starred/anonaddy
1
0
Fork 0
mirror of https://github.com/anonaddy/anonaddy.git synced 2026-04-25 22:25:55 +03:00
Code Issues 103 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #692] Transparency Report & Canary Request #1055

New issue
Open
opened 2026-03-14 11:36:02 +03:00 by kerem · 2 comments
kerem commented 2026-03-14 11:36:02 +03:00
Owner
Copy link

Originally created by @ghost on GitHub (Oct 24, 2024).
Original GitHub issue: https://github.com/anonaddy/anonaddy/issues/692

Hi,

First and foremost, thank you for providing such an invaluable service. It has been an excellent tool for protecting privacy and managing email aliases securely.

I would like to follow up on a previous discussion regarding the implementation of a warrant canary or transparency report, as mentioned here (https://github.com/anonaddy/anonaddy/issues/23#issuecomment-584072628). Given that approximately four years have passed since that conversation, could you provide an update on whether these features have been implemented or are still planned?

Additionally, I have a few questions regarding law enforcement requests and data security:

How many law enforcement requests have you received since the service began?
How many of these requests have you complied with?
Would you inform the targeted user of a pending investigation on his account?
Were the requests limited to identifying user information (such as email or IP address), or did they include more extensive data, such as:
Logging incoming or outgoing emails
Account-related data (e.g., email forwarding addresses, alias activity)
Other stored or real-time data regarding users
Furthermore, has there been an independent audit conducted on your servers to ensure the security of the system? This would provide additional confidence in the robustness of the platform's privacy features.

Lastly, is there a service or independent third party that could verify or confirm that no information has been handed over to law enforcement without a proper legal basis? This kind of assurance would go a long way in fostering further trust in the platform.

Thank you again for your dedication and hard work. I look forward to your response.

Originally created by @ghost on GitHub (Oct 24, 2024). Original GitHub issue: https://github.com/anonaddy/anonaddy/issues/692 Hi, First and foremost, thank you for providing such an invaluable service. It has been an excellent tool for protecting privacy and managing email aliases securely. I would like to follow up on a previous discussion regarding the implementation of a warrant canary or transparency report, as mentioned here (https://github.com/anonaddy/anonaddy/issues/23#issuecomment-584072628). Given that approximately four years have passed since that conversation, could you provide an update on whether these features have been implemented or are still planned? Additionally, I have a few questions regarding law enforcement requests and data security: How many law enforcement requests have you received since the service began? How many of these requests have you complied with? Would you inform the targeted user of a pending investigation on his account? Were the requests limited to identifying user information (such as email or IP address), or did they include more extensive data, such as: Logging incoming or outgoing emails Account-related data (e.g., email forwarding addresses, alias activity) Other stored or real-time data regarding users Furthermore, has there been an independent audit conducted on your servers to ensure the security of the system? This would provide additional confidence in the robustness of the platform's privacy features. Lastly, is there a service or independent third party that could verify or confirm that no information has been handed over to law enforcement without a proper legal basis? This kind of assurance would go a long way in fostering further trust in the platform. Thank you again for your dedication and hard work. I look forward to your response.
kerem commented 2026-03-14 11:36:13 +03:00
Author
Owner
Copy link

@ccorneli commented on GitHub (Nov 16, 2024):

I like the idea, although it raises many questions like: what jurisdictions would even have authority?
I know from the FAQ that Will is based in UK, but I don't remember seeing where the servers are hosted.
And if the hosting company receives a request directly, would they even be required to inform him?
I know it was popular about 10 years ago, but seemed mostly as an experiment.. but are they still considered useful?
I'm guessing pretty much every company in this space has (or will receive one). Perhaps there has been no response because he already received one, and can't answer those specific questions?

Anyway, here is some additional examples/info to consider...
https://www.nimbox.co.uk/blog/draconian-laws-and-canary/
https://www.okta.com/identity-101/warrant-canary/

<!-- gh-comment-id:2480634667 --> @ccorneli commented on GitHub (Nov 16, 2024): I like the idea, although it raises many questions like: what jurisdictions would even have authority? I know from the FAQ that Will is based in UK, but I don't remember seeing where the servers are hosted. And if the hosting company receives a request directly, would they even be required to inform him? I know it was popular about 10 years ago, but seemed mostly as an experiment.. but are they still considered useful? I'm guessing pretty much every company in this space has (or will receive one). Perhaps there has been no response because he already received one, and can't answer those specific questions? Anyway, here is some additional examples/info to consider... https://www.nimbox.co.uk/blog/draconian-laws-and-canary/ https://www.okta.com/identity-101/warrant-canary/
kerem commented 2026-03-14 11:36:18 +03:00
Author
Owner
Copy link

@RokeJulianLockhart commented on GitHub (Dec 7, 2025):

Lastly, is there a service or independent third party that could verify or confirm that no information has been handed over to law enforcement without a proper legal basis? This kind of assurance would go a long way in fostering further trust in the platform.

@ghost, I'd trust the platform more if I knew that the operators had no qualms with proactively co-operating with law enforcement. I'd hope that none of us are criminals.

<!-- gh-comment-id:3623156029 --> @RokeJulianLockhart commented on GitHub (Dec 7, 2025): > Lastly, is there a service or independent third party that could verify or confirm that no information has been handed over to law enforcement without a proper legal basis? This kind of assurance would go a long way in fostering further trust in the platform. @ghost, I'd trust the platform more if I knew that the operators had no qualms with proactively co-operating with law enforcement. I'd hope that none of us are criminals.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
v1.5.0
v1.4.1
v1.4.0
v1.3.8
v1.3.7
v1.3.6
v1.3.5
v1.3.4
v1.3.3
v1.3.2
v1.3.1
v1.3.0
v1.2.3
v1.2.2
v1.2.1
v1.2.0
v1.1.0
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
v0.14.1
v0.14.0
v0.13.13
v0.13.12
v0.13.11
v0.13.10
v0.13.9
v0.13.8
v0.13.7
v0.13.6
v0.13.5
v0.13.4
v0.13.3
v0.13.2
v0.13.1
v0.13.0
v0.12.3
v0.12.2
v0.12.1
v0.12.0
v0.11.2
v0.11.1
v0.11.0
v0.10.1
v0.10.0
v0.9.1
v0.9.0
v0.8.10
v0.8.9
v0.8.8
v0.8.7
v0.8.6
v0.8.5
v0.8.4
v0.8.3
v0.8.2
v0.8.1
v0.8.0
v0.7.5
v0.7.4
v0.7.3
v0.7.2
v0.7.1
v0.7.0
v0.6.2
v0.6.1
v0.6.0
v0.5.0
v0.4.0
v0.3.0
v0.2.13
v0.2.12
v0.2.11
v0.2.10
v0.2.9
v0.2.8
v0.2.7
v0.2.6
v0.2.5
v0.2.4
v0.2.3
v0.2.2
v0.2.1
v0.2.0
v0.1.6
v0.1.5
v0.1.4
v0.1.3
v0.1.2
v0.1.1
v0.1.0
Labels
Clear labels   
bug

   
pull-request

Mirrored from GitHub Pull Request

No labels
bug
pull-request
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/anonaddy#1055
No description provided.