This was forwarded to me and I thought many of you would be interested as well. If correct (this is UNVERIFIED), it appears that the FROG remailer is not very annonymous at all. Yours, J.A. Terranson [EMAIL PROTECTED] -- If Governments really want us to behave like civilized human beings, they should give serious consideration towards setting a better example: Ruling by force, rather than consensus; the unrestrained application of unjust laws (which the victim-populations were never allowed input on in the first place); the State policy of justice only for the rich and elected; the intentional abuse and occassionally destruction of entire populations merely to distract an already apathetic and numb electorate... This type of demogoguery must surely wipe out the fascist United States as surely as it wiped out the fascist Union of Soviet Socialist Republics. The views expressed here are mine, and NOT those of my employers, associates, or others. Besides, if it *were* the opinion of all of those people, I doubt there would be a problem to bitch about in the first place... -------------------------------------------------------------------- ---------- Forwarded message ---------- Date: Mon, 14 Feb 2000 18:23:59 -0600 From: lart <[EMAIL PROTECTED]> To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]> Subject: FROG REMAILER Path: nntp1.deja.com!nnrp2.deja.com!nntp2.deja.com!news-FFM2.ecrc.net!news-MUC.ecrc.net!remarQ-uK!supernews.com!remarQ.com!rQdQ!news.supernews.com!not-for-mail From: "Todd Cutter" <[EMAIL PROTECTED] Subject: Re: Subject: Re: Remailer abuser caught: Date: Tue, 08 Feb 2000 02:33:44 GMT Organization: Posted via Supernews, http://www.supernews.com Lines: 70 Message-ID: <[EMAIL PROTECTED] References: <[EMAIL PROTECTED] <[EMAIL PROTECTED] X-Complaints-To: [EMAIL PROTECTED] User-Agent: Xnews/Y2K-SE X-No-Archive: yes Errors-To: [EMAIL PROTECTED] To: "[EMAIL PROTECTED]" <[EMAIL PROTECTED] Reply-To: "[EMAIL PROTECTED]" <[EMAIL PROTECTED] Content-Type: text/plain Content-Transfer-Encoding: 7bit Mime-Version: 1.0 Precedence: bulk On 07 Feb 2000 Mon, 07 Feb 2000 20:25:37 GMT, Ch'i wrote: Frog-Admin <Use-Author-Address-Header@[127.1]! ! ! ! ! wrote: The technique I used was pure *traffic analysis*, and could have been performed by *anybody* snooping on my incoming/outcoming mail *trivial* correlation between .. Yet his technique in an eariler message was listed as: Reading one input (and a few more for control) gave me the abuser: [EMAIL PROTECTED] Manually decoding one entry gave Azerty Noisebox Number of messages and decreasing size suggested the number of hops. I just had to intercept one output (and a few more for control) to get the abuse and evidence of abuse Someone monitoring your incoming/outgoing mail could not, hopefully, decrypt messages encrypted to one of the remailers. Only you can do that. And so should he update his stats to reflect the policy of Montitoring, Fitlering, and Publicizing user information. I am not fond of the idea of a remailer operator decrypting messages to see where they go. Nor do I appreciate the feeling that it was necessary to post the email address of the original sender to ! ! ! ! ! a public forum. The source block was all that was needed. The traf apparent abuser was totally uncalled for. I obviously have no say in the matter of how frog remailer is maintained, but I do control deceit. I have therefore removed frog and azerty from deceit's Destination Allow list. Thank you for protecting the anonymity of your users. I have not blocked it totally, as this may break reply-blocks and I do not feel I have to write to dictate to my users which remailers they use. But neither frog nor azerty will be treated as an anonymous remailer from deceit: they will not be chosen for a random hop, and any requests to send mail there through deceit will result in the message being chained through another, trusted, remailer. I don't see how chaining it to Frog via another remailer helps any, other than the source will now be a little more random. And the addition of another hop will add a bit more unreliability that will be difficult for the user to discover the source of. Best to just drop all traffic to/from and put it in the stats notic! ! ! ! ! e. As I would not trust frog remailer will my own messages at this point, I will not subject my users to it without their express request. Ch'i