Hi,

I’m looking for an instant messaging ( IM ) apps software/protocol that run on Android and computer

and meet the following requirements :

  • Open source !
  • E2EE
  • Messages are send in direct ! (not passing by a server)
  • handle group
  • Truly private ! ( That’s the tricky part )

 

The closest that I’ve found is Briar

  • +can work without internet ! (bluetooth, local wifi, files !)
  • + use TOR
  • - Mutual party have to exchange key (or your can introduce someone)
  • - sending media suck for now, poor image quality
  • - no call or voice messaging

 

I’ve been looking for alternatives:

  • Session
    • Sadly it keep ALL the conversation into server !!! so it’s a no go.
  • speek
    • I didn’t try it yet, any feedback ?
  • simplex
    • it look very promising ! (didn’t tried it yet)
    • + seem to handle multiple profile in one !
    • + do not require that both party send an invitation !
    • ! I didn’t found (yet) if the messages are send in direct or pass by a server…
      It’s not P2P all the messages pass by servers… too bad.

All post about alternatives or experience with the one that I cited are welcome.

  • KDE@monyet.cc
    link
    fedilink
    arrow-up
    3
    ·
    11 months ago

    https://www.securemessagingapps.com/ if you see closely for session , it says that attachments are centralized in their servers in canada

    session tries to promote their oxen cryptocurrency and lokinet which imo crypto currency are used by baiters to bait people into ruining their money

    you dont understand what signal /molly is , do you ? they are centralized server and OP specificially asked not centralized server / server for that matter

    matrix is good but it still need server , plus matrix.org takes quite a bit of metadata

    jami’s good but it uses turn server to verify your name

    briar’s bluetooth functionality can be violated plus no good ui/ux

    • jet@hackertalks.com
      link
      fedilink
      English
      arrow-up
      1
      ·
      11 months ago

      Interesting that you mentioned briar and Bluetooth. What is the issue with Bluetooth?

      • KDE@monyet.cc
        link
        fedilink
        arrow-up
        2
        arrow-down
        1
        ·
        11 months ago

        just search seytonic bluetooth on yt , you can find it preety easily ngl

        • jet@hackertalks.com
          link
          fedilink
          English
          arrow-up
          3
          ·
          11 months ago

          Okay, just on general principles telling me to watch an influencer on YouTube who summarizes an article isn’t a great way to have a discussion.

          But whatever, I think this is the article you’re referring to:

          https://www.theregister.com/2023/12/06/bluetooth_bug_apple_linux/

          Bluetooth keyboard, keystroke injections.

          That’s a generalized Bluetooth issue, not a briar issue. I was just curious if there was a specific briar implementation problem, but if this is the article you’re referring to then briar is fine and hasn’t had a issue.

          • KDE@monyet.cc
            link
            fedilink
            arrow-up
            2
            ·
            11 months ago

            i have an exam tomorrow and as such i wasnt able to show you all the sources

            and no currently htrere is no briar specific problem in my radar “yet”

    • Possibly linux@lemmy.zip
      link
      fedilink
      English
      arrow-up
      1
      ·
      11 months ago

      Session does not have centralized servers in Canada. There are issues with session but centralized servers aren’t one of them.

      • KDE@monyet.cc
        link
        fedilink
        arrow-up
        2
        ·
        11 months ago

        uhh i linked you the website source , no offense but its written there also i hate crypto so maybe thats why i am picking up on those guys specifically i guess

    • Gordon_F@lemmy.mlOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      9 months ago

      jami’s good but it uses turn server to verify your name

      So is it secure ? does that mean you rely on those server to be able to created an account ?