Mir stellen sich da schon die Nackenhaare auf wenn man bei einem Privacycoin zum versenden die IpAdresse oder Emailadresse angeben soll...
Ja, selbst theymos hat es nicht verstanden, warum ein Risiko eines MITM-Angriff implementiert wurde.
A few observations I had while implementing this:
By default they want you to essentially pay to IP addresses. This was stupid when Satoshi tried it 10 years ago, and it's stupid now. At the very least you should strongly encourage (ie. nearly force) people to give out public keys along with their IPs, since otherwise MITM attacks are trivial. Even then it sucks to require the recipient to run an open-to-the-Internet server at all. And for goodness' sake, don't use the broken/centralized HTTPS system; the Bitcoin Core devs have been going to a lot of trouble trying to remove that garbage from Core.