Re: draft-kucherawy-greylisting-bcp


On 10/26/11 10:42 AM, Dave CROCKER wrote:

On 10/26/2011 5:33 PM, Pete Resnick wrote:
On 10/26/11 10:18 AM, Dave CROCKER wrote:
Greylisting is not a protocol, according to any definition I know.

There is no way to test "interoperability".
Rubbish. I can assure you that if someone implemented greylisting insuch a waythat "legitimate" mail stopped being delivered, because they set thegreylist
timeout too long or...
You have just defined an interoperability criterion that includes allsources of software misbehavior, daemon sleep times, and anything elsethat can cause delays.

I notice you conveniently snipped my example of using a status code thatcaused trouble. But yes, timeouts are commonly put into standards trackdocuments, and reasonably so. Implementation parameters do causeinteroperability problems and many of those are observable from the net.I have no idea how you can claim these aren't "interoperability criteria".

Let's go back to my initial claims: If it implementation experiencewould cause changes to the instructions we give in a document toimplementers, then it deserves to be on the standards track. If it's a"protocol, service, procedure, convention, or format" [2026, 3.1], itbelongs in a technical specification. If it gives implementationinstructions (values for parameters, how the protocol ought beimplemented, etc.), then it belongs in an applicability statement. BothTSs and ASs go on the standards track.

Greylisting is far more obviously a protocol with testableinteroperability than is, say, RFC 5234 or 5322.

[To clarify: I am not committed to greylisting being a protocol. I'mjust saying it looks more like a protocol than do 5234 or 5322. It isthe claim that there is no way to test interoperability that I reject..]

5322 and other format specs explicitly entail parsing and processing(and in the case of From: and Reply-to:, replying) by the remoteengine. That's essential interoperability.

How does one "test interoperability" in the case of parsing that isgoing on in a local implementation like 5322? How is that different thangreylisting? And for ANBF...?

In other words, formats are inherently bilateral. Greylisting isunilateral.

Formats are bilateral, but only in the sense that both sides have acommon understanding of the semantics of the parsed format. Greylistingis bilateral for those who actually participate: That is, if I receive4xx status code, I know to wait a while and resend. Successful deliveryhappens if we both do our parts correctly. It is certainly the case thatif I am a poorly implemented SMTP client, I will not try again and mymail will not be delivered (the point of the greylisting), but surelygreylisting still "specifies how, and under what circumstances" SMTP is"applied to support a particular Internet capability". [2026, 3.2]

The interoperability mechanism relevant to greylisting is the/existing/ set of SMTP mechanisms. Greylisting is an indirectinvocation of those mechanisms.


I agree. See 2026, section 3.2.

Again: since my view is rubbish, please define an interoperabilitytest for it.

(I don't think I am making any statement about *your* *view*. Iapologize for this coming across as a personal attack. I used "rubbish"only to mean, "I strongly disagree with the statement that there is noway to test interoperability". I certainly did not intend any offense.)

Again, please re-read the sections of 2026 regarding ASs. Theinteroperability test is against SMTP, not greylisting itself.Greylisting is a way of implementing SMTP with certain outcomes. Ifimplementation choices turn out to be wrong (which we can determine bytesting the interoperability of SMTP implementations that usegreylisting), we update the AS describing greylisting. That's what thestandards track is all about.


pr

--
Pete Resnick<http://www.qualcomm.com/~presnick/>
Qualcomm Incorporated - Direct phone: (858)651-4478, Fax: (858)651-1102