Email Authentication Status Codes
draft-ietf-appsawg-email-auth-codes-07
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2014-09-15
|
07 | (System) | RFC Editor state changed to AUTH48-DONE from AUTH48 |
2014-09-12
|
07 | (System) | RFC Editor state changed to AUTH48 from RFC-EDITOR |
2014-09-09
|
07 | (System) | RFC Editor state changed to RFC-EDITOR from EDIT |
2014-08-18
|
07 | (System) | IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor |
2014-08-14
|
07 | (System) | IANA Action state changed to Waiting on RFC Editor from In Progress |
2014-08-14
|
07 | (System) | IANA Action state changed to In Progress from Waiting on Authors |
2014-08-13
|
07 | (System) | IANA Action state changed to Waiting on Authors from In Progress |
2014-08-13
|
07 | (System) | IANA Action state changed to In Progress from On Hold |
2014-08-12
|
07 | (System) | IANA Action state changed to On Hold from In Progress |
2014-08-12
|
07 | Cindy Morgan | IESG state changed to RFC Ed Queue from Approved-announcement sent |
2014-08-12
|
07 | (System) | RFC Editor state changed to EDIT |
2014-08-12
|
07 | (System) | Announcement was received by RFC Editor |
2014-08-12
|
07 | Barry Leiba | Changed consensus to Yes from Unknown |
2014-08-11
|
07 | Barry Leiba | Notification list changed to : appsawg-chairs@tools.ietf.org, draft-ietf-appsawg-email-auth-codes@tools.ietf.org, sm+ietf@elandsys.com |
2014-08-11
|
07 | (System) | IANA Action state changed to In Progress |
2014-08-11
|
07 | Amy Vezza | IESG state changed to Approved-announcement sent from Approved-announcement to be sent |
2014-08-11
|
07 | Amy Vezza | IESG has approved the document |
2014-08-11
|
07 | Amy Vezza | Closed "Approve" ballot |
2014-08-11
|
07 | Amy Vezza | Ballot approval text was generated |
2014-08-08
|
07 | Barry Leiba | IESG state changed to Approved-announcement to be sent from Approved-announcement to be sent::Point Raised - writeup needed |
2014-08-08
|
07 | Murray Kucherawy | IANA Review state changed to Version Changed - Review Needed from IANA - Not OK |
2014-08-08
|
07 | Murray Kucherawy | New version available: draft-ietf-appsawg-email-auth-codes-07.txt |
2014-08-07
|
06 | Cindy Morgan | IESG state changed to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation |
2014-08-07
|
06 | Barry Leiba | Ballot writeup was changed |
2014-08-07
|
06 | Tero Kivinen | Request for Last Call review by SECDIR Completed: Has Issues. Reviewer: Paul Wouters. |
2014-08-07
|
06 | Ted Lemon | [Ballot Position Update] New position, Yes, has been recorded for Ted Lemon |
2014-08-07
|
06 | Amanda Baber | IANA Review state changed to IANA - Not OK from Version Changed - Review Needed |
2014-08-06
|
06 | Joel Jaeggli | [Ballot Position Update] New position, No Objection, has been recorded for Joel Jaeggli |
2014-08-06
|
06 | Jari Arkko | [Ballot Position Update] New position, No Objection, has been recorded for Jari Arkko |
2014-08-06
|
06 | Stephen Farrell | [Ballot comment] - Since only one code is returned and since the client has to assume that other failures may have happened in parallel, and … [Ballot comment] - Since only one code is returned and since the client has to assume that other failures may have happened in parallel, and since the X.7.20 code covers two different things (i.e. (a) and (b) from 3.1), did the wg consider splitting out 3.1's (a) and (b) into different codes? That way the 3.1.a code would conform to 6376 and the 3.1.b code would be "failed my local DKIM specifics." Seems to me that splitting those out might be better but I'm fine if this was considered and rejected (i.e. no need to re-do the reason for rejecting, just tell me it happened and that'll be fine). - The intro could make the X.7.nn notation clearer, but it becomes blatently obvious if one reads 5248 so its ok unless you want to be extra-nice to the reader. |
2014-08-06
|
06 | Stephen Farrell | [Ballot Position Update] New position, No Objection, has been recorded for Stephen Farrell |
2014-08-06
|
06 | Richard Barnes | [Ballot comment] As someone who has had to debug SPF-related mail failures, I approve this message. |
2014-08-06
|
06 | Richard Barnes | [Ballot Position Update] New position, Yes, has been recorded for Richard Barnes |
2014-08-06
|
06 | Spencer Dawkins | [Ballot Position Update] New position, No Objection, has been recorded for Spencer Dawkins |
2014-08-06
|
06 | Alissa Cooper | [Ballot Position Update] New position, No Objection, has been recorded for Alissa Cooper |
2014-08-05
|
06 | Gunter Van de Velde | Request for Last Call review by OPSDIR Completed: Ready. Reviewer: Suzanne Woolf. |
2014-08-05
|
06 | Pete Resnick | [Ballot Position Update] Position for Pete Resnick has been changed to Yes from Discuss |
2014-08-05
|
06 | Murray Kucherawy | IANA Review state changed to Version Changed - Review Needed from IANA - Not OK |
2014-08-05
|
06 | Murray Kucherawy | New version available: draft-ietf-appsawg-email-auth-codes-06.txt |
2014-08-05
|
05 | Martin Stiemerling | [Ballot Position Update] New position, No Objection, has been recorded for Martin Stiemerling |
2014-08-04
|
05 | Pete Resnick | [Ballot discuss] We might be able to clear this up with an explanation rather than a change of the text, but I wanted to make … [Ballot discuss] We might be able to clear this up with an explanation rather than a change of the text, but I wanted to make sure: I was comparing the descriptions in section 3.1 to the descriptions in RFC 7001 section 2.6.1 and I'm left a bit confused. - When is X.7.20 expected to be returned? Would you use it for "none", "fail", "neutral", "temperror", "permerror", or more than one of those? The way it is worded, you could read it as saying this is only for the "neutral" case (i.e., the signature is there but not valid), but I could also see sending it back for "none". What was the intention? - X.7.21 says it's for the author not matching case, but I would think that this should be generalized for *any* of the RFC 7001 "policy" cases. Do you really intend it only to be used for the particular policy case of no author match? If so, are we going to need other error codes later for other policy cases? Perhaps this could be cleared up with some specific discussion of the 2.6.1 cases in regard to the use of these codes. But as-is, I'm not sure they are going to be used interoperably without further explanation. |
2014-08-04
|
05 | Pete Resnick | [Ballot Position Update] New position, Discuss, has been recorded for Pete Resnick |
2014-08-04
|
05 | Kathleen Moriarty | [Ballot Position Update] New position, No Objection, has been recorded for Kathleen Moriarty |
2014-08-04
|
05 | Brian Haberman | [Ballot comment] No objection to the publication of this document, but I have one comment that I would like considered. It may be useful to … [Ballot comment] No objection to the publication of this document, but I have one comment that I would like considered. It may be useful to provide an explicit link to the IANA registry being updated. That could easily be done by including http://www.iana.org/assignments/smtp-enhanced-status-codes in the IANA Considerations section. It would also be clearer of section 6 referred to the SMTP Enumerated Status Codes registry rather than the SMTP Enhanced Status Code Registry. |
2014-08-04
|
05 | Brian Haberman | [Ballot Position Update] New position, No Objection, has been recorded for Brian Haberman |
2014-08-04
|
05 | Adrian Farrel | [Ballot comment] I have no objeciton to the publication of this document. Here are two small editorial points you may want to consider. --- Whenever … [Ballot comment] I have no objeciton to the publication of this document. Here are two small editorial points you may want to consider. --- Whenever I see an Abstract like this one (and the corresponding paragraph in the Introduction) I wonder how it will read as an RFC rather than as an Internet-Draft. As part of an I-D it is fine to say "there is at present..." but in five years time, when you read the RFC it will seem really odd. Why not go for the more simple statement... This document registers code points to allow status codes to be returned to an email client to indicate that a message is being rejected of deferred specifically because of email authentication failures. --- I would prefer that the Abstract also indicated how this document updates RFC 7208. Thus... This document updates RFC 7208 to register code points to allow status codes to be returned to an email client to indicate that a message is being rejected of deferred specifically because of email authentication failures. |
2014-08-04
|
05 | Adrian Farrel | [Ballot Position Update] New position, No Objection, has been recorded for Adrian Farrel |
2014-08-04
|
05 | Barry Leiba | Ballot has been issued |
2014-08-04
|
05 | Barry Leiba | [Ballot Position Update] New position, Yes, has been recorded for Barry Leiba |
2014-08-04
|
05 | Barry Leiba | Created "Approve" ballot |
2014-08-04
|
05 | Barry Leiba | IESG state changed to IESG Evaluation from Waiting for AD Go-Ahead |
2014-08-01
|
05 | Peter Yee | Request for Last Call review by GENART Completed: Ready. Reviewer: Peter Yee. |
2014-08-01
|
05 | (System) | IESG state changed to Waiting for AD Go-Ahead from In Last Call |
2014-07-31
|
05 | Jean Mahoney | Request for Last Call review by GENART is assigned to Peter Yee |
2014-07-31
|
05 | Jean Mahoney | Request for Last Call review by GENART is assigned to Peter Yee |
2014-07-30
|
05 | (System) | IANA Review state changed to IANA - Not OK from IANA - Review Needed |
2014-07-30
|
05 | Pearl Liang | IESG/Authors/WG Chairs: IANA has reviewed draft-ietf-appsawg-email-auth-codes-04. Authors should review the comments and/or questions below. Please report any inaccuracies and respond to any questions as soon … IESG/Authors/WG Chairs: IANA has reviewed draft-ietf-appsawg-email-auth-codes-04. Authors should review the comments and/or questions below. Please report any inaccuracies and respond to any questions as soon as possible. We received the following comments/questions from the IANA's reviewer: IANA has a question about this one. IANA understands that, upon approval of this document, there is a single action which IANA must complete. In the Enumerated Status Codes subregistry of the Simple Mail Transfer Protocol (SMTP) Enhanced Status Codes Registry located at: http://www.iana.org/assignments/smtp-enhanced-status-codes/ the following six Sub-Codes are to be added: Code: X.7.20 Sample Text: No valid DKIM signature found Associated basic status code: 550 Description: This status code is returned when a message did not contain a valid DKIM signature, contrary to local policy requirements. (Note that this violates the advice of Section 6.1 of RFC6376.) Reference: [ RFC-to-be ]; RFC6376 Submitter: M. Kucherawy Change controller: IESG Code: X.7.21 Sample Text: No valid author-matched DKIM signature found Associated basic status code: 550 Description: This status code is returned when a message did not contain a valid DKIM signature whose identifier(s) match the author address(es) found in the From header field, contrary to local policy requirements. (Note that this violates the advice of Section 6.1 of RFC6376.) Reference: [ RFC-to-be ]; RFC6376 Submitter: M. Kucherawy Change controller: IESG Code: X.7.22 Sample Text: SPF validation failed Associated basic status code: 550 Description: This status code is returned when a message completed an SPF check that produced a "fail" result, contrary to local policy requirements. Used in place of 5.7.1 as described in Section 8.4 of RFC7208. Reference: [ RFC-to-be ]; RFC7208 Submitter: M. Kucherawy Change controller: IESG Code: X.7.23 Sample Text: SPF validation error Associated basic status code: 451/550 Description: This status code is returned when evaluation of SPF relative to an arriving message resulted in an error. Used in place of 4.4.3 or 5.5.2 as described in Sections 8.6 and 8.7 of RFC7208. Reference: [ RFC-to-be ]; RFC7208 Submitter: M. Kucherawy Change controller: IESG Code: X.7.24 Sample Text: Reverse DNS validation failed Associated basic status code: 550 Description: This status code is returned when an SMTP client's IP address failed a reverse DNS validation check, contrary to local policy requirements. Reference: [ RFC-to-be ]; Section 3 of RFC7001 Submitter: M. Kucherawy Change controller: IESG Code: X.7.25 Sample Text: Multiple authentication checks failed Associated basic status code: 550 Description: This status code is returned when a message failed more than one message authentication check, contrary to local policy requirements. The specific mechanisms that failed are not specified. Reference: [ RFC-to-be ] Submitter: M. Kucherawy Change controller: IESG Question/Note: The Enumerated Status Codes subregistry is managed via Specification Required. IANA has submitted a management item to get a designated expert (or experts). The requested sub-codes will be sent to the designated expert for review upon approval of the management item. IANA understands that adding these six Sub-Codes is the only action required to be completed upon approval of this document. Note: The actions requested in this document will not be completed until the document has been approved for publication as an RFC. This message is only to confirm what actions will be performed. Please note that IANA cannot reserve specific values. We receive requests constantly and the numbers may not be available. However, early allocation is available for some types of registrations. For more information, please see RFC 7120. |
2014-07-21
|
05 | Murray Kucherawy | New version available: draft-ietf-appsawg-email-auth-codes-05.txt |
2014-07-17
|
04 | Jean Mahoney | Request for Last Call review by GENART is assigned to Peter Yee |
2014-07-17
|
04 | Jean Mahoney | Request for Last Call review by GENART is assigned to Peter Yee |
2014-07-17
|
04 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Paul Wouters |
2014-07-17
|
04 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Paul Wouters |
2014-07-14
|
04 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Suzanne Woolf |
2014-07-14
|
04 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Suzanne Woolf |
2014-07-11
|
04 | Barry Leiba | Ballot writeup was changed |
2014-07-11
|
04 | Amy Vezza | IANA Review state changed to IANA - Review Needed |
2014-07-11
|
04 | Amy Vezza | The following Last Call announcement was sent out: From: The IESG To: IETF-Announce CC: Reply-To: ietf@ietf.org Sender: Subject: Last Call: (Email Authentication Status Codes) to … The following Last Call announcement was sent out: From: The IESG To: IETF-Announce CC: Reply-To: ietf@ietf.org Sender: Subject: Last Call: (Email Authentication Status Codes) to Proposed Standard The IESG has received a request from the Applications Area Working Group WG (appsawg) to consider the following document: - 'Email Authentication Status Codes' as Proposed Standard The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the ietf@ietf.org mailing lists by 2014-08-01. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract There is at present no way to return a status code to an email client that indicates a message is being rejected or deferred specifically because of email authentication failures. This document registers codes for this purpose. The file can be obtained via http://datatracker.ietf.org/doc/draft-ietf-appsawg-email-auth-codes/ IESG discussion can be tracked via http://datatracker.ietf.org/doc/draft-ietf-appsawg-email-auth-codes/ballot/ No IPR declarations have been submitted directly on this I-D. |
2014-07-11
|
04 | Amy Vezza | IESG state changed to In Last Call from Last Call Requested |
2014-07-11
|
04 | Barry Leiba | Last call announcement was changed |
2014-07-11
|
04 | Barry Leiba | Placed on agenda for telechat - 2014-08-07 |
2014-07-11
|
04 | Barry Leiba | Last call was requested |
2014-07-11
|
04 | Barry Leiba | Last call announcement was generated |
2014-07-11
|
04 | Barry Leiba | Ballot approval text was generated |
2014-07-11
|
04 | Barry Leiba | IESG state changed to Last Call Requested from AD Evaluation |
2014-07-11
|
04 | Barry Leiba | Notification list changed to : appsawg-chairs@tools.ietf.org, draft-ietf-appsawg-email-auth-codes@tools.ietf.org, sm+ietf@elandsys.com, apps-discuss@ietf.org |
2014-07-11
|
04 | Barry Leiba | Ballot writeup was changed |
2014-07-11
|
04 | Amy Vezza | Notification list changed to : appsawg-chairs@tools.ietf.org, draft-ietf-appsawg-email-auth-codes@tools.ietf.org, sm+ietf@elandsys.com |
2014-07-11
|
04 | Barry Leiba | Ballot writeup was generated |
2014-07-11
|
04 | Barry Leiba | 1. Summary The document shepherd is S. Moonesamy. The Responsible Area Director is Barry Leiba. draft-ietf-appsawg-email-auth-codes register Enhanced Status Codes for … 1. Summary The document shepherd is S. Moonesamy. The Responsible Area Director is Barry Leiba. draft-ietf-appsawg-email-auth-codes register Enhanced Status Codes for email authentication failures. The intended status is Proposed Standard as the specification seeks to improve interoperability by allowing the SMTP server to provide more information to the SMTP client. 2. Review and Consensus The document was discussed by seven participants within the Applications Area Working Group and it has the consensus of the working group. Most of issues raised were resolved. An outstanding issue is the term "author-aligned". It was agreed to resolve that during the Last Call. The significant issue was how to handle cases where multiple authentication checks failed. Alexey Melnikov was not convinced about having an enhanced status code for that case, but in the end is okay with doing that as it provides more information. There was agreement to assign an enhanced status code for such a case. There was some discussion about whether to register additional enhanced status codes for DMARC. The working group agreed to handle that as part of the DMARC work. There was a very strong objection to including enhanced status codes for DKIM as it violates a recommendation in RFC 6376. There was agreement to have text in this document to make it clear that is not recommended behaviour and it is a local policy decision, and this allayed the objections. 3. Intellectual Property There isn't any IPR disclosure referencing this document. The author has confirmed that the document is in full conformance with BCP 78 and BCP 79. 4. Other points The document updates RFC 7208, as it registers a new enhanced status code for SPF. There is an explanation for the update in the Introduction Section. |
2014-07-11
|
04 | Barry Leiba | IESG state changed to AD Evaluation from Publication Requested |
2014-07-11
|
04 | Salvatore Loreto | 1. Summary The document shepherd is S. Moonesamy. The Responsible Area Director is Barry Leiba. draft-ietf-appsawg-email-auth-codes register Enhanced Status Codes for … 1. Summary The document shepherd is S. Moonesamy. The Responsible Area Director is Barry Leiba. draft-ietf-appsawg-email-auth-codes register Enhanced Status Codes for email authentication failures. The intended status is Proposed Standard as the specification seeks to improve interoperability by allowing the SMTP server to provide more information to the SMTP client. 2. Review and Consensus The document was discussed by seven participants within the Applications Area Working Group and it has the consensus of the working group. Most of issues raised were resolved. An outstanding issue is the term "author-aligned". It was agreed to resolve that during the Last Call. The significant issue was how to handle cases where multiple authentication checks failed. Alexey Melnikov was not convinced about have an enhanced status code for that case but it is okay with doing that as it provides more information. There was agreement to assign an enhanced status code for such a case. There was some discussion about whether to register enhanced status codes for DMARC. The working group agreed to handle that as part of a specification about DMARC. There was a very strong objection to including enhanced status codes for DKIM as it violates a recommendation in RFC 6376. There was agreement to have text in this document to make it clear that is not recommended behaviour and it is a local policy decision. 3. Intellectual Property There isn't any IPR disclosure referencing this document. The author has confirmed that the document is in full conformance with BCP 78 and BCP 79. 4. Other points The document updates RFC 7208 as it registers a new enhanced status code for SPF. There is an explanation for the update in the Introduction Section. |
2014-07-11
|
04 | Salvatore Loreto | State Change Notice email list changed to appsawg-chairs@tools.ietf.org, draft-ietf-appsawg-email-auth-codes@tools.ietf.org |
2014-07-11
|
04 | Salvatore Loreto | Responsible AD changed to Barry Leiba |
2014-07-11
|
04 | Salvatore Loreto | IETF WG state changed to Submitted to IESG for Publication from WG Consensus: Waiting for Write-Up |
2014-07-11
|
04 | Salvatore Loreto | IESG state changed to Publication Requested |
2014-07-11
|
04 | Salvatore Loreto | IESG process started in state Publication Requested |
2014-07-10
|
04 | S Moonesamy | Changed document writeup |
2014-07-08
|
04 | Naveen Khan | New revision available |
2014-06-30
|
03 | Murray Kucherawy | IETF WG state changed to WG Consensus: Waiting for Write-Up from In WG Last Call |
2014-06-26
|
03 | Murray Kucherawy | New version available: draft-ietf-appsawg-email-auth-codes-03.txt |
2014-06-13
|
02 | Murray Kucherawy | WGLC ends June 30, 2014. |
2014-06-13
|
02 | Murray Kucherawy | IETF WG state changed to In WG Last Call from WG Document |
2014-06-02
|
02 | Murray Kucherawy | New version available: draft-ietf-appsawg-email-auth-codes-02.txt |
2014-05-27
|
01 | Murray Kucherawy | New version available: draft-ietf-appsawg-email-auth-codes-01.txt |
2014-05-25
|
00 | Murray Kucherawy | Document shepherd changed to S Moonesamy |
2014-05-25
|
00 | Murray Kucherawy | Document shepherd changed to (None) |
2014-05-25
|
00 | Murray Kucherawy | Intended Status changed to Proposed Standard from None |
2014-05-25
|
00 | Murray Kucherawy | This document now replaces draft-kucherawy-email-auth-codes instead of None |
2014-05-25
|
00 | Murray Kucherawy | New version available: draft-ietf-appsawg-email-auth-codes-00.txt |