GpgFrontend
mastodon-e2ee-specification
GpgFrontend | mastodon-e2ee-specification | |
---|---|---|
13 | 11 | |
424 | 195 | |
- | - | |
9.4 | 10.0 | |
10 days ago | over 1 year ago | |
C++ | ||
GNU General Public License v3.0 only | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
GpgFrontend
- GpgFrontend: Open-source, Cross-platform GnuPG Front end
-
My PGP/GPG Public Keys
- GPGFrontEnd - https://github.com/saturneric/GpgFrontend - Gpg4Win (For Windows users) - https://www.gpg4win.org/download.html - Kleopatra (For Linux users -> Best-suited for KDE users) - available in most distributions' package repositories
-
Mastodon's Privacy: Who actually holds your data in Mastodon
If there is enough text space for OpenPGP payloads (they can get quite large), you could secure your privacy by using this tool https://github.com/saturneric/GpgFrontend and copy and paste that into Mastodon chats.
-
Twitter Working on End-to-End Encryption for Direct Messages
Use this https://github.com/saturneric/GpgFrontend on top of it, then they need a $10 wrench to get the private key. This way you and only you have the private key.
-
gpg4win command line automation
In my experience, I have not seen much luck in automating GPG on the Windows platform. Instead, almost all automation is either done via GPG on Linux. GPGFrontend might be your answer, and it has seen relatively recent updates.
-
Is there a FOSS app for encrypting files that works between Android and Windows?
You can use GPG on every platform. On android, there is OpenKeyChain and on Windows you can use something like this. GPG keys can also be used to sign stuff. You can upload them to key-servers and sign files and emails with it.
- GpgFront End – A Free, Open-Source, Powerful, Cross-Platform OpenPGP Crypto Tool
-
Reddit is actually the worst social media with Facebook in term of privacy.
If you want to digitally sign and/or encrypt messages on such a forum you can use a tool like https://github.com/saturneric/GpgFrontend
- Take the initiative to protect privacy in your own hands
- Share an easy encrypt&decrypt tool
mastodon-e2ee-specification
-
The Apes Shitstorm Shelter (ASS) - the censorship state of reddit and subreddits - Part 2
No end to end encryption in mastodon: https://github.com/soatok/mastodon-e2ee-specification
- Mozilla’s setting up shop on Mastodon and trying to reinvent content moderation
- Discussion Thread
- Is that all you need?
-
Towards End-to-End Encryption for Direct Messages in the Fediverse
What Moxie wrote was about his decisions with Signal. It's not that relevant to this post for distinct two reasons:
1. One of the stated anti-tenets of what I'm proposing is competing with Signal. https://github.com/soatok/mastodon-e2ee-specification#anti-t...
2. Cryptography has matured greatly since Moxie wrote that post.
I feel confident about rolling out a v1 E2EE protocol for the Fediverse in 2023, and then a v2 in 2024 or later.
Migration is a two-putt, but it's tractable. I've worked on similar message format migrations before.
1. Roll out read-only support for v2.
2. Enable writing. Now people can start using v2.
3. Later, once the new version is ubiquitous for the scope of your concern, disable v1.
It's not as fast as if you own the whole stack (like Signal does).
-
AMA with Eugen Rochko, Founder and lead developer of Mastodon, a decentralized, open-source social media platform based on open web protocols. Ask your questions here!
This is a very hard problem to solve. I know it's being worked on by some smart people though, see https://soatok.blog/2022/11/22/towards-end-to-end-encryption-for-direct-messages-in-the-fediverse/
-
End-to-end encrypted messages need more than libsignal
Related: https://soatok.blog/2022/11/22/towards-end-to-end-encryption...
-
tankies mad about sites that actually have ToS
The good news is that because Mastodon is open source, and development is done in the open, anyone with the needed skills and interest could implement it right, and there is a project spearheaded by cryptography experts to do just that. https://github.com/soatok/mastodon-e2ee-specification
What are some alternatives?
opmsg - opmsg message encryption
mastodon - A glitchy but lovable microblogging server
scrypt - The scrypt key derivation function was originally developed for use in the Tarsnap online backup system and is designed to be far more secure against hardware brute-force attacks than alternative functions such as PBKDF2 or bcrypt.
mls-architecture - MLS architecture
EncryptPad - Minimalist secure text editor and binary encryptor that implements RFC 4880 Open PGP format: symmetrically encrypted, compressed and integrity protected. The editor can protect files with passwords, key files or both.
user_pinger_2 - Bot + accessory services for pinging groups on a subreddit
plugins - Officially supported Psi plugins
joinmastodon - The official Mastodon project homepage
age - A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
mastodon-block-tools - An attempt to list as many different projects/tools/scripts related to Mastodon & fediverse block management as possible
rnp - RNP: high performance C++ OpenPGP library used by Mozilla Thunderbird
documentation - Mastodon documentation