Re: [EAI] Thinking about requirements / downgrade

To: Ernie Dainow <edainow at ca.afilias.info>
Subject: Re: [EAI] Thinking about requirements / downgrade
From: Harald Alvestrand <harald at alvestrand.no>
Date: Wed, 16 Sep 2009 08:16:29 +0200
Cc: Mark Davis ⌛ <mark at macchiato.com>, Shawn Steele <Shawn.Steele at microsoft.com>, "ima at ietf.org" <ima at ietf.org>
Delivered-to: ima at core3.amsl.com
In-reply-to: <4AB01389.6030607 at ca.afilias.info>
List-archive: <http://www.ietf.org/mail-archive/web/ima>
List-help: <mailto:ima-request@ietf.org?subject=help>
List-id: "EAI \(Email Address Internationalization\)" <ima.ietf.org>
List-post: <mailto:ima@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ima>, <mailto:ima-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ima>, <mailto:ima-request@ietf.org?subject=unsubscribe>
References: <mailman.21.1252177202.4236.ima at ietf.org> <CAD7705D4A93814F97D3EF00790AF0B323DD6B0E at tk5ex14mbxc105.redmond.corp.microsoft.com> <04EA2C8DA30B414374C673EB at PST.JCK.COM> <4AA6CCBB.1070804 at ca.afilias.info> <CAD7705D4A93814F97D3EF00790AF0B323DD72CA at tk5ex14mbxc105.redmond.corp.microsoft.com> <A8C25EEEDD4B379A9E8B7655 at PST.JCK.COM> <CAD7705D4A93814F97D3EF00790AF0B323DD9D39 at tk5ex14mbxc105.redmond.corp.microsoft.com>, <4AA7A649.5000903 at ca.afilias.info> <CAD7705D4A93814F97D3EF00790AF0B323DDA188 at tk5ex14mbxc105.redmond.corp.microsoft.com> <4AA7F35E.7080906 at ca.afilias.info> <CAD7705D4A93814F97D3EF00790AF0B323DDAFCB at tk5ex14mbxc105.redmond.corp.microsoft.com> <4AAE11DE.5030608 at alvestrand.no> <4AB01389.6030607 at ca.afilias.info>
User-agent: Thunderbird 2.0.0.22 (X11/20090608)

Ernie Dainow wrote:

Harald Alvestrand wrote:
The overarching issue found with variants of this proposal previouslyrejected was:
Can we guarantee (for a sufficiently strong version of "guarantee")that there are no valid mailboxes that "just happen to look like" thePunycoded strings?
I'm not sure it is necessary for a standard to guarantee this. I thinkit is just the responsibility of email administration to avoid namecollisions. Currently, when a new email address is requested, theemail administrator for the domain on which the name is requested (oremail admin software) will not grant the email address if
1. the address (local name) is assigned to someone else on the domain.
2. the address is already in use as an alias on another email accounton the domain.

My worry is about what happens if the recipient tries to decode theleft-hand side as if it was a Punycoded name when it is not. Unless onecan tell the difference between those domains that use Punycoded LHS andthose that do not, a recipient will apply the Punycode decoding toleft-hand sides indiscriminately. This can lead to similar effects asthe "Bush hid the facts" bug (seehttp://en.wikipedia.org/wiki/Bush_hid_the_facts for details).


                        Harald

Follow-Ups:
- Re: [EAI] Thinking about requirements / downgrade
  - From: John C Klensin
- Re: [EAI] Thinking about requirements / downgrade
  - From: Shawn Steele

References:
- Re: [EAI] double angle brackets
  - From: Shawn Steele
- Re: [EAI] double angle brackets
  - From: John C Klensin
- Re: [EAI] double angle brackets
  - From: Ernie Dainow
- Re: [EAI] double angle brackets
  - From: Shawn Steele
- Re: [EAI] double angle brackets
  - From: John C Klensin
- Re: [EAI] double angle brackets
  - From: Shawn Steele
- Re: [EAI] double angle brackets
  - From: Ernie Dainow
- Re: [EAI] double angle brackets
  - From: Shawn Steele
- Re: [EAI] double angle brackets
  - From: Ernie Dainow
- [EAI] Thinking about requirements / downgrade
  - From: Shawn Steele
- Re: [EAI] Thinking about requirements / downgrade
  - From: Harald Alvestrand
- Re: [EAI] Thinking about requirements / downgrade
  - From: Ernie Dainow

Prev by Date: Re: [EAI] Thinking about requirements / downgrade
Next by Date: Re: [EAI] Thinking about requirements / downgrade
Previous by thread: Re: [EAI] Thinking about requirements / downgrade
Next by thread: Re: [EAI] Thinking about requirements / downgrade
Index(es):
- Date
- Thread

Re: [EAI] Thinking about requirements / downgrade

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.