[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Auto-mail filters and penet-remiler loophole?



-----BEGIN PGP SIGNED MESSAGE-----

On Sun, 23 Jun 1996, Deranged Mutant wrote:

> Hm.
> 
> Seems someone sent a message to my frienly-mailer filter using penet 
> remailer.  So of course that person will get an anonymized reply, 
> thus being able to know what my anon-id there is.
> 
> Fortunetly I don't use penet or rely on it for any form of security.
> 
> That's one situation where it would be nice to specify in a line 
> somewhere *not* to anonymize mail sent through there (a command in 
> header saying X-Do-Not-Anonymize maybe?)

Non-anonymous mail can already be sent through penet by sending the message
to na[anon id] instead of an[anon id].  The problem you describe with your
mail filter also exists for mailing lists and other instances where a person
obliviously sends e-mail to an anonymous id.  Unfortunately, other
double-blind, pseudonymous remailers have the same problem.  The only way to
solve the problem is to not have remailers enable a double-blind by default
(or conversely, have all mail programs rearrange the address so the reply is
sent non-anonymously).

- -- Mark

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
[email protected]              | finger -l for PGP key 0xe3bf2169
http://www.voicenet.com/~markm/ | d61734f2800486ae6f79bfeb70f95348
"In Christianity neither morality nor religion come into contact with
reality at any point."
                -- Friedrich Nietzsche


-----BEGIN PGP SIGNATURE-----
Version: 2.6.3
Charset: noconv

iQCVAwUBMc3kJ7Zc+sv5siulAQHm+QP/XhK9YdV2uSbady21ekMe4j//YzDDR32w
fvwwgZntjCQ7mP9thJzMxIziZ+RlA/DiXFf7A+eUieF+Tqbn4gyCh2/InQWrwssK
l7Qh5ZC9OuSCJZnbwlCi+G/XfLAO+OdskoiTkW3YYlz2YO5KRAKhCBJwzIDPiWNh
AIrN19vyI9k=
=gyEu
-----END PGP SIGNATURE-----