[spfbis] Fwd: draft-ietf-spfbis-4408bis-14
S Moonesamy <sm+ietf@elandsys.com> Tue, 30 April 2013 18:25 UTC
Return-Path: <sm@elandsys.com>
X-Original-To: spfbis@ietfa.amsl.com
Delivered-To: spfbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D13A21F9C70 for <spfbis@ietfa.amsl.com>; Tue, 30 Apr 2013 11:25:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.552
X-Spam-Level:
X-Spam-Status: No, score=-102.552 tagged_above=-999 required=5 tests=[AWL=0.047, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Hwv5x4eAgujw for <spfbis@ietfa.amsl.com>; Tue, 30 Apr 2013 11:24:59 -0700 (PDT)
Received: from mx.ipv6.elandsys.com (mx.ipv6.elandsys.com [IPv6:2001:470:f329:1::1]) by ietfa.amsl.com (Postfix) with ESMTP id AF11E21F9C2F for <spfbis@ietf.org>; Tue, 30 Apr 2013 11:24:50 -0700 (PDT)
Received: from SUBMAN.elandsys.com ([197.226.235.145]) (authenticated bits=0) by mx.elandsys.com (8.14.5/8.14.5) with ESMTP id r3UIOUNV017698 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <spfbis@ietf.org>; Tue, 30 Apr 2013 11:24:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=opendkim.org; s=mail2010; t=1367346289; bh=0mToh4eA9Y7n7MenezxDhPDji5kf6Aeo1CSnwn6iuIA=; h=Date:To:From:Subject; b=BcLg70ZeiX1aidBP3hz5h6qfOnqLL0OkekEMHfF5m1fN5jDxNS4cwzSB8tGvH/s17 mVZ2knqmxYLibIrWMWUI6eTCMvmnwKvdUXjv++lgAWlWehwQPNpLft/ik9sgf1R658 QyzBhOXvq0cIIC+TKO3J+X0P8njRDCAah2jDmr28=
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=elandsys.com; s=mail; t=1367346289; i=@elandsys.com; bh=0mToh4eA9Y7n7MenezxDhPDji5kf6Aeo1CSnwn6iuIA=; h=Date:To:From:Subject; b=sP1vdRP9gCedImGLCc0epWTOhkBZaznmhM0Cf1k5BYxk1qfYne+KmSLCWE2f9xu6V NXOa0F3itFHeLaTJqhMpJu4tkL0qbNUqTdeFqA1rloddOY8sfRPrsvmzlAWAASaJbE Rgdob4IGtcZEh1lW5YvgzAFV7W66nwUl787KpWcc=
Message-Id: <6.2.5.6.2.20130430112315.0a7ee3e8@elandnews.com>
X-Mailer: QUALCOMM Windows Eudora Version 6.2.5.6
Date: Tue, 30 Apr 2013 11:24:00 -0700
To: spfbis@ietf.org
From: S Moonesamy <sm+ietf@elandsys.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Subject: [spfbis] Fwd: draft-ietf-spfbis-4408bis-14
X-BeenThere: spfbis@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SPFbis discussion list <spfbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spfbis>, <mailto:spfbis-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/spfbis>
List-Post: <mailto:spfbis@ietf.org>
List-Help: <mailto:spfbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spfbis>, <mailto:spfbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Apr 2013 18:25:00 -0000
>Date: Fri, 26 Apr 2013 12:58:48 -0400 >From: Phillip Hallam-Baker <hallam@gmail.com> >To: "iesg@ietf.org" <iesg@ietf.org>, > draft-ietf-spfbis-4408bis.all@tools.ietf.org, > "secdir@ietf.org" <secdir@ietf.org> >Subject: draft-ietf-spfbis-4408bis-14 > > >I have reviewed this document as part of the security directorate's >ongoing effort to review all IETF documents being processed by the >IESG. These comments were written primarily for the benefit of the >security area directors. Document editors and WG chairs should treat >these comments just like any other last call comments. > > >The document is clear and describes the SPF mechanism effectively. >The only quibble that I could find is that repeated mentions are >made of limiting the number of 'DNS queries' without specifying >whether these are individual queries or recursive. The count will >come out rather differently if looking up >TXT/<http://x.example.com>x.example.com counts as one lookup or >three. I think it is reasonably clear that this is one but could not >find an explicit statement to that effect. > >On the security side, the document addresses all the mail issues >that I can remember at this point and rather more besides. > >I think we have reached the point of diminishing returns. > >The document provides a clear enough warning to people configuring >SPF records as to the consequences of getting it wrong which is the >main concern. The filtering services will know their business well >enough to minimize false positives. > >Hopefully the email infrastructure will evolve over time towards >concentrating on the more policy friendly approaches and it will be >possible to simplify the mechanism at a future date. > > >-- >Website: <http://hallambaker.com/>http://hallambaker.com/
- [spfbis] Fwd: draft-ietf-spfbis-4408bis-14 S Moonesamy
- Re: [spfbis] Fwd: draft-ietf-spfbis-4408bis-14 Scott Kitterman
- Re: [spfbis] Fwd: draft-ietf-spfbis-4408bis-14 (f… John R. Levine
- Re: [spfbis] draft-ietf-spfbis-4408bis-14 S Moonesamy
- Re: [spfbis] draft-ietf-spfbis-4408bis-14 Douglas Otis
- Re: [spfbis] draft-ietf-spfbis-4408bis-14 S Moonesamy
- Re: [spfbis] draft-ietf-spfbis-4408bis-14 Douglas Otis
- Re: [spfbis] draft-ietf-spfbis-4408bis-14 S Moonesamy
- Re: [spfbis] draft-ietf-spfbis-4408bis-14 Phillip Hallam-Baker