jUthRIf+M1yvXT06fVkn+F3GbbNNLPICF+wbKqEcjRStVoIcpdKA4U6BNuaU n7olot72uEOrZEF/DBCGiPsaFifBkoDqrDf6kMIME-Version: 1.0 Received: by 10.204.115.67 with SMTP id h3mr2439277bkq.173.1248385730663; Thu, 23 Jul 2009 14:48:50 -0700 (PDT) In-Reply-To: <01NBII89YRHO00007A@mauve.mrochek.com> References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <01NBII89YRHO00007A@mauve.mrochek.com> Date: Thu, 23 Jul 2009 22:48:50 +0100 Message-ID: <f470f68e0907231448n764a85deo9b490cbf26e13008@mail.gmail.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: Ned Freed <ned.freed@mrochek.com> Cc: =?windows-1251?B?xOjr/+0gz+Dr4PPn7uI=?= <dilyan.palauzov@aegee.org>, Alexey Melnikov <alexey.melnikov@isode.com>, ietf-mta-filters@imc.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> 2009/7/20 Ned Freed <ned.freed@mrochek.com>: > > >> Hello, > >> > Would we need to have :list-is, :list-matches, :list-contains, or can we >> > get away with just :list, which would check for the exact match? > >> As far as I understood Ned, it is the list who decides on the exact >> match type : it is not up to the script to prescribe the matching. So >> "just :list". > >> Any use cases where :list-is, :list-contains ... make sense and "just >> :list" would be insufficient? > > Sure, you can have lists that support more than one kind of matching, > although > I expect such cases to be the exception rather than the rule. In such cases > I > would propose that the type of matching be embedded in the list name > somehow. > > This then gets to the idea of using URLs for list names. A tag: URL is of > course completely capable of handling additional embedded material. Other > URL schemes, not so much. In fact I'm not entirely sure how this is supposed > to > work with LDAP URLs with reasonable efficiency. > > Consider the fairly typical case of whitelisting based on a personal address > book in LDAP. Assuming everyone is OK with users being able to construct > and perform their own LDAP searches and have no problem knowing and hard > coding > the base DN of their entries (both very big ifs), this would call for > something > like: > > if address :list "from" > "ldap:///cn=me,o=pab?mail?sub?(objectclass=regularentry)" { > ... whitelist ... > } > > The problem with this is we're again back to enumeration - that URL produces > a (potentially very large) list of addresses, which would have to be > compared > one by one to the address(es) extracted from the "from" field. > > But consider the URL: > > ldap:///cn=me,o=pab?mail?sub?(&(objectclass=regularentry)(mail=a@b)) > > This flips the problem around - now the address you're looking for is > specified > in the URL itself. Now it's up to the LDAP server to find the match, and the > simple fact it returned a response is enough to conclude the address is on > the > list. > > This is much more efficient, especially if the LDAP server has proper > indexing. > But now the URL is something that has to be constructed by knowing what > you're > searching for. > > I will also note that LDAP URLs can embed very complex matching criteria of > their own. > > Now, I guess I have no problem with using tag: URLs that end up getting > converted to the more efficient LDAP URLs seen here. But I really have to > question whether anyone is actually going to allow, as the specification > implies, the direct use of LDAP URLs or other URLs with similar > characteristics. +1 the Sieve engine will face problems of semantics, resolution and authentication with direct URLs - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6NLIkA8018233 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 23 Jul 2009 14:18:46 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6NLIksm018232; Thu, 23 Jul 2009 14:18:46 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-bw0-f215.google.com (mail-bw0-f215.google.com [209.85.218.215]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6NLIYlc018215 for <ietf-mta-filters@imc.org>; Thu, 23 Jul 2009 14:18:45 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by bwz11 with SMTP id 11so1131714bwz.10 for <ietf-mta-filters@imc.org>; Thu, 23 Jul 2009 14:18:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=syxQJKnIjzM+c5piT9HK8mB/D50dHrkl9RakwaFjEL8=; b=PG2Jzrmpkw/x3wP0jdF1sXifEkrOUujFvO52PkRTtkRNFxXDq4BrCfaJCMTeXwuN04 wtCXKB4BR0WN0EUArD/YR8NGJHKpHV4hP6mbCYVWCZblcKlsRn2ChVpeolTiNu4bAJvg g+6GixMCyW86dlFCef+XEQMOFlxgxZmI+hmLgDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=hLMxni5Ht3b8iwO8nENrk3KcG3m4hqvIIy5aSrsZU50e8wmSVeffjByecJWZbc6JV0 iouemqUYxz/+GeAt3UR39zIgZO6x+wkcapxfBe3EpWVb/7EuYRZEMep6oBGqAK7tqz9a Zn75D/iI8PmyFeJr6Sssjh2lbHhJbbW5hIZAwMIME-Version: 1.0 Received: by 10.204.52.146 with SMTP id i18mr2495289bkg.82.1248383913136; Thu, 23 Jul 2009 14:18:33 -0700 (PDT) In-Reply-To: <01NBM2K2L83S009IL6@mauve.mrochek.com> References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> <4A66EC0E.9050906@isode.com> <6c9fcc2a0907220646q2177622eo7f0fcaa1f605d4b6@mail.gmail.com> <01NBM2K2L83S009IL6@mauve.mrochek.com> Date: Thu, 23 Jul 2009 22:18:33 +0100 Message-ID: <f470f68e0907231418k235516daj8c2e12b93b426a55@mail.gmail.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt From: Robert Burrell Donkin <robertburrelldonkin@gmail.com> To: Ned Freed <ned.freed@mrochek.com> Cc: Barry Leiba <barryleiba.mailing.lists@gmail.com>, Alexey Melnikov <alexey.melnikov@isode.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> On Wed, Jul 22, 2009 at 3:49 PM, Ned Freed<ned.freed@mrochek.com> wrote: > > >> >> But the same issues affect section 2.3. If the list can't be >> >> enumerated, you can't redirect to it. >> >> >> > :list is not a match type in this case, again it is a black box. >> ... >> > So I would like to correct your statement. There is no need whatsoever to be >> > able to enumerate list membership in Sieve in order to redirect. >> > The only requirement is that whoever does mailing list expansion needs to be >> > able to do that. Such entity doesn't have to be the Sieve engine. > >> Two things: >> 1. When I say that the list must be enumerable, I don't necessarily >> mean "by the Sieve engine." It's possible for the list not to be >> enumerable at all, even by the list handler. Examples are where the >> list stores hashes of email addresses (to preserve privacy, perhaps) >> and where the list stores mailbox patterns (all members of department >> Z have email addresses that start with "dz", so the list of department >> Z members is querieable ("Is X a member?"), but not enumerable). > > Exactly so. And by the same token, a list you can redirect to may not > necessarily be queryable in any other way. +1 >> 2. Ah, so you're suggesting that the Sieve engine, which knows how to >> do a redirect, should pass this on to the list handler, which now also >> has to know how to do a redirect. I'm not sure that's a good idea, >> but I could perhaps be convinced. I'm curious about what Ned thinks >> here. > > Handling redirect :list by throwing the problem over the fence to a list > processors is an interesting approach. We actallly use a variant of it - the > sieve machinery performs variouos actions on the messeage but then invokes our > more general list expansion machinery to get the necessary address list. i wonder whether the specification would be cleaner and clearer if it allowed the sieve and list engines to collaborate in executing the redirection in the most convenient fashion - robert Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6NL6uqe009944 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Thu, 23 Jul 2009 14:06:56 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6NL6uRY009943; Thu, 23 Jul 2009 14:06:56 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-ew0-f208.google.com (mail-ew0-f208.google.com [209.85.219.208]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6NL6fjs009935 for <ietf-mta-filters@imc.org>; Thu, 23 Jul 2009 14:06:53 -0700 (MST) (envelope-from robertburrelldonkin@gmail.com) Received: by ewy4 with SMTP id 4so1217822ewy.10 for <ietf-mta-filters@imc.org>; Thu, 23 Jul 2009 14:06:40 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:from:to:cc:date:message-id :subject:in-reply-to:mime-version:x-firegpg-version:content-type; bh=wzjoOZArxrqSABHlGBr6Koasxovp4LvU8Kk+2fsG5M8=; b=LY5gT1d/O3mqOEeDoHBSMPq66mUXAgUZBs3S5nTrcrkulh2fiRsoxgPcovzRYGGQsG SihLldCclEDS67R4tLp5uUrxMMMVJvnCcO5ma6tz7k+pZXbxRTnqov+ITOxMLcjPr/ye M7++gQgKNzUF/mxiqqvvFiCBhyZLLoDltlPx4DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=from:to:cc:date:message-id:subject:in-reply-to:mime-version :x-firegpg-version:content-type; b=ko5h1yOSlh9Z6N8TRFS8+FbiFME7d6FmgDyD+h+omMLeF5easLfOLIg2Xkg2be45YY PUr6YGTTGLmTEf4cQ6FvVhDiAEMKuBkn6t8o/SzKQSEPKoLK1PsboGlzOYuTpYrqX20d VnhlntSr9cFIB7iaUX7gqvWxoXycI0gxu8ovIReceived: by 10.210.13.12 with SMTP id 12mr3139512ebm.98.1248383193668; Thu, 23 Jul 2009 14:06:33 -0700 (PDT) Received: from ?127.0.0.1? (94-168-198-57.cable.ubr18.brad.blueyonder.co.uk [94.168.198.57]) by mx.google.com with ESMTPS id 10sm847363eyd.17.2009.07.23.14.06.32 (version=SSLv3 cipher=RC4-MD5); Thu, 23 Jul 2009 14:06:32 -0700 (PDT) From: robertburrelldonkin@gmail.com To: Ned Freed <ned.freed@mrochek.com> Cc: Alexey Melnikov <alexey.melnikov@isode.com>, barryleiba@computer.org, MTA filtering mailing list <ietf-mta-filters@imc.org> Date: Thu, 23 Jul 2009 22:06:07 +0100 (GMT) Message-ID: <fxhz3skao8wbxrszs0UYAxe124vaj_firegpg@mail.gmail.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt In-Reply-To: <01NBM1MJ1J4E009IL6@mauve.mrochek.com> MIME-Version: 1.0 X-FireGPG-Version: 0.7.6 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="-----firegpg076eqfxhz3sktyyzh6e3tpg" Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> This is an OpenPGP/MIME signed message (RFC 2440 and 3156) -------firegpg076eqfxhz3sktyyzh6e3tpg Content-Type: text/plain; format=flowed; charset=UTF-8 Content-Transfer-Encoding: base64 KHRoYW5rcyBmb3Iga2lja2luZyB0aGlzIG9mZjogdGhlIHRpbWluZyBpcyBmb3J0dWl0b3VzIHNp bmNlIGkgcGxhbm5lZCB0byBzdGFydCBpbXBsZW1lbnRpbmcgc29tZXRoaW5nIHNpbWlsYXIgc29v bi4gaSdsbCBzdGFydCBhIG5ldyB0aHJlYWRzIGZvciBhbnkgbG9uZ2VyIGNvbW1lbnRzLikgDQoN Ck9uIFdlZCwgSnVsIDIyLCAyMDA5IGF0IDM6MjQgUE0sIE5lZCBGcmVlZDxuZWQuZnJlZWRAbXJv Y2hlay5jb20+IHdyb3RlOg0KPg0KPg0KPj4gQmFycnkgTGVpYmEgd3JvdGU6DQoNCjxzbmlwPg0K DQo+PiA+U2VjdGlvbiAyLjMgbmVlZHMgdG8gbWFrZSBpdA0KPj4gPmNsZWFyIHRoYXQgd2hldGhl ciBhbiBleHRlcm5hbCBsaXN0IGNhbiBkbyB0aGlzIG9yIG5vdCBkZXBlbmRzIHVwb24NCj4+ID50 aGUgbGlzdCwgYW5kIGl0IG5lZWRzIHRvIHNheSB3aGF0IGhhcHBlbnMgaWYgaXQgY2FuJ3QgKGln bm9yZSwgb3INCj4+ID50aHJvdyBydW50aW1lIGVycm9yIHNlZW0gdG8gYmUgdGhlIHR3byBzZW5z aWJsZSBjaG9pY2VzLCBhbmQgSSB0aGluayBJDQo+PiA+cHJlZmVyIHRoZSBsYXR0ZXIpLg0KPj4g Pg0KPj4gPg0KPj4gV2Ugc2hvdWxkIGRpc2N1c3MgdGhpcyBpbiBTdG9ja2hvbG0gKGFuZCBvbiB0 aGUgbWFpbGluZyBsaXN0KS4gSSB3YXNuJ3QNCj4+IHRoaW5raW5nIGFib3V0IGJlaW5nIGFibGUg dG8gdXNlIHRoZSBoZWFkZXIgdGVzdCB3aXRob3V0IGJlaW5nIGFibGUgdG8NCj4+IHJlZmVyZW5j ZSB0aGUgc2FtZSBsaXN0IGluIHJlZGlyZWN0Lg0KPg0KPiBXZWxsLCBJIGNhbiBzb3J0IG9mIHNl ZSBhbiBhcmd1bWVudCB0aGF0IHlvdSBtaWdodCBleHBlY3QgdG8gYmUgYWJsZSB0bw0KPiByZWZl cmVuY2UgYW55IGxpc3QgdGhhdCB5b3UgdXNlZCBpbiBhbiBfYWRkcmVzc18gdGVzdCBpbiByZWRp cmVjdCwgYnV0DQo+IGhlYWRlcj8gV2hvIHNheXMgdGhlIGxpc3RzIHdlJ2xsIGJlIGNoZWNraW5n IGhlYWRlcnMgYWdhaW5zdCBhcmUgb2YNCj4gYWRkcmVzc2VzIG9yIGFueXRoaW5nIHRoYXQgY29y cmVsYXRlcyB0byBhZGRyZXNzZXM/DQo+DQo+IEFuZCBpbiBmYWN0IHRoZXJlIGFyZSBldmVuIGxp c3RzIG9mIGFkZHJlc3NlcyAoaGFzaGVkIGxpc3RzIGFyZSB0aGUgb2J2aW91cw0KPiBleGFtcGxl KSB3aGVyZSB5b3Ugd29uJ3QgYmUgYWJsZSB0byByZWZlcmVuY2UgdGhlbSBpbiByZWRpcmVjdC4N Cj4NCj4gVGhlIG9wcG9zaXRlIGlzIGdvaW5nIHRvIGJlIHRydWUgYXMgd2VsbC4gVGhlcmUgYXJl IHBsZW50eSBvZiB1c2UgY2FzZXMgZm9yDQo+IGEgbGlzdCB5b3Ugd2FudCBwZW9wbGUgdG8gYmUg YWJsZSB0byByZWRpcmVjdCB0byBidXQgbm90IHRlc3QgdGhlIGNvbnRlbnQgb2YNCj4gaW4gYW55 IHdheS4NCg0KKzENCg0KLSByb2JlcnQ-------firegpg076eqfxhz3sktyyzh6e3tpg Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (GNU/Linux) Comment: Use GnuPG with Firefox : http://getfiregpg.org (Version: 0.7.6) iQIcBAEBAgAGBQJKaNDJAAoJEHl6NpRAqILLrlEQAOS9E090Fv56Y6hKczTzsjHA z4AROf2HrG8IqG47QWrEZVXQ8GpT75R2kien6bdR+OQJH8S66m/KDRLR0JcDNMET ll4FekWlcdEACo3TgcVvoMHY/tk0hjt50csQhFsFVPrUg96IU+3FKzeweKkobyuV c7+h2gOJqfiJtvPlBTkhNoM/vtpwtQHhcUdciXnOTJJ0xD5Zu+YlqFW5GClRFs1u wB7ljPPAZuTr20oOCHPmO/kdAiTjqT5J/ObplsgU/DcNKZWe7ucs2huVexalU/QR +gXyp+s+nDsSquYjJV1nrNpnk/eEUQ4sFLozay6ZtAy48siEbnjNNDUNNmdccoZN xNctQ/Jdyi70H+T+SSTlTKrUzax8c1PCjaXbYkNh5lU13oHim6M5LW7WbZ8CG+GH fkmeNBLcQJfhPomqAyriQvNnKODWD5uUnZ5krMU0AzG4G8uyRLVmDsa9vUknWOTo p5w0dvZ3BauC6JWUwH5Vpis9XpYXYYQmGd7ik0LuF20tlEvYGhUP10x18+0p0MHw YIf72duAiYrJ/sFw4GbCPho0Pz9dopet9v2DISgYdEd5If8IuP/g+yem6HSiVlOJ x3MRMUtavkEV6K7MqxyWgJiYbtLNAuKBgX/VsPK1eX8yRoU43i3JuyCvnG+cbHw2 Mf8wqyxeQT3Zj7tEC4bC =xtFj -----END PGP SIGNATURE----- -------firegpg076eqfxhz3sktyyzh6e3tpg-- Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MKpQ3q066773 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 22 Jul 2009 13:51:26 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6MKpPTU066772; Wed, 22 Jul 2009 13:51:25 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MKpOCI066765 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 13:51:25 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [217.214.124.120] (host-n177-120.homerun.telia.com [217.214.124.120]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <Smd7ywAiQwFQ@rufus.isode.com>; Wed, 22 Jul 2009 21:51:23 +0100 Message-ID: <4A677BA9.5010000@isode.com> Date: Wed, 22 Jul 2009 22:50:49 +0200 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: barryleiba@computer.org CC: MTA filtering mailing list <ietf-mta-filters@imc.org> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> <4A66EC0E.9050906@isode.com> <6c9fcc2a0907220646q2177622eo7f0fcaa1f605d4b6@mail.gmail.com> <01NBM2K2L83S009IL6@mauve.mrochek.com> <6c9fcc2a0907220918v7e48ac7foc958291290e512de@mail.gmail.com> In-Reply-To: <6c9fcc2a0907220918v7e48ac7foc958291290e512de@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Barry Leiba wrote: [...] >Should this next version be renamed to >"draft-ietf-sieve-external-lists-00"? In other words, should the WG >adopt it? I think it should. > > Yes. This document is in our charter and my understanding is that the WG already made a decision to accept it. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MKIvI9064818 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 22 Jul 2009 13:18:58 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6MKIvmn064817; Wed, 22 Jul 2009 13:18:57 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MKIj7w064804 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 13:18:56 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [217.214.124.120] (host-n177-120.homerun.telia.com [217.214.124.120]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <Smd0IwAiQ0C1@rufus.isode.com>; Wed, 22 Jul 2009 21:18:44 +0100 Message-ID: <4A6773FE.6010601@isode.com> Date: Wed, 22 Jul 2009 22:18:06 +0200 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: Ned Freed <ned.freed@mrochek.com> CC: barryleiba@computer.org, MTA filtering mailing list <ietf-mta-filters@imc.org> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> <4A66EC0E.9050906@isode.com> <01NBM1MJ1J4E009IL6@mauve.mrochek.com> In-Reply-To: <01NBM1MJ1J4E009IL6@mauve.mrochek.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Ned Freed wrote: [...] >> We should discuss this in Stockholm (and on the mailing list). I wasn't >> thinking about being able to use the header test without being able to >> reference the same list in redirect. > > Well, I can sort of see an argument that you might expect to be able to > reference any list that you used in an _address_ test in redirect, but > header? Who says the lists we'll be checking headers against are of > addresses or anything that correlates to addresses? > > And in fact there are even lists of addresses (hashed lists are the > obvious > example) where you won't be able to reference them in redirect. > > The opposite is going to be true as well. There are plenty of use > cases for a > list you want people to be able to redirect to but not test the > content of in > any way. I was originally thinking about email only lists, but you and Barry convinced me that other types of lists are also useful. So yes, I will update the draft. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MGIicW047286 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 22 Jul 2009 09:18:44 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6MGIieq047285; Wed, 22 Jul 2009 09:18:44 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-pz0-f188.google.com (mail-pz0-f188.google.com [209.85.222.188]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MGIXRR047262 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 09:18:44 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by pzk26 with SMTP id 26so214947pzk.16 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 09:18:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type; bh=HRovKjek1aebTZQRXCcUP0JlrnU4qXfTokOMDcsoXHw=; b=rglAqMnvliQ3tyjY2nVnSaEo8wIfjIqPGp3BEkYURf32dUVdIEz+0VCdnTsBhVJuDC BXttlTbAKJMXxzhLQfh4m3lnQBH4ZpGoKmFQk1z2v9S/+iRxnwRss2BEL2iZo/Wn40Dq SSDVpmQSkbIVP4IpWfiF3pIbA+qst3PbesnqADomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type; b=th3lt50aS46soUrgaKRvSUfHDWqw9P4g/FI8e1XcwY6xkEOevbS7ETtvhnBTTCbXGm AKSy40U9Uq7lGuNAyqy1FkRU/5pN2FUtEKJ4F0GcOgLmjo1jZ+U1sNg0+TfC37uDaNEW u687YzD7IWR1oUlJxJvQr6ysCK1Ypu9mr+8d4MIME-Version: 1.0 Received: by 10.114.59.13 with SMTP id h13mr726347waa.146.1248279512995; Wed, 22 Jul 2009 09:18:32 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <01NBM2K2L83S009IL6@mauve.mrochek.com> References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> <4A66EC0E.9050906@isode.com> <6c9fcc2a0907220646q2177622eo7f0fcaa1f605d4b6@mail.gmail.com> <01NBM2K2L83S009IL6@mauve.mrochek.com> Date: Wed, 22 Jul 2009 12:18:32 -0400 Message-ID: <6c9fcc2a0907220918v7e48ac7foc958291290e512de@mail.gmail.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: MTA filtering mailing list <ietf-mta-filters@imc.org> Cc: Alexey Melnikov <alexey.melnikov@isode.com> Content-Type: multipart/mixed; boundary 1636417b7df3d8ee046f4db864 Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> --001636417b7df3d8ee046f4db864 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Attached is my proposed -03 version (attached as "-03-pre01"), which has NOT been posted as an I-D at this point. I've sent Alexey my edits, and the edit token is back with him. I've made a bunch of changes, so forget DIFFs and please read the whole thing (it's short) and comment. Should this next version be renamed to "draft-ietf-sieve-external-lists-00"? In other words, should the WG adopt it? I think it should. Barry --001636417b7df3d8ee046f4db864 Content-Type: text/plain; charset=US-ASCII; name="draft-melnikov-sieve-external-lists-03-pre01.txt" Content-Disposition: attachment; filename="draft-melnikov-sieve-external-lists-03-pre01.txt" Content-Transfer-Encoding: base64 X-Attachment-Id: f_fxg9ctf40 CgoKU2lldmUgV29ya2luZyBHcm91cCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIEEuIE1lbG5pa292CkludGVybmV0LURyYWZ0ICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgSXNvZGUgTGltaXRlZApJbnRlbmRlZCBzdGF0dXM6IFN0YW5k YXJkcyBUcmFjayAgICAgICAgICAgICAgICAgICAgICAgICAgIEp1bHkgMjIsIDIwMDkKRXhwaXJl czogSmFudWFyeSAyMywgMjAxMAoKCiAgICAgICAgICAgICAgICBTaWV2ZSBFeHRlbnNpb246IEV4 dGVybmFsbHkgU3RvcmVkIExpc3RzCiAgICAgICAgICAgICAgICAgZHJhZnQtbWVsbmlrb3Ytc2ll dmUtZXh0ZXJuYWwtbGlzdHMtMDMKClN0YXR1cyBvZiB0aGlzIE1lbW8KCiAgIFRoaXMgSW50ZXJu ZXQtRHJhZnQgaXMgc3VibWl0dGVkIHRvIElFVEYgaW4gZnVsbCBjb25mb3JtYW5jZSB3aXRoIHRo ZQogICBwcm92aXNpb25zIG9mIEJDUCA3OCBhbmQgQkNQIDc5LgoKICAgSW50ZXJuZXQtRHJhZnRz IGFyZSB3b3JraW5nIGRvY3VtZW50cyBvZiB0aGUgSW50ZXJuZXQgRW5naW5lZXJpbmcKICAgVGFz ayBGb3JjZSAoSUVURiksIGl0cyBhcmVhcywgYW5kIGl0cyB3b3JraW5nIGdyb3Vwcy4gIE5vdGUg dGhhdAogICBvdGhlciBncm91cHMgbWF5IGFsc28gZGlzdHJpYnV0ZSB3b3JraW5nIGRvY3VtZW50 cyBhcyBJbnRlcm5ldC0KICAgRHJhZnRzLgoKICAgSW50ZXJuZXQtRHJhZnRzIGFyZSBkcmFmdCBk b2N1bWVudHMgdmFsaWQgZm9yIGEgbWF4aW11bSBvZiBzaXggbW9udGhzCiAgIGFuZCBtYXkgYmUg dXBkYXRlZCwgcmVwbGFjZWQsIG9yIG9ic29sZXRlZCBieSBvdGhlciBkb2N1bWVudHMgYXQgYW55 CiAgIHRpbWUuICBJdCBpcyBpbmFwcHJvcHJpYXRlIHRvIHVzZSBJbnRlcm5ldC1EcmFmdHMgYXMg cmVmZXJlbmNlCiAgIG1hdGVyaWFsIG9yIHRvIGNpdGUgdGhlbSBvdGhlciB0aGFuIGFzICJ3b3Jr IGluIHByb2dyZXNzLiIKCiAgIFRoZSBsaXN0IG9mIGN1cnJlbnQgSW50ZXJuZXQtRHJhZnRzIGNh biBiZSBhY2Nlc3NlZCBhdAogICBodHRwOi8vd3d3LmlldGYub3JnL2lldGYvMWlkLWFic3RyYWN0 cy50eHQuCgogICBUaGUgbGlzdCBvZiBJbnRlcm5ldC1EcmFmdCBTaGFkb3cgRGlyZWN0b3JpZXMg Y2FuIGJlIGFjY2Vzc2VkIGF0CiAgIGh0dHA6Ly93d3cuaWV0Zi5vcmcvc2hhZG93Lmh0bWwuCgog ICBUaGlzIEludGVybmV0LURyYWZ0IHdpbGwgZXhwaXJlIG9uIEphbnVhcnkgMjMsIDIwMTAuCgpD b3B5cmlnaHQgTm90aWNlCgogICBDb3B5cmlnaHQgKGMpIDIwMDkgSUVURiBUcnVzdCBhbmQgdGhl IHBlcnNvbnMgaWRlbnRpZmllZCBhcyB0aGUKICAgZG9jdW1lbnQgYXV0aG9ycy4gIEFsbCByaWdo dHMgcmVzZXJ2ZWQuCgogICBUaGlzIGRvY3VtZW50IGlzIHN1YmplY3QgdG8gQkNQIDc4IGFuZCB0 aGUgSUVURiBUcnVzdCdzIExlZ2FsCiAgIFByb3Zpc2lvbnMgUmVsYXRpbmcgdG8gSUVURiBEb2N1 bWVudHMgaW4gZWZmZWN0IG9uIHRoZSBkYXRlIG9mCiAgIHB1YmxpY2F0aW9uIG9mIHRoaXMgZG9j dW1lbnQgKGh0dHA6Ly90cnVzdGVlLmlldGYub3JnL2xpY2Vuc2UtaW5mbykuCiAgIFBsZWFzZSBy ZXZpZXcgdGhlc2UgZG9jdW1lbnRzIGNhcmVmdWxseSwgYXMgdGhleSBkZXNjcmliZSB5b3VyIHJp Z2h0cwogICBhbmQgcmVzdHJpY3Rpb25zIHdpdGggcmVzcGVjdCB0byB0aGlzIGRvY3VtZW50LgoK QWJzdHJhY3QKCiAgIFRoZSBTaWV2ZSBzY3JpcHRpbmcgbGFuZ3VhZ2UgY2FuIGJlIHVzZWQgdG8g aW1wbGVtZW50IHdoaXRlbGlzdGluZywKICAgYmxhY2tsaXN0aW5nLCBhbmQgcGVyc29uYWwgZGlz dHJpYnV0aW9uIGxpc3RzLiAgQ3VycmVudGx5LCB0aGlzCiAgIHJlcXVpcmVzIHRoYXQgYWxsIG1l bWJlcnMgb2Ygc3VjaCBsaXN0cyBiZSBoYXJkY29kZWQgaW4gdGhlIHNjcmlwdAoKCgpNZWxuaWtv diAgICAgICAgICAgICAgICBFeHBpcmVzIEphbnVhcnkgMjMsIDIwMTAgICAgICAgICAgICAgICAg W1BhZ2UgMV0KDApJbnRlcm5ldC1EcmFmdCAgU2lldmUgRXh0ZW5zaW9uOiBFeHRlcm5hbGx5IFN0 b3JlZCBMaXN0cyAgICAgICBKdWx5IDIwMDkKCgogICBpdHNlbGYuICBXaGVuZXZlciBhIG1lbWJl ciBvZiBhIGxpc3QgaXMgYWRkZWQgb3IgZGVsZXRlZCwgdGhlIHNjcmlwdAogICBuZWVkcyB0byBi ZSB1cGRhdGVkIGFuZCBwb3NzaWJseSB1cGxvYWRlZCB0byBhIG1haWwgc2VydmVyLgoKICAgVGhp cyBkb2N1bWVudCBkZWZpbmVzIGEgU2lldmUgZXh0ZW5zaW9uIGZvciBhY2Nlc3NpbmcgZXh0ZXJu YWxseQogICBzdG9yZWQgbGlzdHMgLS0gbGlzdHMgd2hvc2UgbWVtYmVycyBhcmUgc3RvcmVkIGV4 dGVybmFsbHkgdG8gdGhlCiAgIHNjcmlwdCwgc3VjaCBhcyB1c2luZyBMREFQIChSRkMgNDUxMCks IEFDQVAgKFJGQyAyMjQ0KSwgb3IgcmVsYXRpb25hbAogICBkYXRhYmFzZXMuCgpUb0RvCgogICBv ICBOZWVkIGEgd2F5IHRvIGFkdmVydGlzZSBzdXBwb3J0ZWQgVVJJIHNjaGVtYXMgaW4gTWFuYWdl U2lldmUgYW5kCiAgICAgIGloYXZlLgoKClRhYmxlIG9mIENvbnRlbnRzCgogICAxLiAgICBJbnRy b2R1Y3Rpb24gIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAu IDMKICAgMS4xLiAgQ29udmVudGlvbnMgdXNlZCBpbiB0aGlzIGRvY3VtZW50IC4gLiAuIC4gLiAu IC4gLiAuIC4gLiAuIC4gLiAzCgogICAyLiAgICBFeHRsaXN0cyBleHRlbnNpb24gIC4gLiAuIC4g LiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIDMKICAgMi4xLiAgQ2FwYWJpbGl0eSBJ ZGVudGlmaWVyIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAzCiAgIDIu Mi4gIDpsaXN0IG1hdGNoIHR5cGUgZm9yICJhZGRyZXNzIiwgImVudmVsb3BlIiwgYW5kICJoZWFk ZXIiCiAgICAgICAgIHRlc3RzIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4g LiAuIC4gLiAuIC4gLiAuIC4gMwogICAyLjMuICA6bGlzdCB0YWdnZWQgYXJndW1lbnQgdG8gdGhl ICJyZWRpcmVjdCIgYWN0aW9uICAuIC4gLiAuIC4gLiAuIDQKICAgMi40LiAgU3ludGF4IG9mIGFu IGV4dGVybmFsbHkgc3RvcmVkIGxpc3QgbmFtZSAgLiAuIC4gLiAuIC4gLiAuIC4gLiA0CiAgIDIu NS4gIEV4YW1wbGVzICAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAu IC4gLiAuIC4gNQoKICAgMy4gICAgU2VjdXJpdHkgQ29uc2lkZXJhdGlvbnMgLiAuIC4gLiAuIC4g LiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiA1CgogICA0LiAgICBJQU5BIENvbnNpZGVyYXRpb25z IC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIDYKCiAgIDUuICAgIEFj a25vd2xlZGdlbWVudHMgIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAu IC4gNwoKICAgNi4gICAgUmVmZXJlbmNlcyAgLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4g LiAuIC4gLiAuIC4gLiAuIC4gLiA3CiAgIDYuMS4gIE5vcm1hdGl2ZSBSZWZlcmVuY2VzICAuIC4g LiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gNwogICA2LjIuICBJbmZvcm1hdGl2 ZSBSZWZlcmVuY2VzICAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIDcKCiAg ICAgICAgIEF1dGhvcidzIEFkZHJlc3MgIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4gLiAuIC4g LiAuIC4gLiAuIC4gOAoKCgoKCgoKCgoKCgoKTWVsbmlrb3YgICAgICAgICAgICAgICAgRXhwaXJl cyBKYW51YXJ5IDIzLCAyMDEwICAgICAgICAgICAgICAgIFtQYWdlIDJdCgwKSW50ZXJuZXQtRHJh ZnQgIFNpZXZlIEV4dGVuc2lvbjogRXh0ZXJuYWxseSBTdG9yZWQgTGlzdHMgICAgICAgSnVseSAy MDA5CgoKMS4gIEludHJvZHVjdGlvbgoKICAgVGhpcyBkb2N1bWVudCBzcGVjaWZpZXMgYW4gZXh0 ZW5zaW9uIHRvIHRoZSBTaWV2ZSBsYW5ndWFnZSBbU2lldmVdCiAgIGZvciBjaGVja2luZyBtZW1i ZXJzaGlwIGluIGFuIGV4dGVybmFsIGxpc3Qgb3IgZm9yIHJlZGlyZWN0aW5nCiAgIG1lc3NhZ2Vz IHRvIGFuIGV4dGVybmFsIGxpc3Qgb2YgcmVjaXBpZW50cy4gIEFuICJleHRlcm5hbCBsaXN0IiBp cyBhCiAgIGxpc3Qgd2hvc2UgbWVtYmVycyBhcmUgc3RvcmVkIGV4dGVybmFsbHkgdG8gdGhlIFNp ZXZlIHNjcmlwdCwgc3VjaCBhcwogICB1c2luZyBMREFQIFtMREFQXSwgQUNBUCBbQUNBUF0sIG9y IHJlbGF0aW9uYWwgZGF0YWJhc2VzLgoKICAgVGhpcyBleHRlbnNpb24gYWRkcyBhIG5ldyBtYXRj aCB0eXBlIHRvIHRoZSAiYWRkcmVzcyIsICJlbnZlbG9wZSIsCiAgIGFuZCAiaGVhZGVyIiB0ZXN0 cywgYW5kIGEgbmV3IHRhZ2dlZCBhcmd1bWVudCB0byB0aGUgInJlZGlyZWN0IgogICBhY3Rpb24u CgoxLjEuICBDb252ZW50aW9ucyB1c2VkIGluIHRoaXMgZG9jdW1lbnQKCiAgIENvbnZlbnRpb25z IGZvciBub3RhdGlvbnMgYXJlIGFzIGluIFtTaWV2ZV0gc2VjdGlvbiAxLjEsIGluY2x1ZGluZwog ICB0aGUgdXNlIG9mIFtBQk5GXS4KCiAgIFRoZSBrZXkgd29yZHMgIk1VU1QiLCAiTVVTVCBOT1Qi LCAiUkVRVUlSRUQiLCAiU0hBTEwiLCAiU0hBTEwgTk9UIiwKICAgIlNIT1VMRCIsICJTSE9VTEQg Tk9UIiwgIlJFQ09NTUVOREVEIiwgIk1BWSIsIGFuZCAiT1BUSU9OQUwiIGluIHRoaXMKICAgZG9j dW1lbnQgYXJlIHRvIGJlIGludGVycHJldGVkIGFzIGRlc2NyaWJlZCBpbiBbS3dkc10uCgoKMi4g IEV4dGxpc3RzIGV4dGVuc2lvbgoKMi4xLiAgQ2FwYWJpbGl0eSBJZGVudGlmaWVyCgogICBUaGUg Y2FwYWJpbGl0eSBzdHJpbmcgYXNzb2NpYXRlZCB3aXRoIHRoZSBleHRlbnNpb24gZGVmaW5lZCBp biB0aGlzCiAgIGRvY3VtZW50IGlzICJleHRsaXN0cyIuCgoyLjIuICA6bGlzdCBtYXRjaCB0eXBl IGZvciAiYWRkcmVzcyIsICJlbnZlbG9wZSIsIGFuZCAiaGVhZGVyIiB0ZXN0cwoKICAgQUJORjoK CiAgICAgIE1BVENILVRZUEUgID0vICI6bGlzdCIKICAgICAgICAgICA7IG9ubHkgdmFsaWQgZm9y ICJhZGRyZXNzIiwgImVudmVsb3BlIiwgYW5kICJoZWFkZXIiIHRlc3RzCgogICBUaGUgbmV3ICI6 bGlzdCIgbWF0Y2ggdHlwZSBjaGFuZ2VzIHRoZSBpbnRlcnByZXRhdGlvbiBvZiB0aGUgImtleS0K ICAgbGlzdCIgcGFyYW1ldGVyIHRvIHRoZSAiYWRkcmVzcyIvImVudmVsb3BlIi8iaGVhZGVyIiB0 ZXN0LiAgV2hlbiB0aGUKICAgbWF0Y2ggdHlwZSBpcyAiOmxpc3QiLCB0aGUga2V5LWxpc3QgYmVj b21lcyBhIGxpc3Qgb2YgbmFtZXMgb2YKICAgZXh0ZXJuYWxseSBzdG9yZWQgbGlzdHMuICBUaGUg ZXh0ZXJuYWwgbGlzdHMgYXJlIHF1ZXJpZWQsIHBlcmhhcHMKICAgdGhyb3VnaCBhIGxpc3Qtc3Bl Y2lmaWMgbWVjaGFuaXNtLCBhbmQgdGhlIHRlc3QgZXZhbHVhdGVzIHRvICJ0cnVlIgogICBpZiBh bnkgb2YgdGhlIHNwZWNpZmllZCB2YWx1ZXMgbWF0Y2hlcyBhbnkgbWVtYmVyIG9mIG9uZSBvciBt b3JlIG9mCiAgIHRoZSBsaXN0cy4KCiAgIEZvciBleGFtcGxlLCB0ZXN0aW5nICc6aGVhZGVyIFsi dG8iLCAiY2MiXScgYWdhaW5zdCBhIGxpc3Qgd291bGQKICAgY2F1c2UgZWFjaCAidG8iIGFuZCAi Y2MiIHZhbHVlLCBpZ25vcmluZyBsZWFkaW5nIGFuZCB0cmFpbGluZwogICB3aGl0ZXNwYWNlLCB0 byBiZSBxdWVyaWVkLiAgV2hlbiBhbnkgdmFsdWUgaXMgZm91bmQgdG8gYmVsb25nIHRvIHRoZQog ICBsaXN0LCB0aGUgcXVlcmllcyBtYXkgc3RvcCBhbmQgdGhlIHRlc3QgcmV0dXJucyAidHJ1ZSIu ICBJZiBubyB2YWx1ZQoKCgpNZWxuaWtvdiAgICAgICAgICAgICAgICBFeHBpcmVzIEphbnVhcnkg MjMsIDIwMTAgICAgICAgICAgICAgICAgW1BhZ2UgM10KDApJbnRlcm5ldC1EcmFmdCAgU2lldmUg RXh0ZW5zaW9uOiBFeHRlcm5hbGx5IFN0b3JlZCBMaXN0cyAgICAgICBKdWx5IDIwMDkKCgogICBi ZWxvbmdzIHRvIHRoZSBsaXN0LCB0aGUgdGVzdCByZXR1cm5zICJmYWxzZSIuCgogICBGb3Igc29t ZSBsaXN0cywgdGhlIFNpZXZlIGVuZ2luZSBtaWdodCBkaXJlY3RseSByZXRyaWV2ZSB0aGUgbGlz dCBhbmQKICAgbWFrZSBpdHMgb3duIGNvbXBhcmlzb24uICBPdGhlciBsaXN0cyBtaWdodCBub3Qg d29yayB0aGF0IHdheSAtLSB0aGV5CiAgIG1pZ2h0IHByb3ZpZGUgYSB3YXkgdG8gYXNrIGlmIGEg dmFsdWUgaXMgaW4gdGhlIGxpc3QsIGJ1dCBub3QgcGVybWl0CiAgIHJldHJpZXZhbCBvZiB0aGUg bGlzdCBpdHNlbGYuICBJdCBpcyB1cCB0byB0aGUgU2lldmUgaW1wbGVtZW50YXRpb24KICAgdG8g dW5kZXJzdGFuZCBob3cgdG8gaW50ZXJhY3Qgd2l0aCBhbnkgc3VwcG9ydGVkIGxpc3QuICBJZiB0 aGUgU2lldmUKICAgZW5naW5lIGlzIHBlcm1hbmVudGx5IHVuYWJsZSB0byBxdWVyeSB0aGUgbGlz dCAocGVyaGFwcyBiZWNhdXNlIHRoZQogICBsaXN0IGRvZXNuJ3Qgc3VwcG9ydCB0aGUgcmVxdWly ZWQgb3BlcmF0aW9uKSwgdGhlIHRlc3QgTVVTVCByZXN1bHQgaW4KICAgYSBydW50aW1lIGVycm9y IGluIHRoZSBTaWV2ZSBzY3JpcHQuCgogICBTZWUgU2VjdGlvbiAyLjQgZm9yIHRoZSBkZXRhaWxl ZCBkZXNjcmlwdGlvbiBvZiBzeW50YXggdXNlZCBmb3IKICAgbmFtaW5nIGV4dGVybmFsbHkgc3Rv cmVkIGxpc3RzLgoKMi4zLiAgOmxpc3QgdGFnZ2VkIGFyZ3VtZW50IHRvIHRoZSAicmVkaXJlY3Qi IGFjdGlvbgoKICAgVXNhZ2U6ICByZWRpcmVjdCA6bGlzdCA8ZXh0LWxpc3QtbmFtZTogc3RyaW5n PgoKICAgVGhlICJyZWRpcmVjdCIgYWN0aW9uIHdpdGggdGhlICI6bGlzdCIgYXJndW1lbnQgaXMg dXNlZCB0byBzZW5kIHRoZQogICBtZXNzYWdlIHRvIG9uZSBvciBtb3JlIGVtYWlsIGFkZHJlc3Nl cyBzdG9yZWQgaW4gdGhlIGV4dGVybmFsbHkKICAgc3RvcmVkIGxpc3QgJ2V4dC1saXN0LW5hbWUn LiAgVGhpcyB2YXJpYW50IG9mIHRoZSByZWRpcmVjdCBjb21tYW5kCiAgIGNhbiBiZSB1c2VkIHRv IGltcGxlbWVudCBhIHBlcnNvbmFsIGRpc3RyaWJ1dGlvbiBsaXN0LgoKICAgVXNlIG9mIHRoaXMg ZmVhdHVyZSByZXF1aXJlcyB0aGF0IHRoZSBsaXN0IHJlc29sdmUgdG8gYSBsaXN0IG9mIGVtYWls CiAgIGFkZHJlc3NlcywgYW5kIHRoYXQgdGhlIFNpZXZlIGVuZ2luZSBiZSBhYmxlIHRvIGVudW1l cmF0ZSB0aG9zZQogICBhZGRyZXNzZXMuIFtbYW5jaG9yNTogQWxleGV5IHdvdWxkIGxpa2UgdGhl IG9wdGlvbiBvZiBhbGxvd2luZyB0aGUKICAgbGlzdCBoYW5kbGVyIHRvIGVudW1lcmF0ZSB0aGUg YWRkcmVzc2VzIGFuZCBkbyB0aGUgcmVkaXJlY3QgdGhlcmUuCiAgIEJhcnJ5IHRoaW5rcyB0aGF0 J3MgY29udHJhcnkgdG8gU2lldmUsIHdoaWNoIGV4cGVjdHMgdG8gcXVldWUgdGhlCiAgIHJlZGly ZWN0IGFjdGlvbiBmb3IgcHJvY2Vzc2luZyBhdCBhIGxhdGVyIHN0YWdlLCBhbmQgdGhhdCBpdCB3 b3VsZCBiZQogICBhIGJhZCBpZGVhIHRvIGhhdmUgdGhlIHJlZGlyZWN0IGhhcHBlbiBpbiB0aGUg bGlzdCBoYW5kbGVyLiAgVGhlIFdHCiAgIG5lZWRzIHRvIHJlc29sdmUgdGhpcyBpc3N1ZS5dXSAg SW4gY2FzZXMgd2hlcmUsIGZvciBleGFtcGxlLCBhIGxpc3QKICAgY29udGFpbnMgaGFzaGVkIGVt YWlsIGFkZHJlc3MgdmFsdWVzIG9yIGFuIGVtYWlsIGFkZHJlc3MgcGF0dGVybgogICAoInN6KkBl eGFtcGxlLmNvbSIsICIqK2lldGZAZXhhbXBsZS5uZXQiKSwgaXQgd2lsbCBub3QgYmUgcG9zc2li bGUgdG8KICAgcmVkaXJlY3QgdG8gdGhhdCBsaXN0LgoKICAgSWYgdGhlIFNpZXZlIGVuZ2luZSBb W2FuY2hvcjY6IG9yIGxpc3QgaGFuZGxlcj9dXSBpcyBwZXJtYW5lbnRseQogICB1bmFibGUgdG8g ZW51bWVyYXRlIHRoZSBsaXN0IG9yIHRoZSBsaXN0IGRvZXMgbm90IHJlc29sdmUgdG8gZW1haWwK ICAgYWRkcmVzc2VzLCB0aGUgc2l0dWF0aW9uIE1VU1QgcmVzdWx0IGluIGEgcnVudGltZSBlcnJv ciBpbiB0aGUgU2lldmUKICAgc2NyaXB0LgoKICAgU2VlIFNlY3Rpb24gMi40IGZvciB0aGUgZGV0 YWlsZWQgZGVzY3JpcHRpb24gb2Ygc3ludGF4IHVzZWQgZm9yCiAgIG5hbWluZyBleHRlcm5hbGx5 IHN0b3JlZCBsaXN0cy4KCjIuNC4gIFN5bnRheCBvZiBhbiBleHRlcm5hbGx5IHN0b3JlZCBsaXN0 IG5hbWUKCiAgIEEgbmFtZSBvZiBhbiBleHRlcm5hbGx5IHN0b3JlZCBsaXN0IGlzIGFsd2F5cyBh biBhYnNvbHV0ZSBVUkkgW1VSSV0uCiAgIEltcGxlbWVudGF0aW9ucyBtaWdodCBmaW5kIFVSTHMg c3VjaCBhcyBbTERBUF0sIFtDYXJkREFWXSwgb3IKICAgW1RBRy1VUkldIHRvIGJlIHVzZWZ1bCBm b3IgbmFtaW5nIGV4dGVybmFsIGxpc3RzLgoKCgpNZWxuaWtvdiAgICAgICAgICAgICAgICBFeHBp cmVzIEphbnVhcnkgMjMsIDIwMTAgICAgICAgICAgICAgICAgW1BhZ2UgNF0KDApJbnRlcm5ldC1E cmFmdCAgU2lldmUgRXh0ZW5zaW9uOiBFeHRlcm5hbGx5IFN0b3JlZCBMaXN0cyAgICAgICBKdWx5 IDIwMDkKCgogICBUaGUgInRhZyIgVVJJIHNjaGVtZSBbVEFHLVVSSV0gY2FuIGJlIHVzZWQgdG8g cmVwcmVzZW50IG9wYXF1ZSwgYnV0CiAgIHVzZXIgZnJpZW5kbGllciBpZGVudGlmaWVycy4gIFJl c29sdXRpb24gb2Ygc3VjaCBpZGVudGlmaWVycyBpcyBnb2luZwogICB0byBiZSBpbXBsZW1lbnRh dGlvbiBzcGVjaWZpYyBhbmQgaXQgY2FuIGhlbHAgaW4gaGlkaW5nIHRoZQogICBjb21wbGV4aXR5 IG9mIGFuIGltcGxlbWVudGF0aW9uIGZyb20gZW5kIHVzZXJzLiAgRm9yIGV4YW1wbGUsIGFuCiAg IGltcGxlbWVudGF0aW9uIGNhbiBwcm92aWRlIGEgd2ViIGludGVyZmFjZSBmb3IgbWFuYWdpbmcg bGlzdHMgb2YKICAgdXNlcnMgc3RvcmVkIGluIExEQVAuICBSZXF1aXJpbmcgdXNlcnMgdG8ga25v dyBnZW5lcmljIExEQVAgVVJMCiAgIHN5bnRheCBtaWdodCBub3QgYmUgdmVyeSBwcmFjdGljYWws IGR1ZSB0byBpdHMgY29tcGxleGl0eS4gIEFuCiAgIGltcGxlbWVudGF0aW9uIGNhbiBpbnN0ZWFk IHVzZSBhIGZpeGVkIHRhZyBVUkkgcHJlZml4IHN1Y2ggYXMgInRhZzoKICAgZXhhbXBsZS5jb20s PGRhdGU+OiIgKHdoZXJlIDxkYXRlPiBjYW4gYmUsIGZvciBleGFtcGxlLCBhIGRhdGUKICAgZ2Vu ZXJhdGVkIG9uY2Ugb24gaW5zdGFsbGF0aW9uIG9mIHRoZSB3ZWIgaW50ZXJmYWNlIGFuZCBsZWZ0 CiAgIHVudG91Y2hlZCB1cG9uIHVwZ3JhZGVzKSBhbmQgdGhlIHByZWZpeCBkb2Vzbid0IGV2ZW4g bmVlZCB0byBiZSBzaG93bgogICB0byBlbmQgdXNlcnMuCgoyLjUuICBFeGFtcGxlcwoKICAgW1th bmNob3I3OiBUaGlzIGV4YW1wbGUgbG9va3Mgd3Jvbmc6IHRoZSAiZW52ZWxvcGUiIHRlc3QgaXMg cHJvYmFibHkKICAgbm90IHJpZ2h0LiAgU2hvdWxkIGl0IHJlYWxseSBiZSB1c2luZyB0aGUgOmxp c3QgdGVzdD8gIEl0J3MgdGVzdGluZwogICA6ZGV0YWlsLCBzbyBJIHRoaW5rIGl0IHNob3VsZCBq dXN0IGJlIGEgc2ltcGxlIHRlc3QsIG1heWJlICcgOmlzCiAgICJteWxpc3QiICcgb3Igc29tZSBz dWNoLiAgTm8/ICAoQmFycnkpXV0KCiAgIEV4YW1wbGUgMSB1c2VzIHRoZSAiZW52ZWxvcGUiIG9w dGlvbiBbU2lldmVdIGFuZCB0aGUgInN1YmFkZHJlc3MiCiAgIGV4dGVuc2lvbiBbU3ViYWRkcmVz c106CgogICAgICAgcmVxdWlyZSBbImV4dGxpc3RzIiwgImVudmVsb3BlIiwgInN1YmFkZHJlc3Mi XTsKCiAgICAgICAjIFN1Ym1pc3Npb24gZnJvbSBsaXN0IG1lbWJlcnMgaXMgc2VudCB0byBhbGwg bWVtYmVycwogICAgICAgaWYgYWxsb2YgKGVudmVsb3BlIDpkZXRhaWwgOmxpc3QgInRvIgogICAg ICAgICAgICAgICAgICAgICAgICAgICJ0YWc6ZXhhbXBsZS5jb20sMjAwOS0wNS0yODpteWxpc3Qi LAogICAgICAgICAgICAgICAgIGhlYWRlciA6bGlzdCAiZnJvbSIKICAgICAgICAgICAgICAgICAg ICAgICAgInRhZzpleGFtcGxlLmNvbSwyMDA5LTA1LTI4Om15bGlzdCIpIHsKICAgICAgICAgICBy ZWRpcmVjdCA6bGlzdCAidGFnOmV4YW1wbGUuY29tLDIwMDktMDUtMjg6bXlsaXN0IjsKICAgICAg IH0KCgozLiAgU2VjdXJpdHkgQ29uc2lkZXJhdGlvbnMKCiAgIFNlY3VyaXR5IGNvbnNpZGVyYXRp b25zIHJlbGF0ZWQgdG8gdGhlICJhZGRyZXNzIi8iZW52ZWxvcGUiLyJoZWFkZXIiCiAgIHRlc3Rz IGFuZCAicmVkaXJlY3QiIGFjdGlvbiBkaXNjdXNzZWQgaW4gW1NpZXZlXSBhbHNvIGFwcGx5IHRv IHRoaXMKICAgZG9jdW1lbnQuCgogICBBIGZhaWx1cmUgdG8gcmV0cmlldmUgZGF0YSBkdWUgdG8g dGhlIHNlcnZlciBzdG9yaW5nIHRoZSBleHRlcm5hbAogICBsaXN0IG1lbWJlcnNoaXAgYmVpbmcg ZG93biBvciBvdGhlcndpc2UgaW5hY2Nlc3NpYmxlIG1heSBhbHRlciB0aGUKICAgcmVzdWx0IG9m IFNpZXZlIHByb2Nlc3NpbmcuICBJbXBsZW1lbnRhdGlvbnMgU0hPVUxEIHRyZWF0IGEgdGVtcG9y YXJ5CiAgIGZhaWx1cmUgdG8gcmV0cmlldmUgb3IgdmVyaWZ5IGV4dGVybmFsIGxpc3QgbWVtYmVy c2hpcCBpbiB0aGUgc2FtZQogICBtYW5uZXIgYXMgYSB0ZW1wb3JhcnkgZmFpbHVyZSB0byByZXRy aWV2ZSBhIFNpZXZlIHNjcmlwdC4gIEZvcgogICBleGFtcGxlLCBpZiB0aGUgU2lldmUgc2NyaXB0 IGlzIHN0b3JlZCBpbiB0aGUgTGlnaHR3ZWlnaHQgRGlyZWN0b3J5CiAgIEFjY2VzcyBQcm90b2Nv bCBbTERBUF0gYW5kIHRoZSBzY3JpcHQgY2FuJ3QgYmUgcmV0cmlldmVkIHdoZW4gYQogICBtZXNz YWdlIGlzIHByb2Nlc3NlZCwgdGhlbiB0aGUgYWdlbnQgcGVyZm9ybWluZyBTaWV2ZSBwcm9jZXNz aW5nIGNhbgoKCgpNZWxuaWtvdiAgICAgICAgICAgICAgICBFeHBpcmVzIEphbnVhcnkgMjMsIDIw MTAgICAgICAgICAgICAgICAgW1BhZ2UgNV0KDApJbnRlcm5ldC1EcmFmdCAgU2lldmUgRXh0ZW5z aW9uOiBFeHRlcm5hbGx5IFN0b3JlZCBMaXN0cyAgICAgICBKdWx5IDIwMDkKCgogICBlaXRoZXIg YXNzdW1lIHRoYXQgdGhlIHNjcmlwdCBkb2Vzbid0IGV4aXN0IG9yIGRlbGF5IG1lc3NhZ2UgZGVs aXZlcnkKICAgdW50aWwgdGhlIHNjcmlwdCBjYW4gYmUgcmV0cmlldmVkIHN1Y2Nlc3NmdWxseS4g IEV4dGVybmFsIGxpc3QKICAgbWVtYmVyc2hpcHMgc2hvdWxkIGJlIHRyZWF0ZWQgYXMgaWYgdGhl eSBhcmUgYSBwYXJ0IG9mIHRoZSBzY3JpcHQKICAgaXRzZWxmLCBzbyBhIHRlbXBvcmFyeSBmYWls dXJlIHRvIHJldHJpZXZlIG9yIHF1ZXJ5IHRoZW0gc2hvdWxkIGJlCiAgIGhhbmRsZWQgaW4gdGhl IHNhbWUgd2F5IGFzIGEgdGVtcG9yYXJ5IGZhaWx1cmUgdG8gcmV0cmlldmUgdGhlIFNpZXZlCiAg IHNjcmlwdCBpdHNlbGYuCgogICBQcm90b2NvbHMvQVBJcyB1c2VkIHRvIHJldHJpZXZlL3Zlcmlm eSBleHRlcm5hbCBsaXN0IG1lbWJlcnNoaXAgTVVTVAogICBwcm92aWRlIGFuIGFwcHJvcHJpYXRl IGxldmVsIG9mIGNvbmZpZGVudGlhbGl0eSBhbmQgYXV0aGVudGljYXRpb24uCiAgIFVzdWFsbHks IHRoYXQgd2lsbCBiZSBhdCBsZWFzdCB0aGUgc2FtZSBsZXZlbCBvZiBjb25maWRlbnRpYWxpdHkg YXMKICAgcHJvdG9jb2xzL0FQSXMgdXNlZCB0byByZXRyaWV2ZSBTaWV2ZSBzY3JpcHRzLCBidXQg b25seSB0aGUKICAgaW1wbGVtZW50YXRpb24gKG9yIGRlcGxveW1lbnQpIHdpbGwga25vdyB3aGF0 IGlzIGFwcHJvcHJpYXRlLgogICBUaGVyZSdzIGEgZGlmZmVyZW5jZSwgZm9yIGV4YW1wbGUsIGJl dHdlZW4gbWFraW5nIGFuIExEQVAgcmVxdWVzdCBvbgogICBhIGNsb3NlZCBMQU4gdGhhdCdzIG9u bHkgdXNlZCBmb3IgdHJ1c3RlZCBzZXJ2ZXJzIChpdCBtYXkgYmUgdGhhdAogICBuZWl0aGVyIGVu Y3J5cHRpb24gbm9yIGF1dGhlbnRpY2F0aW9uIGlzIG5lZWRlZCksIG9uIGEgZmlyZXdhbGxlZCBM QU4KICAgaW50ZXJuYWwgdG8gYSBjb21wYW55IChpdCBtaWdodCBiZSBPSyB0byBza2lwIGVuY3J5 cHRpb24sIGRlcGVuZGluZwogICB1cG9uIHBvbGljeSksIGFuZCBvbiB0aGUgb3BlbiBJbnRlcm5l dCAoZW5jcnlwdGlvbiBhbmQgYXV0aGVudGljYXRpb24KICAgYXJlIHByb2JhYmx5IGJvdGggcmVx dWlyZWQpLiAgSXQgYWxzbyBtYXR0ZXJzIHdoZXRoZXIgdGhlIGxpc3QgYmVpbmcKICAgYWNjZXNz ZWQgaXMgcHJpdmF0ZSBvciBwdWJsaWMgKG5vIGVuY3J5cHRpb24gb3IgYXV0aGVudGljYXRpb24g bWF5IGJlCiAgIG5lZWRlZCBmb3IgcHVibGljIGRhdGEsIGV2ZW4gb24gdGhlIEludGVybmV0KS4K CiAgIEltcGxlbWVudGF0aW9ucyBvZiB0aGlzIGV4dGVuc2lvbnMgc2hvdWxkIGtlZXAgaW4gbWlu ZCB0aGF0IG1hdGNoaW5nCiAgIHZhbHVlcyBhZ2FpbnN0IGFuIGV4dGVybmFsbHkgc3RvcmVkIGxp c3QgY2FuIGJlIElPIGFuZC9vciBDUFUKICAgaW50ZW5zaXZlLiAgVGhpcyBjYW4gYmUgdXNlZCB0 byBkZW55IHNlcnZpY2UgdG8gdGhlIG1haWxzZXJ2ZXIgYW5kL29yCiAgIHRvIHNlcnZlcnMgcHJv dmlkaW5nIGFjY2VzcyB0byBleHRlcm5hbGx5IHN0b3JlZCBtYWlsaW5nIGxpc3RzLiAgQQogICBu YWl2ZSBpbXBsZW1lbnRhdGlvbiwgc3VjaCBhcyB0aGUgb25lIHRoYXQgdHJpZXMgdG8gcmV0cmll dmUgY29udGVudAogICBvZiB0aGUgd2hvbGUgbGlzdCB0byBwZXJmb3JtIG1hdGNoaW5nIGNhbiBt YWtlIHRoaXMgd29yc2UuICBCdXQgbm90ZQogICB0aGF0IG1hbnkgcHJvdG9jb2xzIHRoYXQgY2Fu IGJlIHVzZWQgZm9yIGFjY2Vzc2luZyBleHRlcm5hbGx5IHN0b3JlZAogICBsaXN0cyBzdXBwb3J0 IGZsZXhpYmxlIHNlYXJjaGluZyBmZWF0dXJlcyB0aGF0IGNhbiBiZSB1c2VkIHRvCiAgIG1pbmlt aXplIG5ldHdvcmsgdHJhZmZpYyBhbmQgbG9hZCBvbiB0aGUgZGlyZWN0b3J5IHNlcnZpY2UuICBG b3IKICAgZXhhbXBsZSwgTERBUCBhbGxvd3MgZm9yIHNlYXJjaCBmaWx0ZXJzLiAgSW1wbGVtZW50 YXRpb25zIFNIT1VMRCB1c2UKICAgc3VjaCBmZWF0dXJlcyB3aGVuZXZlciB0aGV5IGNhbi4KCiAg IE1hbnkgb3JnYW5pemF0aW9ucyBzdXBwb3J0IGV4dGVybmFsIGxpc3RzIHdpdGggdGhvdXNhbmRz IG9mCiAgIHJlY2lwaWVudHMuICBJbiBvcmRlciB0byBhdm9pZCBtYWlsYm9tYnMgd2hlbiByZWRp cmVjdGluZyBhIG1lc3NhZ2UKICAgdG8gYW4gZXh0ZXJuYWxseSBzdG9yZWQgbGlzdCwgaW1wbGVt ZW50YXRpb25zIFNIT1VMRCBlbmZvcmNlIGxpbWl0cwogICBvbiB0aGUgbnVtYmVyIG9mIHJlY2lw aWVudHMgYW5kL29yIG9uIGRvbWFpbnMgdG8gd2hpY2ggc3VjaAogICByZWNpcGllbnRzIGJlbG9u Zy4KCgo0LiAgSUFOQSBDb25zaWRlcmF0aW9ucwoKICAgVGhlIGZvbGxvd2luZyB0ZW1wbGF0ZSBz cGVjaWZpZXMgdGhlIElBTkEgcmVnaXN0cmF0aW9uIG9mIHRoZSBub3RpZnkKICAgU2lldmUgZXh0 ZW5zaW9uIHNwZWNpZmllZCBpbiB0aGlzIGRvY3VtZW50OgoKICAgVG86IGlhbmFAaWFuYS5vcmcK ICAgU3ViamVjdDogUmVnaXN0cmF0aW9uIG9mIG5ldyBTaWV2ZSBleHRlbnNpb24KICAgQ2FwYWJp bGl0eSBuYW1lOiBleHRsaXN0cwoKCgpNZWxuaWtvdiAgICAgICAgICAgICAgICBFeHBpcmVzIEph bnVhcnkgMjMsIDIwMTAgICAgICAgICAgICAgICAgW1BhZ2UgNl0KDApJbnRlcm5ldC1EcmFmdCAg U2lldmUgRXh0ZW5zaW9uOiBFeHRlcm5hbGx5IFN0b3JlZCBMaXN0cyAgICAgICBKdWx5IDIwMDkK CgogICBEZXNjcmlwdGlvbjogYWRkcyB0aGUgJzpsaXN0JyB0YWdnZWQgYXJndW1lbnQgdG8gJ2Fk ZHJlc3MnLCAnaGVhZGVyJwogICBhbmQgJ2VudmVsb3BlJyB0ZXN0cywgYW5kIHRvIHRoZSAncmVk aXJlY3QnIGFjdGlvbi4gIFRoZSAnOmxpc3QnCiAgIGFyZ3VtZW50IGNoYW5nZXMgYWRkcmVzcy9o ZWFkZXIvZW52ZWxvcGUgdGVzdCB0byBtYXRjaCB2YWx1ZXMgYWdhaW5zdAogICB2YWx1ZXMgc3Rv cmVkIGluIG9uZSBvciBtb3JlIGV4dGVybmFsbHkgc3RvcmVkIGxpc3QuICBUaGUgJzpsaXN0Jwog ICBhcmd1bWVudCB0byB0aGUgcmVkaXJlY3QgYWN0aW9uIGNoYW5nZXMgdGhlIHJlZGlyZWN0IGFj dGlvbiB0bwogICBmb3J3YXJkIHRoZSBtZXNzYWdlIHRvIGVtYWlsIGFkZHJlc3NlcyBzdG9yZWQg aW4gdGhlIGV4dGVybmFsbHkKICAgc3RvcmVkIGxpc3QuCiAgIFJGQyBudW1iZXI6IHRoaXMgUkZD CiAgIENvbnRhY3QgYWRkcmVzczoKICAgICAgIFRoZSBTaWV2ZSBkaXNjdXNzaW9uIGxpc3QgPGll dGYtbXRhLWZpbHRlcnNAaW1jLm9yZz4KCiAgIFRoaXMgaW5mb3JtYXRpb24gc2hvdWxkIGJlIGFk ZGVkIHRvIHRoZSBsaXN0IG9mIHNpZXZlIGV4dGVuc2lvbnMKICAgZ2l2ZW4gb24gaHR0cDovL3d3 dy5pYW5hLm9yZy9hc3NpZ25tZW50cy9zaWV2ZS1leHRlbnNpb25zLgoKCjUuICBBY2tub3dsZWRn ZW1lbnRzCgogICBUaGFua3MgdG8gQWxleGFuZHJvcyBWZWxsaXMsIEJhcnJ5IExlaWJhLCBOaWdl bCBTd2luc29uLCBLamV0aWwKICAgVG9yZ3JpbSBIb21tZSwgRGF2ZSBDcmlkbGFuZCwgQ3lydXMg RGFib28sIFBldGUgUmVzbmljayBmb3IgaWRlYXMsCiAgIGNvbW1lbnRzIGFuZCBzdWdnZXN0aW9u cy4KCgo2LiAgUmVmZXJlbmNlcwoKNi4xLiAgTm9ybWF0aXZlIFJlZmVyZW5jZXMKCiAgIFtBQk5G XSAgICAgQ3JvY2tlciwgRC4sIEVkLiBhbmQgUC4gT3ZlcmVsbCwgIkF1Z21lbnRlZCBCTkYgZm9y IFN5bnRheAogICAgICAgICAgICAgIFNwZWNpZmljYXRpb25zOiBBQk5GIiwgUkZDIDUyMzQsIEph bnVhcnkgMjAwOC4KCiAgIFtLd2RzXSAgICAgQnJhZG5lciwgUy4sICJLZXkgd29yZHMgZm9yIHVz ZSBpbiBSRkNzIHRvIEluZGljYXRlCiAgICAgICAgICAgICAgUmVxdWlyZW1lbnQgTGV2ZWxzIiwg UkZDIDIxMTksIE1hcmNoIDE5OTcuCgogICBbU2lldmVdICAgIEd1ZW50aGVyLCBQLiBhbmQgVC4g U2hvd2FsdGVyLCAiU2lldmU6IEFuIEVtYWlsIEZpbHRlcmluZwogICAgICAgICAgICAgIExhbmd1 YWdlIiwgUkZDIDUyMjgsIEphbnVhcnkgMjAwOC4KCiAgIFtVUkldICAgICAgQmVybmVycy1MZWUs IFQuLCBGaWVsZGluZywgUi4sIGFuZCBMLiBNYXNpbnRlciwgIlVuaWZvcm0KICAgICAgICAgICAg ICBSZXNvdXJjZSBJZGVudGlmaWVyIChVUkkpOiBHZW5lcmljIFN5bnRheCIsIFNURCA2NiwKICAg ICAgICAgICAgICBSRkMgMzk4NiwgSmFudWFyeSAyMDA1LgoKNi4yLiAgSW5mb3JtYXRpdmUgUmVm ZXJlbmNlcwoKICAgW0FDQVBdICAgICBOZXdtYW4sIEMuIGFuZCBKLiBNeWVycywgIkFDQVAgLS0g QXBwbGljYXRpb24KICAgICAgICAgICAgICBDb25maWd1cmF0aW9uIEFjY2VzcyBQcm90b2NvbCIs IFJGQyAyMjQ0LCBOb3ZlbWJlciAxOTk3LgoKICAgW0NhcmREQVZdICBEYWJvbywgQy4sICJ2Q2Fy ZCBFeHRlbnNpb25zIHRvIFdlYkRBViAoQ2FyZERBVikiLCB3b3JrIGluCiAgICAgICAgICAgICAg cHJvZ3Jlc3MsIGRyYWZ0LWlldGYtdmNhcmRkYXYtY2FyZGRhdiwgSnVseSAyMDA5LgoKICAgW0xE QVBdICAgICBaZWlsZW5nYSwgSy4sICJMaWdodHdlaWdodCBEaXJlY3RvcnkgQWNjZXNzIFByb3Rv Y29sCgoKCk1lbG5pa292ICAgICAgICAgICAgICAgIEV4cGlyZXMgSmFudWFyeSAyMywgMjAxMCAg ICAgICAgICAgICAgICBbUGFnZSA3XQoMCkludGVybmV0LURyYWZ0ICBTaWV2ZSBFeHRlbnNpb246 IEV4dGVybmFsbHkgU3RvcmVkIExpc3RzICAgICAgIEp1bHkgMjAwOQoKCiAgICAgICAgICAgICAg KExEQVApOiBUZWNobmljYWwgU3BlY2lmaWNhdGlvbiBSb2FkIE1hcCIsIFJGQyA0NTEwLAogICAg ICAgICAgICAgIEp1bmUgMjAwNi4KCiAgIFtTdWJhZGRyZXNzXQogICAgICAgICAgICAgIE11cmNo aXNvbiwgSy4sICIiLCBSRkMgNTIzMywgSmFudWFyeSAyMDA4LgoKICAgW1RBRy1VUkldICBLaW5k YmVyZywgVC4gYW5kIFMuIEhhd2tlLCAiVGhlICd0YWcnIFVSSSBTY2hlbWUiLAogICAgICAgICAg ICAgIFJGQyA0MTUxLCBPY3RvYmVyIDIwMDUuCgoKQXV0aG9yJ3MgQWRkcmVzcwoKICAgQWxleGV5 IE1lbG5pa292CiAgIElzb2RlIExpbWl0ZWQKICAgNSBDYXN0bGUgQnVzaW5lc3MgVmlsbGFnZQog ICAzNiBTdGF0aW9uIFJvYWQKICAgSGFtcHRvbiwgTWlkZGxlc2V4ICBUVzEyIDJCWAogICBVSwoK ICAgRW1haWw6IEFsZXhleS5NZWxuaWtvdkBpc29kZS5jb20KCgoKCgoKCgoKCgoKCgoKCgoKCgoK CgoKCgoKCgoKCk1lbG5pa292ICAgICAgICAgICAgICAgIEV4cGlyZXMgSmFudWFyeSAyMywgMjAx MCAgICAgICAgICAgICAgICBbUGFnZSA4XQoMCg= --001636417b7df3d8ee046f4db864-- Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MEtfjA040490 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 22 Jul 2009 07:55:41 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6MEtfmF040489; Wed, 22 Jul 2009 07:55:41 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MEte1K040483 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 07:55:40 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBM2K44NVK002L1X@mauve.mrochek.com> for ietf-mta-filters@imc.org; Wed, 22 Jul 2009 07:55:38 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBKTVQJQSG009IL6@mauve.mrochek.com>; Wed, 22 Jul 2009 07:55:36 -0700 (PDT) Date: Wed, 22 Jul 2009 07:49:17 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt In-reply-to: "Your message dated Wed, 22 Jul 2009 09:46:22 -0400" <6c9fcc2a0907220646q2177622eo7f0fcaa1f605d4b6@mail.gmail.com> To: Barry Leiba <barryleiba.mailing.lists@gmail.com> Cc: Alexey Melnikov <alexey.melnikov@isode.com>, MTA filtering mailing list <ietf-mta-filters@imc.org> Message-id: <01NBM2K2L83S009IL6@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=ISO-8859-1 Content-transfer-encoding: 8BIT References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> <4A66EC0E.9050906@isode.com> <6c9fcc2a0907220646q2177622eo7f0fcaa1f605d4b6@mail.gmail.com> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > >> But the same issues affect section 2.3. If the list can't be > >> enumerated, you can't redirect to it. > >> > > :list is not a match type in this case, again it is a black box. > ... > > So I would like to correct your statement. There is no need whatsoever to be > > able to enumerate list membership in Sieve in order to redirect. > > The only requirement is that whoever does mailing list expansion needs to be > > able to do that. Such entity doesn't have to be the Sieve engine. > Two things: > 1. When I say that the list must be enumerable, I don't necessarily > mean "by the Sieve engine." It's possible for the list not to be > enumerable at all, even by the list handler. Examples are where the > list stores hashes of email addresses (to preserve privacy, perhaps) > and where the list stores mailbox patterns (all members of department > Z have email addresses that start with "dz", so the list of department > Z members is querieable ("Is X a member?"), but not enumerable). Exactly so. And by the same token, a list you can redirect to may not necessarily be queryable in any other way. > 2. Ah, so you're suggesting that the Sieve engine, which knows how to > do a redirect, should pass this on to the list handler, which now also > has to know how to do a redirect. I'm not sure that's a good idea, > but I could perhaps be convinced. I'm curious about what Ned thinks > here. Handling redirect :list by throwing the problem over the fence to a list processors is an interesting approach. We actallly use a variant of it - the sieve machinery performs variouos actions on the messeage but then invokes our more general list expansion machinery to get the necessary address list. Ned Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6METbqK038732 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 22 Jul 2009 07:29:37 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6METbJt038731; Wed, 22 Jul 2009 07:29:37 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6METPvV038705 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 07:29:35 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBM1MKJCHC00JDIN@mauve.mrochek.com> for ietf-mta-filters@imc.org; Wed, 22 Jul 2009 07:29:23 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBKTVQJQSG009IL6@mauve.mrochek.com>; Wed, 22 Jul 2009 07:29:20 -0700 (PDT) Date: Wed, 22 Jul 2009 07:24:52 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt In-reply-to: "Your message dated Wed, 22 Jul 2009 11:38:06 +0100" <4A66EC0E.9050906@isode.com> To: Alexey Melnikov <alexey.melnikov@isode.com> Cc: barryleiba@computer.org, MTA filtering mailing list <ietf-mta-filters@imc.org> Message-id: <01NBM1MJ1J4E009IL6@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN; format=flowed Content-transfer-encoding: 7BIT References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> <4A66EC0E.9050906@isode.com> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > Barry Leiba wrote: > >In my previous message I said that I had other issues with the > >document. Here they are: > > > >Making :list a match type sorts out my issues with section 2.2, so that's fine. > > > >But the same issues affect section 2.3. If the list can't be > >enumerated, you can't redirect to it. > > > :list is not a match type in this case, again it is a black box. > >Section 2.3 needs to make it > >clear that whether an external list can do this or not depends upon > >the list, and it needs to say what happens if it can't (ignore, or > >throw runtime error seem to be the two sensible choices, and I think I > >prefer the latter). > > > > > We should discuss this in Stockholm (and on the mailing list). I wasn't > thinking about being able to use the header test without being able to > reference the same list in redirect. Well, I can sort of see an argument that you might expect to be able to reference any list that you used in an _address_ test in redirect, but header? Who says the lists we'll be checking headers against are of addresses or anything that correlates to addresses? And in fact there are even lists of addresses (hashed lists are the obvious example) where you won't be able to reference them in redirect. The opposite is going to be true as well. There are plenty of use cases for a list you want people to be able to redirect to but not test the content of in any way. Ned Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MDkXHH034972 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 22 Jul 2009 06:46:33 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6MDkXhq034971; Wed, 22 Jul 2009 06:46:33 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.177]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MDkMpr034934 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 06:46:33 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by wa-out-1112.google.com with SMTP id n7so30523wag.26 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 06:46:22 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=w27dw67QMt99b/OFtB+MNIeQnGMEhRtZij60i3O+Rqo=; bíJQmL9U4haZat2mCZ4+WTMVvd4PSAXPVijMTRKbHhyRWXFcGTeYc4eEjP+KDEbbSa omnx0rSRcrlLj2knTYexb/sGhP3iDW8GP9vZ7SLaEzkxchiJH0Ytyxl39rCnK5pR1WYt f5cEq1QhvXOFMHtuBPnumJ3trFzpBLSbc1PtYDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; b=m4pCPxAj5pxDFax1hRS7jQCzDiqpId48vmOcFdEprvIZI/aDTUbI8S34d/8kyqSDcZ 8i6eALjfs+P3err3JtW3ZhaLDTnuR43aflJk+62QyltY1gVuWTZAIz4J3F4qr7hk3P8Z axNUg1mjxdzQNpFI1gOH61doN/l9N7gYDt8hYMIME-Version: 1.0 Received: by 10.114.26.17 with SMTP id 17mr542362waz.133.1248270382105; Wed, 22 Jul 2009 06:46:22 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <4A66EC0E.9050906@isode.com> References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> <4A66EC0E.9050906@isode.com> Date: Wed, 22 Jul 2009 09:46:22 -0400 Message-ID: <6c9fcc2a0907220646q2177622eo7f0fcaa1f605d4b6@mail.gmail.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Alexey Melnikov <alexey.melnikov@isode.com> Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> >> But the same issues affect section 2.3. If the list can't be >> enumerated, you can't redirect to it. >> > :list is not a match type in this case, again it is a black box. ... > So I would like to correct your statement. There is no need whatsoever to be > able to enumerate list membership in Sieve in order to redirect. > The only requirement is that whoever does mailing list expansion needs to be > able to do that. Such entity doesn't have to be the Sieve engine. Two things: 1. When I say that the list must be enumerable, I don't necessarily mean "by the Sieve engine." It's possible for the list not to be enumerable at all, even by the list handler. Examples are where the list stores hashes of email addresses (to preserve privacy, perhaps) and where the list stores mailbox patterns (all members of department Z have email addresses that start with "dz", so the list of department Z members is querieable ("Is X a member?"), but not enumerable). 2. Ah, so you're suggesting that the Sieve engine, which knows how to do a redirect, should pass this on to the list handler, which now also has to know how to do a redirect. I'm not sure that's a good idea, but I could perhaps be convinced. I'm curious about what Ned thinks here. >> Section 2.3 needs to make it >> clear that whether an external list can do this or not depends upon >> the list, and it needs to say what happens if it can't (ignore, or >> throw runtime error seem to be the two sensible choices, and I think I >> prefer the latter). > > We should discuss this in Stockholm (and on the mailing list). I wasn't > thinking about being able to use the header test without being able to > reference the same list in redirect. There's also the case where the list is not a list of email addresses. In that case, it can certainly be used for section 2.2, but not for 2.3. 2.3 still has to say what to do. Repeating, I think it's a "SHOULD [or maybe MUST] cause a runtime error" if the list can't be used for redirect because of the type of list it is (which includes the discussion above). >> I'd rather decouple them, and just say that the Sieve processor MUST use >> "appropriate security" to interact with the list, > > I think "appropriate security" is quite ambiguous. I don't think it's ambiguous, but, not, it's not well specified. I expected to put more words in to be clearer, but the point is that it's ultimately the responsibility of the implementation to know what's appropriate. There's a difference between making an LDAP request in a closed LAN that's only used for trusted servers (neither encryption nor authentication may be needed), a firewalled LAN for a particular company (it might be OK to skip encryption, depending upon policy), or the open Internet (encryption and authentication probably required), and whether the list being accessed is private or public (no encryption or authentication needed for public data, even on the Internet). We can't dictate any of that in the spec... we can only give examples and advice, and leave the final choice of what's "appropriate" to the implementation. >> The normative text in the "mail bombs" consideration should move to >> section 2.3, though I think it's still a good idea to mention the >> issue here as well. > > I am not sure this is needed. Similar text in the base Sieve spec is in the > Security Considerations section. OK. I don't have a very strong opinion here. I think it's harmless and possible helpful to put the normative bits earlier in the document. But it's OK with me if consensus is that it doesn't matter. Barry Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MAhG02019702 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 22 Jul 2009 03:43:16 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6MAhGQm019701; Wed, 22 Jul 2009 03:43:16 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MAhFpM019692 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 03:43:15 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [192.168.1.124] ((unknown) [62.3.217.253]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <SmbtQgAe-TBR@rufus.isode.com>; Wed, 22 Jul 2009 11:43:14 +0100 X-SMTP-Protocol-Errors: NORDNS Message-ID: <4A66ED22.4090806@isode.com> Date: Wed, 22 Jul 2009 11:42:42 +0100 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: barryleiba@computer.org CC: MTA filtering mailing list <ietf-mta-filters@imc.org> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> <4A66EC0E.9050906@isode.com> In-Reply-To: <4A66EC0E.9050906@isode.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Alexey Melnikov wrote: > Barry Leiba wrote: > >> In my previous message I said that I had other issues with the >> document. Here they are: >> >> Making :list a match type sorts out my issues with section 2.2, so >> that's fine. >> >> But the same issues affect section 2.3. If the list can't be >> enumerated, you can't redirect to it. > > :list is not a match type in this case, again it is a black box. So I would like to correct your statement. There is no need whatsoever to be able to enumerate list membership in Sieve in order to redirect. The only requirement is that whoever does mailing list expansion needs to be able to do that. Such entity doesn't have to be the Sieve engine. >> Section 2.3 needs to make it >> clear that whether an external list can do this or not depends upon >> the list, and it needs to say what happens if it can't (ignore, or >> throw runtime error seem to be the two sensible choices, and I think I >> prefer the latter). > > We should discuss this in Stockholm (and on the mailing list). I > wasn't thinking about being able to use the header test without being > able to reference the same list in redirect. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MAcqSG019370 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 22 Jul 2009 03:38:52 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6MAcqP2019369; Wed, 22 Jul 2009 03:38:52 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6MAce0t019355 for <ietf-mta-filters@imc.org>; Wed, 22 Jul 2009 03:38:51 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [192.168.1.124] ((unknown) [62.3.217.253]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <SmbsLgAe-Zsr@rufus.isode.com>; Wed, 22 Jul 2009 11:38:38 +0100 X-SMTP-Protocol-Errors: NORDNS Message-ID: <4A66EC0E.9050906@isode.com> Date: Wed, 22 Jul 2009 11:38:06 +0100 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: barryleiba@computer.org CC: MTA filtering mailing list <ietf-mta-filters@imc.org> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> In-Reply-To: <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Barry Leiba wrote: >In my previous message I said that I had other issues with the >document. Here they are: > >Making :list a match type sorts out my issues with section 2.2, so that's fine. > >But the same issues affect section 2.3. If the list can't be >enumerated, you can't redirect to it. > :list is not a match type in this case, again it is a black box. >Section 2.3 needs to make it >clear that whether an external list can do this or not depends upon >the list, and it needs to say what happens if it can't (ignore, or >throw runtime error seem to be the two sensible choices, and I think I >prefer the latter). > > We should discuss this in Stockholm (and on the mailing list). I wasn't thinking about being able to use the header test without being able to reference the same list in redirect. >Section 2.4 says that the syntax of the list name is a URI, but it >doesn't talk about the semantics. Along with the change to 2.2, >section 2.4 needs to change to (1) note that some URI types make sense >and some don't (Alexey already has this on his to-do list, > Right. >and (2) >explain that the URI has to resolve to something that can be used as a >list in the manner specified in 2.2 and 2.3... and talk a little about >what that means. Specifically, it has to be something that can be >given a string and can determine whether that string "is a member"... >and that it MAY also be something that can return its members as a >list or through an iterator. > > Ok. >Section 3, Security Considerations, needs some work, I think. First, >I don't like that there's some normative language there that doesn't >appear elsewhere. I prefer to have the normative parts of Security >Considerations be elsewhere in the document, in the parts that one >expects to be normative. > >Second... > Protocols/APIs used to retrieve/verify external list membership MUST > provide at least the same level of confidentiality as protocols/APIs > used to retrieve Sieve scripts. For example, if Sieve scripts are > retrieved using LDAP secured with Transport Layer Security (TLS) > encryption, then the protocol used to retrieve external list > membership must use a comparable mechanism for providing connection > confidentiality. In particular, the protocol used to retrieve > external list membership must not be lacking encryption. > >I don't think this is right. The connection between the Sieve >processor and the Sieve script store might be very different to the >connection it has with the external list. > Agreed. >It's likely that it might >not be necessary to use TLS to retrieve Sieve scripts, but IS >necessary to use it to interact with the list, or vice-versa. > Right. >I'd rather decouple them, and just say that the Sieve processor MUST use >"appropriate security" to interact with the list, > I think "appropriate security" is quite ambiguous. >and that that may mean using TLS, proper authentication, and whatnot -- but that it also >might not... say, in a closed system where the Sieve processor acting >on behalf of a user has direct access to the user's address book, >without fear of interception. > > The intent was to cover this case. I think an internal API which doesn't use a TCP protocol underneath (for example) and can't be intercepted, then it is considered as secure. But obviously your reading of this text doesn't agree with my intent, so I will think about rewording. >The normative text in the "mail bombs" consideration should move to >section 2.3, though I think it's still a good idea to mention the >issue here as well. > > I am not sure this is needed. Similar text in the base Sieve spec is in the Security Considerations section. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6M5tMuY000960 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Tue, 21 Jul 2009 22:55:22 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6M5tLSH000959; Tue, 21 Jul 2009 22:55:21 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-px0-f192.google.com (mail-px0-f192.google.com [209.85.216.192]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6M5t9qB000946 for <ietf-mta-filters@imc.org>; Tue, 21 Jul 2009 22:55:20 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by pxi30 with SMTP id 30so2339716pxi.16 for <ietf-mta-filters@imc.org>; Tue, 21 Jul 2009 22:55:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=g8Rh0Y7/hjNL8tRX0laErdLbk39qi+tVC78T82R6aPs=; bßYSwuZON+OAmG+S3SYOHjtiWgiZZLrhNwroxWkOHxfD54M0EWIt3zbWZUTloWWtkD qPh4oZCWKBB0MhxafYN7wFsWdMjHu90PDWODboxtfZ9qIe7VlJI2I2tcdR4CcDrY/6SO QSMZodtKKrfrB2cwBmEqBEPB66sh16dtEGCC8DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; b=sUt2gLyVx1Rne8ZS4ckY3ham4LPe2N8DUjGt8FLSFtircCREU9YYYBY0QmE82kZqaI sgKZ/4akab+weeZIoWbFa2N0uTZoveRWuulvCHfJv1KLjwsrBD76dO1wUxjC4SM9eBtq Aa0qTRiW7lHMGLCASliWUUfjCnwYpR3clxTHUMIME-Version: 1.0 Received: by 10.114.67.18 with SMTP id p18mr848319waa.160.1248242109439; Tue, 21 Jul 2009 22:55:09 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> Date: Wed, 22 Jul 2009 01:55:09 -0400 Message-ID: <6c9fcc2a0907212255m30324672hbb5dd3b588fb7928@mail.gmail.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Alexey Melnikov <alexey.melnikov@isode.com> Cc: MTA filtering mailing list <ietf-mta-filters@imc.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> In my previous message I said that I had other issues with the document. Here they are: Making :list a match type sorts out my issues with section 2.2, so that's fine. But the same issues affect section 2.3. If the list can't be enumerated, you can't redirect to it. Section 2.3 needs to make it clear that whether an external list can do this or not depends upon the list, and it needs to say what happens if it can't (ignore, or throw runtime error seem to be the two sensible choices, and I think I prefer the latter). Section 2.4 says that the syntax of the list name is a URI, but it doesn't talk about the semantics. Along with the change to 2.2, section 2.4 needs to change to (1) note that some URI types make sense and some don't (Alexey already has this on his to-do list, and (2) explain that the URI has to resolve to something that can be used as a list in the manner specified in 2.2 and 2.3... and talk a little about what that means. Specifically, it has to be something that can be given a string and can determine whether that string "is a member"... and that it MAY also be something that can return its members as a list or through an iterator. Section 3, Security Considerations, needs some work, I think. First, I don't like that there's some normative language there that doesn't appear elsewhere. I prefer to have the normative parts of Security Considerations be elsewhere in the document, in the parts that one expects to be normative. Second... Protocols/APIs used to retrieve/verify external list membership MUST provide at least the same level of confidentiality as protocols/APIs used to retrieve Sieve scripts. For example, if Sieve scripts are retrieved using LDAP secured with Transport Layer Security (TLS) encryption, then the protocol used to retrieve external list membership must use a comparable mechanism for providing connection confidentiality. In particular, the protocol used to retrieve external list membership must not be lacking encryption. I don't think this is right. The connection between the Sieve processor and the Sieve script store might be very different to the connection it has with the external list. It's likely that it might not be necessary to use TLS to retrieve Sieve scripts, but IS necessary to use it to interact with the list, or vice-versa. I'd rather decouple them, and just say that the Sieve processor MUST use "appropriate security" to interact with the list, and that that may mean using TLS, proper authentication, and whatnot -- but that it also might not... say, in a closed system where the Sieve processor acting on behalf of a user has direct access to the user's address book, without fear of interception. The normative text in the "mail bombs" consideration should move to section 2.3, though I think it's still a good idea to mention the issue here as well. Barry Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6LLK9Ec069764 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Tue, 21 Jul 2009 14:20:09 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6LLK9xa069763; Tue, 21 Jul 2009 14:20:09 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-pz0-f188.google.com (mail-pz0-f188.google.com [209.85.222.188]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6LLJvq7069740 for <ietf-mta-filters@imc.org>; Tue, 21 Jul 2009 14:20:07 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by pzk26 with SMTP id 26so2387121pzk.16 for <ietf-mta-filters@imc.org>; Tue, 21 Jul 2009 14:19:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bhÌIhc4hmLy9A0mFi+yoS/TaYTHAUGXdC23WhCT242QY=; b=x1ccuEsA7h/xlBc8SNcUY66Eo70NIpE8nabxQN7t26fYk9A+N4jwchhCK+X5FqqzFw 9h7q95313u+WBYjEu8WQgP/mBQNd5G0jLk4noYcHZrEY9EtqnJWWO0dR3Ev2WX7VIj1W bqvgEz5Tn3RmsZCSQHIQ78Tl1smG8GmV33JEYDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; b¼P0KT3yVewdJSCQbjSkqaFmOOEJ8eGOoDx0iJ/fizbDa7OnZci778l+RR8RvuCewc eacEBT5ZGmsc0JBBvIBL153qpO5/J/tYGr+K4Ew4gqu7A1KoEetf13F7DbBGzJmoMoQI l0xw202mu7FliWc7pjrMNKd5jWorbjxA8lK2wMIME-Version: 1.0 Received: by 10.115.107.1 with SMTP id j1mr204916wam.62.1248211197103; Tue, 21 Jul 2009 14:19:57 -0700 (PDT) Reply-To: barryleiba@computer.org In-Reply-To: <4A643BDE.7060409@isode.com> References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> <4A643BDE.7060409@isode.com> Date: Tue, 21 Jul 2009 17:19:57 -0400 Message-ID: <6c9fcc2a0907211419y712692e5qf41eecc0af489dd7@mail.gmail.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: Alexey Melnikov <alexey.melnikov@isode.com> Cc: =?windows-1251?B?xOjr/+0gz+Dr4PPn7uI=?= <dilyan.palauzov@aegee.org>, Ned Freed <ned.freed@mrochek.com>, ietf-mta-filters@imc.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > Ned has answered this nicely. I was thinking about substring matches (kind > of simplified :matches), but this can be thought of as an implementation > details. I.e. we can consider an external list to be black box. I agree with Ned completely, and Alexey sums it up perfectly: an external list is a black box. It was the lack of that semantic that made me resistant to external lists before. If :list is a match type, that major issue goes away for me (though I still have others, but I think they can be resolved). Barry Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6K9gXWK019433 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Mon, 20 Jul 2009 02:42:33 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6K9gX4L019432; Mon, 20 Jul 2009 02:42:33 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6K9gLMu019422 for <ietf-mta-filters@imc.org>; Mon, 20 Jul 2009 02:42:32 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [192.168.1.124] ((unknown) [62.3.217.253]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <SmQ7ªe-YJt@rufus.isode.com>; Mon, 20 Jul 2009 10:42:20 +0100 X-SMTP-Protocol-Errors: NORDNS Message-ID: <4A643BDE.7060409@isode.com> Date: Mon, 20 Jul 2009 10:41:50 +0100 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: =?UTF-8?B?0JTQuNC70Y/QvSDQn9Cw0LvQsNGD0LfQvtCy?= <dilyan.palauzov@aegee.org> CC: Ned Freed <ned.freed@mrochek.com>, ietf-mta-filters@imc.org Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F9D917EB-A09B-48BB-AA30-F31EADEDD7DD@muada.com> <28941.1246868682.560969@puncture> <4A51D1A1.5040507@isode.com> <01NAZVQAYWH4001DLH@mauve.mrochek.com> <47CB230E-B713-4098-82D4-318744434C46@pobox.com> <01NB0BOZYUPY001ML6@mauve.mrochek.com> <6DECD560-B257-4E6E-80E7-A99A69D297C6@pobox.com> <01NB14JAPS8E001ML6@mauve.mrochek.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> In-Reply-To: <4A6376F9.5020509@aegee.org> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-transfer-encoding: quoted-printable Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> ÐилÑн ÐалаÑзов wrote: > Hello, > >> Would we need to have :list-is, :list-matches, :list-contains, or can >> we get away with just :list, which would check for the exact match? > > As far as I understood Ned, it is the list who decides on the exact > match type : it is not up to the script to prescribe the matching. So > "just :list". > > Any use cases where :list-is, :list-contains ... make sense and "just > :list" would be insufficient? Ned has answered this nicely. I was thinking about substring matches (kind of simplified :matches), but this can be thought of as an implementation details. I.e. we can consider an external list to be black box. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6K1fvjs091151 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sun, 19 Jul 2009 18:41:57 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6K1fvIe091149; Sun, 19 Jul 2009 18:41:57 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6K1fjpi091135 for <ietf-mta-filters@imc.org>; Sun, 19 Jul 2009 18:41:56 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBII8D3GJK000P1Y@mauve.mrochek.com> for ietf-mta-filters@imc.org; Sun, 19 Jul 2009 18:41:08 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBHX5IXZ4W00007A@mauve.mrochek.com>; Sun, 19 Jul 2009 18:41:03 -0700 (PDT) Date: Sun, 19 Jul 2009 18:12:25 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt In-reply-to: "Your message dated Sun, 19 Jul 2009 21:41:45 +0200" <4A6376F9.5020509@aegee.org> To: =?UTF-8?B?0JTQuNC70Y/QvSDQn9Cw0LvQsNGD0LfQvtCy?= <dilyan.palauzov@aegee.org> Cc: Alexey Melnikov <alexey.melnikov@isode.com>, Ned Freed <ned.freed@mrochek.com>, ietf-mta-filters@imc.org Message-id: <01NBII89YRHO00007A@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN; CHARSET=US-ASCII; format=flowed Content-transfer-encoding: 7BIT References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F9D917EB-A09B-48BB-AA30-F31EADEDD7DD@muada.com> <28941.1246868682.560969@puncture> <4A51D1A1.5040507@isode.com> <01NAZVQAYWH4001DLH@mauve.mrochek.com> <47CB230E-B713-4098-82D4-318744434C46@pobox.com> <01NB0BOZYUPY001ML6@mauve.mrochek.com> <6DECD560-B257-4E6E-80E7-A99A69D297C6@pobox.com> <01NB14JAPS8E001ML6@mauve.mrochek.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> <4A6376F9.5020509@aegee.org> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > Hello, > > Would we need to have :list-is, :list-matches, :list-contains, or can we > > get away with just :list, which would check for the exact match? > As far as I understood Ned, it is the list who decides on the exact > match type : it is not up to the script to prescribe the matching. So > "just :list". > Any use cases where :list-is, :list-contains ... make sense and "just > :list" would be insufficient? Sure, you can have lists that support more than one kind of matching, although I expect such cases to be the exception rather than the rule. In such cases I would propose that the type of matching be embedded in the list name somehow. This then gets to the idea of using URLs for list names. A tag: URL is of course completely capable of handling additional embedded material. Other URL schemes, not so much. In fact I'm not entirely sure how this is supposed to work with LDAP URLs with reasonable efficiency. Consider the fairly typical case of whitelisting based on a personal address book in LDAP. Assuming everyone is OK with users being able to construct and perform their own LDAP searches and have no problem knowing and hard coding the base DN of their entries (both very big ifs), this would call for something like: if address :list "from" "ldap:///cn=me,o=pab?mail?sub?(objectclass=regularentry)" { ... whitelist ... } The problem with this is we're again back to enumeration - that URL produces a (potentially very large) list of addresses, which would have to be compared one by one to the address(es) extracted from the "from" field. But consider the URL: ldap:///cn=me,o=pab?mail?sub?(&(objectclass=regularentry)(mail=a@b)) This flips the problem around - now the address you're looking for is specified in the URL itself. Now it's up to the LDAP server to find the match, and the simple fact it returned a response is enough to conclude the address is on the list. This is much more efficient, especially if the LDAP server has proper indexing. But now the URL is something that has to be constructed by knowing what you're searching for. I will also note that LDAP URLs can embed very complex matching criteria of their own. Now, I guess I have no problem with using tag: URLs that end up getting converted to the more efficient LDAP URLs seen here. But I really have to question whether anyone is actually going to allow, as the specification implies, the direct use of LDAP URLs or other URLs with similar characteristics. Ned Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JKgWYl077201 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sun, 19 Jul 2009 13:42:32 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6JKgW70077200; Sun, 19 Jul 2009 13:42:32 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JKgVLV077194 for <ietf-mta-filters@imc.org>; Sun, 19 Jul 2009 13:42:32 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBI7S250CG00RW6T@mauve.mrochek.com> for ietf-mta-filters@imc.org; Sun, 19 Jul 2009 13:42:26 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBHX5IXZ4W00007A@mauve.mrochek.com>; Sun, 19 Jul 2009 13:42:21 -0700 (PDT) Date: Sun, 19 Jul 2009 13:13:56 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt In-reply-to: "Your message dated Sun, 19 Jul 2009 20:25:35 +0100" <4A63732F.4030307@isode.com> To: Alexey Melnikov <alexey.melnikov@isode.com> Cc: Ned Freed <ned.freed@mrochek.com>, ietf-mta-filters@imc.org Message-id: <01NBI7RYSL0M00007A@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN; format=flowed Content-transfer-encoding: 7BIT References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F9D917EB-A09B-48BB-AA30-F31EADEDD7DD@muada.com> <28941.1246868682.560969@puncture> <4A51D1A1.5040507@isode.com> <01NAZVQAYWH4001DLH@mauve.mrochek.com> <47CB230E-B713-4098-82D4-318744434C46@pobox.com> <01NB0BOZYUPY001ML6@mauve.mrochek.com> <6DECD560-B257-4E6E-80E7-A99A69D297C6@pobox.com> <01NB14JAPS8E001ML6@mauve.mrochek.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > Would we need to have :list-is, :list-matches, :list-contains, or can we > get away with just :list, which would check for the exact match? Making the match type part of the list argument is just moving the information around and not changing the underlying semantics. Having any specification at aall of the match type other than "it's matching a list" is exactly what we don't want and which cannot be supported. Perhaps some specific examples will make this clear. Suppose I have a list of whitelisted addresses, but because of privacy concerns this list contains the SHA-1 hash of each address. The only match type such a list would support is :is. And it's an inherent characteristic of the list that that's the only match type. Now suppose I have a list of half a million or so strings I don't want to see as part of a subject line. I've used some algorithm or other to turn this into a data structure that will tell me if any of those substrings appear in a single pass over the subject. The implied match type for such a list is :contains. Now consider a list consisting of IP addresses and net masks. I want to check and see if a given IP address matches anything on the list. (Assuming the list content is properly normalized, this can be done for IPv4 with no more than 32 exact match comparisons, 128 for IPv6. Of course other, more sophisticated approaches are also possible.) This list has an effective match type that corresponds to nothing we currently have in sieve, yet it is a perfectly reasonable sort of list to want to match against. Now think for a moment what's involved with having a list that support :matches or worse, :regex. You now have a list of patterns that have to be checked one by one, and checking each one is pretty expensive. In other words, enumerability is a requirement for such a list, and depending on how things are stored, the match type may still be implied by the underlying storage mechanism. Again, there is no doubt that, for the subset of lists that are enumerable, having the match type be separate makes sense and provides the most flexibility. But many of the lists we're going to want to check aren't enumerable, either because the underlying technology doesn't support it or because enumeration is simply too expensive. And I really have to wonder if allowing all the combinations when most of them are going to produce a runtime error is the right way to design this. And if we decide not to make :list a MATCH-TYPE, the text is going to have to state that any particular combination of MATCH-TYPE and :list may produce a runtime error for some subset of the available set of lists. This may even extend to the default :is MATCH-TYPE, creating a situation where a MATCH-TYPE has to be specified. Ned Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JJg6rP074303 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sun, 19 Jul 2009 12:42:06 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6JJg610074302; Sun, 19 Jul 2009 12:42:06 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from smtp.aegee.uni-karlsruhe.de (smtp.aegee.uni-karlsruhe.de [129.13.62.220]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JJfskD074289 (version=TLSv1/SSLv3 cipher®S256-SHA bits%6 verify=NO) for <ietf-mta-filters@imc.org>; Sun, 19 Jul 2009 12:42:05 -0700 (MST) (envelope-from dilyan.palauzov@aegee.org) Received: from smtp.aegee.org (aegeeserv.aegee.uni-karlsruhe.de [129.13.131.80]) by smtp2.rz.uni-karlsruhe.de with esmtp (Exim 4.63 #1) id 1MScGe-0006aU-Kn; Sun, 19 Jul 2009 21:41:52 +0200 X-Mail-Sent-By-AEGEE.org-Account: didopalauzov Received: from [192.168.178.29] (krlh-5f72c0c3.pool.einsundeins.de [95.114.192.195]) (authenticated bits=0) by smtp.aegee.org (8.14.3/8.13.6) with ESMTP id n6JJfpkq025505 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sun, 19 Jul 2009 19:41:51 GMT Message-ID: <4A6376F9.5020509@aegee.org> Date: Sun, 19 Jul 2009 21:41:45 +0200 From: =?UTF-8?B?0JTQuNC70Y/QvSDQn9Cw0LvQsNGD0LfQvtCy?= <dilyan.palauzov@aegee.org> User-Agent: Thunderbird 2.0.0.22 (Windows/20090605) MIME-Version: 1.0 To: Alexey Melnikov <alexey.melnikov@isode.com> CC: Ned Freed <ned.freed@mrochek.com>, ietf-mta-filters@imc.org Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F9D917EB-A09B-48BB-AA30-F31EADEDD7DD@muada.com> <28941.1246868682.560969@puncture> <4A51D1A1.5040507@isode.com> <01NAZVQAYWH4001DLH@mauve.mrochek.com> <47CB230E-B713-4098-82D4-318744434C46@pobox.com> <01NB0BOZYUPY001ML6@mauve.mrochek.com> <6DECD560-B257-4E6E-80E7-A99A69D297C6@pobox.com> <01NB14JAPS8E001ML6@mauve.mrochek.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> <4A63732F.4030307@isode.com> In-Reply-To: <4A63732F.4030307@isode.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: clamav-milter 0.95.2 at aegeeserv X-Virus-Status: Clean Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Hello, > Would we need to have :list-is, :list-matches, :list-contains, or can we > get away with just :list, which would check for the exact match? As far as I understood Ned, it is the list who decides on the exact match type : it is not up to the script to prescribe the matching. So "just :list". Any use cases where :list-is, :list-contains ... make sense and "just :list" would be insufficient? СÑÑ Ð·Ð´Ñаве, дилÑн Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JJQ77j073503 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sun, 19 Jul 2009 12:26:07 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6JJQ7M2073502; Sun, 19 Jul 2009 12:26:07 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JJQ6LG073496 for <ietf-mta-filters@imc.org>; Sun, 19 Jul 2009 12:26:06 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [92.40.25.192] (92.40.25.192.sub.mbb.three.co.uk [92.40.25.192]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <SmNzTAAe-T8L@rufus.isode.com>; Sun, 19 Jul 2009 20:26:04 +0100 Message-ID: <4A63732F.4030307@isode.com> Date: Sun, 19 Jul 2009 20:25:35 +0100 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: Ned Freed <ned.freed@mrochek.com> CC: ietf-mta-filters@imc.org Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F9D917EB-A09B-48BB-AA30-F31EADEDD7DD@muada.com> <28941.1246868682.560969@puncture> <4A51D1A1.5040507@isode.com> <01NAZVQAYWH4001DLH@mauve.mrochek.com> <47CB230E-B713-4098-82D4-318744434C46@pobox.com> <01NB0BOZYUPY001ML6@mauve.mrochek.com> <6DECD560-B257-4E6E-80E7-A99A69D297C6@pobox.com> <01NB14JAPS8E001ML6@mauve.mrochek.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> <01NBI4IUBYSY00007A@mauve.mrochek.com> In-Reply-To: <01NBI4IUBYSY00007A@mauve.mrochek.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Ned Freed wrote: [...] > There are basically two ways to address one. One is to say "some > combinations > of :list and variaus MATCH-TYPES" are going to fail in some cases". > Alternately, we can simply say "the MATCH-TYPE is implied by the list > itself, > and :list is therefore best thought of as a MATCH-TYPE". > > I strongly prefer the latter. The former has least astonishment violation > written all over it. It also fails to allow for lists whose underlying > match > criteria do not align with existing Sieve match types, and there are a > LOT of > those; prefix match, suffix match, IP address pattern matches, etc. > And before > anyone suggests defining new match types for these, allow me to point > out that > in some cases the ynderlying match types allowed from some sources are > open > ended and extensible. Would we need to have :list-is, :list-matches, :list-contains, or can we get away with just :list, which would check for the exact match? Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JJ93a8072642 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sun, 19 Jul 2009 12:09:03 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6JJ93RP072641; Sun, 19 Jul 2009 12:09:03 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JJ8prB072631 for <ietf-mta-filters@imc.org>; Sun, 19 Jul 2009 12:09:01 -0700 (MST) (envelope-from ned.freed@mrochek.com) Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBI4IWK23K00RCUH@mauve.mrochek.com> for ietf-mta-filters@imc.org; Sun, 19 Jul 2009 12:08:46 -0700 (PDT) Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01NBHX5IXZ4W00007A@mauve.mrochek.com>; Sun, 19 Jul 2009 12:08:43 -0700 (PDT) Date: Sun, 19 Jul 2009 11:46:53 -0700 (PDT) From: Ned Freed <ned.freed@mrochek.com> Subject: Re: Comments on draft-melnikov-sieve-external-lists-02.txt In-reply-to: "Your message dated Sun, 19 Jul 2009 19:38:47 +0100" <4A636837.7010105@isode.com> To: Alexey Melnikov <alexey.melnikov@isode.com> Cc: Ned Freed <ned.freed@mrochek.com>, ietf-mta-filters@imc.org Message-id: <01NBI4IUBYSY00007A@mauve.mrochek.com> MIME-version: 1.0 Content-type: TEXT/PLAIN; format=flowed Content-transfer-encoding: 7BIT References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F9D917EB-A09B-48BB-AA30-F31EADEDD7DD@muada.com> <28941.1246868682.560969@puncture> <4A51D1A1.5040507@isode.com> <01NAZVQAYWH4001DLH@mauve.mrochek.com> <47CB230E-B713-4098-82D4-318744434C46@pobox.com> <01NB0BOZYUPY001ML6@mauve.mrochek.com> <6DECD560-B257-4E6E-80E7-A99A69D297C6@pobox.com> <01NB14JAPS8E001ML6@mauve.mrochek.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> <4A636837.7010105@isode.com> Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> > I've changed the subject and moving my reply to the Sieve mailing list, > where I think it belongs. Agreed. > >> There is also a Sieve extension for making use of whitelists/blacklists > >> during mail delivery. See draft-melnikov-sieve-external-lists-02.txt. > >> It can work with CARDDAV, LDAP and other things. > > > > Interestingly, this extension in its current form is not compatible with > > at least one of the proposals that was made here. The issue is one I've > > raised before - the fact that :list is separate argument and not a > > match type. > > > > Where there is clearly some utility in being able to say stuff along the > > lines of: > > > > header :contains :list "subject" "tag:dirty-word-list" > > > > The problem is that in order for this to work the list has to be > > enumerable. > This wasn't the intent. I was certainly aware of the need not to > retrieve the whole membership list. > But you are saying that my syntax wouldn't work in this case. It's not a question of syntax, but semantics. When a list isn't enumerable it typically only supports some specific sort of matching that's intrinsic to the list. In most case it's a :is match in sieve parlance, but not always. So what you end up with are lists where some subset of :is/:contains/:regex/:matches cannot be used. And which combinations are and are nt allowed is going to vary from list to list. There are basically two ways to address one. One is to say "some combinations of :list and variaus MATCH-TYPES" are going to fail in some cases". Alternately, we can simply say "the MATCH-TYPE is implied by the list itself, and :list is therefore best thought of as a MATCH-TYPE". I strongly prefer the latter. The former has least astonishment violation written all over it. It also fails to allow for lists whose underlying match criteria do not align with existing Sieve match types, and there are a LOT of those; prefix match, suffix match, IP address pattern matches, etc. And before anyone suggests defining new match types for these, allow me to point out that in some cases the ynderlying match types allowed from some sources are open ended and extensible. > > Not all lists are enumerable, and even some that are are so large even > > though oyu can enumerate them in theory you can't afford to do so in > > practice. > > One use case where this matters is when the list is a set of hashed > > values. The > > way you find if something is "on the list" is to hash it and see if > > that value > > appears. And even if the input string is short enough that you can > > enumerate > > all the unique substrings, how about :matches and :regex? Good luck with > > those. > > Hashed lists have in fact been proposed in the present discussion as a > > means of > > avoiding giving your address whitelist to the mail server. I happen > > not to > > think this is a useful thing to do for a variety of reasons, mostly > > having to > > do with address canonicalization (or lack thereof), but there are other > > use cases where hashed lists make more sense. > > > > So, although it reduces functionality, I believe :list should be a > > match type > > and the underlying comparison type that's done should be a property of > > the list > > itself. > Hmm. You are probably right, :list as a modifier is a bit of a hack. > How would the new match type work with tests other than > header/address/envelope? Well, for example, something like string :list "target-string" "list-name" would check to see if the list named "list-name" has "target-string" as a member using whatever membership criteria the list is set up for. Ned Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JIdTYC070662 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sun, 19 Jul 2009 11:39:30 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6JIdTDQ070661; Sun, 19 Jul 2009 11:39:29 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6JIdIJ5070651 for <ietf-mta-filters@imc.org>; Sun, 19 Jul 2009 11:39:29 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [92.40.25.192] (92.40.25.192.sub.mbb.three.co.uk [92.40.25.192]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <SmNoUwAe-QLT@rufus.isode.com>; Sun, 19 Jul 2009 19:39:16 +0100 Message-ID: <4A636837.7010105@isode.com> Date: Sun, 19 Jul 2009 19:38:47 +0100 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: Ned Freed <ned.freed@mrochek.com> CC: ietf-mta-filters@imc.org Subject: Comments on draft-melnikov-sieve-external-lists-02.txt References: <371C2EEC-8CBD-4AC1-B07A-928352E19DCB@pobox.com> <F9D917EB-A09B-48BB-AA30-F31EADEDD7DD@muada.com> <28941.1246868682.560969@puncture> <4A51D1A1.5040507@isode.com> <01NAZVQAYWH4001DLH@mauve.mrochek.com> <47CB230E-B713-4098-82D4-318744434C46@pobox.com> <01NB0BOZYUPY001ML6@mauve.mrochek.com> <6DECD560-B257-4E6E-80E7-A99A69D297C6@pobox.com> <01NB14JAPS8E001ML6@mauve.mrochek.com> <F4A90756-9251-4CB8-9776-77F3202617A5@pobox.com> <01NB1TV04NJS001ML6@mauve.mrochek.com> <4A54701C.6080107@isode.com> <01NB2RB8UTA4001ML6@mauve.mrochek.com> In-Reply-To: <01NB2RB8UTA4001ML6@mauve.mrochek.com> MIME-Version: 1.0 Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Hi Ned, I've changed the subject and moving my reply to the Sieve mailing list, where I think it belongs. Ned Freed wrote: [...] >> There is also a Sieve extension for making use of whitelists/blacklists >> during mail delivery. See draft-melnikov-sieve-external-lists-02.txt. >> It can work with CARDDAV, LDAP and other things. > > Interestingly, this extension in its current form is not compatible with > at least one of the proposals that was made here. The issue is one I've > raised before - the fact that :list is separate argument and not a > match type. > > Where there is clearly some utility in being able to say stuff along the > lines of: > > header :contains :list "subject" "tag:dirty-word-list" > > The problem is that in order for this to work the list has to be > enumerable. This wasn't the intent. I was certainly aware of the need not to retrieve the whole membership list. But you are saying that my syntax wouldn't work in this case. > Not all lists are enumerable, and even some that are are so large even > though oyu can enumerate them in theory you can't afford to do so in > practice. > > One use case where this matters is when the list is a set of hashed > values. The > way you find if something is "on the list" is to hash it and see if > that value > appears. And even if the input string is short enough that you can > enumerate > all the unique substrings, how about :matches and :regex? Good luck with > those. > > Hashed lists have in fact been proposed in the present discussion as a > means of > avoiding giving your address whitelist to the mail server. I happen > not to > think this is a useful thing to do for a variety of reasons, mostly > having to > do with address canonicalization (or lack thereof), but there are other > use cases where hashed lists make more sense. > > So, although it reduces functionality, I believe :list should be a > match type > and the underlying comparison type that's done should be a property of > the list > itself. Hmm. You are probably right, :list as a modifier is a bit of a hack. How would the new match type work with tests other than header/address/envelope? Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6FAF5jM076582 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Wed, 15 Jul 2009 03:15:05 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6FAF5ls076581; Wed, 15 Jul 2009 03:15:05 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6FAErxD076551 for <ietf-mta-filters@imc.org>; Wed, 15 Jul 2009 03:15:04 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [172.16.2.170] (shiny.isode.com [62.3.217.250]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <Sl2sGgAe-Va1@rufus.isode.com>; Wed, 15 Jul 2009 11:14:51 +0100 Message-ID: <4A5DABEE.4090700@isode.com> Date: Wed, 15 Jul 2009 11:14:06 +0100 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: Cyrus Daboo <cyrus@daboo.name> CC: ietf-mta-filters@imc.org Subject: Re: Proposed agenda References: <6035731A876F73D2FB597646@socrates.local> In-Reply-To: <6035731A876F73D2FB597646@socrates.local> MIME-Version: 1.0 Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Cyrus Daboo wrote: > Hi folks, > Below is a proposed agenda for the Stockholm meeting. If you have any > additions or changes please let me know asap. > > Also note that we have a 2 1/2 hour slot this time so I have been > generous in assigning time to each item. I would really like to see > issues with "active" drafts (include, imap/sieve, external-lists) all > dealt with at the meeting. This looks fine to me. > RegEx Discussion (20 mins) Is there an official draft now? Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6F47gOc046341 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Tue, 14 Jul 2009 21:07:42 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6F47gDm046340; Tue, 14 Jul 2009 21:07:42 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from daboo.name (daboo.name [151.201.22.177]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6F47Udx046327 for <ietf-mta-filters@imc.org>; Tue, 14 Jul 2009 21:07:41 -0700 (MST) (envelope-from cyrus@daboo.name) Received: from localhost (localhost [127.0.0.1]) by daboo.name (Postfix) with ESMTP id B6AF216CD472 for <ietf-mta-filters@imc.org>; Wed, 15 Jul 2009 00:07:29 -0400 (EDT) X-Virus-Scanned: amavisd-new at daboo.name Received: from daboo.name ([127.0.0.1]) by localhost (chewy.mulberrymail.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eT5OkgO6D7Gm for <ietf-mta-filters@imc.org>; Wed, 15 Jul 2009 00:07:29 -0400 (EDT) Received: from [10.0.1.2] (unknown [10.0.1.1]) by daboo.name (Postfix) with ESMTP id 5ABEA16CD467 for <ietf-mta-filters@imc.org>; Wed, 15 Jul 2009 00:07:29 -0400 (EDT) Date: Wed, 15 Jul 2009 00:07:28 -0400 From: Cyrus Daboo <cyrus@daboo.name> To: ietf-mta-filters@imc.org Subject: Proposed agenda Message-ID: <6035731A876F73D2FB597646@socrates.local> X-Mailer: Mulberry/4.1.0a1 (Mac OS X) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline; size52 Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> Hi folks, Below is a proposed agenda for the Stockholm meeting. If you have any additions or changes please let me know asap. Also note that we have a 2 1/2 hour slot this time so I have been generous in assigning time to each item. I would really like to see issues with "active" drafts (include, imap/sieve, external-lists) all dealt with at the meeting. Agenda Document status review (10 mins) WG Status review (10 mins) Notary (draft-freed-sieve-notary-05) ( 5 mins) Notify SIP (draft-ietf-sieve-notify-sip-message-01) ( 5 mins) Include (draft-sieve-include-02) (20 mins) IMAP/SIEVE (draft-ietf-lemonade-imap-sieve-06) (30 mins) External lists (draft-melnikov-sieve-external-lists-02) (30 mins) RegEx Discussion (20 mins) Auto-reply (draft-george-sieve-autoreply-00) ( 5 mins) EAI Issues ( 5 mins) Benefits of SIEVE (10 mins) ================================ Total: 150 mins -- Cyrus Daboo Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6DGFXr4087462 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Mon, 13 Jul 2009 09:15:33 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6DGFXWM087461; Mon, 13 Jul 2009 09:15:33 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail.ietf.org (mail.ietf.org [64.170.98.32]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6DGFXhb087455 for <ietf-mta-filters@imc.org>; Mon, 13 Jul 2009 09:15:33 -0700 (MST) (envelope-from root@core3.amsl.com) Received: by core3.amsl.com (Postfix, from userid 0) id ED29B3A6E55; Mon, 13 Jul 2009 09:15:01 -0700 (PDT) From: Internet-Drafts@ietf.org To: i-d-announce@ietf.org Cc: ietf-mta-filters@imc.org Subject: I-D Action:draft-ietf-sieve-mime-loop-09.txt Content-Type: Multipart/Mixed; Boundary="NextPart" Mime-Version: 1.0 Message-Id: <20090713161501.ED29B3A6E55@core3.amsl.com> Date: Mon, 13 Jul 2009 09:15:01 -0700 (PDT) Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> --NextPart A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Sieve Mail Filtering Language Working Group of the IETF. Title : Sieve Email Filtering: MIME part Tests, Iteration, Extraction, Replacement and Enclosure Author(s) : T. Hansen, C. Daboo Filename : draft-ietf-sieve-mime-loop-09.txt Pages : 22 Date : 2009-07-13 This document defines extensions to the Sieve email filtering language to permit analysis and manipulation of the MIME body parts of an email message. Note This document is being discussed on the MTA-FILTERS mailing list, ietf-mta-filters@imc.org. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-sieve-mime-loop-09.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. --NextPart Content-Type: Message/External-body; name="draft-ietf-sieve-mime-loop-09.txt"; site="ftp.ietf.org"; access-type="anon-ftp"; directory="internet-drafts" Content-Type: text/plain Content-ID: <2009-07-13091048.I-D@ietf.org> --NextPart-- Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6DFH7BG083565 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Mon, 13 Jul 2009 08:17:07 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n6DFH7eK083564; Mon, 13 Jul 2009 08:17:07 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from mail-bw0-f215.google.com (mail-bw0-f215.google.com [209.85.218.215]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n6DFGtc4083534 for <ietf-mta-filters@imc.org>; Mon, 13 Jul 2009 08:17:06 -0700 (MST) (envelope-from barryleiba.mailing.lists@gmail.com) Received: by bwz11 with SMTP id 11so2121164bwz.10 for <ietf-mta-filters@imc.org>; Mon, 13 Jul 2009 08:16:54 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; bh=Z4glxM4SsLvppxQ3uCTiT5hUMmdYu4av1wj+bT1Fwec=; b=ZLSDpMViLWzY5lEHjko4xDLlf3oa7uov3JC2EL8Uen2wp1F5uvY/TmauSTqUdoiauN pvYrjgcVfx8RZ7bjAkEOkz1g1HAablISAC2my8PfK9Vtfs0C1PE9vFwRX44FFMfMuzlT /2xmOFeVARY1nHgHX5ybNZkdr8J1cuCLO3mFoDomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:date:message-id:subject:from:to:cc :content-type:content-transfer-encoding; b=cjM8qj5oKfQxGgC9iJ+IHcdSiAJ8Cc1TbgN6wLkRumctWeX/IIhAh49uPHppT+4hOl 3Ob8Dosj37PNL5xPo1ilGNBCeAxGGfta97MCmPz/wybQXq+HnwWYe2Z1QnPNwXDpQhY3 CfihlvLCEsh4SsGtuwX/TTkoFkefBiC/mz6moMIME-Version: 1.0 Received: by 10.239.152.7 with SMTP id t7mr431145hbb.9.1247498214225; Mon, 13 Jul 2009 08:16:54 -0700 (PDT) Reply-To: ietf-mta-filters@imc.org Date: Mon, 13 Jul 2009 11:16:54 -0400 Message-ID: <6c9fcc2a0907130816k27aaa410u734e59ee276aed96@mail.gmail.com> Subject: Fwd: New Version Notification for draft-ietf-lemonade-imap-sieve-06 From: Barry Leiba <barryleiba.mailing.lists@gmail.com> To: ietf-mta-filters@imc.org Cc: lemonade@ietf.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> I've posted a new imap-sieve draft, which makes some updates and includes as notes (search for "[[") Ned's issues with it. I've also moved the discussion here, in preparation for moving this document to the sieve working group and away from lemonade -- we should talk about that in Stockholm. I'm asking the sieve chairs for a slot on the agenda in Stockholm to talk about this draft, which we really should work on and wrap up. To that last end, I also ask that folks review what's there and make comments, especially about (but not limited to) the "[[" notes. If we can sort out what to do with those (and explicit text is welcome), we can make some progress. I've set the reply-to on this message to go to the sieve mailing list, at <ietf-mta-filters@imc.org>. Barry ---------- Forwarded message ---------- From: IETF I-D Submission Tool <idsubmission@ietf.org> Date: Sat, Jul 11, 2009 at 11:33 AM Subject: New Version Notification for draft-ietf-lemonade-imap-sieve-06 To: barryleiba@computer.org A new version of I-D, draft-ietf-lemonade-imap-sieve-06.txt has been successfuly submitted by Barry Leiba and posted to the IETF repository. Filename: draft-ietf-lemonade-imap-sieve Revision: 06 Title: Support for Sieve in Internet Message Access Protocol (IMAP4) Creation_date: 2009-07-11 WG ID: lemonade Number_of_pages: 24 Abstract: Sieve defines an email filtering language that can, in principle, plug into any point in the processing of an email message. As defined in the base specification, it plugs into mail delivery. This document defines how Sieve can plug into points in the IMAP protocol where messages are created or changed, adding the option of user- defined or installation-defined filtering (or, with Sieve extensions, features such as notifications).Note This document defines extensions to IMAP and Sieve. For now, it is the work of the Lemonade Working Group (Enhancements to Internet email to support diverse service environments), but it will be moved to the Sieve working group at some point. 1. Discussion of this document should be taken to the Sieve mailing list at mailto:ietf-mta-filters@imc.org 2. Subscription requests can be sent to mailto:ietf-mta-filters-request@imc.org?body=subscribe (send an email message with the word "subscribe" in the body). 3. A WWW archive of back messages is available at http://www.ietf.org/mail-archive/web/sieve/index.html 4. Older messages, which were posted to the lemonade mailing list, are archived at http://www.ietf.org/mail-archive/web/lemonade/index.html The IETF Secretariat. Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n65B2m9Q059776 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits%6 verify=NO); Sun, 5 Jul 2009 04:02:48 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n65B2mcx059774; Sun, 5 Jul 2009 04:02:48 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org) X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f Received: from rufus.isode.com (rufus.isode.com [62.3.217.251]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n65B2aZa059757 for <ietf-mta-filters@imc.org>; Sun, 5 Jul 2009 04:02:47 -0700 (MST) (envelope-from alexey.melnikov@isode.com) Received: from [94.197.196.78] (94.197.196.78.threembb.co.uk [94.197.196.78]) by rufus.isode.com (submission channel) via TCP with ESMTPA id <SlCISQBV9FAr@rufus.isode.com>; Sun, 5 Jul 2009 12:02:34 +0100 Message-ID: <4A508815.3050506@isode.com> Date: Sun, 05 Jul 2009 12:01:41 +0100 From: Alexey Melnikov <alexey.melnikov@isode.com> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: en-us, en To: ietf-mta-filters@imc.org Subject: [Fwd: I-D Action:draft-melnikov-sieve-external-lists-02.txt] MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="------------060207070701090905090504" Sender: owner-ietf-mta-filters@mail.imc.org Precedence: bulk List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/> List-ID: <ietf-mta-filters.imc.org> List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe> This is a multi-part message in MIME format. --------------060207070701090905090504 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit FYI. --------------060207070701090905090504 Content-Type: message/rfc822; name="I-D Action:draft-melnikov-sieve-external-lists-02.txt" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="I-D Action:draft-melnikov-sieve-external-lists-02.txt" Return-Path: <i-d-announce-bounces@ietf.org> Received: from rufus.isode.com ([62.3.217.251]) by canine (Isode M-Box/14.5a0) with LMTP; Sun, 05 Jul 2009 12:00:41 +0100 (BST) Received: from mail.ietf.org ([64.170.98.32]) by rufus.isode.com (smtp external) via TCP with ESMTP id <SlCH2ABV9CD7@rufus.isode.com> for <Alexey.Melnikov@isode.com>; Sun, 5 Jul 2009 12:00:40 +0100 X-SPF-Result: PASS rufus.isode.com: domain of ietf.org designates 64.170.98.32 as permitted sender Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B963D3A6845; Sun, 5 Jul 2009 04:00:02 -0700 (PDT) X-Original-To: i-d-announce@ietf.org Delivered-To: i-d-announce@core3.amsl.com Received: by core3.amsl.com (Postfix, from userid 0) id 5CB813A6845; Sun, 5 Jul 2009 04:00:01 -0700 (PDT) From: Internet-Drafts@ietf.org To: i-d-announce@ietf.org Subject: I-D Action:draft-melnikov-sieve-external-lists-02.txt Content-Type: Multipart/Mixed; Boundary="NextPart" Mime-Version: 1.0 Message-Id: <20090705110001.5CB813A6845@core3.amsl.com> Date: Sun, 5 Jul 2009 04:00:01 -0700 (PDT) X-BeenThere: i-d-announce@ietf.org X-Mailman-Version: 2.1.9 Precedence: list Reply-To: internet-drafts@ietf.org List-Id: Internet Draft Announcements only <i-d-announce.ietf.org> List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe> List-Archive: <http://www.ietf.org/mail-archive/web/i-d-announce> List-Post: <mailto:i-d-announce@ietf.org> List-Help: <mailto:i-d-announce-request@ietf.org?subject=help> List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe> Sender: i-d-announce-bounces@ietf.org Errors-To: i-d-announce-bounces@ietf.org --NextPart A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Sieve Extension: Externally Stored Lists Author(s) : A. Melnikov Filename : draft-melnikov-sieve-external-lists-02.txt Pages : 7 Date : 2009-07-05 Sieve scripting language can be used for implementing of whitelisting, blacklisting and personal distribution lists. Currently this requires that all members of such lists be hardcoded in the script itself. Whenever a member of such list is added or deleted, the script needs to be updated and possibly uploaded to a mail server. This document defines a Sieve extension for accessing externally stored mailing lists, i.e. list whose members are stored externally to the script, for example in LDAP (RFC 4510), ACAP (RFC 2244) or a relational database. ToDo o Need a way to advertise supported URI schemas in ManageSieve and ihave. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-melnikov-sieve-external-lists-02.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. --NextPart Content-Type: Message/External-body; name="draft-melnikov-sieve-external-lists-02.txt"; site="ftp.ietf.org"; access-type="anon-ftp"; directory="internet-drafts" Content-Type: text/plain Content-ID: <2009-07-05034804.I-D@ietf.org> --NextPart Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ I-D-Announce mailing list I-D-Announce@ietf.org https://www.ietf.org/mailman/listinfo/i-d-announce Internet-Draft directories: http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt --NextPart-- --------------060207070701090905090504--
- [draft-melnikov-sieve-external-lists] 2.4 Propose… Robert Burrell Donkin
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Ned Freed
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Barry Leiba
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Robert Burrell Donkin
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Jeffrey Hutzelman
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Robert Burrell Donkin
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Jeffrey Hutzelman
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Robert Burrell Donkin
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Barry Leiba
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Cyrus Daboo
- Re: [draft-melnikov-sieve-external-lists] 2.4 Pro… Robert Burrell Donkin