On Wed, Feb 2, 2011 at 5:47 PM, Jan Weiher <span dir="ltr"><<a href="mailto:jan@buksy.de" target="_blank">jan@buksy.de</a>></span> wrote:<br><div class="gmail_quote"><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div>> In email, what are anonymity risks? Header contains sender domain (maybe IP) but what else?<br>
><br>
<br>
</div>Probably the whole header. But except from the obvious I would<br>
especially look for the received: lines, the date (because it might<br>
contain your timezone) and the X-Mailer header (shows your user agent).<br></blockquote><div><br>In addition to e-mail headers which do indeed generally contain multiple IP addresses and time zone information, there is a fair bit of stuff that can be used for fingerprinting as well. Not just the obvious things like the X-Mailer header, but things like which headers are present, the order they appear in, and the formatting of the MIME envelope, can all help identify the software in use.<br>
<br>Combine that sort of stuff with analysis of writing style, vocabulary, etc. and you might be able to correlate two e-mails as originating from the same person with some degree of accuracy.<br>
</div></div><br>I'm not aware of any research into the trackability of such things, as e-mail generally isn't considered anonymous anyway, but a lot of the work that has gone into fighting spam would actually have implications here as well.<br>
<br>-- <br>Bjarni R. Einarsson<br>The Beanstalks Project ehf.<br><br>Making personal web-pages fly: <a href="http://pagekite.net/" target="_blank">http://pagekite.net/</a><br>