XTN-SECRETS

How does it work?

Simple in 3 steps:

1. Paste your secret text (password, API key, etc.) in the box above
2. Click "Create link" to get a unique URL
3. Send this URL to the recipient (e.g. via email, chat, or messaging app)

When the recipient opens the link, they can read the secret once. After that, it is gone forever. If someone tries to access it again, they will see an error, so you know if someone else intercepted it.

Why use this instead of email?

Sending passwords via email is risky. Emails are usually stored unencrypted on mail servers, in your sent folder, and in the recipient's inbox. Anyone with access to these systems can read them, even years later.

With xtn-secrets, the message is encrypted and can only be read once. After that, it is deleted automatically, leaving no trace.

Security Tips

• Never send username AND password in the same message
• Send them separately (e.g. username via email, password via xtn-secrets link)
• The link expires after 100 days if not accessed
• Always use a secure channel to send the link itself

Your data is safe!

All connections are encrypted (HTTPS). Your secret is stored encrypted on the server. The decryption key is only in the URL, never stored on the server. There are no logs. Without the URL, the secret cannot be decrypted.

About this service

This is a self-hosted instance of read2burn, operated by Christian Lepuschitz. The domain secrets.vie.xtn.sh is part of my personal infrastructure at xtn.sh.

Source code available on GitHub (based on the open source read2burn project).