Silk Road forums

Discussion => Silk Road discussion => Topic started by: USASupply on October 07, 2013, 06:23 pm

Title: Privnote compromised? and an alternative
Post by: USASupply on October 07, 2013, 06:23 pm
So, after privnote was down all day yesterday i noticed today now at the top it says "Javascript is required to use Privnote". I looked through the source and there is nothing pointing to an exploit, but there is now an extra re-direct after creating the note and you can see this if you watch the live headers. This would be very beneficial to authorities if they can get the true IP of privnotes users and linking up the notes they find to users. Its possible the message was always there but i have never had javascript enabled, and now it is required? there method of submitting the form and making the note does not need JS, so why is it required? What do you guys think?


Alternative:

https://thismessagewillselfdestruct.com

This seems secure, and just as good as privnote. It even has some extra features privnote does not have. No this is not my site, it is just a heads up to keep people safe, im sure there are other similar ones too but most seem to expire after time, not after reading.

Title: Re: Privnote compromised? and an alternative
Post by: tree on October 07, 2013, 06:26 pm
Privnote, SMS4TOR and all similar sites are not safe at all... Just use PGP, it's not much harder.
Title: Re: Privnote compromised? and an alternative
Post by: USASupply on October 07, 2013, 06:31 pm
Oh trust me, i use PGP, always have. But privnote is a good accent to PGP and some un-informed buyers use it exclusively, and to reply to them without their public key then privnote is a good tool. In no way is it secure, but it has its place.
Title: Re: Privnote compromised? and an alternative
Post by: Cimicon-Rep on October 07, 2013, 06:49 pm
Deadletter is another.

http://dead6nxjwxfejydb.onion/#/

Don't know if it's still operational or if it requires javascript.