Subject: Information about the Freedom Remailer

This message is being sent to you automatically in response to the
message you sent to this remailer with the subject "remailer-help".

More information about anonymous remailers is available at
<http://www.stack.nl/~galactus/remailers/>.

For an up-to-date listing of anonymous remailers with statistics,
see <http://anon.efga.org/rlist.html>.  You can also get the list
by fingering rlist@anon.efga.org or rlist@anon.lcs.mit.edu.


There is an automated mail handling program installed on this account
which will take any message with the proper headers and automatically
re-send it anonymously.

You can use this by sending a message to remailer@wherever, with the header
"Anon-To: address", the address that you want to send anonymously to.
If you can't add headers to your mail, you can place two colons on the
first line of your message, followed by the "Anon-To:" line.  Follow that
with a blank line, and then begin your message.  For example:

================================================================
From: joe@site.com
To: remailer@wherever
Subject: Anonymous Mail

::
Anon-To: beth@univ.edu

This is some anonymous mail.
================================================================


The above would be delivered to beth@univ.edu anonymously.  All headers in
the original message are removed.  She would not know that it came from
Joe, nor would she be able to reply to the message.  However, there are a
few ways that the true identity of the sender could be found.  First, if
many anonymous messages were sent, someone could compare the times that
the messages were sent with the times that 'joe' was logged in.  However,
this can be prevented by instructing the remailer to delay the message, by
using the "Latent-Time:" header:

================================================================
From: joe@site.com
To: remailer@wherever
Subject: Anonymous Mail

::
Anon-To: beth@univ.edu
Latent-Time: +1:00

This is some anonymous mail.
================================================================

The message would be delayed one hour from when it is sent.  It is also
possible to create a random delay by adding an 'r' to the time (ie +1:00r),
which would have the message be delivered at a random time, but not more
than an hour.  It is also possible to delay the message until a specific
time.  For example, "Latent-Time: 0:00" without the '+' would delay the
message until midnight (at the remailer site). Times must be in 24-hour
format.


Another problem is that some mailers automatically insert a signature file.
Of course, this usually contains the sender's e-mail address, and so would
reveal their identity.  The remailer software can be instructed to remove
a signature file with the header "Cutmarks:".  Any line containing only the
cutmark characters, and any lines following it will be removed.

================================================================
From: sender@origin.com
To: remailer@wherever

::
Anon-To: recipient@destination.com
Cutmarks: -- 

This line of text will be in the anonymous message.
-- 
This line of text will not be in the anonymous message.
================================================================

NOTE: The cutmark characters in the example are "-- ", the usual e-mail
signature separator.  If you forget the trailing blank after the "--"
in the "Cutmarks:" directive, your signature won't be cut off.


You'll probably want your anonymous message to have a more meaningful
subject than the default "None".  Additional headers can be written to
the output message by preceding them with a "##" line.

================================================================
From: chris@nifty.org
To: remailer@wherever

::
Anon-To: andrew@where-ever.org

##
Reply-To: chris@nifty.org
Subject: Hi there!

A Message with user-supplied headers.
================================================================


The remailer can also be used to make anonymous posts to Usenet.
To do this, send a message with the header "Anon-Post-To: newsgroups",
the newsgroups that you want to post anonymously to.  Please note
that the group names must be separated by commas (but NO spaces).

================================================================
From: poster@origin.com
To: remailer@wherever

::
Anon-Post-To: alt.test,misc.test

##
Subject: Anonymous Post

This is an anonymous message.
================================================================

When posting test messages, please use the appropriate groups (alt.test,
misc.test).  The remailer support newsgroup alt.privacy.anon-server is
not a test group.


By separating messages with cutmarks, you can send more than one message
at once:

================================================================
From: me@mysite.org
To: remailer@wherever
Subject: whatever

::
Anon-To: recipient1@site1.org
Cutmarks: -- 

##
Subject: message 1

Message one.
-- 
::
Anon-To: recipient2@site2.org
Cutmarks: -- 

##
Subject: message 2

Message two.
-- 
me@mysite.org
================================================================

The two messages will be delivered separately, and the signature will
be removed.  Only one cutmark is used in the example, but you may use
different cutmarks in each part of your message if necessary.


For added security, you can encrypt your messages to the remailer with
PGP. The remailer software will decrypt the message and send it on.
Here is the remailer's public key:

-----BEGIN PGP PUBLIC KEY BLOCK-----

put your key here

-----END PGP PUBLIC KEY BLOCK-----

To utilize this feature, create a message with two colons on the first line, 
then the "Anon-To:" or "Anon-Post-To:" header, then any other commands such
as "Cutmarks:" or "Latent-Time:", then a blank line, then the optional "##"
line and your additional headers, then a blank line, and then the body of
your message.  Encrypt this with the remailer's public key.  Then send it
to the remailer, adding the header "Encrypted: PGP".  If you forget this,
the remailer won't know that it needs to be decrypted.  Also be sure to use
the "-t" option with PGP, or the linefeeds might not be handled properly.

================================================================
From: me@mysite.org
To: remailer@wherever

::
Encrypted: PGP

-----BEGIN PGP MESSAGE-----
Version: 2.6.3ia

hIwCJD7BWgsRsnUBA/9kVuVlhFczhjI5cYFLGEAQiv4fUUlZ+hgPp6SQysToVLTM
d0OvWqEb4TJgMREf6pHv4022yRLV6Pb9xaE/Gb82SUZYNE6TvfpxyKbWtRSthPXx
OlsLD+IudqvBQus6DoY/9ClbbXyibP6mOCy7gwFZWOy6OMv2O2ZI3ufc/iCpgKYA
AAAoLD7rvsI+c/Bod/GKAffpHqN2fimsoXrdcEMhIfN+rSC7PnMmaX1c4w==
=afKM
-----END PGP MESSAGE-----
================================================================

To confuse possible attackers even more, you can generate some cover
traffic by sending encrypted messages with the special "Null:" header
rather than the usual "Anon-To:" or "Anon-Post-To:" headers.  The
remailer will drop these messages in the bit bucket.


Any text after your encrypted remailer message is also remailed.  This
allows sending messages to someone who is anonymous.  If you create a
PGP-encrypted message to yourself via this remailer, and then give it
to someone, they can send you a message by sending the encrypted message
to the remailer.  The remailer will then decrypt it and send it to you.
The message gets anonymized in the process, so the sender will need
to include a return address if he wants a reply.

Messages sent this way can be encrypted using the "Encrypt-Key:" feature.
Any text following a line beginning with "**" will be encrypted with this
key.  For example, if you put in the plaintext of your PGP message:

================================================================
::
Anon-To: you@yourhost.org
Encrypt-Key: your_password

**
================================================================

The appended message after the "**" will be encrypted with the key
"your_password", using PGP's conventional encryption option.
It is much simpler to manage these "reply blocks" -- both from the
sender's and recipient's perspective -- by using a nymserver.
Please read <http://www.publius.net/n.a.n.html> for more information
(the homepage for nym.alias.net, the home of the nymserver software).


This remailer can download WWW pages either as HTML source or as
formatted text and send them to you:

================================================================
From: me@mysite.org
To: remailer@wherever

::
Get-HTML-Source: http://blah/blah.html
================================================================

It will use an external text-mode WWW browser to get the HTML source file
http://blah/blah.html and send it directly to the address me@mysite.org.
"Get-URL:" instead of "Get-HTML-Source:" will get the formatted page
rather than the HTML source.

A "Return-To:" line can be added to mail the file to another address than
the sender of the request.  Before sending the response, the original message
body is prepended.  So with combined use of "Return-To:" and reply blocks,
anonymous URL or HTML source requests can be sent through a remailer chain
as well and the response can be sent back through a different chain.
For example (the reply block should be encrypted for another@remailer):

================================================================
From: me@mysite.org
To: remailer@wherever

::
Get-URL: http://blah/blah.html
Return-To: another@remailer

::
Anon-To: me@mysite.org
Encrypt-Key: my_password

##
Subject: Your requested WWW page

**
================================================================

NOTE: The "Get-URL:", "Get-HTML-Source:" and "Return-To:" directives
can be used only after the first "::" line, not in the real headers.


For greatest untraceability, your reply block can be directed to post
to alt.anonymous.messages on Usenet.  Since you must use a subject line
when posting to Usenet, messages sent using the same reply block will
have the same subject.  To avoid this, you can encrypt a message digest
of the subject using the "Encrypt-Subject:" feature.  For example, if
you put inside your reply block:

================================================================
::
Anon-Post-To: alt.anonymous.messages
Encrypt-Key: your_password
Encrypt-Subject: your_other_password

##
Subject: This subject is MD5 hashed and IDEA encrypted

**
================================================================

The appended message after the "**" will be encrypted with the key
"your_password", using PGP's conventional encryption option; the
subject will be converted to a 128-bit number and encrypted with
IDEA using CFB mode with the key "your_other_password", and
printed in hexadecimal format (48 characters); and the message will
be posted to alt.anonymous.messages.  The original subject cannot
be recovered, only the MD5 hash of it, and then only if you have the
password.  The resulting subject will be different each time due to
the use of CFB mode, so this helps prevent traffic analysis based on
the subject header.

Decoding the subject (to verify that the message is directed to you)
requires special software.  The operator has a small C program
which can do this.  You will also need to have the PGP sources. A
more robust application would be appreciated.  Contact the operator for
more information.


Abuse Policy:
I consider the following to be inappropriate use of this anonymous remailer,
and will take steps to prevent anyone from doing any of the following:
- Sending messages intended primarily to be harassing or annoying.
- Use of the remailer for any illegal purpose.  Due to the global nature
  of the Internet, it is the sole responsibility of the orginal sender
  to determine what is legal.
- Unsolicited commercial messages (SPAM).
- Complaints to spammers.
- Posting lists of addresses to Usenet groups for purposes of soliciting
  commercial e-mail (spam-baiting).

If you don't want to receive anonymous mail, send a message to the operator,
and your e-mail address will be added to the block list. For more information
on filtering out unwanted e-mail, see <http://www.abuse.net/>.


You can get a list of statistics on remailer usage by sending mail to
the remailer with Subject: remailer-stats

To get the remailer's public keys, send mail with Subject: remailer-key
or finger rlist-keys@anon.efga.org or remailer-keys@anon.lcs.mit.edu to
get the public PGP keys of all active Cypherpunk remailers.

For a copy of these instructions, send mail with Subject: remailer-help

To reach the operator, direct your mail to remailer-admin@wherever.
