I was just alerted to this thread by Anarcho47 and have read every word, except the parts that were removed by their authors. I don't spend a whole lot of time on the forums, because I am almost always alerted to important threads on the main site. Every message that comes in from the contact us link gets read and 90% get replied to, so please feel free to contact me with any concerns you have. There were a couple of specific questions I'll address first. Passwords are hashed twice using sha256, once with a global salt and again with a user specific salt. Also, our servers are fully up to date and updates are checked for daily. How we handle addresses is explained in the buyer's guide. Your concerns are completely valid. It is absolutely terrible that there was an injection vulnerability in the search bar, and an XSS vuln in the subject line of the messages. Thankfully they were discovered by someone benevolent and we could take action to remedy them. There are no known holes in the site at the moment, but that doesn't mean they aren't there. I accept my limitations and the discovery of these holes was further confirmation that for Silk Road to grow and thrive, people with far more expertise need to be brought in. There's another thread about hiring, but long story short, we now have two brilliant IT professionals with more than 25 years of combined development and administration experience who I trust and who are committed to making our site as secure as possible. Development of a new and much improved back-end is underway, and an audit of the current code will begin this coming week with a full re-write coming thereafter. I just want to reassure you that I am doing everything I can to fulfill on your expectations of me and the site and I apologize for where I have come up short. Thank you for the trust you have put in me. I will not stop fighting this fight.