IETF Logo Mail Archive

Re: [spfbis] SPF and EAI

"Murray S. Kucherawy" <superuser@gmail.com> Fri, 13 July 2012 04:58 UTC

Return-Path: <superuser@gmail.com>
X-Original-To: spfbis@ietfa.amsl.com
Delivered-To: spfbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C282421F86B4 for <spfbis@ietfa.amsl.com>; Thu, 12 Jul 2012 21:58:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.559
X-Spam-Level:
X-Spam-Status: No, score=-3.559 tagged_above=-999 required=5 tests=[AWL=0.039, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UlrOi8R3eKvv for <spfbis@ietfa.amsl.com>; Thu, 12 Jul 2012 21:57:59 -0700 (PDT)
Received: from mail-lb0-f172.google.com (mail-lb0-f172.google.com [209.85.217.172]) by ietfa.amsl.com (Postfix) with ESMTP id 22DC221F86AA for <spfbis@ietf.org>; Thu, 12 Jul 2012 21:57:58 -0700 (PDT)
Received: by lbbgo11 with SMTP id go11so4453370lbb.31 for <spfbis@ietf.org>; Thu, 12 Jul 2012 21:58:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=YZmcaZB4rUmN1sQrr/+NAdgoXBZqsg6SyWVJqvV+b24=; b=yPPqv8sW8sJLLa1fKeNOVHd13dvXR0SGtM7QPqq0LvEz0vXQij45x0YId7PfwscCmv X+VVe0VCshgQwLG8mhpFYxKbl4z8NcYVWrOH1o2C+ip+8fYgQv5SZ4bRIvGZu8nYMuMq zFty4Zpiv2EgvE/MPEzbT8kgr8WYxLmfVu+cxQl0D5AQRU0MWqCEP5Vy42J7uTDFiBbW TT+fCetIP8A+N88BHNtqqVzbZX7u/vOvJT/gyPuSkUCnI7svr+KLVjCVHh/AsmPep9vR mkQujuXvULyPCWzQPiaqC6BZCBiKZEjXzXsUX0vHFGnIgPqd8buAmtqgGlWUhGDxJt76 NEBw==
MIME-Version: 1.0
Received: by 10.112.83.169 with SMTP id r9mr59429lby.66.1342155513246; Thu, 12 Jul 2012 21:58:33 -0700 (PDT)
Received: by 10.112.89.3 with HTTP; Thu, 12 Jul 2012 21:58:33 -0700 (PDT)
In-Reply-To: <2786082.683g7oVmD0@scott-latitude-e6320>
References: <20120712022051.60587.qmail@joyce.lan> <3489998.IRH7rCGsD1@scott-latitude-e6320> <CAL0qLwa6ZpD=8EwF7z+_oWDE=tDBp29tTCyiROvA9bPB4cK-sQ@mail.gmail.com> <2786082.683g7oVmD0@scott-latitude-e6320>
Date: Thu, 12 Jul 2012 21:58:33 -0700
Message-ID: <CAL0qLwb+6p-dvz5abG84UxZ_e80DEda8P+4dvYiupoFRb9nAHw@mail.gmail.com>
From: "Murray S. Kucherawy" <superuser@gmail.com>
To: Scott Kitterman <spf2@kitterman.com>
Content-Type: multipart/alternative; boundary="f46d0401fc4399b2cb04c4aeee48"
Cc: spfbis@ietf.org
Subject: Re: [spfbis] SPF and EAI
X-BeenThere: spfbis@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SPFbis discussion list <spfbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spfbis>, <mailto:spfbis-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/spfbis>
List-Post: <mailto:spfbis@ietf.org>
List-Help: <mailto:spfbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spfbis>, <mailto:spfbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Jul 2012 04:58:00 -0000

On Thu, Jul 12, 2012 at 9:10 PM, Scott Kitterman <spf2@kitterman.com> wrote:

> The charter says "removal of unused features".  This is different than
> type SPF
> because type SPF was redundant, this is not.
>

I think the issue of redundancy is inapposite.  It's an unused feature,
pure and simple.  The statistics show far less less than 1% use.

Why do we need to keep something as complicated as macro expansion when
almost nobody is using it?

Perhaps more importantly: Why was it okay for us to decide Sender ID is de
facto obsolete, while even stronger evidence (by orders of magnitude)
against macros must be disregarded?  If it would help, I could add up the
number of lines in sid-milter that added Sender ID support for comparison.
It, too, was relatively small.

I don't think it's in our charter to break existing, published SPF record
> without a compelling case.  I don't think rarely used is at all
> compelling.  I
> don't think simplification is at all compelling either.
>

Purely from a procedural standpoint, I disagree.  SPF is currently
Experimental, and moving to Proposed Standard is an ideal time to chop out
things that fewer than two tenths of one percent of the deployed base is
using.  That comprises part of what we learned from the experiment.  I
don't agree that we are mandated to cater to such a tiny number of sites.

The remaining question is whether the working group believes use by 200 out
of 150,000 warrants keeping the feature.  To use your own argument, if in
5-7 years we've seen only this much use of SPF macros, I'm doubtful it's
going to increase.

But, to be fair, we don't have a hard-and-fast definition of "unused" when
going through this exercise, so it's left to consensus. Others will have to
weigh in.

We do have precedent, however, as a guide.  For example, when DKIM went to
Draft Standard, we chopped a few things (most notably "g=") because they
had seen almost zero adoption.  According to the RFC4871 interoperability
report, after 8.1M signed messages were processed, only 434 of keys were
found that had "g=" tags in them.  So the use wasn't zero, and someone
apparently found them potentially useful, but the decision was made that
there was not enough adoption to warrant keeping the complexity in the
specification.

However, we didn't remove "l=", much as we wanted to, because its use was
around 3.7%.  Same with "x=" (3.4%) and "z=" (5.9%).  Use of SPF macros
falls somewhere in between those and "g=".

There are other examples of this tactic going back as far as RFC821 (SAML
and SOML).

You argued that the complexity isn't that big based on lines of code.  It
wasn't for "g=" either.  I removed 162 lines of code that time from
OpenDKIM, and we removed a small section of the RFC.

As is often quoted around these parts: "“Perfection is achieved not when
there is nothing left to add, but when there is nothing left to take away."

-MSK

v2.23.0 | Report a Bug | By Email