http://permalink.gmane.org/gmane.ietf.rfc822 hourly 1 1901-01-01T00:00+00:00 http://gmane.org/img/gmane-25t.png http://gmane.org http://permalink.gmane.org/gmane.ietf.rfc822/12504 <pre>Hi all, Over on ietf-smtp, https://datatracker.ietf.org/doc/draft-kucherawy-received-state/ was developed late last year. This is an optional tweak to Received fields allowing annotation of entry into special states of mail handling, such as quarantines or hold-for-moderation MLM actions that would help to explain large gaps in timestamp sequences. I'm looking for a wider audience of reviewers and (hopefully supporters). If this sort of thing seems like a good (or terrible) idea, please do follow up and comment. How much and what kind of support is evident will guide the choice of what its next steps are (if any). Thanks, -MSK </pre> Murray S. Kucherawy 2012-01-09T22:44:07 http://permalink.gmane.org/gmane.ietf.rfc822/12504 <pre>Hi all, Over on ietf-smtp, https://datatracker.ietf.org/doc/draft-kucherawy-received-state/ was developed late last year. This is an optional tweak to Received fields allowing annotation of entry into special states of mail handling, such as quarantines or hold-for-moderation MLM actions that would help to explain large gaps in timestamp sequences. I'm looking for a wider audience of reviewers and (hopefully supporters). If this sort of thing seems like a good (or terrible) idea, please do follow up and comment. How much and what kind of support is evident will guide the choice of what its next steps are (if any). Thanks, -MSK </pre> Murray S. Kucherawy 2012-01-09T22:44:07 http://permalink.gmane.org/gmane.ietf.rfc822/12503 <pre> On 12/28/2011 7:27 AM, Rolf E. Sonneveld wrote: However, of course, the contained message then ceases to be treated as a normal message by the receiving user agent. It's just content. Although not it's primary task, data integrity protection /is/ provided for listed header fields by DKIM. (The signature lists the fields it covers. This typically does include From:, To:, and cc: and Subject.) d/ </pre> Dave CROCKER 2011-12-28T16:12:33 http://permalink.gmane.org/gmane.ietf.rfc822/12502 <pre>Hi, just to check: S/MIME (http://tools.ietf.org/html/rfc5751) does not does include/cover the 5322.From and the 5322.To fields as part of the cryptographic payload. Protection of headers can be achieved by wrapping up a the complete message into a message/rfc822 bodypart and sign/encrypt that (par. 3.1 of that RFC). How is that with OpenPGP (http://tools.ietf.org/html/rfc4880)? OpenPGP does not protect 5322.From and 5322.To either, does it? Par. 5.11 of RFC4880: A User ID packet consists of UTF-8 text that is intended to represent the name and email address of the key holder. By convention, it includes anRFC 2822 &lt;http://tools.ietf.org/html/rfc2822&gt; [RFC2822 &lt;http://tools.ietf.org/html/rfc2822&gt;] mail name-addr, but there are no restrictions on its content. The packet length in the header specifies the length of the User ID. The recipient address is not mentioned anywhere. So is the following statement correct?: Neither S/MIME nor OpenPGP protects the '5322.headers' of </pre> Rolf E. Sonneveld 2011-12-28T15:27:42 http://permalink.gmane.org/gmane.ietf.rfc822/12501 <pre> In abuse reporting, an established albeit discouraged practice consists of redacting reported messages. In a nutshell, users may have the ability to signal some received messages as being abusive. Their mailbox providers should then wrap those messages according to abuse reporting format (ARF, RFC 5965) and send them back to the senders if they had subscribed to the relevant feedback loop. See http://en.wikipedia.org/wiki/Feedback_loop_%28email%29 Redaction conceals the recipient, rather than the sender. In this case, authors should markup the parts of the messages that contain sensible data, in case the recipients report those messages as spam, possibly inadvertently. A document describing how to carry out redaction is now in LC, so it can hardly mention privicons. However, privicons could consider this possible use. The redaction doc is at http://datatracker.ietf.org/doc/draft-ietf-marf-redaction/ For casual readers, privicons are defined here: http://tools.ietf.org/html/draft-koenig-privicons </pre> Alessandro Vesely 2011-12-09T12:18:22 http://permalink.gmane.org/gmane.ietf.rfc822/12500 <pre> My comments on "Privacy Preferences for E-Mail Messages" . . . It would be more correct to use the term "header field" rather than "header" here and in the rest of the document. . . . . . . The definition of Sending User needs to be clarified: is it the email-address from the Sender: header field? Or one or more of the email-address from the From: header field? . . . . . . This "MUST" seems to conflict with the MAY later in this spec. . . . These definitions need to be formatted to more clearly distinguish the term from its definition. Perhaps like the "privicon" definition. The definition of "first line" is not at all clear except for a TEXT/PLAIN body. In the case of a TEXT/HTML body, the intent seems to be that the first line is the topmost "line" visible to the Receiving User. However, since the "first line" privicon is the determining specification in the case of disagreements and the MUA is expected to "enforce" this, the MUA mus</pre> Bill McQuillan 2011-12-05T20:54:06 http://permalink.gmane.org/gmane.ietf.rfc822/12498 <pre>FYI. </pre> Alexey Melnikov 2011-04-20T21:45:29 http://permalink.gmane.org/gmane.ietf.rfc822/12497 <pre> Keith Moore wrote: I don't think I was Keith. I am firm believer all transactions should be treated equally when it comes to following standards with a "wait for someone to complain" exception. I was pointing out dealing with compromising user issues is a different problem with a different set of solutions and I believe relaxing standards does not help with the problem. So even if you wanted to use a negative MUA behavior change red-flag as part of a local policy compromised user monitor, you couldn't. For offline MUAs, I generally agree, at least for the things we often are concern about. For Online MUAs, there are improvements, including support for List-IDs as done with gmail.com </pre> Hector Santos 2011-04-20T14:38:21 http://permalink.gmane.org/gmane.ietf.rfc822/12496 <pre> On Apr 20, 2011, at 5:55 AM, Hector Santos wrote: Please don't propose to penalize users for switching MUAs. It's difficult enough for people to do as it is, and that is part of why MUAs are so dysfunctional and have evolved so little over the past 10+ years. Keith </pre> Keith Moore 2011-04-20T13:19:19 http://permalink.gmane.org/gmane.ietf.rfc822/12495 <pre> Murray S. Kucherawy wrote: Isn't this a different problem - compromised users? When there is a compromised MSA user, there are other more serious issues to address - like detecting by whatever means and lock the user/machine out immediately. It could be stolen user credentials or machine compromised for users who are still IP based authorized by their ISP network. I seriously doubt the compromised user/machine is going to use the same user MUA to blast spam, it could, but then the user can see that something is wrong. This gives more weight to the idea to not tolerate standards violations. Relaxing on standards makes it more difficult to use a delta in MUA compliance behavior as good or bad. </pre> Hector Santos 2011-04-20T09:55:48 http://permalink.gmane.org/gmane.ietf.rfc822/12494 <pre> On Apr 20, 2011, at 12:29 AM, Murray S. Kucherawy wrote: The only way I see to deal with these cases is for downstream relays or MXes to bounce or even drop malformed messages. That will weed out those (hopefully few) MSAs. (Bouncing such messages won't get many users to change their MUAs. But if their mail doesn't get through, they will change MSPs. Many users have multiple email accounts anyway, and "resending from a different email address" is a common retry strategy.) Keith </pre> Keith Moore 2011-04-20T04:35:59 http://permalink.gmane.org/gmane.ietf.rfc822/12493 <pre> Where the MSA is under the control of someone that wants to exploit browser or MUA weaknesses, or doesn't care about standards as long as his/her crap gets to the inbox, doesn't that view of the world means there's no hope for improvement? </pre> Murray S. Kucherawy 2011-04-20T04:29:10 http://permalink.gmane.org/gmane.ietf.rfc822/12492 <pre> I strongly suspect that the sender's response would be to: a) find another mail service provider (even at the expense of getting another email address), and/or b) stop sending mail to any recipients for whom such bounces happened with any regularity ...neither of which actually fixes the problem (except for providers that provider their own user agents) People these days are so used to dealing with spam and error messages that they don't understand, that the vast majority of them won't even bother to read such messages. As soon as they realize it's not intended for them _personally_ , the trigger finger reflexively hits the delete key. The user may indeed be annoyed, but the chance that he'll take useful corrective action is almost zero. If we want such measures to work, we need to find a way to either a) send the notifications to the vendors/providers of such user agents, or b) arrange for them to get triggered only when the user starts using a new user agent, so he'll immediately associate the user </pre> Keith Moore 2011-04-20T04:24:41 http://permalink.gmane.org/gmane.ietf.rfc822/12491 <pre> Yes, but there are other possibilities (yes, 'fixing' is to be avoided). But for suitable messages (for some meaning of "suitable") you could send a bounce back up the return path of the following form: "Your message is non-compliants for reasons &lt;blah&gt;. Although we have attempted to deliver it, you need to be aware that it may fail to reach its intended recipient, and we would suggest that you endeavour to make future messages compliant with the relevant internet standards &lt;blah list of standards blah&gt;." That way, the message (probably) gets through, but the sender gets pissed off sufficiently to complain to his provider, threatening to vote with his feet, etc. etc. So this piles pressure on providers to adhere to standards (a Good Thing) but still allows the mail to get through (also a Good Thing). </pre> Charles Lindsey 2011-04-19T20:25:07 http://permalink.gmane.org/gmane.ietf.rfc822/12489 <pre> On 4/18/11 5:48 AM, John C Klensin wrote: Fully Agree. -Doug </pre> Douglas Otis 2011-04-18T22:56:08 http://permalink.gmane.org/gmane.ietf.rfc822/12487 <pre> Keith Moore wrote: +1 The principle applies in many areas, but overall, it is most usefulness is when there existed greater uncertainty. +1 and I think intent is also related to trust or being non-anonymous. Exceptions are a fact of life. If you are unknown, then you get on the back of line like everyone else. But if you are known ("on the special party list"), you get special treatment and can avoid standing on a line. Its always possible to learn that you are not a troublesome, a regular party dude to get a pass, but its all still about be recognized. After 25+ years, the uncertainly principle for relaxation protocols should no longer be a quick out. There is simply no excuse today to continue tolerating violations of protocols or relaxing it for all. Exceptions to the rule of thumb has to be about trusted exceptions - not risky exceptions. </pre> Hector Santos 2011-04-18T18:00:09 http://permalink.gmane.org/gmane.ietf.rfc822/12485 <pre> Dave CROCKER wrote: Paraphrasing Shaw, telling the truth is the funniest joke in the world. I would like to suggest a reality which it is closer to: Receive-side workaround exceptions and not the rule of (protocol) thumb. The reason is because most systems are compliant today, especially among actively supported software and when there is an issue raised, only good guys complain/report, not the bad guys. Hence most problems are generally fixed. The historical reality has been the anonymous bad guy exploitation of protocol relaxations which has proven to the cusp of the highly expensive mail abuse problem. What we are really talking about here with workaround exceptions, is sender trust, in which case, it is not longer anonymous and the protocol relaxations begin to make more sense. But anonymous abuse SHOULD NOT be tolerated and continue to be an excuse to violate protocol. There are some strong compliancy parts of protocol which has certainly shown a practical reality for a reject f</pre> Hector Santos 2011-04-18T15:44:50 http://permalink.gmane.org/gmane.ietf.rfc822/12484 <pre> John C Klensin wrote: +1 You can see one common issue the malformed message I-D shows as an example with the field-name having a space: "field-name :" This would be akin to the SMTP space syntax debates, with the example: Mail From:space&lt;address&gt; Recognizing this long time issue, this note was added to RC5322 (Section 3.3) Since it has been a common source of errors, it is worth noting that spaces are not permitted on either side of the colon following FROM in the MAIL command or TO in the RCPT command. The syntax is exactly as given above. Implementators are going to decide on whether they will accept the illegal form with the space all depending on the severity of frequency. In the past, the #1 MUA was the offending problem so while we didn't encourage relaxation, it had to be noted. IMO, I don't think this a similar consideration applies to similar 5322 header syntax errors. It was reasonable to see why the SMTP systems had to consider relaxing it due to a wide </pre> Hector Santos 2011-04-18T15:05:24 http://permalink.gmane.org/gmane.ietf.rfc822/12483 <pre> Tony Finch wrote: +1. My view is that since only Good Guys complain, Bad Guys do not, there are some well established areas for strong compliancy checks that has proven to have a high efficiency bad mail filtering rate with little false positives for good guys. This is because most good guys are compliant, especially for these particular areas of compliancy. Others are more subjective, so it generally it becomes a decision to how its enabled - on/off by default. Traditionally, the transport is a passive payload transfer system but has have options for decisions than it does in applying subjective decisions related to the payload. I think good examples are: SMTP LEVEL: - anal strong syntax checks, i.e, "MAIL FROM:space" - Checking for explicit EHLO [ip literal] matching connection IP requirement. Exceptions used for growing NATS related issue in SOHO market with more than 1 PC. PORT 587 can be used to skip this check. - Return path verification - methods in debate, bu</pre> Hector Santos 2011-04-18T14:44:16 http://permalink.gmane.org/gmane.ietf.rfc822/12482 <pre> On 4/15/2011 7:09 PM, ned+ietf-822&lt; at &gt;mrochek.com wrote: Receive-side workarounds, rather than rejections of protocol/format violations, seems to be an inherent state of affairs for apps protocols. No one likes that fact, but no one has come up with a way to change the reality. d/ </pre> Dave CROCKER 2011-04-18T14:36:58 http://permalink.gmane.org/gmane.ietf.rfc822/12472 <pre> More like "almost always". I estimate we average one complaint that turns out to be message maformation every week or two, and it's been this way for almost two decades. But despite the fact we as a matter of policy *always* push back saying "fix the actual problem", I can't recall more than a handful of cases where this resulted in the actual problem being tracked down and fixed. Workarounds are a lot easier than, say, getting a printer manufacturer to update their firmware so it doesn't produce this content-type header: context-type: 'image/tiff' (Yes, that's an actual example from a few weeks back, and also note that while it is clearly maformed, it's syntactically legal.) Additionally, the various options we provide for stricter message checking are among the few options we've implemented that AFAIK are essentially never used by anyone, ever. I agree, although I suspect getting consensus on this is going to be difficult. Ned </pre> ned+ietf-822< at >mrochek.com 2011-04-16T02:09:26 Search the mailing list at Gmane query http://search.gmane.org/?group=$group=gmane.ietf.rfc822