Re: [Uta] Updated TLSRPT Draft (v07)
David Illsley <davidillsley@gmail.com> Fri, 11 August 2017 17:30 UTC
Return-Path: <davidillsley@gmail.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CE46F1324EA for <uta@ietfa.amsl.com>; Fri, 11 Aug 2017 10:30:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IBvMmxBR31tS for <uta@ietfa.amsl.com>; Fri, 11 Aug 2017 10:30:34 -0700 (PDT)
Received: from mail-pf0-x22b.google.com (mail-pf0-x22b.google.com [IPv6:2607:f8b0:400e:c00::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 914421324DF for <uta@ietf.org>; Fri, 11 Aug 2017 10:30:34 -0700 (PDT)
Received: by mail-pf0-x22b.google.com with SMTP id t86so18351243pfe.2 for <uta@ietf.org>; Fri, 11 Aug 2017 10:30:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=+0h20RXfaiH9xw6aNxz5CbQX5ZmiuQrne6RO5MkWq4s=; b=ATv5SSDU1tBMEEkOH4sCan31EiOsTRKu07arNJY/EmNSObeTWw5AxzPIF8/7zfJQoL GKqo16ROKERiP70xmbbXBlhaLV21VyrM20yjHdjU8W+4yLeyxUeQOl5Sfyzvtf/wP/hd Ssx7Rb0vRh6DGFWilCsFO9tR2RJ6UdYHortwB+HtqECWz2fwam4YF/4BLju8TIQO83OL zRfzHLlFwymmrYoEvl3VVI3mV6uExWPuCOED47gR8xUMzN0p2slNei/EyQkEUBEw1I6j +Z0thk1RGDtTCdBRVB9CHXUn4oDC4Q4IScGHjGhYh6UyzKFkVUJ7IWY5Ect9WZrqTSgc G65A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=+0h20RXfaiH9xw6aNxz5CbQX5ZmiuQrne6RO5MkWq4s=; b=B2AwqzdF4aXuIAJGbxuiIPtHI3aRXjgyxJ/DiJai8+AzqGMIKn8LDWsb6KMXiaUWfg TpMZN6pS4fgSoliSolBING62yGlvRS+wbgMeFaNgSjaB1WVr15MkPvJJGBN8dZRnQvCV bOisDDLWg0YKZdG0wcHonpE68axjzvfcuzNUb/iies+7JLwe1uqUUWBBnjNq/jFFbQYB QGiGyhePA28ppZaG/rI9W71brcPDnHqUd8drRbaaqATSoezoSHFgbCSN3TK2PZm+IKGu J+F0Fs7Te7c4jOFsinh0WaMTI0oIV5Uig2OnFrUwILjU14U/1sZEEiFTiDozizp9fHyY dddw==
X-Gm-Message-State: AHYfb5hvtx92mG0LnM+m4FwRHSkUQfTzyVsr7VLzRBi3A1NANswK+vGy WXlUVQtJEL15DXs333jJ/ECX3omqGA==
X-Received: by 10.99.97.6 with SMTP id v6mr16201312pgb.254.1502472634097; Fri, 11 Aug 2017 10:30:34 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.100.128.2 with HTTP; Fri, 11 Aug 2017 10:30:33 -0700 (PDT)
In-Reply-To: <CA+E3Fw2AqgdRiOtRqs3bT1Noo_YRsB58k9LSjbykZkA1aSs0yA@mail.gmail.com>
References: <24ecb63305ed43bc8ee0564d5cd18b69@PACDCEX19.cable.comcast.com> <CA+E3Fw2AqgdRiOtRqs3bT1Noo_YRsB58k9LSjbykZkA1aSs0yA@mail.gmail.com>
From: David Illsley <davidillsley@gmail.com>
Date: Fri, 11 Aug 2017 18:30:33 +0100
Message-ID: <CA+E3Fw1-iJcEREtADrj7BYkeC5W_r8duQ14vFS--xec-xiqvMQ@mail.gmail.com>
To: "Brotman, Alexander" <Alexander_Brotman@comcast.com>
Cc: "uta@ietf.org" <uta@ietf.org>
Content-Type: multipart/alternative; boundary="94eb2c0ccb2ea3e52205567dabdb"
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/exnSA38_a72MuQJe-ICxlsfFtNU>
Subject: Re: [Uta] Updated TLSRPT Draft (v07)
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Aug 2017 17:30:37 -0000
Additionally, I've just noticed that the rua field in TLSRPT is unlike DMARC, and is a single URL, not a comma-separated list. In my experience deploying DMARC, it's been useful to feed reports to multiple systems. If that's an oversight, rather than an explicit decision, I'd be keen on TLSRPT matching DMARC, and supporting a list. Cheers, David On Wed, Aug 2, 2017 at 9:15 AM, David Illsley <davidillsley@gmail.com> wrote: > A couple of minor comments: > 1. Section 3 includes: > "A URI specifying the endpoint to which aggregate information about > policy failures should be sent" and "When sending failure reports via SMTP" > This might imply that reports should only be sent when a failure is > experienced, whereas I believe the intention is for this to be like DMARC > where reporting is sent when messages are exchanged even if there are no > policy failures. > This could be clarified with the above changed to: > "A URI specifying the endpoint to which aggregate information about > policy validation results should be sent" and "When sending aggregate > reports via SMTP" > > 2. Appendix 2: Example JSON Report - the JSON has a few syntax problems: > - A , is required after the "summary" object > - A " is required to close the result-type property in the third failure > - A " is required to close the receiving-mx-hostname in the third failure > > HTH > David > > > On Mon, Jul 31, 2017 at 6:35 PM, Brotman, Alexander < > Alexander_Brotman@comcast.com> wrote: > >> Hello Folks, >> >> We attempted to incorporate the feedback from Alexey and Chris as best we >> could, and we believe we have addressed each of their concerns either via >> the updated draft or via the mailing list. The period for the WGLC is >> nearly over, and we wanted to try to provide an interim/updated draft for >> any final review. Thank you for any comments. >> >> -- >> Alex Brotman >> Sr. Engineer, Anti-Abuse >> Comcast >> >> >> _______________________________________________ >> Uta mailing list >> Uta@ietf.org >> https://www.ietf.org/mailman/listinfo/uta >> > >
- [Uta] Updated TLSRPT Draft (v07) Brotman, Alexander
- Re: [Uta] Updated TLSRPT Draft (v07) James Cloos
- Re: [Uta] Updated TLSRPT Draft (v07) David Illsley
- Re: [Uta] Updated TLSRPT Draft (v07) David Illsley