[EAI] Comments on draft-ietf-eai-downgraded-display-01

To: ima at ietf.org
Subject: [EAI] Comments on draft-ietf-eai-downgraded-display-01
From: SM <sm at resistor.net>
Date: Mon, 31 Aug 2009 09:21:28 -0700
Delivered-to: ima at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=resistor.net; s=mail; t=1251735874; x=1251822274; bh=yOxNcFWnOHeyYdeXs3LtDX7YCiVrE2bV9pFCTvHhevM=; h=Message-Id:Date:To:From:Subject:Cc:Mime-Version:Content-Type; b=Q9uEzrTyeUVBr2kUlQIpegD3rN3lGtyF3jyHWuoCuyc+6wiUYpwgsS7vycrJxHb/d rSqOlUHELXlbK/BLWJ4fxAR744Fn5Nw4W5Xhv4FrgAU3nEWGabpQ2iZhEi7kvqpdSc 46sF0W1+q4FsoW8i+FD+OGODTuSBxMGzEUZ3PiEg=
Domainkey-signature: a=rsa-sha1; s=mail; d=resistor.net; c=simple; q=dns; b=C6D6vbSRWDJnBCSzRXdYy0ymUU0d/WIgdYkVnNkmtLQR0NLn6iPiyQcpUFho/19F6 GKUsxqFRDKwYZpbnFQvs6cIYhsEBydx6QZc3QcHpp3YMoxytgIRtYdpdQKXM05icB3/ 5zyVPbtWnswTRVDqnX6/8uRH3ul/LwYDqpRc0EA=
List-archive: <http://www.ietf.org/mail-archive/web/ima>
List-help: <mailto:ima-request@ietf.org?subject=help>
List-id: "EAI \(Email Address Internationalization\)" <ima.ietf.org>
List-post: <mailto:ima@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ima>, <mailto:ima-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ima>, <mailto:ima-request@ietf.org?subject=unsubscribe>

Hello,

These comments are for draft-ietf-eai-downgraded-display-01. Pleaseconsider them as "I read the document".


In Section 2:

  "An "UTF8SMTP message" is an Email messages expanded by [RFC5335]."

There is a typo for "Email message".

In Section 4:

     "Apply Email header fields downgrading defined in section 5
      of [I-D.ietf-eai-downgrade] to the output of Step 2 without re-
      generating "Downgraded-" header fields."

This document describes the restoration methods. I read the above asapply downgrading again as defined in RFC 5504.


      "Don't change "Downgraded-Mail-From" and "Downgraded-Rcpt-To"
      header fields because they do not have their original header
      fields."

You are not changing these header fields as they correspond with aSMTP envelope, i.e. the original is not a header field.


In Section 5:

  "While information in any email header should usually treated with
   some suspicion, current email systems commonly employ various
   mechanisms and protocols to make the information more trustworthy.
   For example, an organization's boundary MTA can modify From: lines so
   that messages arriving from outside the organization are easily
   distinguishable from internal emails. As a result of rewriting, the
   Downgraded-From header field may not be decoded."

Modifying the "From:" lines does not make the information moretrustworthy. It is more of a hack to get around the limitations ofthe MUA. Please see whether the "decoding failure" (last sentence inthe paragraph above) note would be more appropriate in Section 4instead of Section 5. The Security Considerations section needs somemore thought in my opinion.


Regards,
-sm

Follow-Ups:
- Re: [EAI] Comments on draft-ietf-eai-downgraded-display-01
  - From: fujiwara

Prev by Date: Re: [EAI] AD review of draft-ietf-eai-downgraded-display-01.txt
Next by Date: Re: [EAI] Comments on draft-ietf-eai-downgraded-display-01
Previous by thread: [EAI] I have read <EAI IMAP document>
Next by thread: Re: [EAI] Comments on draft-ietf-eai-downgraded-display-01
Index(es):
- Date
- Thread

[EAI] Comments on draft-ietf-eai-downgraded-display-01

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.