From: Greg Broiles <greg@ideath.goldenbear.com>
To: cypherpunks@toad.com
Message Hash: 35faab92f4271a6bc8734411c5256ac8aad5b15901864cd956d193b634bca87d
Message ID: <199502020934.AA25847@ideath.goldenbear.com>
Reply To: N/A
UTC Datetime: 1995-02-02 14:09:53 UTC
Raw Date: Thu, 2 Feb 95 06:09:53 PST
From: Greg Broiles <greg@ideath.goldenbear.com>
Date: Thu, 2 Feb 95 06:09:53 PST
To: cypherpunks@toad.com
Subject: Frothing remailers and trust
Message-ID: <199502020934.AA25847@ideath.goldenbear.com>
MIME-Version: 1.0
Content-Type: text
-----BEGIN PGP SIGNED MESSAGE-----
kevin@elvis.wicat.com writes:
> It strikes me as critical; right now, a user has to choose to trust a
> set of remailers, given no assistance other than a list of "reliable"
> ones. Given an extended web of trust between remailers, the user can
> choose to trust one remailer (I have no idea how to make this process
> more palatable) and immediately gain the security of a large web of
> remailers (maybe you are right about that instant gratification
> thing...)
For what it's worth, I'm a remailer operator and I don't know any of
the other operators well enough to say that I'm sure that they're
trustable with respect to preserving privacy. (no offense intended.)
I do, for the most part, trust them to forward almost all messages
but my conclusion is based in large part on Raph's list. Absent that
list, I don't think I'd have enough information on delivery reliability
to comment about that either. This "web of trust" thing sounds nice but
I can't participate because I don't know the other people involved. I
think other remailer operators may be in a similar situation.
Your scheme seems to conflate two tasks/roles I think are separable -
remailing messages and specifying a trustable path for messages to
take. The latter requires more information than I have - but it is
information someone could gather. I think it'd be possible for someone
to perform "remailer audits", and then report their findings. Some
part of that report might be in the form of a "Anon-To:" chain,
or probabilites for creating your own chain of messages; or maybe
the auditor would serve as a first-hop-but-never-the-last remailer,
passing the message along to remailers it believes to be reliable and
trustworthy. Premail seems to be a step in this direction, but it
chooses hops on the basis of reliability, not reliability + privacy.
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBLzCm8X3YhjZY3fMNAQEjnwP/T//KwPuvnzlRYgV8MgltJIaisM78zMjU
J+Q+ARuvBudBS9ah8Z2p/MtxClj6nBYXEMFWtqwQbICBzDwxfpQAwahz5Vlay3qi
QouRKx0ZJonvdi1LpIYYS8ElH8SdWEERMItfDyFDe2HDjFTXjL6fUbrIyLBvdzdl
PCSmID/WYq0=
=ukpf
-----END PGP SIGNATURE-----
Return to February 1995
Return to “Greg Broiles <greg@ideath.goldenbear.com>”
1995-02-02 (Thu, 2 Feb 95 06:09:53 PST) - Frothing remailers and trust - Greg Broiles <greg@ideath.goldenbear.com>