Feeds

Anonymous Remailers Survive Politech Attack

Privacy, free speech networks not cowed

  • alert
  • submit to reddit

Seven Steps to Software Security

The anonymous remailer network isn't closing, despite an alarmist and inaccurate story by Wired's Declan McCullagh, and postings to his own widely-read Politech mailing list.

Len Sassaman, a security expert and privacy advocate who runs the Randseed remailer, is cited by McCullagh as having "pulled the plug" on his system in the wake of the World Trade Center bombings, and the report hinted that others had too.

But Sassaman's system didn't go off-line and McCullagh, it turns out, hadn't been in touch to check. An announcement rapidly followed explaining that Randseed had been switched into middleman mode, which simply prevents it from being the last machine in the remailer chain.

And real-time statistics at press time showed thirty six Type II 'Mixmaster' remailers in operation, more than are usually running. Many more Type I remailers were also active.

Sassaman told us that the precaution was to preempt concern about hate mail or threats being made using the system. His remailer processes around three thousand messages a day, and out of a million messages over the past year, only two have drawn the attention of the authorities.

However, simply because one machine goes into middle man mode doesn't weaken the remailer system: the chain only needs a single system operating in both entrance and exit modes to be effective, and given a geographical dispersal of remailers, it's unlikely to be compromised by a crackdown in the wake of the New York and Washington atrocities.

"These terrorists probably don't use anonymous remailers," explains Sassaman. "They don't know if the machine they're using could be honeypot. But disturbed individuals could capitalise on the terror of the attack by sending in false information or additional bogus threats."

"But equally," he adds, "the mailer network could aid the investigation, providing a channel for people with legitimate information who fear for their lives, and don't trust the protection that the United States could offer them."

Anonymous remailers networks are effective not (as asserted in another McClunker) because the operators don't keep logs, but because no operator on the chain is aware of both the sender or the contents of the message.

"Stay operational," advised remailer operator Michael Shinn in a follow-up post to the Remop list:-

"If we give up all that is American to secure some safety, and freedom of speech is one of the many things that is truly American, then the terrorists will win. And thats what the terrorists WANT: for America to be destroyed. Shutting down freedom of speech would be to do the terrorists job *for them*. I will not surrender to terror. I will not carry out the will of these cowards. They will have to do it themselves: I'm keeping my remailer up."

That's the stuff.®

Boost IT visibility and business value

More from The Register

next story
Airbus promises Wi-Fi – yay – and 3D movies (meh) in new A330
If the person in front reclines their seat, this could get interesting
BBC goes offline in MASSIVE COCKUP: Stephen Fry partly muzzled
Auntie tight-lipped as major outage rolls on
There's NOTHING on TV in Europe – American video DOMINATES
Even France's mega subsidies don't stop US content onslaught
UK Parliament rubber-stamps EMERGENCY data grab 'n' keep bill
Just 49 MPs oppose Drip's rushed timetable
Want to beat Verizon's slow Netflix? Get a VPN
Exec finds stream speed climbs when smuggled out
Samsung threatens to cut ties with supplier over child labour allegations
Vows to uphold 'zero tolerance' policy on underage workers
Dude, you're getting a Dell – with BITCOIN: IT giant slurps cryptocash
1. Buy PC with Bitcoin. 2. Mine more coins. 3. Goto step 1
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Mobile application security vulnerability report
The alarming realities regarding the sheer number of applications vulnerable to attack, and the most common and easily addressable vulnerability errors.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.