
tallpaul writes: [re: hypothetical Chinese IP address-based filtering]
Assuming this system is estabished, then we would want to modify our remailers to strip IP packet information as well as normal header, no?
I'm not entirely sure what you mean. Present remailers don't save anything except for (parts of) RFC 822 message bodies, and occasionally some SMTP mail headers. Certainly no packet-level headers (like IP) are saved at all. Presumably The Chinese Wall (and many other gateways, routers, etc.) would simply drop any packets that managed to arrive without originating IP address information. You could use something that emits packets with "incorrect" / "forged" IP headers, but that crosses an ethical line that I consider rather important not to cross. The IPsec WG has been working on interhost authentication that should render the point moot, anyway. -Lewis "You're always disappointed, nothing seems to keep you high -- drive your bargains, push your papers, win your medals, fuck your strangers; don't it leave you on the empty side ?" (Joni Mitchell, 1972)