IETF Logo Mail Archive

Re: [Uta] reporting, was CBOR, XML, JSON (was Re: Updated SMTP STS Draft)

Daniel Margolis <dmargolis@google.com> Tue, 10 May 2016 15:14 UTC

Return-Path: <dmargolis@google.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87C3D12D701 for <uta@ietfa.amsl.com>; Tue, 10 May 2016 08:14:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.696
X-Spam-Level:
X-Spam-Status: No, score=-3.696 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.996, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id un2g5jLlqOB4 for <uta@ietfa.amsl.com>; Tue, 10 May 2016 08:14:33 -0700 (PDT)
Received: from mail-io0-x22e.google.com (mail-io0-x22e.google.com [IPv6:2607:f8b0:4001:c06::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7211912D6F5 for <uta@ietf.org>; Tue, 10 May 2016 08:14:33 -0700 (PDT)
Received: by mail-io0-x22e.google.com with SMTP id d62so19706215iof.2 for <uta@ietf.org>; Tue, 10 May 2016 08:14:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to; bh=gCtzRDMqAA6IhN/Jjx4DmQnzNsM8cBGr1MKFuQ9qDUE=; b=hp2xHv0RwM/IBIDXBUxJxsesuDTr0qHrZaQNhNFsWCtBlE1ci2ZmZzSgngyyqkK7tv Q0KJiZnbZOfDV5b+Puv5+AxU+vNry2umzBQTrmzvoxQXdN1spNtiB98lMKpUym1etwtg hepdVq2Y0OpnKNMrrKPITCfZKdJx4/dBYLMDZ2IP2t6nZ9tfHxlckRJsjWksoBjMiEN8 lycU9c/rml2rfluf9P4dT8SmPEJ7DgDvq84ZDBef9rbZdH7V11jLhha1O8qlDRwDyw0B O0It70SvUSVmOcJc1WGwr8R8jr4QTvRyfCW4I911BuWiqKzPfkdgzIfQdBhn00eWa8ca S0bw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to; bh=gCtzRDMqAA6IhN/Jjx4DmQnzNsM8cBGr1MKFuQ9qDUE=; b=U68SuV2rmtS5BdHRphequldy0Sf7BRsmZ5/hSTAbrgji9aTtz1fEFLUbJ0ATovMXi3 OxiLUPLApa5XwJx+DVFPKvdOQUeSuRSiHwbEe42wkQrHhkN2drYfWEt/AzgymBpwxsAs saspFvgYzDYE+1X9Iu2rq8QBVp0rgFLPDHsdyuuNA8+CRBz3Qd3o6nJB2VqF54JX/WRi z3YqNnYUpd+EjWfAbC0SVsp2IZ7+5q6hULbtXdePGKj+8LviyZZXzL1iD7GwK/zvWQQS SO2wMVIXtc4VO/ARoBOlatWJNDvlItpUOoaGc6vUY5yc2JX/5JEUAWbD+lC1HNkaUO1T EXRQ==
X-Gm-Message-State: AOPr4FWecWj19zUl8VWHjop5URnV10OaNoh3P9x245aLobcBgFjaz6b5v/XslQ4xkv5lABrp51Apz2qAq91uuQkZ
MIME-Version: 1.0
X-Received: by 10.107.170.207 with SMTP id g76mr42632879ioj.58.1462893272632; Tue, 10 May 2016 08:14:32 -0700 (PDT)
Received: by 10.64.91.227 with HTTP; Tue, 10 May 2016 08:14:32 -0700 (PDT)
In-Reply-To: <20160510053615.GA3300@mournblade.imrryr.org>
References: <20160509235607.GZ3300@mournblade.imrryr.org> <20160510011534.9584.qmail@ary.lan> <20160510053615.GA3300@mournblade.imrryr.org>
Date: Tue, 10 May 2016 08:14:32 -0700
Message-ID: <CANtKdUeceBLiaUoc4KW8HHaOx28ZUMmm9hDXYCJkdv1V2C_OcA@mail.gmail.com>
From: Daniel Margolis <dmargolis@google.com>
To: uta@ietf.org
Content-Type: multipart/alternative; boundary="001a114159e0dca5f005327e613a"
Archived-At: <http://mailarchive.ietf.org/arch/msg/uta/Fz0_XaLtdOkv96nAMSkiS3dyGGc>
Subject: Re: [Uta] reporting, was CBOR, XML, JSON (was Re: Updated SMTP STS Draft)
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 May 2016 15:14:35 -0000

Yeah, I think we've spent more time on this discussion than we would on
some simple implementations. ;)

I think Viktor is right that sending something other than "QUIT" is quite
reasonable. Obviously some MTA operators may have trouble implementing it
(like if their MTA doesn't support it and they don't want to write custom
code), so for that reason and for the purposes of MITM transparency (as I
noted up-thread) we should *also* support out-of-band reporting. (MTAs need
not support STS in order to generate meaningful reports about, e.g.,
expired certs, so supporting reporting with no required MTA changes is a
useful property.)

I think we all agree that we should do both, in an ideal world. And the
discussion of priorities here strikes me as mostly misplaced, since it
mostly depends on what's easy for a given developer or host to implement;
some will implement only one or the other, I imagine.

So the only real question I have here is, should we include something about
in-band reporting (the "QUIT" alternative) in the TLSRPT draft? I think
not, as it seems a bit misplaced for the draft. But it seems like we could
fairly easy write basically a one-pager describing this other verb.

Does that make sense? Basically something like STARTTLS, where you say
"TLSQUIT [some parameters about failure]" and if you don't get back a 221
you then do a "QUIT."

(Viktor, if you want to draft something like this, I'm happy to proof read
it...)

Dan

On Mon, May 9, 2016 at 10:36 PM, Viktor Dukhovni <ietf-dane@dukhovni.org>
wrote:

> On Tue, May 10, 2016 at 01:15:34AM -0000, John Levine wrote:
>
> > >Legacy MTAs also won't have STS support.  We won't get new security
> > >capabilitie ex nihilo.
> >
> > If you want to do the client stuff, you need new code in the MTA, but
> > for the server side part, publishing a statement saying here's the
> > names of my MXes and what their certificates should look like, you
> > don't.  Just stick the info on a web server, publish a DNS record or
> > two to point at it, and you're all set.
>
> The proposal is exceedingly simple.  Instead of just sending "QUIT"
> when TLS peer authentication fails, (or STARTTLS is not offered),
> the SMTP client may be able to send a one line TLS status command.
>
> Some MTAs would support this and some wouldn't.  Over time likely
> more would than won't.  Lack of day-one support is not a valid
> objection.
>
> I'm proposing an *additional* notification channel for can be more
> timely, and does not require the use of any third parties to which
> one discloses one's traffic details, or publication of any email
> addresses for receiving reports that may get spammed, or require
> custom plumbing for report processing.
>
> In Postfix, I can provide built-in support for the new verb in a
> a way that consolidates notices for reporting to the system
> administrator.
>
> Nothing you've said in this thread makes the proposal impractical
> as an *additional* mechanism for notification.  I am done with this
> thread.  Over and out.
>
> --
>         Viktor.
>
> _______________________________________________
> Uta mailing list
> Uta@ietf.org
> https://www.ietf.org/mailman/listinfo/uta
>

v2.23.0 | Report a Bug | By Email