What is Digg?Sponsored by Dragon Age: Origins
Join the Dragon Age: Origins development team on Facebook view!
facebook.com/DragonAgeOrigins - EA presents BioWare's new dark fantasy epic Dragon Age: Origins. '9/10' from Game Informer.
97 Comments
- BrownManUPS, on 07/06/2008, -2/+111Inaccurate. Message doesn't actually cause explosion in computer and cause smoke to wisp in the air.
- trogdoor, on 07/06/2008, -6/+86And I am sure that they delete your sensitive information from their servers when it "self destructs" as well...
if ( bd{13,16}b ){ # Yay, it looks like we've found a credit card number!
$card_number = $& ;
if ( $card_number =~ /^4[0-9]{12}(?:[0-9]{3})?$/ ){
$card_type = 'Visa';
}
elseif ( $card_number =~ /^5[1-5][0-9]{14}$/ ){
$card_type = 'MasterCard';
}
elseif ( $card_number =~ /^3[47][0-9]{13}$/ ){
$card_type = 'American Express';
}
elsif ( $card_number =~ /^6(?:011|5[0-9]{2})[0-9]{12}$/ ){
$card_type = 'Discover';
}
}
if ( /bd{9}b/ ) # Yay, it looks like we've found a social security number!
... - pablohoffman, on 07/06/2008, -6/+84Hi, I'm one of Privnote developers. You can take a look at this post where I explain how notes are stored:
http://vampiroz.org/2008/06/sending-private-notes- ...
Regarding deleting notes: of course we delete them. But, yes, you have to trust us, just like you have to trust Google, Microsoft, or Yahoo when you use Gmail, Hotmail or Yahoo mail. In web 2.0 services, you always have to trust the provider of the service
Another common question is that notes are not really "self-destructive" because they can be copied and pasted. Well, Privnote just provides a convenient and simple way to send a piece of text to someone else make sure that person, and only that person, reads it (or else that it was compromised). It can't do impossible things like avoiding that person to "copy" the note, since she can always take a screen shot anyway, because it's a DIGITAL MEDIUM. If you don't agree go ask the RIAA and MPAA guys, they've been having a hard time thinking otherwise :) - inactive, on 07/06/2008, -3/+47Dugg for good use of regular expressions, those ***** are tough to do right.
- gavin422, on 07/06/2008, -0/+41I think I just found the source code for my new message client. Thanks!
- inactive, on 07/06/2008, -15/+55Hi, I'm also pretending to be one of Privnote's developers, and I'm here to assure you that our service is perfectly legit and 100% private and safe, even if you are a terrorist. Trust us. No really, we mean it. I'm serious.
- inactive, on 07/06/2008, -1/+40Looking at your name, I would imagine the sensitive information is burninated.
- FLarsen, on 07/06/2008, -0/+25That's a good way to get someones ip.
You send them a link to a note, then later click the link to get the ip of the guy who read it.
Excellent email to ip converter. - bysin, on 07/06/2008, -2/+25Service foiled by print screen button.
- doctechnical, on 07/06/2008, -0/+18This will certainly keep the girls out of the treehouse.
- waltet, on 07/06/2008, -1/+19Note said
Were no strangers to love
You know the rules and so do i
A full commitments what Im thinking of
You wouldnt get this from any other guy
I just wanna tell you how Im feeling
Gotta make you understand
* never gonna give you up
Never gonna let you down
Never gonna run around and desert you
Never gonna make you cry
Never gonna say goodbye
Never gonna tell a lie and hurt you
Weve know each other for so long
Your hearts been aching
But youre too shy to say it
Inside we both know whats been going on
We know the game and were gonna play it
And if you ask me how Im feeling
Dont tell me youre too blind to see
(* repeat)
Give you up. give you up
Give you up, give you up
Never gonna give
Never gonna give, give you up
Never gonna give
Never gonna give, five you up
I just wanna tell you how Im feeling
Gotta make you understand
(* repeat 3 times)
weird.... - manacit2, on 07/06/2008, -1/+14"Developed by Insophia using Django and Python, Privnote allows you to send a message and have it be immediately deleted once it is read."
Yep, clearly PHP.. RTFA
Anyway, looks like it could be fun for a while, but overall rather useless if you ask me. - rubikfreak, on 07/06/2008, -2/+13It's a howler, Ron!
- gavin422, on 07/06/2008, -0/+11Crap, now I really want to know what it said.
- socoolisme, on 07/06/2008, -1/+12https://privnote.com/n/vrmljfjggjseyzbk/
- vonskippy, on 07/06/2008, -0/+10To all you nay sayers - come on - if Twitter, a most useless piece of crap if there ever was one can become popular - so can this.
This is Web 2.0 - made for kiddies who barely passed their watered down parrot-esque no-moron-left-behind public education - it's not meant to be really useful or have any true purpose. - joshjx, on 07/06/2008, -1/+11This note was read before by 76.180.172.31 (cpe-76-180-172-31.buffalo.res.rr.com) 10 minutes ago, so it has been destroyed.
nice. - inactive, on 07/06/2008, -0/+10So i can send this to the e-mail addresses of few girls in my school i've crush on and immediately destroy them as soon as i change my mind and hoping that they won't read it.
Thanks i will give it a try. - Foamator, on 07/06/2008, -0/+9Great, thanks for ruining the second Harry Potter book for me, *****.
- Furlong, on 07/06/2008, -2/+9Printscreen FTW
- KibibyteBrain, on 07/06/2008, -0/+7Unfortunately, our current generation of computers are not as advanced as the terminals in Star Trek and therefore do not facilitate spontaneous explosion.
- cryonix, on 07/06/2008, -0/+7aww, go get em tiger.
(they're so cute at this age) - Godlike, on 07/06/2008, -2/+9Yet again, you have to trust the content provider. It doesn't matter if the poster can be authenticated if what he posted does not have anything to do with his opinion (it doesn't) and can be verified as 'correct' (read their website).
In short: the identity of the poster is irrelevant because what he said is actually true. - bitwiseplatypus, on 07/06/2008, -1/+8From the link:
"The note contents is then encrypted and saved in the database but (and here’s the magic) the salt to encrypt the note is not the note ID but a hash of the note ID. Hashes “one way” so you cannot go back to the note ID from the hash. So the note gets stored in the DB encrypted with a token that only the person which has the note link can read it. Oh, and we also have web server access logs disabled which makes impossible for any administrator to decrypt the note contents."
Nonsense. The note id is stored in the clear in the database, otherwise the URL wouldn't work because it wouldn't be possible to look up the requested note. Therefore anyone with access to the database can see the note id, regenerate the hash, and decrypt the note.
Asking users to trust you is one thing, but asking users to trust you and then giving a ***** hand-wavy explanation like this one is a clear indication of either idiocy or malicious intent. - Barackalypse, on 07/06/2008, -1/+7I communicate telepathically. Wiretap that AT&T!
- inactive, on 07/06/2008, -1/+7So you're saying that like Gmail, Hotmail, and Yahoo Mail, you promise to make blind promises to consumers about security and privacy while reserving the right to keep and use any data that is or ever has been on your servers for whatever purpose you choose?
- stonebear, on 07/06/2008, -0/+6"Listen carefully, I'm only going to say this once." ~ Michelle Dubois (Allo Allo!)
- Virgule, on 07/06/2008, -0/+5Its nice to know the full IP credentials of the receiver......... >_>
See privnote links above - KyjL, on 07/06/2008, -0/+5Pidgin + OTR Messaging
True you still have to set stuff up beforehand but you can't really beat something as paranoid-friendly as OTR - dbr_onix, on 07/06/2008, -0/+4..he could be an 64 year-old teacher, could he not..?
- bitwiseplatypus, on 07/06/2008, -1/+5But that's not the case. Look at the URL. At any rate, even if this were the case, URLs are not secure. The developer's claim that they've disabled their access logs is laughable since all the data contained in the URL is also contained in their database.
- Darkaged, on 07/06/2008, -1/+5Hello there, 72.65.81.231 (pool-72-65-81-231.clrk.east.verizon.net)
I like how this website keeps your details private. - Firehed, on 07/06/2008, -1/+4He's saying that you have to take it on faith that the companies that provide the services that you're using live up to what they promise in their privacy policies. You have no way to know that they actually do what they claim.
- pablohoffman, on 07/07/2008, -0/+3Hi again, just wanted to let you know that I've published a (hopefully) better explanation of how Privnote works here:
http://vampiroz.org/2008/07/how-privnote-really-wo ... - Gosunkugi, on 07/06/2008, -0/+3And good moaning to you too, stonebear.
- dood, on 07/06/2008, -0/+3Are you just looking at your keyboard and typing what you see?
- xkorbin, on 07/06/2008, -2/+5This is utter BS. I just read an explanation of how it works.
http://vampiroz.org/2008/06/sending-private-notes- ...
Pablo Hoffman makes no sense whatsoever when trying to explain this; see comments on blog. - netneutrality, on 07/06/2008, -1/+4Most of the data those services deal with is spam. Most of the data Privnote will handle is.... well, secret stuff. For someone with database access to Privnote the temptation to peek must be irresistable.
- joshdj14, on 08/14/2008, -1/+4So all this does is give out your IP address?
- KibibyteBrain, on 07/06/2008, -0/+2At least Google and Yahoo have the legal resources to ensure they can respond to something like a clearly dubious DMCA request or other such assaults, and the security resources to respond to trivial attacks. That's why I hate when some upstart Web 2.0 dev uses that analogy. I agree much faith exists between a provider and a user on the internet, but much of it is common sense and knowing the company at least has the resources to do what they claim they will do before guessing on whether or not they actually will do it.
- Technopundit, on 07/07/2008, -0/+2If I cant use it to anonymously insult people, it's no good.
- dbr_onix, on 07/06/2008, -0/+2...or copy-and-paste it, or save the page, or memorise it, or write it down on a bit of paper, or take a photo of the screen, or so on.. The note doesn't magically disappear from existence once you click it, it just gets deleted from the server once the link it accessed, so no-one can reopen the link..
- dbr_onix, on 07/06/2008, -0/+2The anti-thought-crime implants soon to be introduced will not only prevent piracy via radio and other air-based audible music sources, and book-theft by reading in-store, will also help clamp down on telepathic terrorism communication
- BossKey, on 07/06/2008, -0/+2The world has changed, Mr. Phelps.
- Godlike, on 07/06/2008, -2/+4Service foiled by... memorization? There are a million ways that it would be possible to copy it, the intent is to destroy the original. You have no proof that a copy was sent by any particular sender or that a screen shot wasn't doctored.
- dbr_onix, on 07/06/2008, -1/+3> yes, you have to trust us
Not true, that's (kind of..) exactly why asymmetric crypto was invented.. You could encrypt using the recipients passphrase, so only they could decrypt it. From that blog-post, it seems like you could decrypt the note quite easily (as the webserver already does to display it - For example, `SELECT * FROM enc_notes` will show the notes, as you don't need to know the note ID). - inactive, on 07/07/2008, -0/+2*lifts glasses* It is I, Leclerc!
- HHP2K, on 07/06/2008, -0/+2I sent a recommendation to the PrivNote Developers to include a Time-sensitive feature. I think that's moreover what people are looking for in a service like this.
- Ledjar, on 07/07/2008, -0/+1as a matter of fact, i am.
- derekivey, on 07/07/2008, -0/+1This would've been cooler if you could also specify conditions for when the note will expire. I would have liked to see it give you the option of having it expire within a certain time period, or after X amount of reads.
-
Show 51 - 99 of 99 discussions
Browsing Digg on your phone just got easier with our enhancements to the 
© Digg Inc. 2009
— Content created and posted by Digg users is