Show HN: We open sourced One-Time Secret today

We launched just over a year ago (<a href="http://news.ycombinator.com/item?id=3207489" rel="nofollow">http://news.ycombinator.com/item?id=3207489</a>) and we finally made good on our intension to release it as open source.<p>Thanks for all the feedback so far; it's made a big a difference for us. Not just with features and bugs but with motivation too.<p>We have a special free plan for people coming from Hacker News:<p><a href="https://onetimesecret.com/" rel="nofollow">https://onetimesecret.com/</a>

I use a similar system, but only because I know the people who wrote that one. It's nice to see the code, but there's still no guarantee that this is the code that is running on the real site. Now, having the code available makes it possible to run it myself if I'm super-paranoid, which is cool.<p>So, thanks.

I made a very similar website. Also offers uploading files and encrypting the data you share. It offers a little more flexibility on how you want to secure the content you're sharing.<p><a href="https://www.alicetobob.com" rel="nofollow">https://www.alicetobob.com</a><p>You can check out the source code <a href="https://github.com/hellonoam/cryptopad" rel="nofollow">https://github.com/hellonoam/cryptopad</a> though I should probably update the readme with more info.

Also see this Python variant you can easily host yourself.<p><a href="https://github.com/Achiel/SecretSexChange" rel="nofollow">https://github.com/Achiel/SecretSexChange</a><p>I do not like storing my passwords etc with a third party.

What if a spammer used this? You send out spam emails with a one time link in it (per recipent). The recipient views the spam link sees the spam content and either (a) purchases or (b) spam reports<p>If they spam report the report tries to view the link but sees it is no longer there.<p>Not saying specifically with your service, but a spammer could setup something of his own like this and when a link is viewed a second time they could put up a fake this page has been reported for spamming etc.

I also like Zerobin, which encrypts in the browser so no cleartext is saved on the server:<p><a href="http://sebsauvage.net/paste/" rel="nofollow">http://sebsauvage.net/paste/</a><p>Of course, it's not SSL, but the source is available online and you could create your own implementation using SSL (as I have).

You might want to put the description at the top of that post, and in the README on github.

I like <a href="https://www.thismessagewillselfdestruct.com" rel="nofollow">https://www.thismessagewillselfdestruct.com</a><p>Also available at <a href="https://tmwsd.ws" rel="nofollow">https://tmwsd.ws</a>

i have this confused dream that somehow people will implement different cryptographic "elements" as web services and eventually someone will find a way to tie them together into something awesome. i think this could be one; my own (much more pointless) contribution is human-readable timestamps (like taking a photo of yourself and today's newspaper): <a href="http://colorlessgreen.net/" rel="nofollow">http://colorlessgreen.net/</a> (also open-source)

Why is it so hard for people to set up GPG?! Installs even have contextual menus to encrypt text for a given person!!<p>I use contextual GPG for pastebin all the time.

It is amazing the ideas out there. A one time use URL... Why didn't I think of that! With the code open source, this should catch on.

heh I too did one of these. <a href="http://encrypticate.com" rel="nofollow">http://encrypticate.com</a><p>Yours looks really nice.