So I have been working on a project for Shits n Giggles. Its a secure email service that's 100% free, and I was wondering if some of you anons would be nice enough to offer some feedback.
Site is https://0x40.co/
Invite Code is 8LCJM3C492C
Current features include:
Browser side PGP signing
Google Auth 2 factor support
Disk Encryption w/ messages in a encfs folder
Account Purge Support (coming soon)
At the end of the day I will remove all accounts and purge the filesystem, unless any of you anons actually want to keep your account.
So any ideas, suggestions, or whatnot?
Currently 500Mb, but I hope to have more per account in the future for donators. That won't be until the project is live though
The reason for the 0x40 domain is its the @ character in hex.
Oh, and forgot to add this in OP. All passwords are stored as SHA512-CRYPT, and all php sessions are salted as well client and database side.
Any other things I can do to help secure this?
Well testing of the PGP keys and google 2auth would be nice, as well as some of the features in the account panel which at this time is just the ability to reset passwords and delete your account.
I understand. I will see if there are any other good short domains I can come up with that may be more appropriate.
It should work as long as you use SSL for IMAP and SMTP.
If I feel this project is worth keeping alive, then yes. At the moment its running in my virtual environment so theirs not much for fees thankfully.
Also, are there any features you would like to see? The last thing I want to implement is a "Purge" system so you can have your account emptied on the server daily, weekly, or monthly. This way you can setup a POP3 client and just pull mail from the server, and not worry about it being hosted on site.
shit should be fixed now.
So any feedback/opinions/ideas to make the service better?
I know the SMTP/IMAP service needs some work (SMTP for some reason only works under STARTTLS and not SSL only)
Thats strange... It should say account was created successfully, and then redirect you to login after 3 seconds...
Just tested here and its working fine. What browser and OS are you using?
Only interface work I did was the account panel and signup page, rest is the normal RoundCube larry theme. I am more of a backend guy then a frontend guy.
OK, well sorry you see it that way. There's a reason when/if I launch this it will be hosted outside of the US
To the 30 some people who signed up, thank you. Please test the service over the next 48 hours and please submit feedback, bugs and ideas to this posts email.
As stated in the OP I will delete all accounts after that unless you email me stating you want your account to stay active.
You can also delete your account yourself from the account panel if you desire.
Well I am out for the night, thanks faggots for being glorious. I will be back in a week or so to do this again.
OK, glad you got it working
No worries anon, your account will stay alive
Why thank you, but most of it is from RoundCube, I just did some modifications for the signup and account settings area.
It's in testing, and I don't want to fill er up day one. Sorry?
>asks for feedback
>Sorry 4chan, but no more signups tonight!
WAMP + PHP File Browser + Cloud File Storage = Anonymous P2P File Sharing
Just remember to open port 80 and leave your computer running all the time.
Sure you could mask your IP with a domain name for super-anonymity and randomize a proxy gateway but the NDA Terms state explicitly none of these files actually exist as tangible assets and therefore cannot be any sort of legal liability.