Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
brownbat
14y ago
0 comments
Save
Share
Hmm, oh, I think the stuff after the hash is the decryption key, and we're assuming the server throws it away.
We still require a trusted third party here.
0 comments
1 comments · 1 top-level
top
newest
oldest
StavrosK
14y ago
The HTML anchor never reaches the server in the request, it's for local use only. Of course, malicious JS on the page can always send it anywhere.
j
/
k
navigate · click thread line to collapse
