Re: [Shutup] [ietf-smtp] Proposed Charter for the "SMTP Headers Unhealthy To User Privacy" WG (fwd)

"John Levine" <> Tue, 01 December 2015 18:43 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id 59F011B2ED6 for <>; Tue, 1 Dec 2015 10:43:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: 0.862
X-Spam-Status: No, score=0.862 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, HELO_MISMATCH_COM=0.553, HOST_MISMATCH_NET=0.311, SPF_PASS=-0.001] autolearn=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id cTQ_pKWzOFU7 for <>; Tue, 1 Dec 2015 10:43:51 -0800 (PST)
Received: from ( [IPv6:2001:470:1f06:1126::2]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 4C8C11B2ED5 for <>; Tue, 1 Dec 2015 10:43:51 -0800 (PST)
Received: (qmail 75248 invoked from network); 1 Dec 2015 18:43:50 -0000
Received: from unknown ( by with QMQP; 1 Dec 2015 18:43:50 -0000
Date: 1 Dec 2015 18:43:28 -0000
Message-ID: <20151201184328.18674.qmail@ary.lan>
From: "John Levine" <>
In-Reply-To: <>
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset=utf-8
Content-transfer-encoding: 8bit
Archived-At: <>
Subject: Re: [Shutup] [ietf-smtp] Proposed Charter for the "SMTP Headers Unhealthy To User Privacy" WG (fwd)
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: SMTP Headers Unhealthy To User Privacy <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 01 Dec 2015 18:43:52 -0000

>These may not feel like important issues to you, but for some people they are life-or-death issues, and
>there really is a tradeoff to be made between the freedom of people in that situation to speak, and the
>freedom of the operators of mail servers to surveil them, even when that surveillance has a good motive
>behind it.   The problem is that it's not _just_ the people who need the information who get it.

If you're depending on the header writing practices of random
submission servers to keep you from being doxxed, you're not very
bright.  The doxxing crowd routinely use social engineering to call up
and get people to provide the information from the logs.

If you really need to keep your location private, use a Tor connection
to gmail or yahoo webmail.