[HN Gopher] Implementing Anonymous Posts on Gurlic ___________________________________________________________________ Implementing Anonymous Posts on Gurlic Author : SubGenius Score : 11 points Date : 2020-12-24 20:33 UTC (2 hours ago) (HTM) web link (gurlic.com) (TXT) w3m dump (gurlic.com) | robobro wrote: | > which defeats the purpose of anonymous posts. In the case of a | database leak, that connection is out in the public. We don't | want that. | | Um, you should be logging IP, in case someone posts illegal | materials, is spamming, etc... | forgotmypw17 wrote: | The way I approach this is by allowing users to use pgp for | identity management, with one-click signing and two-click keygen | in a friendly web ui. | | Then any modifications are just a matter of sending a signed | token like #remove or #edit. | ketamine__ wrote: | > That is a little tricky though, because there has to be some | record that ties the user to the post itself - which defeats the | purpose of anonymous posts. In the case of a database leak, that | connection is out in the public. We don't want that. | | And if it's a randomly generated string then it's only useful if | the attackers can discover who it belongs to... I don't see the | issue. ___________________________________________________________________ (page generated 2020-12-24 23:00 UTC)