Possibly like NSA warrantless hoovering (ex: the San Francisco splitter), this 
mailman "feature" is not used to evil ends and is no worry.

Alternatively, privacy may be more vulnerable to simple user oversights than 
short keys.

On Nov 28, 2011, at 9:27 PM, [email protected] wrote:

> Date: Mon, 28 Nov 2011 20:40:45 -0500
> From: Steven Bellovin <[email protected]>
> To: Crypto discussion list <[email protected]>
> Subject: Re: [cryptography] Non-governmental exploitation of crypto
>       flaws?
> Message-ID: <[email protected]>
> Content-Type: text/plain; charset=us-ascii
> 
> 
> On Nov 28, 2011, at 8:03 PM, Nico Williams wrote:
> 
>> The list is configured to set Reply-To.  This is bad, and in some
>> cases has had humorous results.  I recommend the list owners change
>> this ASAP.
> 
> 
> Agree, strongly.  The mailman documentation agrees with us.  I'm on the
> verge of unsubscribing on the grounds that the list is a privacy violation
> in action.
> 
>               --Steve Bellovin, https://www.cs.columbia.edu/~smb

_______________________________________________
cryptography mailing list
[email protected]
http://lists.randombit.net/mailman/listinfo/cryptography

Reply via email to