I've kind of given up. I did contact caringbridge, but they won't give out
IP addresses or say how they are encrypted, however they will look into any
abuse.

Most guestbook and commenting software ( like haloscan for example) will log
the IP addresses of those who sign and display it to the guestbook owner.
Haloscan will allow the owner to ban or moderate people by IP address.

Caringbridge goes to great lengths to protect the privacy of people who set
up pages by preventing the pages from being indexed and also prevents people
from linking to other caringbridge sites from their site.

It seems like screwy logic to also prevent a site owner from seeing the IP
addresses of people who sign their guestbook. They used to store
unencrypted IP addresses in HTML comments, then they stopped storing any
identifying information at all, so it was possible to sign someone's
guestbook in complete anonymity, now they store encrypted IP addresses .

I poked around for a while also and was unable to find anything.
Caringbridge permits any sort of HTML code in a comment (screwy logic like I
said) so I added an invisible stat counter to this guy's guestbook (with his
knowledge and permission), so if the creepy commenter comes around again,
we'll get his IP address that way.

Thanks all who made suggestions.

- Kathy

He just wants to get an idea if it's somebody he knows or some random
weirdo.

If it's somebody he knows, he'll confront them.

Nobody's going to hunt the creep down or try to take legal action, it's not
that kind of harassment, if it were, he'd report it to caringbridge.

Some people do nasty things when they think they're anonymous.

The stat counter will capture thair email address, unless the harasser is
smart enough to cloak it, but unlikely, this person has signed the guestbook
a number of times already over the last 8 weeks, always with the same
scrambled IP address but with different signatures and email addresses,
trying to represent themselves as different people.

- Kathy