Someone in another thread mentioned that privnote is an additional layer of trust with no purpose. I think this statement deserves a full thread. Privnote decreases your security versus sending your address in plaintext. The entire design is flawed from the bottom up. Now your sensitive information is on the privnote server. They can access it. You send the link to it on the SR server. Anyone who pwns the SR server can intercept the non-encrypted privnote url and do a MITM attack, being the first person to read the original message they can then make a new message that copies it and forward THAT url on. You have added absolutely no security and have reduced your security by sharing your address and order with privnote for fuck knows what reason, because they have a catchy name and people want to play spy with "self destructing" notes I guess. If you want to play spy you should use real tools like GPG that actually work for their intended purpose when used correctly. Failing that, you should just send your address in the clear because at least then only someone who pwns SR can intercept it, and SR is a hidden service drug forum running on an at least semi-secured server.