Skip Menu |
 

This queue is for tickets about the Mail-SPF CPAN distribution.

Report information
The Basics
Id: 107112
Status: open
Priority: 0/
Queue: Mail-SPF

People
Owner: Nobody in particular
Requestors: sebastiaanlokhorst [...] gmail.com
Cc:
AdminCc:

Bug Information
Severity: (no value)
Broken in: (no value)
Fixed in: (no value)



MIME-Version: 1.0
X-Spam-Status: No, score=-2.698 tagged_above=-99.9 required=10 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
X-Spam-Flag: NO
Content-Type: multipart/alternative; boundary="089e011605f44701c6051fce4332"
Message-ID: <CAAMCZQ6iL73DTGFH+i0=djhBp=WgOyn1Uyh9XckvGUvUgtsYMg [...] mail.gmail.com>
X-Received: by 10.112.163.99 with SMTP id yh3mr24246727lbb.121.1442345636001; Tue, 15 Sep 2015 12:33:56 -0700 (PDT)
X-Virus-Scanned: Debian amavisd-new at bestpractical.com
X-Spam-Score: -2.698
Received: from localhost (localhost [127.0.0.1]) by hipster.bestpractical.com (Postfix) with ESMTP id 10106240329 for <cpan-bug+Mail-SPF [...] hipster.bestpractical.com>; Tue, 15 Sep 2015 15:34:05 -0400 (EDT)
Received: from hipster.bestpractical.com ([127.0.0.1]) by localhost (hipster.bestpractical.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZPXw6uzOwZ3P for <cpan-bug+Mail-SPF [...] hipster.bestpractical.com>; Tue, 15 Sep 2015 15:34:03 -0400 (EDT)
Received: from la.mx.develooper.com (x1.develooper.com [207.171.7.70]) by hipster.bestpractical.com (Postfix) with SMTP id 3830C2400C3 for <bug-Mail-SPF [...] rt.cpan.org>; Tue, 15 Sep 2015 15:34:03 -0400 (EDT)
Received: (qmail 12115 invoked by alias); 15 Sep 2015 19:34:02 -0000
Received: from mail-la0-f48.google.com (HELO mail-la0-f48.google.com) (209.85.215.48) by la.mx.develooper.com (qpsmtpd/0.28) with ESMTP; Tue, 15 Sep 2015 12:34:00 -0700
Received: by lagj9 with SMTP id j9so116491598lag.2 for <bug-Mail-SPF [...] rt.cpan.org>; Tue, 15 Sep 2015 12:33:56 -0700 (PDT)
Received: by 10.112.252.41 with HTTP; Tue, 15 Sep 2015 12:33:55 -0700 (PDT)
Authentication-Results: hipster.bestpractical.com (amavisd-new); dkim=pass header.i= [...] gmail.com
Delivered-To: cpan-bug+Mail-SPF [...] hipster.bestpractical.com
Subject: max_void_dns_lookups goes against RFC 4408
Return-Path: <sebastiaanlokhorst [...] gmail.com>
X-RT-Mail-Extension: mail-spf
X-Original-To: cpan-bug+Mail-SPF [...] hipster.bestpractical.com
X-Spam-Check-BY: la.mx.develooper.com
Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=fD6yqQjdx36E4XUYKRnGJ8Sf7ymtT0ta+emIuz4CEJs=; b=d9rCGUXW7h0Vad+gVv6Grj1Zu3mmIxpr+6WeiwDsH2N+Ewufq2/PQC6FbNTPbtY+Dm d3q3CbyLU1CCIKUP1Fg61Hw1DVOKTVm5x4ruFLf5zk89iR+nYM3TZnUqQVsqOYWT+5xO ajtzro9TEwPQUjEvdAVO9qGSSWLlOI6O3YiwYJbgec78kdy/vkFFP0I2LgfCOF2pcnA/ yXKPdSFtdFW46C/tKsx0tGYOu3kD1nSFGtvvpnOBZkfdypAmaEzdLjZiGmA+N7xJjmAm gDrJKyYd9IkOXFFTYZ70H3QCt2rOxm2h23ie9ootgljkGMRmTq+GY+cOk3bDuiHM4hXr wgbw==
Date: Tue, 15 Sep 2015 21:33:55 +0200
X-Spam-Level:
To: bug-Mail-SPF [...] rt.cpan.org
From: Sebastiaan Lokhorst <sebastiaanlokhorst [...] gmail.com>
X-RT-Interface: Email
Content-Length: 0
content-type: text/plain; charset="utf-8"
X-RT-Original-Encoding: utf-8
Content-Length: 398
Download (untitled) / with headers
text/plain 398b
Hi, The documentation about the max_void_dns_lookups option suggests that RFC 4408 says something about "void DNS lookups". The RFC only says that the total number of DNS lookups should be limited to 10. So, by using this option, the SPF-check is not RFC-compliant, because it will permerror before reaching 10 lookups. I suggest the default for this option should be undef. Thanks! Sebastiaan
content-type: text/html; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-RT-Original-Encoding: utf-8
Content-Length: 540
MIME-Version: 1.0
In-Reply-To: <CAAMCZQ6iL73DTGFH+i0=djhBp=WgOyn1Uyh9XckvGUvUgtsYMg [...] mail.gmail.com>
X-Mailer: MIME-tools 5.504 (Entity 5.504)
Content-Disposition: inline
X-RT-Interface: Web
References: <CAAMCZQ6iL73DTGFH+i0=djhBp=WgOyn1Uyh9XckvGUvUgtsYMg [...] mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Message-ID: <rt-4.0.18-31217-1442357158-60.107112-0-0 [...] rt.cpan.org>
Content-Transfer-Encoding: binary
X-RT-Original-Encoding: utf-8
X-RT-Encrypt: 0
X-RT-Sign: 0
Content-Length: 922
Download (untitled) / with headers
text/plain 922b
Show quoted text
> The documentation about the max_void_dns_lookups option suggests that RFC > 4408 says something about "void DNS lookups". > The RFC only says that the total number of DNS lookups should be limited to > 10. > > So, by using this option, the SPF-check is not RFC-compliant, because it > will permerror before reaching 10 lookups. > > I suggest the default for this option should be undef.
The reference to "RFC 4408, 10.1, paragraphs 6 and 7" refers only to "DNS-active terms", not to "void DNS lookups". I'll grant that the wording is ambiguous and should be clarified to say that this limit is not native to RFC 4408. Note, however, that the default was undef for years and it turned out to be a bad idea, which is why it was finally changed to 2. Also note that this concept exists in RFC 7208 (the official successor to RFC 4408) and has a suggested threshold of 2: https://tools.ietf.org/html/rfc7208#section-11.1
MIME-Version: 1.0
X-Spam-Status: No, score=-4.698 tagged_above=-99.9 required=10 tests=[AWL=2.000, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_OUR_RT=-4, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
In-Reply-To: <rt-4.0.18-31217-1442357158-183.107112-6-0 [...] rt.cpan.org>
X-Spam-Flag: NO
X-RT-Interface: API
References: <RT-Ticket-107112 [...] rt.cpan.org> <CAAMCZQ6iL73DTGFH+i0=djhBp=WgOyn1Uyh9XckvGUvUgtsYMg [...] mail.gmail.com> <rt-4.0.18-31217-1442357158-183.107112-6-0 [...] rt.cpan.org>
X-Virus-Scanned: Debian amavisd-new at bestpractical.com
X-Received: by 10.152.9.135 with SMTP id z7mr3148460laa.12.1442376422632; Tue, 15 Sep 2015 21:07:02 -0700 (PDT)
Message-ID: <CAAMCZQ7eiZPwaQkqc61GS6sU7_8_YBidqXoNeLt30SU=kDQUkw [...] mail.gmail.com>
Content-Type: multipart/alternative; boundary="001a1132effc4db4a7051fd56ed9"
X-Spam-Score: -4.698
Authentication-Results: hipster.bestpractical.com (amavisd-new); dkim=pass header.i= [...] gmail.com
Received: from localhost (localhost [127.0.0.1]) by hipster.bestpractical.com (Postfix) with ESMTP id 51ADC2402CB for <cpan-bug+Mail-SPF [...] hipster.bestpractical.com>; Wed, 16 Sep 2015 00:07:16 -0400 (EDT)
Received: from hipster.bestpractical.com ([127.0.0.1]) by localhost (hipster.bestpractical.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X0JPy9Udu9oB for <cpan-bug+Mail-SPF [...] hipster.bestpractical.com>; Wed, 16 Sep 2015 00:07:15 -0400 (EDT)
Received: from la.mx.develooper.com (x1.develooper.com [207.171.7.70]) by hipster.bestpractical.com (Postfix) with SMTP id D247B2400C3 for <bug-Mail-SPF [...] rt.cpan.org>; Wed, 16 Sep 2015 00:07:14 -0400 (EDT)
Received: (qmail 4175 invoked by alias); 16 Sep 2015 04:07:14 -0000
Received: from mail-lb0-f177.google.com (HELO mail-lb0-f177.google.com) (209.85.217.177) by la.mx.develooper.com (qpsmtpd/0.28) with ESMTP; Tue, 15 Sep 2015 21:07:07 -0700
Received: by lbpo4 with SMTP id o4so96663103lbp.2 for <bug-Mail-SPF [...] rt.cpan.org>; Tue, 15 Sep 2015 21:07:02 -0700 (PDT)
Received: by 10.112.252.41 with HTTP; Tue, 15 Sep 2015 21:07:02 -0700 (PDT)
Delivered-To: cpan-bug+Mail-SPF [...] hipster.bestpractical.com
Subject: Re: [rt.cpan.org #107112] max_void_dns_lookups goes against RFC 4408
Return-Path: <sebastiaanlokhorst [...] gmail.com>
Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=9kEycXkLlB1Qo3ZAQ6lMkfo8Vr9WyPnRfxaEJMWMu+g=; b=VbLkBE7tBRIGRBxhrFEza+ugNNLkxBTTsyexl3ZaNjJJoS2mAPcoILnVbop95OpRYq FvwhxMly3i6DGaw52BXD8Qgs0eqL19HGKa3l/qnqQVfr3t8Y2u5S7TH4ENgAlXBq3/t+ YEi+IauouZKRgc9u6n+QWun+1MXGx0x8yjINrEPeoUTWRLAHgISgUDe/mVNaxE+E0r49 d5LRGxnwqziXKbwPQT6AmMvnB4Z9kUoDTZiGheNpMWhZhub6CrVQCzQGExpyL38ptJtR IfEa3DFOS220JwmjkEyDRniNBoT1gbltabn1hcb5hGljziTM03ywJr4Svkx9PF/pPVn+ NGFA==
X-Spam-Check-BY: la.mx.develooper.com
X-Original-To: cpan-bug+Mail-SPF [...] hipster.bestpractical.com
X-RT-Mail-Extension: mail-spf
Date: Wed, 16 Sep 2015 06:07:02 +0200
X-Spam-Level:
To: bug-Mail-SPF [...] rt.cpan.org
From: Sebastiaan Lokhorst <sebastiaanlokhorst [...] gmail.com>
RT-Message-ID: <rt-4.0.18-2984-1442376437-1689.107112-0-0 [...] rt.cpan.org>
Content-Length: 0
content-type: text/plain; charset="utf-8"
X-RT-Original-Encoding: utf-8
Content-Length: 814
Download (untitled) / with headers
text/plain 814b
Show quoted text
> > The reference to "RFC 4408, 10.1, paragraphs 6 and 7" refers only to > "DNS-active terms", not to "void DNS lookups". I'll grant that the wording > is ambiguous and should be clarified to say that this limit is not native > to RFC 4408. Note, however, that the default was undef for years and it > turned out to be a bad idea, which is why it was finally changed to 2. > > Also note that this concept exists in RFC 7208 (the official successor to > RFC 4408) and has a suggested threshold of 2: > https://tools.ietf.org/html/rfc7208#section-11.1
I did not know about RFC 7208. It is indeed very clear about this. My only request would be that you update the documentation, and refer to RFC 7208, so this will be clear to everyone. Thank you very much for this clarification and for developing this module!
content-type: text/html; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-RT-Original-Encoding: utf-8
Content-Length: 1267


This service is sponsored and maintained by Best Practical Solutions and runs on Perl.org infrastructure.

Please report any issues with rt.cpan.org to rt-cpan-admin@bestpractical.com.