Re: [Shutup] [ietf-smtp] Proposed Charter for the "SMTP Headers Unhealthy To User Privacy" WG (fwd)

Ted Lemon <> Wed, 02 December 2015 18:02 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id DA7101ACDB4; Wed, 2 Dec 2015 10:02:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_FILL_THIS_FORM_SHORT=0.01, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id DZ9z7JX_kySR; Wed, 2 Dec 2015 10:02:40 -0800 (PST)
Received: from ( [IPv6:2a01:7e01::f03c:91ff:fee4:ad68]) by (Postfix) with ESMTP id C08151ACD9B; Wed, 2 Dec 2015 10:02:39 -0800 (PST)
Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="----sinikael-?=_1-14490793567410.06759281037375331"
From: Ted Lemon <>
In-Reply-To: <20151202174004.23134.qmail@ary.lan>
References: <20151202174004.23134.qmail@ary.lan>
Date: Wed, 02 Dec 2015 18:02:36 +0000
Message-Id: <>
MIME-Version: 1.0
Archived-At: <>
Subject: Re: [Shutup] [ietf-smtp] Proposed Charter for the "SMTP Headers Unhealthy To User Privacy" WG (fwd)
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: SMTP Headers Unhealthy To User Privacy <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 02 Dec 2015 18:02:42 -0000

Wednesday, Dec 2, 2015 12:40 PM John Levine wrote:
> You can kind of tell where I am from my mail headers,
> but since my name and address and phone number are in the phone book,
> it's hard to imagine what the damage would be.

The damage is that there are quite a few John Levines in the world.   If you say something that triggers someone's desire to harass you, they will be able to use your IP address to determine that it is the John Levine who lives in Trumansburg who offended them, and then they can just google "John Levine Trumansburg" to dox or swat you.   This is _precisely_ the problem with revealing your IP address.   It took me about ten minutes to get your home address, and that's because I don't have any practice.   Without the IP address, I would have had no chance of figuring out _which_ John Levine to target with my notional swatting or pizza delivery.  It would have taken <1 minute to find your street address except that you did a good job of chaffing by using a P.O. Box.

Sent from Whiteout Mail -

My PGP key: