But there is one problem: The Markdown renderer can be used to identify users across postmill instances. How?
- Text is sent when you stop typing for about half of second.
- Anything you type, even if deleted, is seen by the server.
The main concern is number 2. The server gets a pretty rich idea of how fast you type, how much you delete text, etc. This is information rich and, on top of text stylometry, provides enough bits to uniquely identify you among Postmill users. So, even though Postmill is open source, a server could run a modified version that records a users typings, for malicious reasons. You can't verify the code on the server is the same as that running in the source.
There's zillions of other attacks that use this kind of information to uniquely identify supposedly "anonymous" people.
Number 3 is a bonus, in case you ever accidentally type your SSN into jstpst. (I know I do, just for fun, and to show the admins I trust them.)
But, to be clear, you don't have anything to worry about.
- If you're on jstpst, you presumably trust the developer Emma, and the admins of jstpst. (I really do!)
- Your browser supplies plenty more information that would de-anonymize you. (Headers, IP address, plus the time of day you're posting.) So...