[tor-talk] Graypony

Mon Nov 25 16:45:43 UTC 2013

On Sun, Nov 24, 2013 at 8:28 AM, Tempest <tempest at tushmail.com> wrote:
> hi, conrad. awhile ago, you'd mentioned you were working on a hidden
> service e-mail system. i was wondering if you had made any progress on it.
>
> -------------------------------------------------

Hello Tempest,

Basically Greypony has been mostly configured, but I'm running into
some issues doing transparent proxying with Postfix and the edge MTAs.
 I don't want to store any of the mailboxes on the edge MTAs at all.
All of the mailboxes must be stored on Tor in order to assure security
and anonymity of sources.  I'm hoping that the code that Lunar has
that Ruby code that'll allow the configuration of using querying DNS
via TCP to prevent DNS leaks outside of Tor.

Of course, if anyone has any suggestions, I'm more than open to them,
please - I would like to consider this a group effort.

For those who don't know - Greypony <http://www.greypony.org> is a Tor
based hidden email solution that allows users on Tor to send emails to
the public Internet from within the Tor network, send emails to other
Tor users, and allows public Internet users to send emails to Tor
users.  The goal for the service is to have built in GPG encryption,
IMAP, webmail, and all sorts of other goodies.

The Internet facing MTAs (the MTAs on the Public Internet) just run a
MTA, do not perform any logging whatsoever, and just forward emails to
the Tor dataserver.  The opposite occurs, the Tor dataserver sends an
email to the MTA and it forwards it on the the Public Internet.
Again, no logging is performed on the Tor dataservers either.  There's
no way to recover passwords on the dataservers.

Preferred authentication would be Certificate based authentication
(certificated would be generated) and again, GPG would be used to
ensure proper security.

If there's any suggestions, or any questions, please let me know.

-- 
Conrad Rockenhaus

http://www.rockenhaus.com/
http://www.lagparty.org/~conradr/
-------------- next part --------------
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2.0.22 (MingW32)
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=d3ja
-----END PGP PUBLIC KEY BLOCK-----