Re: [Endymail] Onion Routing over SMTP.. impossible by design?
carlo von lynX <lynX@i.know.you.are.psyced.org> Sun, 05 October 2014 20:01 UTC
Return-Path: <lynx@lo.psyced.org>
X-Original-To: endymail@ietfa.amsl.com
Delivered-To: endymail@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D334F1A1B00 for <endymail@ietfa.amsl.com>; Sun, 5 Oct 2014 13:01:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.686
X-Spam-Level:
X-Spam-Status: No, score=-0.686 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, J_CHICKENPOX_14=0.6, RP_MATCHES_RCVD=-0.786] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v4Cy5V_3ZGBN for <endymail@ietfa.amsl.com>; Sun, 5 Oct 2014 13:01:04 -0700 (PDT)
Received: from lo.psyced.org (lost.IN.psyced.org [188.40.42.221]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4019B1A1AFD for <endymail@ietf.org>; Sun, 5 Oct 2014 13:01:02 -0700 (PDT)
Received: from lo.psyced.org (localhost [127.0.0.1]) by lo.psyced.org (8.14.3/8.14.3/Debian-9.4) with ESMTP id s95K1DjB031424 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <endymail@ietf.org>; Sun, 5 Oct 2014 22:01:14 +0200
Received: (from lynx@localhost) by lo.psyced.org (8.14.3/8.14.3/Submit) id s95K1D8o031423 for endymail@ietf.org; Sun, 5 Oct 2014 22:01:13 +0200
Date: Sun, 05 Oct 2014 22:01:13 +0200
From: carlo von lynX <lynX@i.know.you.are.psyced.org>
To: endymail@ietf.org
Message-ID: <20141005200113.GA29776@lo.psyced.org>
References: <20141005155754.GA27470@lo.psyced.org> <CA+cU71=Ab+Yyp=BuBk73P66dHT6Pqk4TPhUW3+hjbe03Vz7EQA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CA+cU71=Ab+Yyp=BuBk73P66dHT6Pqk4TPhUW3+hjbe03Vz7EQA@mail.gmail.com>
User-Agent: Mutt/1.5.20 (2009-06-14)
Archived-At: http://mailarchive.ietf.org/arch/msg/endymail/UgTnfLg2AQWbJ6LeFkZzv9izZU8
Subject: Re: [Endymail] Onion Routing over SMTP.. impossible by design?
X-BeenThere: endymail@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <endymail.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/endymail>, <mailto:endymail-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/endymail/>
List-Post: <mailto:endymail@ietf.org>
List-Help: <mailto:endymail-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/endymail>, <mailto:endymail-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 05 Oct 2014 20:01:06 -0000
On Sun, Oct 05, 2014 at 12:50:40PM -0500, Tom Ritter wrote: > Spam detection does not _have_ to rely on originating source, although > obviously that's a large input to a spam detection system. The Indeed, considering that future SPAM would be encrypted to the end recipient, so spam assassination has to happen on the end system. Defeats models that detect SPAM by the way it looks similar while being delivered to a multitude of recipients. > > All Tor-and PK-routing based systems have solved this by requiring > > pubsub relationships, thus making SPAM at worst annoying, but > > ineffective at its primary intent. > > I'm not clear what you mean here. In my mind, Tor is not set up as a > publisher-subscriber relationship at all, but perhaps you mean > something different. Pond, the mail system you mentioned, uses Tor hidden services and requires a subscription/authentication exchange before being able to mail. > I feel like you've made an assertion: "it is impossible to implement > metadata protection on top of SMTP..." but not supported it very I started a discussion posing that question.. could it be it isn't actually feasible..? Indeed from a scientific point of view quite unlikely to be a provable statement. > strongly. One, you talk only of Onion Routing - but that is merely > one mechanism of metadata protection. There is also Broadcast > Transmission, Mix Networks, and other more complicated systems like I specifically asked about onion routing since I wish Bitmessage good luck in finding a way to segment the broadcast space but I doubt that approach to be viable over the existing SMTP system. Mix networks have the disadvantage of requiring trust from their users, correct? In a world where computing centers can receive a knock on the door and servers be systematically, especially virtual ones, tapped with memory scanning for private keys... I did not intend to speak about that model. I am thinking of an SMTP-based onion routing system where the SMTP hosts act like relay nodes and the MUA creates the message encrypted to all in-between relay hops. The optimization suggested by the authors of PIR-Tor is applicable, but doesn't affect the challenge of getting it to work with the existing SMTP federation. I'm not saying that mixing and broadcast is scientifically absurd, but sufficiently uninteresting within my personal judgement, so I am asking specifically what I find interesting. > PIR. Two: It is impossible to prove a negative, that something must > not exist or not be possible. I think there are a multitude of Luckily I'm not trying to prove it, just gathering some good thinking on the topic. > systems that have been designed or could be designed that would feed > into this debate. If you want to make an assertion that something is > impossible, I would expect a more descriptive exploration of the > problem space, and attempting to address several potential ideas and > why they do not work. That's why I am glad you gave such an exhaustive reply. Let's dig deeper into the problem space. > I think it's entirely reasonable to say "I don't see a way this would > work" - indeed there are some hard problems in the space, followed by Sure, if we include post-SMTP systems I know that solutions are feasible but I was very specifically wondering if the backwards compatibility with SMTP's presumption that you can mail anyone anytime breaks the scheme of onion routing approaches. Thinking it through it seems to me a bit like a time bomb. You can start using a new mailbox with a new public key and share these with your contacts - but the moment any of your contacts gets her device p0wned by a secret service or other malware deployer, your mailbox can be DoSsed with epic amounts of SPAM and only the end node would have a vague chance of distinguishing signal from noise. Sure, this isn't a very scientific assertion, but to me it sounds like doing Onion Routing on top of a network of SMTP servers is a very bad idea. -- http://youbroketheinternet.org ircs://psyced.org/youbroketheinternet
- [Endymail] Onion Routing over SMTP.. impossible b… carlo von lynX
- Re: [Endymail] Onion Routing over SMTP.. impossib… Tom Ritter
- Re: [Endymail] Onion Routing over SMTP.. impossib… carlo von lynX