[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: anonymous mailing lists

To: [email protected]
Subject: Re: anonymous mailing lists
From: [email protected] (Igor Chudov @ home)
Date: Fri, 28 Jun 1996 23:04:28 -0500 (CDT)
Cc: [email protected]
In-Reply-To: <[email protected]> from "[email protected]" at Jun 28, 96 08:56:34 pm
Reply-To: [email protected] (Igor Chudov)
Sender: [email protected]

How about this attack: suppose I want to find out who hides behind
an alias [email protected] and I have the ability to monitor
all internet traffic. Then I simply start mailbombing that address
and see whose account gets unusually high traffic volume.

A nice, albeit quite expensive, way of pretection from traffic analysis
is to create a mailing list (or a newsgroup) and forward all messages to
all users of that mailing list or newsgroup. Of course, since messages
are encrypted, only the recipients will be able to decrypt them.

This way the list of suspects is all subscribers of that list or
newsgroup and there is no way to discriminate them.

Instead of having messages to be sent to all recipients all the time,
alpha.c2.org may be programmed so that it sends out every message not to
only one recipient X, but to X and 20 other randomly selected people.

It apparently makes traffic analysis much harder.

Then users of alpha.c2.org will have to install mail filters that
automatically delete all incoming mail not intended to be read by them
(they can't read such messages anyway).

	- Igor.

Follow-Ups:
- Re: anonymous mailing lists
  - From: Jeffrey A Nimmo <[email protected]>
- Re: anonymous mailing lists
  - From: [email protected] (Ian Goldberg)

References:
- anonymous mailing lists
  - From: [email protected]

Prev by Date: rsync and md4
Next by Date: Re: News: NEC has encrypted networks ...
Prev by thread: anonymous mailing lists
Next by thread: Re: anonymous mailing lists
Index(es):
- Date
- Thread