From: Claus Färber (list-ietf-wg-apps-usefor@faerber.muc.de)
Date: Thu Jan 03 2002 - 15:08:00 CST
John Stanley <stanley@peak.org> schrieb/wrote:
> Charles Lindsey (chl@clw.cs.man.ac.uk):
>> I have now replaced that paragraph by the following (it is still part of a
>> NOTE):
>> Be warned, however, that some injecting agents which are able to
>> detect that the address does not belong to the poster may choose
>> to insert a Sender header (6.2) or some entry in an Injector-
>> Info header (6.19) which discloses the poster's true identity.
> This is still as unacceptable as the original text, for the same reason.
...
> The only correct thing for this draft to do is to prohibit the injecting
> agent from being permitted to make these guesses. The most likely guess
> will be "doesn't belong", and then it will happily insert a spammable
> email address for the user based on some magic -- which is what the user
> may very well be trying to avoid by posting with his hotmail address.
If the spec does explicitly disallow this, ISPs will just ignore
that and add the header anyway. That does not help implementors of
Usenet software at all.
I believe that the best solution is to:
. warn software writes of ISPs that do add a Sender header.
. warn ISPs of the privacy leakage that occurs through the
insertation of the Sender header AND direct them a better
solution (e.g. using an ENCRYPTED posting-account parameter for
an Injector-Info header, section 6.19.1.2).
The warning should also be attached to the wording of 6.19.1.3.
Claus
-- ------------------------ http://www.faerber.muc.de/ ------------------------ OpenPGP: DSS 1024/639680F0 E7A8 AADB 6C8A 2450 67EA AF68 48A5 0E63 6396 80F0