[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Blocking addresses by default



-----BEGIN PGP SIGNED MESSAGE-----

On Thu, 7 Nov 1996, Rich Graves wrote:

> I think this threatens serious security problems for the remailer
> network in two ways:
> 
> 1. You'd create a list of people interested in anonymous information,
>    which could potentially be obtained by police or other armed thugs.

True.  I wasn't proposing any centralized list or a complete alternative to
the current way remailers are set up.  Just an alternative for some people who
don't have time to go through all the complaints.  The only unblocked addresses
could just be the addresses of other remailers.  Others could be set up to
only deliver mail to other remailers, mailing lists, and newsgroups.

> 
> 2. The traffic would go down so substantially that traffic analysis
>    would be trivial.

If every remailer adopted this system, then this would be true.

> As a counterproposal, I'd like to see better disclaimers on remailed
> messages. The reason the people complaining are so pissed off is that
> the blocklists are neither advertised nor automated enough. I'd like to
> see disclaimers and block list instructions at the top of the body of
> every single message. This would be encapsulated in some mark characters
> so that it could easily be removed by remailer chains. E.g.,

This is a good idea.  I also like the idea of remailers forwarding some sort
of notification to a first-time recipient where the recipient actually has to
request that the mail be delivered.  However, the storage requirement might be
a little impractical for some remailers.  If the disclaimers are really
annoying, it would be easy enough to remove these disclaimers with a simple
procmail recipe or some equivalent.


> What's wrong with this scheme? Other than the fact that all remailers
> would have to change their software at the exact same moment. :-)

The "cutmarks" option would allow backwards compatability.  Alternatively, the
remailer might be able to determine whether the next hop is a "real" email
address or another remailer.  I believe this would be pretty easy with
Mixmaster since a remailer can tell if it is the final hop or not.


Mark






-----BEGIN PGP SIGNATURE-----
Version: 2.6.3
Charset: noconv

iQEVAwUBMoPTpizIPc7jvyFpAQGYHggAqERGxbUu4LcGmP6qgN47claY9cttmWQ+
LIxHFKKxut92mSVMfDD80WGlXZAQb/p97t//m6aGZ3cCFXe8JPlVfyqrzz4A4/JK
pN3lbn0Vfk08CVePFZaBqk8yiE+K7ZpjE1vTx8GTna0n+ZHpC6RZ1DBNwWrif4PH
kLUl4cFHYeHhe9qfZrc+rjUcxe0yMM9hhJ3uW1SUaUvLeXNuwjaftil5ULX1pegt
2JLYZkX7UF7EAUA2GvKj1KoDhVoQjT5tbRcIbV20n8r8mQjQuecUqZXP/P9D1zbC
lwilKC5z2+0wErr9MvseLH9CEriVQhT0EN1fWxZjB3MfrCFRdNDO9w==
=xP+H
-----END PGP SIGNATURE-----