HackerTrans
TopNewTrendsCommentsPastAskShowJobs

privsen

no profile record

Submissions

Show HN: Built some privacy tools

privsen.com
1 points·by privsen·قبل 7 أشهر·0 comments

Ask HN: What's your go to for sharing sensitive files with non tech people?

6 points·by privsen·قبل 7 أشهر·14 comments

What ChatGPT stores about you (Stanford study found 63% contains PII)

privsen.com
1 points·by privsen·قبل 7 أشهر·0 comments

Show HN: Drop – Self-destructing encrypted messages

privsen.com
1 points·by privsen·قبل 7 أشهر·3 comments

comments

privsen
·قبل 7 أشهر·discuss
Love the self-hosted approach. Pinky-promise lies is exactly my concern with most services. Setting up nginx is more than my parents could handle though. Curious if there is something in between - no third party data access but also no server to maintain?
privsen
·قبل 7 أشهر·discuss
Simple and works! Though I have read that PDF passwords are surprisingly easy to crack and the file lives in their inbox forever. Guess it depends on the threat model.
privsen
·قبل 7 أشهر·discuss
Bit warden Send looks nice but the free tier is text-only my parents needed to send a PDF. Will check if 1ty.me handles files.
privsen
·قبل 7 أشهر·discuss
The split channel approach is clever, never thought of that. Do you find people actually follow through with the second channel or do they just reply what's the code?" in the same thread?
privsen
·قبل 7 أشهر·discuss
Fair - it's convenient. Though after seeing how many services train AI on uploaded content, I've gotten paranoid about what I put in cloud storage.
privsen
·قبل 7 أشهر·discuss
Yeah fair.. self-destructing is overselling it. Server drops the blob after timeout/view count.

Server sees expiry, view count, salt, iv. Content is encrypted, metadata isn't. Can't avoid this with server-managed TTL - alternative is client-only expiry but then you're trusting the recipient's browser.

Main point is credentials don't live forever in chat history. Smaller window, not magic.
privsen
·قبل 7 أشهر·discuss
Scratched my own itch. Needed to share passwords without them sitting in chat logs forever. Client-side AES-256-GCM, PBKDF2 key derivation. Server just holds encrypted blobs until expiry.

Questions welcome.
privsen
·قبل 7 أشهر·discuss
Nice