Don't believe those who loudly claim email can not avoid metadata! They are ignorant of our continuous works on minimizing metadata:
DONE:
- no phone number other identifying data needed
- no cleartext "Subject"
- no cleartext "To"
- randomized "Date"
- no IP addresses
- group/avatar/attachment/etc metadata only contained in encrypted message parts
Upcoming:
- servers to never see cryptographic ID metadata
- remove "threading" and auxilliary headers
- experiment with Sealed Sender
@delta thoughts from an anti-spam professional:
If the unencrypted Date header is more than a few hours off, it is likely to be blocked as spam. Randomly skewing it by up to 1800 seconds in either direction should be safe. Changing the time zone to grossly mismatch the geoIP is probably unwise, though +0000 is fine.
I suspect you're trying to make your headers super generic with all the important and identifiable aspects (and metadata) in the encrypted body. That's a good move, just be careful about spam filters.
@delta I think emails should be remade from scratch. They are too old and have trust in too much stuff. We need a newer and better protocol that still feels like email, but encrypts everything and doesn't allow spoofing.
@delta think what of the entire routing info in mail headers, which server it originated from & those it passed through etc
@patterfloof @delta If it doesn't conform to RFC standards for email, it's not email. It may be better, it may be worse, but it's not email anymore.
@foolishowl @patterfloof see https://github.com/chatmail/core/blob/main/standards.md for how delta is based on IETF standards.
Is Delta Chat actually a good messenger if it's about privacy?
