[HN Gopher] Implementing Anonymous Posts on Gurlic
       ___________________________________________________________________
        
       Implementing Anonymous Posts on Gurlic
        
       Author : SubGenius
       Score  : 11 points
       Date   : 2020-12-24 20:33 UTC (2 hours ago)
        
 (HTM) web link (gurlic.com)
 (TXT) w3m dump (gurlic.com)
        
       | robobro wrote:
       | > which defeats the purpose of anonymous posts. In the case of a
       | database leak, that connection is out in the public. We don't
       | want that.
       | 
       | Um, you should be logging IP, in case someone posts illegal
       | materials, is spamming, etc...
        
       | forgotmypw17 wrote:
       | The way I approach this is by allowing users to use pgp for
       | identity management, with one-click signing and two-click keygen
       | in a friendly web ui.
       | 
       | Then any modifications are just a matter of sending a signed
       | token like #remove or #edit.
        
       | ketamine__ wrote:
       | > That is a little tricky though, because there has to be some
       | record that ties the user to the post itself - which defeats the
       | purpose of anonymous posts. In the case of a database leak, that
       | connection is out in the public. We don't want that.
       | 
       | And if it's a randomly generated string then it's only useful if
       | the attackers can discover who it belongs to... I don't see the
       | issue.
        
       ___________________________________________________________________
       (page generated 2020-12-24 23:00 UTC)