Peersuite p2p encrypted discord alternative
-
Rocket chat needs a server, and doesn't e2e encrypt by default are this biggest differences.
Ok, understood. So if you're not online, you pretty much lose messages, or are they cached and the next time the sender is online you get them?
My use case is a kid using a minecraft server and wants to talk to his friends, and we're using mumble now, but they want "discord" and they want things like plugins that allow mgmt from the discord channels, which I would be willing to try to develop, but the model pretty much requires a server to be online.
In general, I'm trying to make a small internet for my kids and their friends to have "normal" internet experiences without being on the wider internet. No youtube, but pinchflat -> jellyfin. No discord, but mumble. No google drive, but nextcloud.
-
@jerrimu @jagged_circle lol!
I read this as a very diplomatic way of saying, "Why.. would you do that? Don't do that."
Yes lol.
-
Does it use double ratchet?
No, just AES-GCN encrypted WebRTC
-
A couple of questions. If I was trying to keep a consistent workspace to build a community around, would it be persistent after the host logs off, and are their tools to protect it from trolls etc who discover it a workspace?
It would not be persistent. You can download a workspace to an encrypted file. I have plans to make a node.js server for workspace permanence.
-
That sounds pretty cool! You have listed a lot of great privacy features. I'm sure you know they will likely restrict adoption, because Grandma probably won't be able to figure it out.
It does look neat and I will give it a try.
I tried to make it super easy, but I'm not a UI guru or anything.
-
Ok, understood. So if you're not online, you pretty much lose messages, or are they cached and the next time the sender is online you get them?
My use case is a kid using a minecraft server and wants to talk to his friends, and we're using mumble now, but they want "discord" and they want things like plugins that allow mgmt from the discord channels, which I would be willing to try to develop, but the model pretty much requires a server to be online.
In general, I'm trying to make a small internet for my kids and their friends to have "normal" internet experiences without being on the wider internet. No youtube, but pinchflat -> jellyfin. No discord, but mumble. No google drive, but nextcloud.
That'as a noble endeavour, IDK if peersuite is the best app for that at the moment.
-
Yes lol.
So basically you're repeating mistakes made by matrix
-
So basically you're repeating mistakes made by matrix
There is literally no way to do performant e2ee at large scale. e2ee works by encrypting every message for every recipient, on the users device.
At 1000 users, that's basically a public room.
-
There is literally no way to do performant e2ee at large scale. e2ee works by encrypting every message for every recipient, on the users device.
At 1000 users, that's basically a public room.
@moonpiedumplings @jagged_circle I read your initial question as 1,000 active chat *rooms* (with some large number of users for each), which.. seems excessive. That's what I was referring to.
1,000 individual private 1-on-1 chats (or group chats with 2-3 users), if that's what you meant (and especially over a long period of time, with lots of inactive chats), seems like a more common scenario*. If that was your question, I apologize.
-
@moonpiedumplings @jagged_circle I read your initial question as 1,000 active chat *rooms* (with some large number of users for each), which.. seems excessive. That's what I was referring to.
1,000 individual private 1-on-1 chats (or group chats with 2-3 users), if that's what you meant (and especially over a long period of time, with lots of inactive chats), seems like a more common scenario*. If that was your question, I apologize.
@moonpiedumplings @jagged_circle
* I can't speak on behalf of the author, but I could imagine handling it by simply not decrypting _everything_ on startup, and only decrypting an older chat if you click on it or attempt to run a search on everything. Although for a search, I would expect some kind of hashed (and of course encrypted) database that allows a quick search of all prior messages. -
This space definitely needs competition
I like Matrix, but I do run into issues, like messages not being decrypted even though I verified my session. The average user is not ready for it. Or rather, it's not ready for the average user
EVERYTHING is encrypted in peersuite, it's mandatory. I tried to make the UI intuitive and simple, but IDK if I'm great at it.
-
Hey everyone.
I make Peersuite, an opensource free communication platform.
It's private by default, there's no sign-in or email collection.
It's peer-to-peer, there's no server, after discovery you are connected directly to your friends my AES-GCN encrypted WebRTC channels. It forms a mesh and identifies superpeers. Because there is no server, in order to save your data between sessions, you can download your workspace into a password encrypted file.
Happy to answer any questions.FEATURES:
chat with images, PMs, channels, and file send
group audio/video calling
screensharing
kanban board
whiteboard for diagrams/flowchartswith PNG export
collaborative document editing with formatted PDF exportThe best way for self hosting is docker, its on dockerhub as openconstruct/peersuite. You can also download desktop versions from the github or use on the web at https://peersuite.space/
@jerrimu A usability suggestion, having just tried it out - save the username and room password in the export file to make it more like a traditional chat experience. So when you import the chat file, the username and password are pre-populated along with the room name.
-
@jerrimu A usability suggestion, having just tried it out - save the username and room password in the export file to make it more like a traditional chat experience. So when you import the chat file, the username and password are pre-populated along with the room name.
That's a really good idea! Now in the roadmap.
-
EVERYTHING is encrypted in peersuite, it's mandatory. I tried to make the UI intuitive and simple, but IDK if I'm great at it.
wrote on last edited by [email protected]but IDK if I'm great at it.
Simples is best, hands down. Maybe some tooltips wouldn't go amiss on your demo page?
But as someone else pointed out, a link to the GitHub either in the header or footer of your demo page would be ace too. It was the first thing I looked for this morning seeing your posts and had to come back to the comments to find it
Keep up the great work, and I shared between our nerd group and they have eyeballs on it. Seems a no brainer for teams collaborating online where we've got used of shitty Slack
Dicksword whatever.ninjaedit: if you want some help Android app wise, give us a ping. I have a few bored devs lurking looking for app ideas
-
@moonpiedumplings @jagged_circle
* I can't speak on behalf of the author, but I could imagine handling it by simply not decrypting _everything_ on startup, and only decrypting an older chat if you click on it or attempt to run a search on everything. Although for a search, I would expect some kind of hashed (and of course encrypted) database that allows a quick search of all prior messages.Honestly I would just copy what matrix did in 2.0
-
That's a really good idea! Now in the roadmap.
I feel like saving the password in the export is a bad idea if security is your thing
-
I feel like saving the password in the export is a bad idea if security is your thing
The export is password encrypted already. I'll see if there's a good way to do it.
-
but IDK if I'm great at it.
Simples is best, hands down. Maybe some tooltips wouldn't go amiss on your demo page?
But as someone else pointed out, a link to the GitHub either in the header or footer of your demo page would be ace too. It was the first thing I looked for this morning seeing your posts and had to come back to the comments to find it
Keep up the great work, and I shared between our nerd group and they have eyeballs on it. Seems a no brainer for teams collaborating online where we've got used of shitty Slack
Dicksword whatever.ninjaedit: if you want some help Android app wise, give us a ping. I have a few bored devs lurking looking for app ideas
I think I'm going to go the route of buildind a PWA first then using bubblewrap to generate an APK. I tried capacitor, but audio/video didn't work, it has meh WebRTC support.
-
The export is password encrypted already. I'll see if there's a good way to do it.
Fair enough, it lowers the risk. Are you doing key stretching? Ie. X rounds of pbkdf or whatever it's called?
-
I feel like saving the password in the export is a bad idea if security is your thing
@martinb @jerrimu I wrote the initial comment with the idea of saving just the username, but then figured "why not?" for the password. If the password is saved in browser memory (and based how I *think* the app functions, it would have to be), then it wouldn't be much different than saving a password in firefox's password manager (for example). Assuming reasonable crypto usage by the app, of course.
