Am I wrong to feel like this is a OPSEC issue? Then he says I should feel fucking priveleged to have the tracking info because he never gives it out to people. Luckily its a drop and not linked to me but he put the fucking tracking info into Privnote without PGP.
IMO thats a bit stupid yeah, you've got PGP, why not use it?