[tor-bugs] #6057 [TorBirdy]: Enumerate difficulties with obfuscating useragent from mailinglists
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Sun Jun 17 21:08:23 UTC 2012
#6057: Enumerate difficulties with obfuscating useragent from mailinglists
----------------------+-----------------------------------------------------
Reporter: proper | Owner: ioerror
Type: defect | Status: new
Priority: critical | Milestone:
Component: TorBirdy | Version:
Keywords: | Parent:
Points: | Actualpoints:
----------------------+-----------------------------------------------------
Comment(by proper):
Hi tagnaq,
> I think we have different goals and threat models.
Yes.
> What do you aim for?
If it's not possible to hide being a TorBirdy user from a mailserver, I'd
still prefer hiding that fact from the mailing list. Attacks by the
mailserver are a higher class than someone on a mailing list who doesn't
like one.
> We do not aim to look like an ordinary Thunderbird.
> We want to have all TorBirdy users in one anonymity set*. We aim to
modify multiple headers (UA, message-id, date, enigmail header, ... ) to
remove leaks / anonymity set reductions. We do not assume that our MTA is
removing our IP address. In fact we do not trust our MTA (or mailing list
provider).
>
> *) A TorBirdy user/a user having certain pref settings is easily
identified by inspecting the modified headers and Tor exit source IP
address.
You got me, I can't suggest technical solutions. I just created tickets to
prevent any ideas from the mailing list discussion getting lost. And also
this one was one I care about.
It might not be possible. I'll mail Mike right away about this ticket,
since he also cared about.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/6057#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list