Re: [ietf-smtp] broken signatures, was Curious
2020-07-21 21:03:54
On Tue, 21 Jul 2020, John C Klensin wrote:
While I mostly agree, we should not lose sight of the fact that
there still people using the Internet in less-developed
countries, isolated locations, over intermittent connections,
etc., where bandwidth tends to be scarce and expensive ...
Sure, but if that's the issue, you don't address it by messing around
with individual mesage headers.
Back in the day we sent compressed batches of messages over uucp. I
expect something like that (or maybe exactly that) still works.
In addition, if a possibly-legitimate, possibly-phishing,
message comes along, I'd really like to see us (and our MUAs)
encourage users to look at headers, understand what can be
trusted and what can't, and so on. Perhaps the educational
effort that would require is hopeless under the best of
circumstances, but it is certainly impossible if we facilitate
and encourage an ever-rising collection of noise header fields.
That battle was lost over a decade ago. See for example the headers
below that I took from a message that came through one of my mailing
lists today. They'd be even longer if the message had started at
Google's webmail rather than a MUN on the author's phone.
R's,
John
---- snip ----
Received: (qmail 25376 invoked from network); 21 Jul 2020 20:29:04 -0000
Authentication-Results: iecc.com; spf=none
spf.mailfrom=elihu+caf_=johnl-elihu=iecc(_dot_)com(_at_)aya(_dot_)yale(_dot_)edu
spf.helo=mail-ej1-x62a.google.com smtp.remote-ip="2a00:1450:4864:20::62a"; dkim=pass
header.d=lists.iecc.com header.s=62b4.5f17500b.k2007 header.a=rsa-sha256 header.b="pabePD9r";
dkim=fail (bad signature) header.d=gmail.com header.s=20161025 header.a=rsa-sha256
header.b="ch5qz6xw"; dmarc=pass header.from=gmail.com (p=none, pct=100)
Received: from mail-ej1-x62a.google.com ([IPV6:2a00:1450:4864:20::62a])
by mail1.iecc.com ([IPV6:2001:470:1f07:1126:33:5370:616d:6d31])
with ESMTPS via TCP6 (port 37164/25) id 657478590
tls TLS1.3_ECDHE_RSA_AES_128_GCM_AEAD sni mx1.iecc.com; 21 Jul 2020 20:29:03
-0000
Received: by mail-ej1-x62a.google.com with SMTP id lx13so22967160ejb.4
for <johnl-elihu(_at_)iecc(_dot_)com>; Tue, 21 Jul 2020 13:29:03 -0700
(PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20161025;
h=x-gm-message-state:delivered-to:dkim-signature:dkim-signature:from
:content-transfer-encoding:mime-version:date:message-id:references
:in-reply-to:to:subject:reply-to:errors-to:precedence:precedence
:sender:list-id:list-help:list-subscribe:list-unsubscribe:list-post
:list-owner:list-archive:archived-at;
bh=RhHkHEszxi/KZDvVEqur2JsMFLWQBJwb6WQMYwqN8jM=;
b=D8h3cD+rn0PqCI0tSHCEBU66LkucufySGyj14dAaL3FN0Aduk/E8T+Ln1KFZZ5A4V9
wOcqcJWtGsJ13y/zkGvYWcm/utytu+14HcUsIi4DtdjOtLk7b8gDKmf3yytxoTEzhpo9
KnYgbR0I++bKiOzSzA6euGSQt6m+/SVI/8vxFnt9GUj14vc/6mLuk0DlzL1k0LgDFYOz
NikTI0L5Ix1w5uy8xTnEYd9J/Fl6pQOe6rqFq96llrQorN15DVNg2NMdYfdX5PMzApB0
ebrz60LEcMtAwjREkU6hglm7e5VkgUCT1EYYunjMatZmCCz1mSGTzz2VmjwmV9K/FH0Z
qqMA==
X-Gm-Message-State: AOAM531NH1aJY6el2sV6YUyCJexWv3Oj7qf/LV2QauNcd7pMB3CbzYuj
LhU5nXb9w+2fhSv/zZkuhCcqEDh+n0UDOsOYxO09fc+iiA91AbU34Q==
X-Received: by 2002:a17:906:2b0e:: with SMTP id
a14mr26205877ejg.459.1595363342301;
Tue, 21 Jul 2020 13:29:02 -0700 (PDT)
X-Forwarded-To: johnl-elihu(_at_)iecc(_dot_)com
X-Forwarded-For: elihu(_at_)aya(_dot_)yale(_dot_)edu
johnl-elihu(_at_)iecc(_dot_)com
Delivered-To: elihu(_at_)aya(_dot_)yale(_dot_)edu
Received: by 2002:a54:3f4b:0:0:0:0:0 with SMTP id q11csp2942935ecr;
Tue, 21 Jul 2020 13:29:00 -0700 (PDT)
X-Google-Smtp-Source:
ABdhPJyEAppgS0i9XHFD+3gX/td0Mz9aL8La3J5L/msG8ftMp1S+q7lqUfXLhDHhRjuKoO6cnESx
X-Received: by 2002:a25:7ec1:: with SMTP id z184mr46345523ybc.442.1595363340858;
Tue, 21 Jul 2020 13:29:00 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1595363340; cv=pass;
d=google.com; s=arc-20160816;
b=YXrrY7XEkBzd6XdSzTRwGStIpqyU0xtPHPIc36wmv2drqJfMg908dJHlZrdczUiMDs
/TLco2HeKaPBLMcCV6WYl2rjs3+F6cVh6GgOar2IopfK4F40TE5ww2TZmQzK0MKalDKp
KYw9iUaGAHNR8+LSCuYCj6WncdfS+PjCcU0Yk1sl/1KxAR4+OqS33WQAYA6IVgGmmZ/b
CCDTWW8b8BOJTQL86P1bHO/TUyBfNPFtKuTs983G8conqJmJuwO/aZZf/0o3QPmpwnXs
EK9cZu0/UYn5no2LakL1s7uqMyFxzKDIJXE9kDHbnw52ZmLzj/hk4TdrZVXt20NQRME6
NtFw==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=archived-at:list-archive:list-owner:list-post:list-unsubscribe
:list-subscribe:list-help:list-id:sender:precedence:precedence
:errors-to:reply-to:subject:to:in-reply-to:references:message-id
:date:mime-version:content-transfer-encoding:from:dkim-signature
:dkim-signature;
bh=RhHkHEszxi/KZDvVEqur2JsMFLWQBJwb6WQMYwqN8jM=;
b=C3Ak2aEV1DBORig5164TqHtXNO9yg5gOLWIC13EFHvqFtmEjsZrIb7stN2rtZbxroc
W15kIo81RNcGSKEM5DmtpbxTeNZR3JSZYgVA4IZ6DcaZdy88y7PCwbC12FNPqjBs7fJ4
YkOFnS+Ny7JZhP1yCcbXfyZc+cD59NX9rapRNKdeWNVLS2UsXrkrvzug/ASobcNj+ams
C+trLOevh8vIMgykeiY2PAoQO2+ReLqlSKpewu9zE2IC0cX9XgPWyDvJn/dDX2Ms6+yt
i9zJlwxmWcZcoew3ivhf6vZZIzw9SCBjh0tYhqbUirTnSHBSeHvBh6BmLUaOdMBYfINJ
o5OQ==
ARC-Authentication-Results: i=2; mx.google.com;
dkim=pass header.i=@lists.iecc.com header.s=62b4.5f17500b.k2007
header.b=pabePD9r;
dkim=fail header.i=@gmail.com header.s=20161025 header.b=ch5qz6xw;
arc=pass (i=1 spf=pass spfdomain= dkim=pass dkdomain=gmail.com
dmarc=pass fromdomain=gmail.com);
spf=pass (google.com: domain of
circletime-owner(_at_)lists(_dot_)iecc(_dot_)com designates
2001:470:1f07:1126:0:62:6c61:7374 as permitted sender)
smtp.mailfrom=circletime-owner(_at_)lists(_dot_)iecc(_dot_)com;
dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <circletime-owner(_at_)lists(_dot_)iecc(_dot_)com>
Received: from listmail.iecc.com (listmail.iecc.com.
[2001:470:1f07:1126:0:62:6c61:7374])
by mx.google.com with ESMTPS id 11si19037814ybu.326.2020.07.21.13.29.00
for <elihu(_at_)aya(_dot_)yale(_dot_)edu>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Tue, 21 Jul 2020 13:29:00 -0700 (PDT)
Received-SPF: pass (google.com: domain of
circletime-owner(_at_)lists(_dot_)iecc(_dot_)com designates
2001:470:1f07:1126:0:62:6c61:7374 as permitted sender)
client-ip=2001:470:1f07:1126:0:62:6c61:7374;
Authentication-Results: mx.google.com;
dkim=pass header.i=@lists.iecc.com header.s=62b4.5f17500b.k2007
header.b=pabePD9r;
dkim=fail header.i=@gmail.com header.s=20161025 header.b=ch5qz6xw;
arc=pass (i=1 spf=pass spfdomain= dkim=pass dkdomain=gmail.com
dmarc=pass fromdomain=gmail.com);
spf=pass (google.com: domain of
circletime-owner(_at_)lists(_dot_)iecc(_dot_)com designates
2001:470:1f07:1126:0:62:6c61:7374 as permitted sender)
smtp.mailfrom=circletime-owner(_at_)lists(_dot_)iecc(_dot_)com;
dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (qmail 25272 invoked by uid 200); 21 Jul 2020 20:28:59 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=lists.iecc.com;
h=from:content-type:content-transfer-encoding:mime-version:date:message-id:references:in-reply-to:to:subject:reply-to:sender:list-id:list-help:list-subscribe:list-unsubscribe:list-post:list-owner:list-archive:original-authentication-results;
s=62b4.5f17500b.k2007; i=sympa(_at_)lists(_dot_)iecc(_dot_)com;
bh=LFzUhlCgf5INdzAvGXgEh/0Rr5+WLXq1nuwUR0O/u9c=;
b=pabePD9rMizH8Hhf5UK4C3VI3iJpAcw7l8F6ZhG1Qs0BYNGVJEbHtptS3e6e0eDbroEWMXFm/3azJG9KFsQDnl+5L8vsNFaJBW3JMs4qpU73ny4Th//oiu7JmOK4JVeqxooyXGFTtFo6TAuOtzRshrwgjPvuIwdzTU3SIbuLIHqMhudcJJP1RZ5goubyxPRDq01XhO9254/UqppLJI8J8EtzwmbMzrtxChQLGmStspaj4G+O5tgAnjTZHOWkP61S
ARC-Seal: i=1; a=rsa-sha256; cv=none; d=lists.iecc.com; s=62b4.5f17500b.k2007;
t=1595363339;
b=DsultVYJJTtG/DGSAGitwY46y4vW12fJUBYH8zbw2G/tFiz4oz5dLLqw3wMNMhh4vvdCmbEo6XbWG7E5QfcMTHv4VGI2AmRS3gJltoZHRLJK2he13HJwb4qsfJdCvSsiy6LfgubigSBmrzgpLhKLViUnJJyPIHtFtcE8Cd0rHVHE/PrvNKbtXDluwFLkJ26DWCQeYVYjPdvnuzwugccH/pz4N+7POfW3lLxo4DlW3WkYe1ClC7Dfor7EeUq5CH95
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=lists.iecc.com;
h=from:content-type:content-transfer-encoding:mime-version:date:message-id:references:in-reply-to:to:subject:reply-to:sender:list-id:list-help:list-subscribe:list-unsubscribe:list-post:list-owner:list-archive;
s=62b4.5f17500b.k2007; bh=RhHkHEszxi/KZDvVEqur2JsMFLWQBJwb6WQMYwqN8jM=;
b=RP210pH+C5GYslgLEdYBHv442JvEcV24hN2PgPKs4qHGMNxC9C3fhQxQYsdW2Mi+eeNB1BsP0hC1L5LIbb1ygBqYK3CgxDb/RPdPO742a6Lf26HaIaDI0mu3uZ3FagWyUtj57YYaWyMxfim30EDGWnt5om80mgkv4M0+AkQb/9Yn8YtvdnEYTQ4/AXwYChMDRtXM76eFolBjKGTTk3refBgXy87K/pFKkwUzfGCk3tYbU/f3SMyOoYmBbCx9rzlR
ARC-Authentication-Results: i=1; iecc.com; arc=none; spf=pass
spf.mailfrom=mrradow1(_at_)gmail(_dot_)com spf.helo=mail-pj1-x1034.google.com
smtp.remote-ip="2607:f8b0:4864:20::1034"; dkim=pass header.d=gmail.com header.s=20161025
header.a=rsa-sha256 header.b="ch5qz6xw"; dmarc=pass header.from=gmail.com (p=none,
pct=100)
Received: (qmail 25212 invoked from network); 21 Jul 2020 20:28:54 -0000
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on gal.iecc.com
X-Spam-Level:
X-Spam-Status: No, score=0.4 required=4.4 tests=DCC_REPUT_00_12,DKIM_SIGNED,
DKIM_VALID,DKIM_VALID_AU,FREEMAIL_FROM,HTML_MESSAGE,MIME_QP_LONG_LINE,
RCVD_IN_DNSWL_NONE,RDNS_NONE,SPF_HELO_NONE autolearn=no
autolearn_force=no version=3.4.4
Received: from mail-pj1-x1034.google.com ([IPV6:2607:f8b0:4864:20::1034])
by mail1.iecc.com ([IPV6:2001:470:1f07:1126:33:5370:616d:6d31])
with ESMTPS via TCP6 (port 40542/25) id 657478535
tls TLS1.3_ECDHE_RSA_AES_128_GCM_AEAD sni mail1.iecc.com; 21 Jul 2020
20:28:53 -0000
Received: by mail-pj1-x1034.google.com with SMTP id t15so2221060pjq.5
for <circletime(_at_)lists(_dot_)iecc(_dot_)com>; Tue, 21 Jul 2020
13:28:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=20161025;
h=from:content-transfer-encoding:mime-version:date:subject:message-id
:references:in-reply-to:to;
bh=RhHkHEszxi/KZDvVEqur2JsMFLWQBJwb6WQMYwqN8jM=;
b=ch5qz6xwHtQwuw8Wse3/Tt0FZIAewslQGYhIVoU/47bFHcmkXiVnUbpcBO6puqjD09
Cd2bavCXKFpYGQXndL0LBQ/nBtho+638JhOdQPDdn+KabTrrvkI0v/nR1D2Ht1SDvE/A
3HuRIAOmbTf12DMAGgOoW1MfSyy7FoGlz+gtZpdwqwYlHjG9XvHVuS8rx4Q1mRamtwhe
xezRa3S56RdaauZJCxW5hC9uowkSPhCNZhV50c5Jxu7O5yhv/Xylaa4yle+LFQ1nIyIU
7WfBbDjW2W/O6SJfLzSHc9ih5nGd4kjTmUV22u9GnJlz8NdlE+BOSBnOmzdi8vIU8OpI
7+rg==
X-Received: by 2002:a17:902:6b03:: with SMTP id
o3mr21925016plk.69.1595363331549;
Tue, 21 Jul 2020 13:28:51 -0700 (PDT)
Return-Path: <mrradow1(_at_)gmail(_dot_)com>
Received: from ?IPv6:2600:100f:b023:c202:a9d8:a6:3e86:c728?
([2600:100f:b023:c202:a9d8:a6:3e86:c728])
by smtp.gmail.com with ESMTPSA id
129sm20721075pfv.161.2020.07.21.13.28.50
for <circletime(_at_)lists(_dot_)iecc(_dot_)com>
(version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128);
Tue, 21 Jul 2020 13:28:50 -0700 (PDT)
From: Mike Radow <mrradow1(_at_)gmail(_dot_)com>
Content-Type: multipart/alternative;
boundary=Apple-Mail-8939F26C-B8A7-4CE5-BB6C-8A50B2792902
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (1.0)
Date: Tue, 21 Jul 2020 13:28:48 -0700
Message-Id: <BBA4962B-D624-43B0-BC74-AEFC0A47D5CD(_at_)gmail(_dot_)com>
References:
<CACFK7T-vzmvuQm3wGJdGBsSw=6LdsLZCtTB9mPi6QgAn8qFaag(_at_)mail(_dot_)gmail(_dot_)com>
<5CD9C56C-3CCE-4C0E-9267-4DEBC1BAC169(_at_)gmail(_dot_)com>
<29d64793-a6c9-c878-1839-f2f32340dc1b(_at_)iecc(_dot_)com>
<CAEi5EjGf47aLWv=cPmzo3wHgvEcaZS3n+mh6-P2oRx+Wz+OuVA(_at_)mail(_dot_)gmail(_dot_)com>
<BYAPR04MB381588434DAF3DD63732C811967A0(_at_)BYAPR04MB3815(_dot_)namprd04(_dot_)prod(_dot_)outlook(_dot_)com>
<BY5PR17MB3570133DE420708C74A19247F77A0(_at_)BY5PR17MB3570(_dot_)namprd17(_dot_)prod(_dot_)outlook(_dot_)com>
<BYAPR04MB3815F380F29E4AF698F5DA83967A0(_at_)BYAPR04MB3815(_dot_)namprd04(_dot_)prod(_dot_)outlook(_dot_)com>
<SN6PR05MB4287661C4CFDBA497374715EC57B0(_at_)SN6PR05MB4287(_dot_)namprd05(_dot_)prod(_dot_)outlook(_dot_)com>
<CAJZwriMv2qDk=Zg+i8P9otd2o3BCS-UaU4Bs75rwZ=Bod6V=YQ(_at_)mail(_dot_)gmail(_dot_)com>
<61B76F8C-0136-48C4-B258-B630BC4F4738(_at_)gordiangroup(_dot_)com>
<CAPKR=Xbm+GMxPjXOXcd30Msgia2O0Age_Sk0g20MzZsA6-vh+g(_at_)mail(_dot_)gmail(_dot_)com>
<BYAPR04MB381520C8D62FCEDCA58DD9A2967B0(_at_)BYAPR04MB3815(_dot_)namprd04(_dot_)prod(_dot_)outlook(_dot_)com>
<CAJZwriObKUAA6YFUoGnXO+o40OsOfn5BKPEpEWmG69xdrWCCSA(_at_)mail(_dot_)gmail(_dot_)com>
<CAEWkM+BtrMcVumz4P=J6_nKP06pPS3WaAXyhOZy2C2_tZy2E0A(_at_)mail(_dot_)gmail(_dot_)com>
<DM6PR09MB4589A68EAFBDEBC70A4CE28DE7780(_at_)DM6PR09MB4589(_dot_)namprd09(_dot_)prod(_dot_)outlook(_dot_)com>
In-Reply-To:
<DM6PR09MB4589A68EAFBDEBC70A4CE28DE7780(_at_)DM6PR09MB4589(_dot_)namprd09(_dot_)prod(_dot_)outlook(_dot_)com>
To: circletime(_at_)lists(_dot_)iecc(_dot_)com
X-Mailer: iPhone Mail (16D39)
Subject: Re:[circletime]
Reply-To: circletime(_at_)lists(_dot_)iecc(_dot_)com
X-Loop: circletime(_at_)lists(_dot_)iecc(_dot_)com
X-Sequence: 3553
Errors-To: circletime-owner(_at_)lists(_dot_)iecc(_dot_)com
Precedence: list
Precedence: bulk
Sender: circletime-request(_at_)lists(_dot_)iecc(_dot_)com
X-no-archive: yes
List-Id: <circletime.lists.iecc.com>
List-Help: <mailto:sympa(_at_)lists(_dot_)iecc(_dot_)com?subject=help>
List-Subscribe:
<mailto:sympa(_at_)lists(_dot_)iecc(_dot_)com?subject=subscribe%20circletime>
List-Unsubscribe:
<mailto:sympa(_at_)lists(_dot_)iecc(_dot_)com?subject=unsubscribe%20circletime>
List-Post: <mailto:circletime(_at_)lists(_dot_)iecc(_dot_)com>
List-Owner: <mailto:circletime-request(_at_)lists(_dot_)iecc(_dot_)com>
List-Archive: <https://sympa.services.net/sympa/arc/circletime>
_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp
<Prev in Thread] |
Current Thread |
[Next in Thread>
|
- Re: [ietf-smtp] broken signatures, was Curious, (continued)
- Re: [ietf-smtp] broken signatures, was Curious, Hector Santos
- Re: [ietf-smtp] broken signatures, was Curious, Alessandro Vesely
- Re: [ietf-smtp] broken signatures, was Curious, John Levine
- Re: [ietf-smtp] broken signatures, was Curious, Michael Richardson
- Re: [ietf-smtp] broken signatures, was Curious, John R Levine
- Re: [ietf-smtp] broken signatures, was Curious, John R Levine
- Re: [ietf-smtp] broken signatures, was Curious, Hector Santos
- Re: [ietf-smtp] broken signatures, was Curious, John C Klensin
- Re: [ietf-smtp] broken signatures, was Curious,
John R Levine <=
- Re: [ietf-smtp] broken signatures, was Curious, Dave Crocker
- Re: [ietf-smtp] broken signatures, was Curious, John C Klensin
- Re: [ietf-smtp] broken signatures, was Curious, Dave Crocker
- Re: [ietf-smtp] broken signatures, was Curious, Pete Resnick
- Re: [ietf-smtp] broken signatures, was Curious, Dave Crocker
- Re: [ietf-smtp] broken signatures, was Curious, Pete Resnick
- Re: [ietf-smtp] Curious, with this now being associated to emailcore, should list name change?, Pete Resnick
- Re: [ietf-smtp] Curious, with this now being associated to emailcore, should list name change?, Pete Resnick
- Re: [ietf-smtp] Curious, with this now being associated to emailcore, should list name change?, John C Klensin
- Re: [ietf-smtp] Curious, with this now being associated to emailcore, should list name change?, Pete Resnick
|
|
|