From: Adam Shostack <adam@homeport.org>
Date: Tue, 24 Oct 95 05:00:32 PDT
To: sjb@universe.digex.net (Scott Brickner)
Subject: Re: Don't Kill the Messenger--A New Slant on Remailers
In-Reply-To: <199510240008.UAA11781@universe.digex.net>
Message-ID: <199510241203.IAA22014@homeport.org>
MIME-Version: 1.0
Content-Type: text


Scott Brickner wrote:

| I had a similar idea that I mentioned to Hal in a private message.  How
| about a POP server that authenticates with crypto, and accepts and
| holds email addressed to the keyid of a PGP key?  You send email to
| 4466A801@keymail.com it holds them for 30 days (or whatever) and
| discards them.  When I connect to the server to retrieve my mail, it
| asks for my public key, encrypts a random challenge with it, and I tell
| it the decrypted version.  Having proved that I can read messages
| encrypted to the key, it delivers messages addressed to the hash of the
| key.  It might also allow me to configure an address where
| notifications of new messages should be sent.

	Who cares if you can read messages encrypted to the key or
not?  Let everyone connect and download whatever messages they want to
see.  They're encrypted, after all.

Adam


-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume