[Plug-security] Is it appropriate for anonymous proxy servers to surreptitiously run IDENT?

David A. Sinck plug-security@lists.PLUG.phoenix.az.us
Fri, 30 Nov 2001 22:14:55 -0700


\_ SMTP quoth J.Francois on 11/30/2001 17:18 as having spake thusly:
\_
\_ If you have an issue with the security practices of MagusNet Public
\_ Proxy, say so.

It might just be me, but, JLF, I didn't think MagusNet got fingered in
the email *sent to the list*.  It does look somewhat like their might
be a lead up in private email though.  Or it could be my MTA is just
dreadfully slow.  Or I could have just popped in from another
dimension as tired as I feel, so take this assesment with a grain of
salt.

Me, I say it's up to whoever's providing the service to be clear as to
what they are doing and what anonymity means to them and what they
have implemented, which presumably your policy page does (my pillow is
calling me, so I didn't read, sorry).  If the folks interested in the
service don't like the terms, tough beans.  Vote with the
pocketbook/morals/hammer, depending on what's appropriate.  :-)


On a another note, I've read _Database Nation_ pub'd by ORA, and that
could lead one to paranoia right quidkly; I'd recommend a read.

David