pgp.hlp (5244B)
1 You can use PGP to encrypt messages sent to this remailer if you for 2 some reason are unable to use the Mixmaster client software. However, 3 while PGP will securely encrypt the content of a message that you are 4 sending to the remailer, submitting messages to the remailer that are 5 merely PGP encrypted without the use of the Mixmaster client software 6 greatly increases the risk of third parties being able to determine the 7 identity of the sender (you). 8 9 This remailer primarily supports the ability to submit messages for 10 remailing without requiring the Mixmaster client software for backwards 11 compatibility with older remailer client software. 12 13 If you are able to use the Mixmaster software with your operating system 14 (chances are you can), it is highly recommended that you use the 15 Mixmaster client software instead. See the earlier section in this help 16 file on how to obtain a copy of the Mixmaster client software. 17 18 If you cannot use the Mixmaster software, want to use an anonymous 19 remailer, and are willing to accept reduced security, you can do the 20 following: 21 22 Send email with Subject: remailer-key to <%RMA> to obtain 23 a copy of the remailer's PGP key. 24 25 Then do the following: 26 27 1) create a file containing your message 28 2) insert a BLANK LINE as the first line of the file 29 3) Insert a "::" as the second line of the file 30 4) Insert "Anon-To: final_recipient@destination_domain.com" as the 31 third line of the file. 32 33 At this time, the file should look as follows: 34 35 ================================================================== 36 37 :: 38 Anon-To: final_recipient@destination_domain.com 39 40 This is some anonymized email. 41 ================================================================== 42 43 5) Now encrypt the file with the PGP key of this remailer. 44 45 Finally, email the encrypted file to <%RMA> as 46 shown in the example below. 47 48 The line "Encrypted: PGP" instructs the remailer to decrypt the message 49 and process its contents. 50 51 ================================================================== 52 From: remailer_user@sender_domain.com 53 To: %RMA 54 Subject: anonymous message 55 56 :: 57 Encrypted: PGP 58 59 -----BEGIN PGP MESSAGE----- 60 Version: 2.6.3i 61 62 owE1jMsNwjAUBH3gZMk9PClnUoBPUANpwElW2OBPZD8H0gd1UCP2gduuNDNfIcSH 63 T4zCbQmtlbzGFM9T0jSD7QVvEzaPcUlBSSWHQclbnR9YWJNp5BFSLdR9CijF3NGx 64 ybry/1Rsqn4la3a0JiIhLvnYGCu9HFtiC8oIxnlkeuIYe+EH =HgDq 65 -----END PGP MESSAGE----- 66 ================================================================== 67 68 Even though PGP encryption in itself is very secure, not using the 69 Mixmaster client exposes some information to parties desiring to 70 compromise your privacy. This information leakage permits what is known 71 as "traffic analysis". For example, if someone receives anonymous 72 messages soon after you sent encrypted messages to a remailer it is 73 likely that you are the sender of those messages. 74 75 To partially compensate for this information leak, you can instruct the 76 remailer to delay your messages for some time or send the remailer empty 77 messages to make such analysis harder: 78 79 If you use the line "Null:" instead of "Anon-To:", the remailer will 80 simply discard your message. 81 82 You can add a "Latent-Time:" header to the remailer to retain your 83 message for some time before forwarding it. "Latent-Time: +2:00" would 84 delay the message for two hours. You can use a random delay by adding 85 "r", for example "Latent-Time: +5:00r" would delay the message for up to 86 five hours. For example: 87 88 ================================================================== 89 90 :: 91 Anon-To: final_recipient@destination_domain.com 92 Latent-Time: +2:00 93 94 This is some anonymized email. 95 ================================================================== 96 97 98 You can chain remailers by using another remailer to send the message to 99 <%RMA> anonymously. For example, take the message 100 101 ================================================================== 102 103 :: 104 Anon-To: %RMA 105 106 :: 107 Encrypted: PGP 108 109 -----BEGIN PGP MESSAGE----- 110 Version: 2.6.3i 111 112 owE1jMsNwjAUBH3gZMk9PClnUoBPUANpwElW2OBPZD8H0gd1UCP2gduuNDNfIcSH 113 T4zCbQmtlbzGFM9T0jSD7QVvEzaPcUlBSSWHQclbnR9YWJNp5BFSLdR9CijF3NGx 114 ybry/1Rsqn4la3a0JiIhLvnYGCu9HFtiC8oIxnlkeuIYe+EH =HgDq 115 -----END PGP MESSAGE----- 116 ================================================================== 117 118 Next, encrypt the message with the PGP key of the %RMN 119 and send the twice-encrypted message to <%RMA>. 120 121 Similar to a nested Russian matryoshka doll, containing increasingly 122 smaller dolls inside the each outer doll, you can layer multiple 123 encryption layers and remailer hops around your message. If this sounds 124 confusing, just use the Mixmaster client software instead. 125 126 If you send your messages through a chain of several independent 127 remailers, it will be become increasingly difficult, though not 128 necessarily impossible, to trace the anonymous message back to you. A 129 vastly more secure solution is to use the Mixmaster client software to 130 send your anonymous mail. 131 132 Some remailers supporting PGP encrypted messages offer pseudonymous 133 "nym" service that allow you to not only send emails privately, but also 134 receive emails without enabling the sender to determine your recipient 135 destination email address. For more information about such nym services, 136 see the following URLs. 137 138 http://lexx.shinn.net/nym/ 139 140 http://riot.eu.org/anon/doc/nym.html 141 142 ***** 143