IETF Logo Mail Archive

Re: [Uta] Benjamin Kaduk's Discuss on draft-ietf-uta-smtp-require-tls-07: (with DISCUSS and COMMENT)

Benjamin Kaduk <kaduk@mit.edu> Thu, 21 February 2019 12:02 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 34E5A130F9C; Thu, 21 Feb 2019 04:02:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mit.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fbxL467oxa3M; Thu, 21 Feb 2019 04:02:47 -0800 (PST)
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (mail-eopbgr760090.outbound.protection.outlook.com [40.107.76.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C3790128B36; Thu, 21 Feb 2019 04:02:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mit.edu; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ubsjJm/RdqfVJH+qzjikHIw6bZf8daO4UfWDEJS4w04=; b=Dqt+QUcXx9oEkxUgZh4yiBlGXM8LENoQLDOtkyRRjQtLQXnCzBhYXrtIEl+ZOnEq0PsDiRxDXMERC/7z+y2EpJ3Ddv+YpBD7awcsENdXOeBygiOAbGYvVqI/NQzNhAaotERBtVB+KUxz6SPoHK+xMH7i0PYwa/EjXYI6VKaOdHw=
Received: from DM5PR0102CA0019.prod.exchangelabs.com (2603:10b6:4:9c::32) by MN2PR01MB5615.prod.exchangelabs.com (2603:10b6:208:11c::29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1643.15; Thu, 21 Feb 2019 12:02:44 +0000
Received: from DM3NAM03FT026.eop-NAM03.prod.protection.outlook.com (2a01:111:f400:7e49::201) by DM5PR0102CA0019.outlook.office365.com (2603:10b6:4:9c::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.1643.15 via Frontend Transport; Thu, 21 Feb 2019 12:02:44 +0000
Authentication-Results: spf=pass (sender IP is 18.9.28.11) smtp.mailfrom=mit.edu; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=bestguesspass action=none header.from=mit.edu;
Received-SPF: Pass (protection.outlook.com: domain of mit.edu designates 18.9.28.11 as permitted sender) receiver=protection.outlook.com; client-ip=18.9.28.11; helo=outgoing.mit.edu;
Received: from outgoing.mit.edu (18.9.28.11) by DM3NAM03FT026.mail.protection.outlook.com (10.152.82.185) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.1643.13 via Frontend Transport; Thu, 21 Feb 2019 12:02:43 +0000
Received: from kduck.mit.edu (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id x1LC2evF019453 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 21 Feb 2019 07:02:42 -0500
Date: Thu, 21 Feb 2019 06:02:39 -0600
From: Benjamin Kaduk <kaduk@mit.edu>
To: Alexey Melnikov <aamelnikov@fastmail.fm>
CC: The IESG <iesg@ietf.org>, uta@ietf.org, uta-chairs@ietf.org, valery@smyslov.net, draft-ietf-uta-smtp-require-tls@ietf.org
Message-ID: <20190221120239.GS69562@kduck.mit.edu>
References: <155072491254.20210.15187912705241578950.idtracker@ietfa.amsl.com> <3EF4E85D-6836-4A08-9638-82F88F28A5A3@fastmail.fm>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <3EF4E85D-6836-4A08-9638-82F88F28A5A3@fastmail.fm>
User-Agent: Mutt/1.10.1 (2018-07-13)
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:18.9.28.11; IPV:CAL; SCL:-1; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(396003)(136003)(376002)(346002)(39860400002)(2980300002)(189003)(199004)(5660300002)(55016002)(54906003)(8936002)(36906005)(316002)(46406003)(53416004)(26005)(246002)(106002)(786003)(47776003)(75432002)(50466002)(186003)(86362001)(305945005)(1076003)(6666004)(356004)(23726003)(76176011)(33656002)(6916009)(486006)(88552002)(97756001)(4326008)(2906002)(446003)(956004)(26826003)(7696005)(53546011)(8676002)(58126008)(478600001)(426003)(11346002)(126002)(104016004)(229853002)(106466001)(6246003)(476003)(16586007)(336012)(18370500001); DIR:OUT; SFP:1102; SCL:1; SRVR:MN2PR01MB5615; H:outgoing.mit.edu; FPR:; SPF:Pass; LANG:en; PTR:outgoing-auth-1.mit.edu; MX:1; A:1;
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 536b1a65-e212-4286-b84b-08d697f47cee
X-Microsoft-Antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600110)(711020)(4605104)(4608103)(4709054)(2017052603328)(7153060); SRVR:MN2PR01MB5615;
X-MS-TrafficTypeDiagnostic: MN2PR01MB5615:
X-Microsoft-Exchange-Diagnostics: 1; MN2PR01MB5615; 20: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
X-Microsoft-Antispam-PRVS: <MN2PR01MB56152378C7214EF3A9E00F25A07E0@MN2PR01MB5615.prod.exchangelabs.com>
X-Forefront-PRVS: 09555FB1AD
X-Microsoft-Exchange-Diagnostics: 1; MN2PR01MB5615; 23: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
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Message-Info: mgofIb2mJiE3Bl9JwINJDHvs0Iux3ea9jvDxvKTfHG51qWYYRTW7sN4FKmOyF6XHBKqRgQHRBGmxOz6LydsuPvIvwpLPNK/NkULDNeYLooGlAINJW05ERWB90JDdBRLRX+RGcaDW9qPu3j9GyNSrEVCLUknU/CXop1gVmVtK/7buOhn9iflyvBxTFrAzG1Hnk0kDolTvTym4R2Rq9KI3lSpO2Ai/ZCBfApJEvk3Pyx9GZYrP/97AbHt1UTuE2JQ8GIKymapuCeqBMu1BeliKZxWq5Tbx6vB3n0YF/ngDfdFazeAWXg8SLje23JchMd6IdV/k63plMqJG8zVX4xWJxvWHQU4YN9AS+YkUs7x/CUUTSceXPvd3BmS1fUc6bOGzuvCcUIUm6S/K2BLljyA/nBtsXN5g0H0DF8VRDMdXWUk=
X-OriginatorOrg: mit.edu
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 Feb 2019 12:02:43.8503 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 536b1a65-e212-4286-b84b-08d697f47cee
X-MS-Exchange-CrossTenant-Id: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=64afd9ba-0ecf-4acf-bc36-935f6235ba8b; Ip=[18.9.28.11]; Helo=[outgoing.mit.edu]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR01MB5615
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/-fxuIZNl-f3mirgjbhtXHRQ45Vk>
Subject: Re: [Uta] Benjamin Kaduk's Discuss on draft-ietf-uta-smtp-require-tls-07: (with DISCUSS and COMMENT)
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Feb 2019 12:02:49 -0000

On Thu, Feb 21, 2019 at 10:24:17AM +0000, Alexey Melnikov wrote:
> Hi Benjamin,
> A couple of comments on some of your DISCUSS points:
> 
> > On 21 Feb 2019, at 04:55, Benjamin Kaduk <kaduk@mit.edu> wrote:
> > 
> > I'm also concerned about the apparent new burden placed on senders to
> > actively decide whether every outgoing message requires end-to-end TLS
> > protection or is safe to forward without TLS, especially in light of the
> > apparent goal (see next paragraph) of quickly achieving (near-)universal
> > deployment.
> 
> While I have sympathy toward the feeling that some users would be unable to decide, there are certain classes of email messages that would require either "yes" or "no" option. For example, banking statements sent in email might always require "yes".
> 
> >  There doesn't seem to be much in this document to justify
> > the stance that the default "don't care" option should be removed.
> 
> The default option is always present (as it is the default SMTP behaviour) when the client chooses not to use the extension. So "don't care" option is always possible.

I'm looking at Section 4.3 and reading it as requiring the MUA (or other
agent) to make an explicit "yes/no" choice; it use wording like "In either
case", etc.  Can you point me at what the "no choice" option in that text?

> > The "must chain forward to final delivery" property for the REQUIRETLS
> > option seems to present some incremental deployment difficulties, in that
> > it will be nigh-impossible to successfully deliver such a message until
> > there is fairly significant deployment coverage.  E.g., if any major email
> > hosting provider does not implement, then it will forever remain a niche
> > technology.  What indication to we have that this technology can succeed as
> > specified?
> 
> There are several SMTP extensions on Standards Track that have similar properties. IETF generally didn't require "prove that it gets deployed" for them. There are already some implementations (as per the write-up).

It's just surprising to see a "your message won't get sent if the whole
path doesn't support this extension" behavior; this seems to require a
critical mass of deployment before any major usage is possible.
I don't object per se to specifying things like this, but it does make one
wonder whether we should spend so much effort on things that may be of
little use in practice.

> >  If we anticipate it becoming a part of the de facto core,
> > mandatory, SMTP feature set, should we not indicate that by an Updates:
> > relationship?
> 
> We haven't done this in the past even for widely deployed SMTP extensions. This is not a reason not to do this in the future, but I think starting with this extension would cause more confusion.

Perhaps this could be discussed on the call (which, sadly, I don't expect
ot be on).  I recognize that it would be weird to start a precedent here,
and of course if the intention is not that this extension become de facto
part of core SMTP then my concern disappears.

-Benjamin

v2.23.0 | Report a Bug | By Email