‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Thursday, November 15, 2018 1:13 AM, azul <azul(_at_)riseup(_dot_)net> wrote:
One downside I see is that the mechanism could be used to detect where
an email address routes to. In the case of azul+conf this may be easy to
guess. But for aliases users do not expect them to be linkable without
any interaction on their side.
If they use a shared key for this purpose they are theoretically linkable via
fingerprint anyway. In the case of things like catch-all addresses, I think
this can be left up to the MTA to implement how they see fit. I think in most
cases for catch-all the destination address is not sensitive.
signature.asc
Description: OpenPGP digital signature
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp