[mail-vet-discuss] Auth-Results issue #4 method=value values

Tony Hansen tony at att.com
Wed Mar 22 17:41:15 PST 2006


These comments are about the values specified for the method=value:
pass, fail, softfail, neutral, temperror and permerror.

First pass:
        sending domain publishes an authentication policy of some kind,
        and the message passed the authentication tests

Why is a policy being required? Not all methods have policies, and some
methods can be used without a published policy.

Instead say something like

	The message passed the authentication tests. (This may require
	accessing an authentication policy of some kind published by the
	sending domain.)

The same comments go for fail:
        sending domain publishes an authentication policy of some kind,
        and the message failed the authentication tests

Instead say something like

	The message failed the authentication tests. (This may require
	accessing an authentication policy of some kind published by the
	sending domain.)

The other value definitions are different, but need to recognize that
not all authentication methods require policies. I'd suggest this rewording:
    softfail
	The authentication method requires a policy to be accessed, but
	the policy does not require authentication of all messages from
	that domain, and the message failed the authentication tests

    neutral
	The authentication method requires a policy to be accessed, but
        the sending domain does not publish any sender authentication
	policy.

    temperror
        A temporary (recoverable) error occurred attempting to
	authenticate the sender; either the process couldn't be
	completed locally because of some transient condition, or (for
	methods requiring a policy to be accessed) there was a temporary
	failure retrieving the sending domain's policy; a later attempt
	to re-authenticate this message might produce a more final
	result.

    permerror
        a permanent (unrecoverable) error occurred attempting to
	authenticate the sender; either the process couldn't be
	completed locally, or (for methods requiring a policy to be
	accessed) there was a permanent failure retrieving the sending
	domain's policy.


	Tony Hansen
	tony at att.com


More information about the mail-vet-discuss mailing list