Re: [spfbis] WG Review: SPF Update (spfbis)
Hector Santos <hsantos@isdg.net> Tue, 20 December 2011 19:40 UTC
Return-Path: <hsantos@isdg.net>
X-Original-To: spfbis@ietfa.amsl.com
Delivered-To: spfbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CE2B21F8A57 for <spfbis@ietfa.amsl.com>; Tue, 20 Dec 2011 11:40:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.415
X-Spam-Level:
X-Spam-Status: No, score=-2.415 tagged_above=-999 required=5 tests=[AWL=0.184, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vT14HrV348-s for <spfbis@ietfa.amsl.com>; Tue, 20 Dec 2011 11:40:48 -0800 (PST)
Received: from mail.winserver.com (mail.santronics.com [208.247.131.9]) by ietfa.amsl.com (Postfix) with ESMTP id 85D1921F84D5 for <spfbis@ietf.org>; Tue, 20 Dec 2011 11:40:48 -0800 (PST)
DKIM-Signature: v=1; d=isdg.net; s=tms1; a=rsa-sha1; c=simple/relaxed; l=2762; t=1324410041; h=Received:Received: Received:Received:Message-ID:Date:From:Organization:Subject:To: List-ID; bh=ftDKOanueRG3uR0GbeCZh25Rj04=; b=t3W045MZWgHe1l8gC4pV lJM4cGrbBsBsHBkWa4pzzH6POlviVU+SAiJQmPW8FbGW9BO2hO25sPBuPG5qt23K IKcRj1HMXbY8/wmTyo251/V4KcNy5rL7/bap+NwxEaz05+J0yNEi/5ZaqXP2oGtL Kv8H7/gjJKsiZHqeXr+aErY=
Received: by winserver.com (Wildcat! SMTP Router v6.4.454.1) for spfbis@ietf.org; Tue, 20 Dec 2011 14:40:41 -0500
Authentication-Results: dkim.winserver.com; dkim=pass header.d=beta.winserver.com header.s=tms1 header.i=beta.winserver.com; adsp=pass policy=all author.d=isdg.net asl.d=beta.winserver.com;
Received: from beta.winserver.com ([208.247.131.23]) by winserver.com (Wildcat! SMTP v6.4.454.1) with ESMTP id 1906915662.15653.520; Tue, 20 Dec 2011 14:40:40 -0500
DKIM-Signature: v=1; d=beta.winserver.com; s=tms1; a=rsa-sha256; c=simple/relaxed; l=2762; t=1324409901; h=Received:Received: Message-ID:Date:From:Organization:Subject:To:List-ID; bh=Qx6Hzbz DgAc30MgyDYXiBYz05nVNR7KoPwfYaIZ83lc=; b=tOxmEs+cSelazUeVEYPpMMK 8N+P4pZbJ+XjjEHHFgM9SnxM2nh5ALBPXYjsYK7ctAzzNvFnyNnxwMBYd1THYauL oJywFNKHwHUDHSXaf9ftvMpJR0kl++S2QSxcSYsTlnIyL1W1ZpiPIS/IhcvP1uSt eEu9/8GTFQ0TMaMqPMOg=
Received: by beta.winserver.com (Wildcat! SMTP Router v6.4.454.3) for spfbis@ietf.org; Tue, 20 Dec 2011 14:38:21 -0500
Received: from [192.168.1.101] ([99.3.147.93]) by beta.winserver.com (Wildcat! SMTP v6.4.454.3) with ESMTP id 2505891969.9.4744; Tue, 20 Dec 2011 14:38:21 -0500
Message-ID: <4EF0E4B5.1080800@isdg.net>
Date: Tue, 20 Dec 2011 14:40:37 -0500
From: Hector Santos <hsantos@isdg.net>
Organization: Santronics Software, Inc.
User-Agent: Thunderbird 2.0.0.24 (Windows/20100228)
MIME-Version: 1.0
References: <20111220171805.D69BA21F8ABD@ietfa.amsl.com> <6.2.5.6.2.20111220104026.0add67f0@resistor.net>
In-Reply-To: <6.2.5.6.2.20111220104026.0add67f0@resistor.net>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Comment: Missing recipient address appended by wcSMTP router.
To: spfbis@ietf.org
Cc: spfbis@ietf.org, iesg@ietf.org
Subject: Re: [spfbis] WG Review: SPF Update (spfbis)
X-BeenThere: spfbis@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SPFbis discussion list <spfbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spfbis>, <mailto:spfbis-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/spfbis>
List-Post: <mailto:spfbis@ietf.org>
List-Help: <mailto:spfbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spfbis>, <mailto:spfbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Dec 2011 19:40:49 -0000
+1, work out the current SPF spec issues, codify the spec, based on
the 9 IETF-MAN/VENDOR-YEARS history.
We need to keep in mind that back during MARID it was clearly
envisioned that new PAYLOAD technologies will come and we always knew
there would be a need to couple or augment the technologies. That is
why a few of use considered a SMTP extension called HEAD to allow a
sender to send the RFC5322 header first.
But the principle reason why MARID started was because of the 2003
SORBIG world wide eVirus attacks which exploited 100% the SMTP relaxed
nature of MAIL FROM checking and used the ACCEPT/BOUNCE requirement at
a two prone attempt to deliver the payload:
1st the RCPT TO,
2nd the MAIL FROM during the bounce.
So a key goal was to avoid any payload download which the original SPF
clone CEP by Microsoft was promoting (changed to SENDER-ID).
The compromise was the SUBMITTER protocol which was a SMTP extension
to pass the PRA as a MAIL FROM keyword.
MAIL FROM: <id @ SENDER-DOMAIN.COM> SUBMITTER=user@AUTHOR-DOMAIN.COM
If the goal of this SCOPE= idea is to serve the same purpose, then we
already have the SUBMITTER protocol and its definitely in use.
--
Hector Santos, CTO
http://www.santronics.com
http://santronics.blogspot.com
SM wrote:
> At 09:18 20-12-2011, IESG Secretary wrote:
>> Changes to the SPF specification will be limited to the correction
>> of errors, removal of unused features, addition of any enhancements
>> that have already gained widespread support, and addition of
>> clarifying language.
>>
>> The working group will also produce a document describing the
>> course of the SPF/Sender-ID experiment (defined in the IESG note
>> on the RFCs in question), bringing that experiment to a formal
>> conclusion. No other work on Sender-ID will be done.
>>
>> Finally, the working group will develop the proposed "scope"
>> extension found in draft-mehnle-spfbis-scope.
>
> The first two work items will generate their share of controversies. I
> suggest removing the "scope" document from the list of work items to
> restrict the scope of the controversies at the initial stage. Once the
> proposed working group has produced the deliverables that can bring
> closure to the SPF/Sender-ID debates, it can determine whether there are
> still any surviving WG participants to pursue work on extensions to
> 4408bis.
>
>> The initial draft set:
>> draft-kitterman-4408bis
>> draft-mehnle-spfbis-scope
>
> That should be:
>
> draft-kitterman-4408bis-00
> draft-mehnle-spfbis-scope-00
>
> Regards,
> -sm
> _______________________________________________
> spfbis mailing list
> spfbis@ietf.org
> https://www.ietf.org/mailman/listinfo/spfbis
>
>
- [spfbis] WG Review: SPF Update (spfbis) IESG Secretary
- Re: [spfbis] WG Review: SPF Update (spfbis) Dave CROCKER
- Re: [spfbis] WG Review: SPF Update (spfbis) Scott Kitterman
- Re: [spfbis] WG Review: SPF Update (spfbis) Hector Santos
- Re: [spfbis] WG Review: SPF Update (spfbis) Tim Draegen
- Re: [spfbis] WG Review: SPF Update (spfbis) Dave CROCKER
- Re: [spfbis] WG Review: SPF Update (spfbis) Murray S. Kucherawy
- Re: [spfbis] WG Review: SPF Update (spfbis) Hector Santos
- Re: [spfbis] WG Review: SPF Update (spfbis) Alessandro Vesely
- Re: [spfbis] WG Review: SPF Update (spfbis) Dotzero
- Re: [spfbis] WG Review: SPF Update (spfbis) Murray S. Kucherawy
- Re: [spfbis] WG Review: SPF Update (spfbis) Hector Santos
- Re: [spfbis] WG Review: SPF Update (spfbis) Pete Resnick
- Re: [spfbis] WG Review: SPF Update (spfbis) SM
- Re: [spfbis] WG Review: SPF Update (spfbis) Murray S. Kucherawy
- Re: [spfbis] WG Review: SPF Update (spfbis) Peter Saint-Andre
- Re: [spfbis] WG Review: SPF Update (spfbis) Pete Resnick
- Re: [spfbis] WG Review: SPF Update (spfbis) Tim Draegen
- Re: [spfbis] WG Review: SPF Update (spfbis) Peter Saint-Andre
- Re: [spfbis] WG Review: SPF Update (spfbis) Murray S. Kucherawy
- Re: [spfbis] WG Review: SPF Update (spfbis) Peter Saint-Andre
- Re: [spfbis] WG Review: SPF Update (spfbis) Hector Santos
- Re: [spfbis] WG Review: SPF Update (spfbis) Derek Diget
- Re: [spfbis] WG Review: SPF Update (spfbis) Hector Santos
- Re: [spfbis] WG Review: SPF Update (spfbis) Scott Kitterman
- Re: [spfbis] WG Review: SPF Update (spfbis) Commerco WebMaster