Sorry about that, a more serious answer: There are already hundreds of thousands of webhosts who offer Javascript hosting - what makes this one any less safe?
The checks have changed significantly since we last spoke! Right now there are ~30 conditionals as it relates to determining if an e-mail is legit, and I imagine this will increase and be tweaked over time!
You send an email to this service to post a blog entry, and this service exposes your name and email address (as obtained from the email headers) to everyone! That’s a huge privacy disconnect in a world where exposed emails can cause a lot of problems, and more so for non-technical people, which this service intends to make things easy for.
One look at the homepage of this service shows all the email addresses used by the users to post. Since the service also claims (in another comment here) that spoofed email addresses won’t work, users must use a non-personal address and name if they don’t wish to expose their information publicly.
This site isn't an anonymous posting forum. If you want to be anonymous you can use an anonymous e-mail account, but for everyone else it's to speak with your name and your voice.
What you're looking for is a different service with different goals, and that doesn't make this one worse at what it is trying to do.
No need to get defensive. You have basically created a spam attractor for non-technical users by saying that this is suitable for “Grandpa and Grandma” and making them a lot more vulnerable to email scams.
Writing in one’s voice doesn’t need to have an email address attached with it. I can understand using the person’s name. You could do better by not displaying the email address or obfuscating it. Or you could remove that “Grandpa and Grandma” part from your description and say that it’s for those who understand how email addresses in public can get misused.
This isn't defensive. I'm simply stating that anonymous posting is different from named posting. That said, I will be adding a way to do anonymous posting and unlisted posting today. :-)
Named posting doesn’t need to expose one’s email address. You could just use the name. That was my point. There is no need to expose anyone’s email address to the world, be they technically knowledgeable people or otherwise.
I still believe your site is harmful to users unless the default is publishing with just the name and no email address, with an option of publishing with the email address if someone really wants to. The current defaults seem inverted.
I’ll stop with this comment since I’ve said enough.
Unlisted posting is complete. If you send to topic.unlisted@hackerspring.com (or anytopic.unlisted@hackerspring.com) the post will not show up in new/popular/categories. However, it will still show up in your user view.
If you want it to be visible with a link only and not even show on your user page, you can send to anytopic.linkonly@hackerpsring.com.
And while happily displaying the sender email publicly, it gives no indication that someone has embedded (potentially malicious) javascript in a post (why that is even allowed is another question), or that some expected 'blog posts' are actually unexpected redirects to external sites that can contain even more malicious/illegal content.
Leaving aside that a site like this is so wide open for abuse of all kinds it won't last five minutes, I don't even see the advantage of submitting a form at an email provider over simply submitting a form directly on the site.
We offer a public API with no access, so there is limited risk and, in addition, we do not use cookies. There are some dangers, but it's really limited in this context!
An attacker can just as easily perform the same attacks with free webhosting on any of the thousands of free webhosts!
There was a service a while back - I cant recall what it was - but it would send you a question via email asking what you did today and you would reply to it and it would keep a history...
I cant recall what that was now though.
I really like this though.
---
Custom URLs?
I am going to try this right now. What happens....
WAIT A MINUTE. HOL' UP. SOMETHIN AINT RIGHT.
This exposes your email to anyone on Hackerspring. and allows you to effectively non-anonymously post to a forum, whereby your post is intermixed with everyone elses?
Your new page has been created under Hackerspring.com/phlux!
Any emails you send to phlux@hackersping.com will now be visible at hackerspring.com/phlux
Please enjoy your nano blog! Also, your email will never be visible, unless YOU put it into the body of your email-post sent to Hackerspring, so pllease be careful of signatures.
If you wish to delete a post at any time, simply send an email - just as you would a post with "Delete [POSTID]" as the subject of your email!
Please be sure to adhere to our TOS regarding harmful content posts.
----
I dont want all my posts intermingled with others.
You can now send to tech.unlisted@hackerspring.com and it will not show in the public popular/new/category view. However, it will still show in the view of all posts from your e-mail address.
If you want it not to show up in your user view and only with a link, you can send to tech.linkonly@hackerspring.com.
> Im confused - so my collection of posts is contained under "category +me"
Yes
> Does it post inline images from within the body of the email? I must have missed that part.
Yes! You can include anything you can with HTML and e-mail. You can even include a .js or .css file!
> By your definition, HN would be a blog - as I can post to HN, and it just shows up under /new I just happen to be the poster...
With Hacker Spring, it's both a blog and an aggregator. HN can be used as a blog by doing a text post! :-). Hacker Spring just has a bit more features to customize your site since it's fully geared toward this.
> You can delete emails by just sending $DELETEME.
Does that still fit with the view that this is suitable for “Grandpa and Grandma” if it exposes one’s email address? Shouldn’t a service intended for non-technical audiences take more care in not exposing the users by default?
On consideration, I would prefer if it worked without js. Since the whole site requires js to load content, clicking on someone's post that has js that effs with my computer is something I prefer to avoid.
At the very least, label a post that has js so I don't click it, if you are going to require the site to function with js.
Is it really necessary that every link opens in a new tab?
There is no edit, but you can delete and repost! Just go to your sent mailbox and find the email, click on the mail you sent us, and hit reply. Then type "$DELETEME" as the first text in the body.
When the submitter emailed to ask why that got flagged, I said it was probably because of the baity name, and if they changed that to something neutral we'd allow the repost.
Wrong. It's a repost of a flagged submission that was flagged due to the nature of its name and reposted. The real hacker community loved the podesta pizza name. HN not so much so I renamed it to Hacker Spring!
Can you please not post in the flamewar style to HN? We're trying for something different than that here, and we need you to get on board with the intended spirit of the site in order for that to work: https://news.ycombinator.com/newsguidelines.html.
We don't look at this as a moral issue, by the way. It's just necessary if HN is to achieve its original purpose, which is to remain interesting as it grows. The alternative is to burn to a crisp, and we'd prefer not to:
The real hacker community doesn't exclusively hang out on 8chan (and wherever people wound up from there), you know. Honestly, in Europe, it's largely a bunch of antifa types.
You can send an email to anything@hackerspring.com and it will automatically create a post based on your Subject and Body of your e-mail!
You can also attach javascript, css, or html files to make a full website that is hosted free by just sending an email!
I hope you guys like it!