Re: [dmarc-ietf] https reports, or nits in draft-ietf-dmarc-aggregate-reporting-02
It appears that Seth Blank said: >-=-=-=-=-=- > >(With Chair hat off and Valimail hat on) > >Email works fine for reports, even huge ones at scale. HTTPS adds nothing >for us and adds complexity to report processing (multiple paths to >ingestion) that we’d rather avoid. Just out of nosinesss, how big are the big reports? Do people put size limits in the URIs and if so do report senders follow them? -- Regards, John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
Re: [dmarc-ietf] https reports, or nits in draft-ietf-dmarc-aggregate-reporting-02
(With Chair hat off and Valimail hat on) Email works fine for reports, even huge ones at scale. HTTPS adds nothing for us and adds complexity to report processing (multiple paths to ingestion) that we’d rather avoid. Of course, were HTTPS added to the spec, we’d implement it. Seth On Sat, May 8, 2021 at 11:14 Murray S. Kucherawy wrote: > On Fri, May 7, 2021 at 12:22 PM John R Levine wrote: > >> On Fri, 7 May 2021, Murray S. Kucherawy wrote: >> > [ mail and web departments don't talk to each other ] >> > If that logic also holds for mail people and web people, >> > I imagine the lack of interest here has a similar basis; we're talking >> > about standing up a whole service or endpoint here, not just adding >> records >> > to a zone file. >> >> That's true but there's also the fact that a handful of analysis services >> like dmarcian and valimail collect a large fraction of DMARC reports. If >> a few of them were interested in https reports, it'd be worth adding. >> > > Ah, that's a good point. > > I think both of them are represented here, and maybe some other report > processors. Any feedback on this from them? > > -MSK > ___ > dmarc mailing list > dmarc@ietf.org > https://www.ietf.org/mailman/listinfo/dmarc > -- *Seth Blank* | VP, Product *e:* s...@valimail.com *p:* 415.273.8818 This email and all data transmitted with it contains confidential and/or proprietary information intended solely for the use of individual(s) authorized to receive it. If you are not an intended and authorized recipient you are hereby notified of any use, disclosure, copying or distribution of the information included in this transmission is prohibited and may be unlawful. Please immediately notify the sender by replying to this email and then delete it from your system. ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
Re: [dmarc-ietf] https reports, or nits in draft-ietf-dmarc-aggregate-reporting-02
On Fri, May 7, 2021 at 12:22 PM John R Levine wrote: > On Fri, 7 May 2021, Murray S. Kucherawy wrote: > > [ mail and web departments don't talk to each other ] > > If that logic also holds for mail people and web people, > > I imagine the lack of interest here has a similar basis; we're talking > > about standing up a whole service or endpoint here, not just adding > records > > to a zone file. > > That's true but there's also the fact that a handful of analysis services > like dmarcian and valimail collect a large fraction of DMARC reports. If > a few of them were interested in https reports, it'd be worth adding. > Ah, that's a good point. I think both of them are represented here, and maybe some other report processors. Any feedback on this from them? -MSK ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
Re: [dmarc-ietf] https reports, or nits in draft-ietf-dmarc-aggregate-reporting-02
On Fri, 7 May 2021, Murray S. Kucherawy wrote: [ mail and web departments don't talk to each other ] If that logic also holds for mail people and web people, I imagine the lack of interest here has a similar basis; we're talking about standing up a whole service or endpoint here, not just adding records to a zone file. That's true but there's also the fact that a handful of analysis services like dmarcian and valimail collect a large fraction of DMARC reports. If a few of them were interested in https reports, it'd be worth adding. Regards, John Levine, jo...@taugh.com, Taughannock Networks, Trumansburg NY Please consider the environment before reading this e-mail. https://jl.ly ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc