Solun · Learn

Secure Paste Sharing

A practical guide to secure paste sharing, when to use it, and how to reduce leaks.

Secure paste sharing means limiting who can read a message and for how long.

Solun focuses on short lifetimes, strong encryption, and deliberate reveals so secrets do not linger.

Security goals

Start by minimizing retention and exposure. The shorter a secret lives, the less likely it leaks.

Use encryption, expiration, and burn after read together to reduce risk from storage, logs, and forwards.

Quick vs Secure mode

Quick mode encrypts on the server for speed. It is convenient, but the server holds the key.

Secure mode encrypts in the browser. The key stays in the URL fragment, so the server never sees it.

Expiration strategy

Choose the shortest TTL that still allows the recipient to act. One hour is ideal for credentials.

If you must use a longer TTL, keep the content low risk and avoid reusing the same link.

Sharing hygiene

Send the link in a different channel than the context. This makes accidental leaks less likely.

Warn recipients about link previews and prefetching. Ask them to open in a browser they control.

Related guides

End-to-End Encryption BasicsBurn-After-Read and ExpirationHow to Share Secrets SafelyThreat Model for Private Sharing
Back to Solun