Has anyone tried to write some mailing list software that uses PGP-anon-remailers to implement a double-blind anon system? It wouldn't be very dificult to have a mailing list people contributed to using a remailer with a encryted address-block, so no one knew the actual address of the mailing list. Or more significantly, the mailing list, instead of keeping a list of addresses, could keep a list of encrypted address-blocks, and the proper remailer to send them to, so the list maintainer doesn't know the real address of anyone on the list. This is intriguing to me because it seems to solve the problem of a "secret" organization's security. The members of this mailing list don't need to trust anyone else on the list not to reveal their identity; no one can reveal anyone elses identity even if they wanted to. Assuming the security of the encryption (which of course can't be assumed; anyone with a sufficiently powerful comptuer and sufficient time to spend can surely break PGP, but anyway...), this mailing list would seem to be pretty much 100% secure. It would also seem desirable to have the mailing list software keep a record of all it's members public keys as well, and send out posts encrypted. As well as perhaps check signatures of incoming messages so that only legitimate list-members could contribute to it. I've been thinking of trying to write such software, perhaps by working with the procmail program from comp.sources.misc, whcih can be used to implement a standard mailing list. But has this already been done? It seems like such an obvious idea, that it's hard to believe no one has thought of it first, but I haven't heard of anything so far. Comments?