/[pkg-mixmaster]/trunk/Mix/conf/pgp.hlp
ViewVC logotype

Contents of /trunk/Mix/conf/pgp.hlp

Parent Directory Parent Directory | Revision Log Revision Log

Revision 206 - (show annotations) (download)
Thu Aug 29 10:17:17 2002 UTC (10 years, 8 months ago) by weaselp
File size: 5244 byte(s) 
Fix riot.eu.org links.
1 You can use PGP to encrypt messages sent to this remailer if you for
2 some reason are unable to use the Mixmaster client software. However,
3 while PGP will securely encrypt the content of a message that you are
4 sending to the remailer, submitting messages to the remailer that are
5 merely PGP encrypted without the use of the Mixmaster client software
6 greatly increases the risk of third parties being able to determine the
7 identity of the sender (you).
8
9 This remailer primarily supports the ability to submit messages for
10 remailing without requiring the Mixmaster client software for backwards
11 compatibility with older remailer client software.
12
13 If you are able to use the Mixmaster software with your operating system
14 (chances are you can), it is highly recommended that you use the
15 Mixmaster client software instead. See the earlier section in this help
16 file on how to obtain a copy of the Mixmaster client software.
17
18 If you cannot use the Mixmaster software, want to use an anonymous
19 remailer, and are willing to accept reduced security, you can do the
20 following:
21
22 Send email with Subject: remailer-key to <%RMA> to obtain
23 a copy of the remailer's PGP key.
24
25 Then do the following:
26
27 1) create a file containing your message
28 2) insert a BLANK LINE as the first line of the file
29 3) Insert a "::" as the second line of the file
30 4) Insert "Anon-To: final_recipient@destination_domain.com" as the
31 third line of the file.
32
33 At this time, the file should look as follows:
34
35 ==================================================================
36
37 ::
38 Anon-To: final_recipient@destination_domain.com
39
40 This is some anonymized email.
41 ==================================================================
42
43 5) Now encrypt the file with the PGP key of this remailer.
44
45 Finally, email the encrypted file to <%RMA> as
46 shown in the example below.
47
48 The line "Encrypted: PGP" instructs the remailer to decrypt the message
49 and process its contents.
50
51 ==================================================================
52 From: remailer_user@sender_domain.com
53 To: %RMA
54 Subject: anonymous message
55
56 ::
57 Encrypted: PGP
58
59 -----BEGIN PGP MESSAGE-----
60 Version: 2.6.3i
61
62 owE1jMsNwjAUBH3gZMk9PClnUoBPUANpwElW2OBPZD8H0gd1UCP2gduuNDNfIcSH
63 T4zCbQmtlbzGFM9T0jSD7QVvEzaPcUlBSSWHQclbnR9YWJNp5BFSLdR9CijF3NGx
64 ybry/1Rsqn4la3a0JiIhLvnYGCu9HFtiC8oIxnlkeuIYe+EH =HgDq
65 -----END PGP MESSAGE-----
66 ==================================================================
67
68 Even though PGP encryption in itself is very secure, not using the
69 Mixmaster client exposes some information to parties desiring to
70 compromise your privacy. This information leakage permits what is known
71 as "traffic analysis". For example, if someone receives anonymous
72 messages soon after you sent encrypted messages to a remailer it is
73 likely that you are the sender of those messages.
74
75 To partially compensate for this information leak, you can instruct the
76 remailer to delay your messages for some time or send the remailer empty
77 messages to make such analysis harder:
78
79 If you use the line "Null:" instead of "Anon-To:", the remailer will
80 simply discard your message.
81
82 You can add a "Latent-Time:" header to the remailer to retain your
83 message for some time before forwarding it. "Latent-Time: +2:00" would
84 delay the message for two hours. You can use a random delay by adding
85 "r", for example "Latent-Time: +5:00r" would delay the message for up to
86 five hours. For example:
87
88 ==================================================================
89
90 ::
91 Anon-To: final_recipient@destination_domain.com
92 Latent-Time: +2:00
93
94 This is some anonymized email.
95 ==================================================================
96
97
98 You can chain remailers by using another remailer to send the message to
99 <%RMA> anonymously. For example, take the message
100
101 ==================================================================
102
103 ::
104 Anon-To: %RMA
105
106 ::
107 Encrypted: PGP
108
109 -----BEGIN PGP MESSAGE-----
110 Version: 2.6.3i
111
112 owE1jMsNwjAUBH3gZMk9PClnUoBPUANpwElW2OBPZD8H0gd1UCP2gduuNDNfIcSH
113 T4zCbQmtlbzGFM9T0jSD7QVvEzaPcUlBSSWHQclbnR9YWJNp5BFSLdR9CijF3NGx
114 ybry/1Rsqn4la3a0JiIhLvnYGCu9HFtiC8oIxnlkeuIYe+EH =HgDq
115 -----END PGP MESSAGE-----
116 ==================================================================
117
118 Next, encrypt the message with the PGP key of the %RMN
119 and send the twice-encrypted message to <%RMA>.
120
121 Similar to a nested Russian matryoshka doll, containing increasingly
122 smaller dolls inside the each outer doll, you can layer multiple
123 encryption layers and remailer hops around your message. If this sounds
124 confusing, just use the Mixmaster client software instead.
125
126 If you send your messages through a chain of several independent
127 remailers, it will be become increasingly difficult, though not
128 necessarily impossible, to trace the anonymous message back to you. A
129 vastly more secure solution is to use the Mixmaster client software to
130 send your anonymous mail.
131
132 Some remailers supporting PGP encrypted messages offer pseudonymous
133 "nym" service that allow you to not only send emails privately, but also
134 receive emails without enabling the sender to determine your recipient
135 destination email address. For more information about such nym services,
136 see the following URLs.
137
138 http://lexx.shinn.net/nym/
139
140 http://riot.eu.org/anon/doc/nym.html
141
142 *****
143
  ViewVC Help
Powered by ViewVC 1.1.5