IETF Logo Mail Archive

Re: [Uta] Port 465

t.p. <daedulus@btconnect.com> Sun, 09 March 2014 10:16 UTC

Return-Path: <daedulus@btconnect.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 75BFC1A023D for <uta@ietfa.amsl.com>; Sun, 9 Mar 2014 03:16:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.201
X-Spam-Level:
X-Spam-Status: No, score=-1.201 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E6Ow-Stv7h5P for <uta@ietfa.amsl.com>; Sun, 9 Mar 2014 03:16:48 -0700 (PDT)
Received: from emea01-am1-obe.outbound.protection.outlook.com (mail-am1lp0013.outbound.protection.outlook.com [213.199.154.13]) by ietfa.amsl.com (Postfix) with ESMTP id 5AA3B1A0334 for <uta@ietf.org>; Sun, 9 Mar 2014 03:16:37 -0700 (PDT)
Received: from DB3PRD0710HT001.eurprd07.prod.outlook.com (10.255.75.36) by AMSPR07MB035.eurprd07.prod.outlook.com (10.242.81.23) with Microsoft SMTP Server (TLS) id 15.0.893.10; Sun, 9 Mar 2014 10:16:30 +0000
Received: from pc6 (86.159.89.250) by pod51017.outlook.com (10.255.75.36) with Microsoft SMTP Server (TLS) id 14.16.423.0; Sun, 9 Mar 2014 10:16:30 +0000
Message-ID: <00b201cf3b7f$e4a779a0$4001a8c0@gateway.2wire.net>
From: "t.p." <daedulus@btconnect.com>
To: Christian Huitema <huitema@huitema.net>, uta@ietf.org
References: <2A0EFB9C05D0164E98F19BB0AF3708C711FB9AAD89@USMBX1.msg.corp.akamai.com> <8691BA706C9BAB52D64A8444@96B2F16665FF96BAE59E9B90> <00cd01cf3b05$4e5fa500$eb1eef00$@huitema.net>
Date: Sun, 09 Mar 2014 10:01:45 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1106
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
X-Originating-IP: [86.159.89.250]
X-Forefront-PRVS: 0145758B1D
X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10009001)(6009001)(428001)(189002)(199002)(13464003)(51704005)(377454003)(44716002)(62236002)(77096001)(83322001)(76786001)(63696002)(79102001)(19580395003)(19580405001)(50466002)(81542001)(95666003)(80022001)(61296002)(65816001)(47776003)(80976001)(77156001)(74502001)(51856001)(62966002)(76796001)(33646001)(47446002)(59766001)(87266001)(76482001)(74706001)(81342001)(90146001)(50986001)(74366001)(93136001)(88136002)(85852003)(46102001)(84392001)(69226001)(4396001)(50226001)(53806001)(86362001)(93516002)(92726001)(23756003)(87286001)(92566001)(14496001)(74876001)(15975445006)(97186001)(74662001)(66066001)(94946001)(77982001)(47976001)(87936001)(56776001)(93916002)(89996001)(85306002)(54316002)(44736004)(95416001)(49866001)(56816005)(83072002)(97336001)(94316002)(47736001)(31966008)(74416001)(7726001); DIR:OUT; SFP:1101; SCL:1; SRVR:AMSPR07MB035; H:DB3PRD0710HT001.eurprd07.prod.outlook.com; CLIP:86.159.89.250; FPR:CC1CF13D.AFC69292.3ED51DBF.48E9E179.204AF; PTR:InfoNoRecords; MX:1; A:0; LANG:en;
Received-SPF: None (: btconnect.com does not designate permitted sender hosts)
X-OriginatorOrg: btconnect.com
Archived-At: http://mailarchive.ietf.org/arch/msg/uta/14ugARYZZJ3Tfkw6AExo-lm8wkk
Subject: Re: [Uta] Port 465
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 09 Mar 2014 10:16:50 -0000

----- Original Message -----
From: "Christian Huitema" <huitema@huitema.net>
To: "'Chris Newman'" <chris.newman@oracle.com>; "'Salz, Rich'"
<rsalz@akamai.com>; <uta@ietf.org>
Sent: Saturday, March 08, 2014 7:33 PM
> >   This is a one time procedural exception to the rules in RFC 6335.
> >  This requires explicit IESG approval and does not set a precedent.
> >   Historically, port 465 was briefly registered as the "smtps" port.
> >   This registration made no sense as the SMTP transport MX
> >   infrastructure has no way to specify a port so port 25 is always
> >   used.  As a result, the registration was revoked and was
subsequently
> >   reassigned to a different service.  In hindsight, the "smtps"
> >   registration should have been renamed or reserved rather than
> >   revoked.  Unfortunately, some widely deployed mail software
> >   interpreted "smtps" as "submissions" [RFC6409] and used that port
for
> >   email submission by default when an end-user requests security
during
> >   account setup.  If a new port is assigned for the submissions
> >   service, email software will either continue with unregistered use
of
> >   port 465 (leaving the port registry inaccurate relative to
de-facto
>  >  practice and wasting a well-known port), or confusion between the
de-
>  >  facto and registered ports will cause harmful interoperability
> >   problems that will deter use of TLS for message submission.  The
> >  authors believe both of these outcomes are less desirable than a
wart
> >   in the registry documenting real-world usage of a port for two
>  > purposes.  Although STARTTLS-on-port-587 has deployed, it has not
>  >  replaced deployed use of implicit TLS submission on port 465.
>
> Updating mail agents to use another port is of course possible, but in
> practice will require manual configuration of each and every agent. It
would
> have to be synchronized between servers and clients, which makes
automated
> updates pretty hard. In short, any drastic action is likely to disrupt
the
> deployment of SMTP Submission over TLS. We are trying to get more
> disruption, not less, so we should not mandate a change of port on a
large
> number of deployed clients and servers.

Christian,

My ISP, not a small one, required me and everyone else to change their
ports a few years ago.  There was parallel running, so it did not have
to be synchronised between clients and servers.  I would imagine the
numbers affected would be in seven figures. We had no choice, so it
happened.  (Interestingly, the ISP provided instructions on how to make
the change but got it wrong, so some SMTP skills were needed to make the
migration).

Tom Petch

> The port collision is only a practical problem if the same server
wants to
> deploy both Secure SMTP submission and the experimental "URL
Rendesvous
> (sic) Directory for SSM." Do we know whether that is a problem in
practice?
> I suspect that the overlap between the two usages is quite small, and
that
> if any port migration is required, it will only concern a small number
of
> servers deploying both services.
>
> Given that, it is probably better that the IANA directory recognizes
usage.
> IANA should document that traffic on TCP port 465 can be either of
those
> protocols. Or alternatively, mark TCP 465 as "reserved" and just pick
a
> different port for SSM...
>
> -- Christian Huitema
> _______________________________________________
> Uta mailing list
> Uta@ietf.org
> https://www.ietf.org/mailman/listinfo/uta

v2.23.0 | Report a Bug | By Email