Wikispooks talk:Anonymous Submissions

From Wikispooks
Revision as of 22:58, 30 May 2010 by Tourist (talk | contribs) (Flash forms are not transparent to the user and therefore not trustworthy)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Could you give us some assurance that the evil Flash form will never sneakily "phone home" to Adobe (as so many of their products have done in the past), thereby betraying the submitter's IP Address and web browser details etc. to various snoopers ?


Does it set a Flash Local Shared Object "super cookie" ?


You would be better off using a standard SSL encrypted web form, ideally with a proper WikiSpooks.com Digital Certificate, or perhaps another one (e.g. as used by your web hosting provider), provided that you inform people beforehand which webserver the form is being run from.


You should also remind people that they can submit files which have been encrypted using your published PGP public encryption key when they are using this Anonymous Uploads form.