zlacker

[parent] [thread] 4 comments
1. EGreg+(OP)[view] [source] 2023-04-21 20:45:22
I like the intent of this! My main question is, how do we know redact.ws won't suddenly serve different Javascript one day, to certain clients, which send unencrypted payloads somewhere?
replies(1): >>cracke+L
2. cracke+L[view] [source] 2023-04-21 20:48:36
>>EGreg+(OP)
The redact server is an open source application that runs locally on the client.
replies(1): >>EGreg+iq
◧◩
3. EGreg+iq[view] [source] [discussion] 2023-04-21 23:07:53
>>cracke+L
How does a server run on the client? It runs on localhost! Right?

It can show the user their own info back to them in iframes?

replies(1): >>pcthro+Hw
◧◩◪
4. pcthro+Hw[view] [source] [discussion] 2023-04-22 00:00:53
>>EGreg+iq
I'm not the creator of redact, but it sounds like you're under the impression that the iframe src is redact.ws in which case I'd understand your concern.

My assumption is that the iframe src would be the local redact server, which would keep things as secure as the package the user installed (though there could be compromises at the network level I suppose)

replies(1): >>cracke+vP8
◧◩◪◨
5. cracke+vP8[view] [source] [discussion] 2023-04-24 21:50:51
>>pcthro+Hw
Exactly. This section on the website should explain it with some more detail: https://redact.ws/how-it-works#client
[go to top]