Pages:
Author

Topic: --- (Read 6779 times)

hero member
Activity: 640
Merit: 771
BTC⇆⚡⇄BTC
---
October 01, 2016, 09:15:40 PM
#24
Very nice project.

It reminds me of https://www.protectedtext.com which I used to play with a few times in the past.


Passphrase.io has been featured once again on The Merkle!

http://themerkle.com/passphrase-io-now-supports-hyperlinks-and-images/

Congratulations for the media coverage!

edit: What happened to the OP and thread's subject?
legendary
Activity: 1750
Merit: 1115
Providing AI/ChatGpt Services - PM!
September 24, 2016, 01:31:03 AM
#23
If encryption were done server-side, then I (website owner) would be able to read the contents of every notepad, which would defeat the whole purpose.  You don't own your bitcoin unless you control the private keys, and your data is not private unless you encrypt it.
You got a point but the encryption takes place on the server side ,isn't it ? I upload my content,use one of the algorithms that "YOU" have implemented on the website to store the encrypted data.Now,since you have implemented the code,only you would know if it actually looks like what it is or data is being available at the back-end.
legendary
Activity: 1750
Merit: 1115
Providing AI/ChatGpt Services - PM!
September 23, 2016, 12:14:35 PM
#22
The problem is JavaScript using in the Web browser. If you do not use Java, then you can not use notepad. For security reasons it is much better not to use Java.  Grin

I advise us not to confuse JavaScript with Java, though. Java was removed from browsers a very long time ago while JavaScript is still widely used in stable projects. Unless you know what you are doing, disabling JavaScript is advised, but the nature of the JavaScript that web sites use is that the script runs on client side so it is possible to white-box analyze it in a secure environment and if you find it safe, you may enable JavaScript for that site. Using JavaScript is not a Devil's tool nowadays!
It could still be used as a lethal tool to spoof or manipulate anything you want.For example,you might have played google's offline game when your Internet goes down.By running a simple script in the browser,you can hack that game to score unlimited points.That's where the client side javascript is use for devil stuff.This is just an example of what you can with the script on the client side.I believe,the complications or encrypting the data should be left to the back-end only.
hero member
Activity: 1204
Merit: 531
Metaverse 👾 Cyberweapons
September 23, 2016, 11:37:58 AM
#21
The problem is JavaScript using in the Web browser. If you do not use Java, then you can not use notepad. For security reasons it is much better not to use Java.  Grin

I advise us not to confuse JavaScript with Java, though. Java was removed from browsers a very long time ago while JavaScript is still widely used in stable projects. Unless you know what you are doing, disabling JavaScript is advised, but the nature of the JavaScript that web sites use is that the script runs on client side so it is possible to white-box analyze it in a secure environment and if you find it safe, you may enable JavaScript for that site. Using JavaScript is not a Devil's tool nowadays!
legendary
Activity: 1120
Merit: 1000
https://cryptoworld.io
August 29, 2016, 01:30:12 PM
#20
I found a bug.
I was able to remove the js code to filter text greater than 32768 chars. But backend have a lenght limit control too (great!).

So I went further.. I replicated the post request with postman, and edited manually the form-data parameter "text" by changing the ciphered text. Success! I updated a passphrase text and now the passphrase is no more usable.
Passphrase: It should resolve of its own volition.

Error: sha256.js:10 Uncaught Error: Malformed UTF-8 data

Try to add some sort of control on server-side (if it's possible)
hero member
Activity: 712
Merit: 500
August 28, 2016, 05:29:10 PM
#19
I definitely love this idea, but wouldn't including those hashing algorithms supported by ASICs be a bad idea after all?
legendary
Activity: 1120
Merit: 1000
https://cryptoworld.io
August 28, 2016, 09:37:09 AM
#18
The design on the homepage says everything. Attach it on the first post  Wink

legendary
Activity: 1120
Merit: 1000
https://cryptoworld.io
August 14, 2016, 03:24:32 PM
#17
I really like the concept.

You should add a "time bomb" / "time expiration" to self-delete the note stored on your server, depending on the user choice.

How does the random phrase generator works? Collisions are possible?
legendary
Activity: 3038
Merit: 1032
RIP Mommy
August 05, 2016, 08:30:22 PM
#16
Please stop crossposting reddit links unless you will do them within 5 seconds of each other instead of enough delay here for them to be solved by redditors already.

https://www.reddit.com/r/Bitcoin/comments/4waf4d/i_have_hidden_another_005_btc_at_passphraseio/ Fri Aug 5 13:37:11 2016 UTC
https://bitcointalksearch.org/topic/--1372368 August 05, 2016, 14:22:59 UTC
hero member
Activity: 658
Merit: 500
July 12, 2016, 08:20:53 AM
#15
The problem is JavaScript using in the Web browser. If you do not use Java, then you can not use notepad. For security reasons it is much better not to use Java.  Grin
legendary
Activity: 2940
Merit: 1333
April 05, 2016, 03:10:51 PM
#14
if I lose my computer or I had to reinstall my os or just my browser, I lose everything ?

No, you don't lose your data until the website shuts down. The opening line "passphrase.io is back" suggests they have shut down at least once before, so this doesn't seem like a good way of storing anything important.
legendary
Activity: 938
Merit: 1002
April 04, 2016, 06:08:10 PM
#13
It's a great idea, but there's not much functionality besides sending encrypted notes to others, but there are also better ways to do this.

But it's a cool idea, and it's given me a cool idea for a site, myself! I'll tip you if it's successful.
full member
Activity: 172
Merit: 100
April 03, 2016, 08:26:20 PM
#12
This is a very cool service! It is also quite fun to search what other users have written  Grin
full member
Activity: 158
Merit: 100
April 03, 2016, 10:25:22 AM
#11
This is excellent and gave me a cool spin-off idea too. Thanks!
legendary
Activity: 1750
Merit: 1115
Providing AI/ChatGpt Services - PM!
March 31, 2016, 06:02:18 AM
#10
Have used it before.So you were the one who bought project from devthedev .Cool. No substantial changes have been made since the last time I used it.
member
Activity: 98
Merit: 10
March 31, 2016, 03:46:36 AM
#9
Interesting, then what is the different between this and pastebin

One difference is that pastebin does not encrypt their data, so they can view all text that people store on their servers. You would never want to put sensitive information there.  Passphrase.io encrypts all data, so with a strong enough passphrase, your data is kept private.

thank you, I will try this
member
Activity: 98
Merit: 10
March 30, 2016, 10:48:29 PM
#8
Interesting, then what is the different between this and pastebin
newbie
Activity: 51
Merit: 0
March 30, 2016, 10:24:52 PM
#7
Thank you !

I really wanted how you will behave if I push you up a little bit, I expected some aggressive answers but I got the opposite.

Suggestion : try to make the background a bit darker if you can, good luck with your service.
legendary
Activity: 2422
Merit: 1451
Leading Crypto Sports Betting & Casino Platform
March 30, 2016, 10:05:46 PM
#6
"It uses client-side JavaScript (in your browser) to encrypt the data with AES256 encryption" Ohh that's so fancy using technical words ...

The main issue is that : the pass-phrase that cipher the text is the same that a user will use to reverse the ciphering (that means you can read every freaking messages people send & receive using your "super encryption tool".

You can have every bitcoin address by generating private keys!!!!  Shocked
newbie
Activity: 51
Merit: 0
March 30, 2016, 10:03:25 PM
#5
"It uses client-side JavaScript (in your browser) to encrypt the data with AES256 encryption" Ohh that's so fancy using technical words ...

The main issue is that : the pass-phrase that cipher the text is the same that a user will use to reverse the ciphering (that means you can read every freaking messages people send & receive using your "super encryption tool".
Pages:
Jump to: