palindrome emordnilap's Library tagged privacy →  View Popular

1) The following steps will attempt to mask the true origin of your message. This is all well and good, but with a determined enough opponent there is a distinct possibility these measures will fail (given enough time). So you should start by getting a net connection totally unaffiliated with you. Ideally web cafe, library, or WiFi access point:



- WiFi

If you cruise around a residential neighborhood anywhere in the first world it's quite likely you'll find many totally open access points. Corporate access points would be better, because there would be more data to hunt through, but these will typically be more secure. It's probably not worth cracking a corporate system (WEP key) simply because it means more time in the area, increasing your chances of being recalled by anyone when The Man comes around asking questions. The perfect option is a major city with free municipal WiFi.



Buy your WiFi card second hand so there is no paper trail tying you to the card in the first place. You'll need to spoof your MAC address to match that of a legit and frequent user to further frustrate attempts of gleaning anything meaningful from the logs. There is plenty of software to do this, but make sure it's working first by testing it on an access point you have access to.



- Web Cafe/Library

Again, the ideal choice would be a very large web cafe where you can pay in cash and not be remembered by any staff. Most libraries will make you have a card to use the net, so this is no good.

Whichever route you choose you should travel a signifcant distance from any area your opponent could possibly associate with before doing all of this. If you use a connection point in your hometown of 1000, you're going down.



2) Once connected to the net, get access to several compromised machines (this should all be arranged ahead of time). This can be done by hanging out in certain IRC channels and talking to purveyors of Botnets, or better yet hacking them yourself. If you screw this up, you'll only attract more attention yourself, so this step is better skipped unless you know what you're doing. Secure shell your way in to one of these, and from it's shell, tunnel again, repeating the process several times. You will now be connected to one machine through several others.



3) Send your email from this remote machine, but address it through a minimum of 5 remailers that are geographically spread out and run by different entities (most are run by individuals). To ensure your opponent gets the message, do this several times with totally different remailer chains.



4) Run a command on the machine that you sent the email from to shred it's hard drive to Orange Book standards. Repeat this for all the intermediary machines used to reach the final one.



5) If you went the wifi approach (which is far superior) there is one last step. Using a pre-prepared batch of thermite destroy your hard drive and WiFi Card