[mbenjaminsmith]

That's not entirely true. If this were purely a web-accessible blog, there's no reason you couldn't encrypt/decrypt this in the client (sending and storing encrypted text). You'd have to throw out email posting in that case though.

[andreyf]

I think you're on to something. I look forward to the day when we are shocked by unencrypted private data accessible on the server as we do un-hashed passwords.

[dublinclontarf]

There are a number of online password stores where all the information is only decrypted on the client. Nothing new, just not widespread. Can't remember the name.