mixmaster

mixmaster 3.0 patched for libressl
git clone git://parazyd.org/mixmaster.git
Log | Files | Refs | README

pgponly.hlp (5245B)


      1 You can use PGP to encrypt messages sent to this remailer if you for
      2 some reason are unable to use the Mixmaster client software. However,
      3 while PGP will securely encrypt the content of a message that you are
      4 sending to the remailer, submitting messages to the remailer that are
      5 merely PGP encrypted without the use of the Mixmaster client software
      6 greatly increases the risk of third parties being able to determine the
      7 identity of the sender (you).
      8 
      9 This remailer primarily supports the ability to submit messages for
     10 remailing without requiring the Mixmaster client software for backwards
     11 compatibility with older remailer client software.
     12 
     13 If you are able to use the Mixmaster software with your operating system
     14 (chances are you can), it is highly recommended that you use the
     15 Mixmaster client software instead. See the earlier section in this help
     16 file on how to obtain a copy of the Mixmaster client software.
     17 
     18 If you cannot use the Mixmaster software, want to use an anonymous
     19 remailer, and are willing to accept reduced security, you can do the
     20 following:
     21 
     22 Send email with Subject: remailer-key to <%RMA> to obtain
     23 a copy of the remailer's PGP key.
     24 
     25 Then do the following:
     26 
     27 1)	create a file containing your message
     28 2)	insert a BLANK LINE as the first line of the file
     29 3)	Insert a "::" as the second line of the file
     30 4)	Insert "Anon-To: final_recipient@destination_domain.com" as the
     31         third line of the file.
     32 
     33 At this time, the file should look as follows:
     34 
     35 ==================================================================
     36 
     37 ::
     38 Anon-To:  final_recipient@destination_domain.com 
     39 
     40 This is some anonymized email.
     41 ==================================================================
     42 
     43 5)	Now encrypt the file with the PGP key of this remailer.
     44 
     45 Finally, email the encrypted file to <%RMA> as
     46 shown in the example below.
     47 
     48 The line "Encrypted: PGP" instructs the remailer to decrypt the message
     49 and process its contents.
     50 
     51 ==================================================================
     52 From: remailer_user@sender_domain.com
     53 To: %RMA
     54 Subject: anonymous message
     55 
     56 ::
     57 Encrypted: PGP
     58 
     59 -----BEGIN PGP MESSAGE-----
     60 Version: 2.6.3i
     61 
     62 owE1jMsNwjAUBH3gZMk9PClnUoBPUANpwElW2OBPZD8H0gd1UCP2gduuNDNfIcSH
     63 T4zCbQmtlbzGFM9T0jSD7QVvEzaPcUlBSSWHQclbnR9YWJNp5BFSLdR9CijF3NGx
     64 ybry/1Rsqn4la3a0JiIhLvnYGCu9HFtiC8oIxnlkeuIYe+EH =HgDq
     65 -----END PGP MESSAGE-----
     66 ==================================================================
     67 
     68 Even though PGP encryption in itself is very secure, not using the
     69 Mixmaster client exposes some information to parties desiring to
     70 compromise your privacy. This information leakage permits what is known
     71 as "traffic analysis". For example, if someone receives anonymous
     72 messages soon after you sent encrypted messages to a remailer it is
     73 likely that you are the sender of those messages.
     74 
     75 To partially compensate for this information leak, you can instruct the
     76 remailer to delay your messages for some time or send the remailer empty
     77 messages to make such analysis harder:
     78 
     79 If you use the line "Null:" instead of "Anon-To:", the remailer will
     80 simply discard your message.
     81 
     82 You can add a "Latent-Time:" header to the remailer to retain your
     83 message for some time before forwarding it.  "Latent-Time: +2:00" would
     84 delay the message for two hours. You can use a random delay by adding
     85 "r", for example "Latent-Time: +5:00r" would delay the message for up to
     86 five hours. For example:
     87 
     88 ==================================================================
     89 
     90 ::
     91 Anon-To:  final_recipient@destination_domain.com
     92 Latent-Time: +2:00
     93 
     94 This is some anonymized email.
     95 ==================================================================
     96 
     97 
     98 You can chain remailers by using another remailer to send the message to
     99 <%RMA> anonymously. For example, take the message
    100 
    101 ================================================================== 
    102 
    103 ::
    104 Anon-To: %RMA
    105 
    106 ::
    107 Encrypted: PGP
    108 
    109 -----BEGIN PGP MESSAGE-----
    110 Version: 2.6.3i
    111 
    112 owE1jMsNwjAUBH3gZMk9PClnUoBPUANpwElW2OBPZD8H0gd1UCP2gduuNDNfIcSH
    113 T4zCbQmtlbzGFM9T0jSD7QVvEzaPcUlBSSWHQclbnR9YWJNp5BFSLdR9CijF3NGx
    114 ybry/1Rsqn4la3a0JiIhLvnYGCu9HFtiC8oIxnlkeuIYe+EH =HgDq
    115 -----END PGP MESSAGE-----
    116 ==================================================================
    117 
    118 Next, encrypt the message with the PGP key of the %RMN
    119 and send the twice-encrypted message to <%RMA>.
    120 
    121 Similar to a nested Russian matryoshka doll, containing increasingly
    122 smaller dolls inside the each outer doll, you can layer multiple
    123 encryption layers and remailer hops around your message. If this sounds
    124 confusing, just use the Mixmaster client software instead.
    125 
    126 If you send your messages through a chain of several independent
    127 remailers, it will be become increasingly difficult, though not
    128 necessarily impossible, to trace the anonymous message back to you. A
    129 vastly more secure solution is to use the Mixmaster client software to
    130 send your anonymous mail.
    131 
    132 Some remailers supporting PGP encrypted messages offer pseudonymous
    133 "nym" service that allow you to not only send emails privately, but also
    134 receive emails without enabling the sender to determine your recipient
    135 destination email address. For more information about such nym services,
    136 see the following URLs.
    137 
    138 http://lexx.shinn.net/nym/ 
    139 
    140 http://riot.eu.org/anon/doc/nym.html
    141 
    142 				*****
    143 
    144