Chuq Von Rospach writes:
So make the new message-id a 160-bit localpart followed by an IPv6
address. Anyone wanting to DoS away an SHA-1 hash is welcome to
there goes anonymity in the protocol... (grin)
Why? SHA-1 is supposed to be better than MD-5, right? Does this
message's message-id reveal anything about me or about this
your IPv6 address? I can knock on your door now. you've embedded
information identifying your server in here.
Oh, but you knew that already. Your TCP implementation revealed it to you.