Re: Comments on draft-freed-sieve-environment-04
Kjetil Torgrim Homme <kjetilho@ifi.uio.no> Tue, 25 March 2008 15:46 UTC
Return-Path: <owner-ietf-mta-filters@mail.imc.org>
X-Original-To: ietfarch-sieve-archive-Aet6aiqu@core3.amsl.com
Delivered-To: ietfarch-sieve-archive-Aet6aiqu@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4B9163A6A45 for <ietfarch-sieve-archive-Aet6aiqu@core3.amsl.com>; Tue, 25 Mar 2008 08:46:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kYD2j7K2kcPp for <ietfarch-sieve-archive-Aet6aiqu@core3.amsl.com>; Tue, 25 Mar 2008 08:46:54 -0700 (PDT)
Received: from balder-227.proper.com (cl-240.ewr-01.us.sixxs.net [IPv6:2001:4830:1200:ef::2]) by core3.amsl.com (Postfix) with ESMTP id 397B43A6865 for <sieve-archive-Aet6aiqu@ietf.org>; Tue, 25 Mar 2008 08:46:53 -0700 (PDT)
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id m2PFZbGv035662 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 25 Mar 2008 08:35:37 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id m2PFZb7b035661; Tue, 25 Mar 2008 08:35:37 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f
Received: from pat.uio.no (pat.uio.no [129.240.10.15]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id m2PFZZ5e035649 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <ietf-mta-filters@imc.org>; Tue, 25 Mar 2008 08:35:37 -0700 (MST) (envelope-from kjetilho@ifi.uio.no)
Received: from mail-mx2.uio.no ([129.240.10.30]) by pat.uio.no with esmtp (Exim 4.67) (envelope-from <kjetilho@ifi.uio.no>) id 1JeBBU-0000RX-QL; Tue, 25 Mar 2008 16:35:32 +0100
Received: from smtp.uio.no ([129.240.10.9] helo=mail-mx2.uio.no) by mail-mx2.uio.no with esmtp (Exim 4.69) (envelope-from <kjetilho@ifi.uio.no>) id 1JeBBQ-0003h2-4v; Tue, 25 Mar 2008 16:35:28 +0100
Received: from pat-gw.osl.fast.no ([217.144.235.5] helo=[192.168.2.4]) by mail-mx2.uio.no with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.69) (envelope-from <kjetilho@ifi.uio.no>) id 1JeBBP-0003fB-Dh; Tue, 25 Mar 2008 16:35:28 +0100
Subject: Re: Comments on draft-freed-sieve-environment-04
From: Kjetil Torgrim Homme <kjetilho@ifi.uio.no>
To: Ned Freed <ned.freed@mrochek.com>
Cc: ietf-mta-filters@imc.org
In-Reply-To: <01MSRCK0MPHS00005Q@mauve.mrochek.com>
References: <alpine.BSO.1.00.0803190129540.441@vanye.mho.net> <01MSRCK0MPHS00005Q@mauve.mrochek.com>
Content-Type: text/plain
Date: Tue, 25 Mar 2008 16:35:16 +0100
Message-Id: <1206459316.16281.2.camel@oslhomkje>
Mime-Version: 1.0
X-Mailer: Evolution 2.12.1
Content-Transfer-Encoding: 7bit
X-UiO-SPF-Received:
X-UiO-Resend: resent
X-UiO-SPF-Received:
X-UiO-Spam-info: not spam, SpamAssassin (score=0.0, required=5.0, autolearn=disabled, none)
X-UiO-Scanned: 0BCE3E91C581F57FB166B5180A277F8902038558
X-UiO-SR-test: 4EB7E043F1E04A429DEFDBA52F967E09DDA0A0C9
X-UiO-SPAM-Test: remote_host: 129.240.10.9 spam_score: 0 maxlevel 200 minaction 2 bait 0 mail/h: 949 total 7512551 max/h 8345 blacklist 0 greylist 0 ratelimit 0
Sender: owner-ietf-mta-filters@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/>
List-ID: <ietf-mta-filters.imc.org>
List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe>
On Sun, 2008-03-23 at 10:50 -0700, Ned Freed wrote:
> Also a good point. I have added:
>
> The remote-host environment item defined in this specification is usually
> determined by performing a PTR DNS lookup on the client IP address. This
> information may come from an untrusted source. For example, the test:
>
> if environment :matches "remote-host" "*.mydomain.com" { ... }
>
> is not a good way to test whether the message came from 'outside' becaus
> anyone who can create a PTR record can create one that refers to whatever
> domain they choose.
[...]
>
> I think a simpler way to handle this is to say that the name will
> be blank if it cannot be resolved into a host name. How about:
>
> "remote-host"
> => Host name of remote SMTP/LMTP/Submission client, if
> applicable and available. The empty string will be returned
> if for some reason this information cannot be obtained for
> the current client.
sorry, I don't understand what this means. is the existence of a PTR
record sufficient? it seems so, given the above added caveat. if so --
how is a script able to detect a forgery?
--
med venleg helsing,
Kjetil T.
- Comments on draft-freed-sieve-environment-04 Philip Guenther
- Re: Comments on draft-freed-sieve-environment-04 Ned Freed
- Re: Comments on draft-freed-sieve-environment-04 Philip Guenther
- Re: Comments on draft-freed-sieve-environment-04 Alexey Melnikov
- Re: Comments on draft-freed-sieve-environment-04 Kjetil Torgrim Homme
- Re: Comments on draft-freed-sieve-environment-04 Ned Freed
- Re: Comments on draft-freed-sieve-environment-04 Kjetil Torgrim Homme
- Re: Comments on draft-freed-sieve-environment-04 Ned Freed