Re: [dmarc-ietf] Signaling MLMs

Sat, 15 Apr 2023 09:13:15 -0700 

On Sat 15/Apr/2023 04:57:13 +0200 Murray S. Kucherawy wrote:

On Fri, Apr 14, 2023 at 7:32 PM Jesse Thompson <z...@fastmail.com> wrote:

On Fri, Apr 14, 2023, at 7:17 PM, Murray S. Kucherawy wrote:
The Sender's users being denied the ability to participate in a list due to its policies seems to me like it puts this customer service problem where it belongs.
Let's say, tomorrow, IETF configures this list to reject Todd's mail (as well as for every other member with p=reject) and/or disables from rewriting. Does Todd's domain owner care? No. 

This is where it breaks down for me.
What's the calculus here? The domain owner decides that protecting its name in this one targeted way is so valuable that it's fine with whatever negative impact it has downstream? And we're supposed to be OK with giving this sort of approach a blanket green light by not declaring such use of DMARC not interoperable? And we're fine with giving their biz dev, PR, legal, and all the other teams you named a pass on dealing with the aftermath? Because as I think you can see, those are not the teams in the trenches figuring this out.
Why do you believe that the domain owner and its users shouldn't feel the pain for such a decision? That its customers go someplace else that does care about these things? Or that it has to split its mail flows into something general purpose and something transactional in the name of continued interoperability?
MLM damage is evident. However, our calling transactional the mail flows that don't risk indirect delivery is unreal. Limiting DMARC to transactional mail flows is not a step we can rely upon, as receiver-side forwarding does exist.
MLM traffic is 99.9% indirect (≈0.1% for list masters who participate from the list domain). Chances to run into a forwarded address are much lower, but absolutely positive. So, why don't we say that forwarders MUST NOT break DKIM signatures? Some of them do. Doesn't that disrupt forwarding just like it disrupts MLM?
The transactional vs. general purpose dichotomy relegates us to a protocol that /sometimes/ works, which I consider utterly improper. 


Best
Ale
--




_______________________________________________
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc

Reply via email to