|
|
|
|
|
|
by waterhouse
2255 days ago
|
|
|
I don't know much about the broader context, but to this part: > If all you have is the URL, then the server sees the encryption key. Not necessarily. It's possible to put the key after a "#" in the URL, which allows client-side code to use it without sending it to the server. This technique is used at ZeroBin, among other places. (Edit: This is actually done in the video in the OP as well.) |
|
|