From: root@extropia.wimsey.com (Anonymous)
Date: Sun, 7 Feb 93 22:51:41 PST
To: cypherpunks@toad.com
Subject: No Subject
Message-ID: <199302080630.AA01555@xtropia>
MIME-Version: 1.0
Content-Type: text/plain


Hi - I tried to use the anon.penet.fi remailer and got a warning that
some people had hacked it to find out for which anonymous ID any user
had.  It sounded like they would forge mail from the person they wanted
to find out about, have it go through penet, and then go to themselves.
Then they could look and see what anonymous ID it seemed to come from.

This has been fixed by making people register a password with the remailer
and then use it whenever they want to forward mail.

I'd like to see some discussion here about this problem so that other
remailers can avoid it.