MIME-Version: 1.0
References: <53316703-db69-7067-c82e-47a598711595@cmatte.me>
 <202111041947.x5su2sdjdx74@alvherre.pgsql>
 <CABUevEyhYyx4DJ_7kENZry2wwZYz9R4J_oh8f0cKkUY+3Q8Kfw@mail.gmail.com>
 <61fb4078-6b27-9921-7f7d-0345978d8300@kaltenbrunner.cc>
In-Reply-To: <61fb4078-6b27-9921-7f7d-0345978d8300@kaltenbrunner.cc>
From: Magnus Hagander <magnus@hagander.net>
Date: Sat, 6 Nov 2021 18:02:09 +0100
Message-ID: 
 <CABUevEyiR1qLbMpNxCZ2mi+vMdeaTJpGrvScqnH92DpJXKTcUA@mail.gmail.com>
Subject: Re: [PATCH] pgarchives: parser: handle messages in which Message-ID
 is missing
To: Stefan Kaltenbrunner <stefan@kaltenbrunner.cc>
Cc: Alvaro Herrera <alvherre@alvh.no-ip.org>,
 =?UTF-8?Q?C=C3=A9lestin_Matte?= <celestin.matte@cmatte.me>,
	pgsql-www@lists.postgresql.org
Content-Type: multipart/alternative; boundary="000000000000aaaeb605d021b99a"
Archived-At: 
 <https://www.postgresql.org/message-id/CABUevEyiR1qLbMpNxCZ2mi%2BvMdeaTJpGrvScqnH92DpJXKTcUA%40mail.gmail.com>
Precedence: bulk

--000000000000aaaeb605d021b99a
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

On Fri, Nov 5, 2021 at 9:44 PM Stefan Kaltenbrunner <stefan@kaltenbrunner.c=
c>
wrote:

> On 11/4/21 10:07 PM, Magnus Hagander wrote:
> >
> >
> > On Thu, Nov 4, 2021 at 8:47 PM Alvaro Herrera <alvherre@alvh.no-ip.org
> > <mailto:alvherre@alvh.no-ip.org>> wrote:
> >
> >     On 2021-Nov-04, C=C3=A9lestin Matte wrote:
> >
> >      > > I don't think this should be the responsibility of pglister. A=
s
> you
> >      > > say, "most MTAs do add this field" -- and the solution is to
> >      > > configure the MTA to do this. We already rely on the MTA to ge=
t
> a
> >      > > lot of other important things right.
> >      >
> >      > But then these messages will get delivered by pglister but
> pgarchives
> >      > will fail to archive them, although they do not actually break
> >      > requirements. Shouldn't we follow the RFC here?
> >
> >
> > I agree that the scenario is a problem, per below.  I don't agree that
> > making up an id is a solution to that problem.
> >
> >
> >     Maybe pglister should refuse to deliver messages that don't contain
> >     a Message-Id.
> >
> >
> > It should. I actually thought it did already, but apparently it does
> > not. I guess we've only ever used it under properly configured MTAs :)
> >
> > Have you actually come across any case where a *proper* non-spam messag=
e
> > is sent without a message-id and passes through actual mailservers on
> > the way?
> >
> > Looking through the approximately 1.4 million mails in the postgres lis=
t
> > archives, not a single one has a message-id generated by the archives
> > server MTA (which is configured to generate it). Not a single one by ou=
r
> > inbound relay servers. And exactly one by the pglister server -- which
> > turns out to be a bounce that ended up in the archives because of a
> > misconfiguration back in 2018 that's not visible in the public archives=
.
>
> as mentioned down-thread by Justin Clift we have been plain rejecting
> mails without a message-id on the postgresql.org inbound relays since
> March 27th 2012(!) according to our repo and the number of rejects due
> to that rule is actually not-insignificant (approximately 200-400/day
> with the majority being for a very small number of bounce generating
> senders) but the number of complaints is also approaching (almost) zero.
>

Oh I forgot about that one. That clearly explains why I didn't find
anything *after* 2012 in the archives -- but in my defence, we don't have
any from before that either :)

I thought we actually manufactured a message-id on them rather than reject
them, but I guess I was confusing it with how we handle email injected
internally where I think we do that.

--=20
 Magnus Hagander
 Me: https://www.hagander.net/ <http://www.hagander.net/>
 Work: https://www.redpill-linpro.com/ <http://www.redpill-linpro.com/>

--000000000000aaaeb605d021b99a
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div dir=3D"ltr">On Fri, Nov 5, 2021 at 9:44 PM Stefan Kal=
tenbrunner &lt;<a href=3D"mailto:stefan@kaltenbrunner.cc">stefan@kaltenbrun=
ner.cc</a>&gt; wrote:<br></div><div class=3D"gmail_quote"><blockquote class=
=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rg=
b(204,204,204);padding-left:1ex">On 11/4/21 10:07 PM, Magnus Hagander wrote=
:<br>
&gt; <br>
&gt; <br>
&gt; On Thu, Nov 4, 2021 at 8:47 PM Alvaro Herrera &lt;<a href=3D"mailto:al=
vherre@alvh.no-ip.org" target=3D"_blank">alvherre@alvh.no-ip.org</a> <br>
&gt; &lt;mailto:<a href=3D"mailto:alvherre@alvh.no-ip.org" target=3D"_blank=
">alvherre@alvh.no-ip.org</a>&gt;&gt; wrote:<br>
&gt; <br>
&gt;=C2=A0 =C2=A0 =C2=A0On 2021-Nov-04, C=C3=A9lestin Matte wrote:<br>
&gt; <br>
&gt;=C2=A0 =C2=A0 =C2=A0 &gt; &gt; I don&#39;t think this should be the res=
ponsibility of pglister. As you<br>
&gt;=C2=A0 =C2=A0 =C2=A0 &gt; &gt; say, &quot;most MTAs do add this field&q=
uot; -- and the solution is to<br>
&gt;=C2=A0 =C2=A0 =C2=A0 &gt; &gt; configure the MTA to do this. We already=
 rely on the MTA to get a<br>
&gt;=C2=A0 =C2=A0 =C2=A0 &gt; &gt; lot of other important things right.<br>
&gt;=C2=A0 =C2=A0 =C2=A0 &gt;<br>
&gt;=C2=A0 =C2=A0 =C2=A0 &gt; But then these messages will get delivered by=
 pglister but pgarchives<br>
&gt;=C2=A0 =C2=A0 =C2=A0 &gt; will fail to archive them, although they do n=
ot actually break<br>
&gt;=C2=A0 =C2=A0 =C2=A0 &gt; requirements. Shouldn&#39;t we follow the RFC=
 here?<br>
&gt; <br>
&gt; <br>
&gt; I agree that the scenario is a problem, per below.=C2=A0 I don&#39;t a=
gree that <br>
&gt; making up an id is a solution to that problem.<br>
&gt; <br>
&gt; <br>
&gt;=C2=A0 =C2=A0 =C2=A0Maybe pglister should refuse to deliver messages th=
at don&#39;t contain<br>
&gt;=C2=A0 =C2=A0 =C2=A0a Message-Id.<br>
&gt; <br>
&gt; <br>
&gt; It should. I actually thought it did already, but apparently it does <=
br>
&gt; not. I guess we&#39;ve only ever used it under properly configured MTA=
s :)<br>
&gt; <br>
&gt; Have you actually come across any case where a *proper* non-spam messa=
ge <br>
&gt; is sent without a message-id and passes through actual mailservers on =
<br>
&gt; the way?<br>
&gt; <br>
&gt; Looking through the approximately 1.4 million mails in the postgres li=
st <br>
&gt; archives, not a single one has a message-id generated by the archives =
<br>
&gt; server MTA (which is configured to generate it). Not a single one by o=
ur <br>
&gt; inbound relay servers. And exactly one by the pglister server -- which=
 <br>
&gt; turns out to be a bounce that ended up in the archives because of a <b=
r>
&gt; misconfiguration back in 2018 that&#39;s not visible in the public arc=
hives.<br>
<br>
as mentioned down-thread by Justin Clift we have been plain rejecting <br>
mails without a message-id on the <a href=3D"http://postgresql.org" rel=3D"=
noreferrer" target=3D"_blank">postgresql.org</a> inbound relays since <br>
March 27th 2012(!) according to our repo and the number of rejects due <br>
to that rule is actually not-insignificant (approximately 200-400/day <br>
with the majority being for a very small number of bounce generating <br>
senders) but the number of complaints is also approaching (almost) zero.<br=
></blockquote><div><br></div><div>Oh I forgot about that one. That clearly =
explains why I didn&#39;t find anything *after* 2012 in the archives -- but=
 in my defence, we don&#39;t have any from before that either :)</div><div>=
<br></div><div>I thought we actually manufactured a message-id on them rath=
er than reject them, but I guess I was confusing it with how we handle emai=
l injected internally where I think we do that.</div></div><div><br></div>-=
- <br><div dir=3D"ltr" class=3D"gmail_signature"><div dir=3D"ltr"><div>=C2=
=A0Magnus Hagander<br>=C2=A0Me: <a href=3D"http://www.hagander.net/" target=
=3D"_blank">https://www.hagander.net/</a><br>=C2=A0Work: <a href=3D"http://=
www.redpill-linpro.com/" target=3D"_blank">https://www.redpill-linpro.com/<=
/a></div></div></div></div>

--000000000000aaaeb605d021b99a--