Matt Sergeant wrote:
On 8-Apr-07, at 7:06 PM, Hans Salvisberg wrote:
Matt Sergeant wrote:
1) If the sender meant to send the mail, then the recipient knows who
the user is anyway.
The sender may be sending email to mailing lists, which broadcast his
username to the world at large.
Yup, fair enough. I'll try and come up with a patch to hook the received
headers tomorrow.
Great, looking forward to see what you come up with!
I mentioned using a hash with salt to obfuscate the username and still
keep the ability to identify the user, and I gave this some more thought
in the meantime: If the hash remained the same for any given username
over an extended period of time, then this, too, would present a privacy
issue, because hashes are typically Google bombs.
A user should be able to use any number of sender addresses, even if he
has only one SMTP account, and there should not be an easy way to
retrieve all messages sent through this one SMTP account, even if the
account name itself is hidden.
Hans
