zre_raft
Signal-Server
zre_raft | Signal-Server | |
---|---|---|
5 | 200 | |
2 | 8,828 | |
- | 0.3% | |
0.0 | 9.8 | |
over 2 years ago | 2 days ago | |
Python | Java | |
MIT License | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
zre_raft
-
Rqlite: The lightweight, distributed relational database built on SQLite
Bob: /status
Etc
https://github.com/adsharma/zre_raft
-
Ask HN: How do we know Signal or Telegram don't store our data on their servers?
If this is a concern for you, consider using the signal protocol without a server.
CLI prototype. Can be generalized into a nice phone app.
https://github.com/adsharma/zre_raft
-
Automated Symbolic Verification of Telegram's MTProto 2.0
Even if the clients are open source and if the verification of the protocol using ProVerif is sound, there is the possibility of a divergence between the "proof" and the implementation.
This is why it's important to have them in the same code base.
I've heard about attempts at inria to implement signal/double ratchet using F-star and verify the correctness. But no such implementation seems to be publicly available.
One of the things I'm interested in is to see if it's possible to bring these verification technologies to more mainstream programming languages such as python.
https://github.com/adsharma/zre_raft/blob/main/zre_raft/zre_...
is something I'd love to verify.
-
Donate to Signal
As a token of support, I implemented signal protocol in 250 lines of python.
https://github.com/adsharma/zre_raft/blob/main/zre_raft/zre_...
Hope more programmers understand how this works, implement it correctly and create apps we haven't thought about yet.
Signal-Server
-
Signal: Keep your phone number private with Signal usernames
> They could at least BSL the server code and allow others to verify the server code and host but not compete.
This is exactly what they do (except they use AGPL): https://github.com/signalapp/Signal-Server
-
Are Signal Notifications Encrypted ?
https://github.com/signalapp/Signal-Server/blob/main/service/src/main/java/org/whispersystems/textsecuregcm/push/APNSender.java for APNs push notification payloads
- Signal Username Commit
-
How to Selfhost Signal Server?
git clone https://github.com/signalapp/Signal-Server.git
- Children’s data is probably being collected by messengers
- Belgorod People's Republic: "We need any fresh information on the enemy (equipment, manpower and the movement of motorized rifle companies that were sent to put out the fire) in this sector. Please only submit when YOU ARE SURE IT IS SAFE TO DO IT. Otherwise, don't post information."
-
Can't link main class in dropwizard project
yes it is available here https://github.com/signalapp/Signal-Server/blob/main/service/pom.xml
-
Signal would 'walk' from UK if Online Safety Bill undermined encryption
You could also start your own signal server, but with blackjack, and hookers
-
‘I will show you how safe Telegram is’
The fact that it locks you into using their servers, does not distribute on F-Droid (only Google Play OR an APK with an insecure update mechanism), and has a completely closed-source "abusive message filter" module server side, that could functionally be used for censorship, storing messages for future decryption, or any other number of nefarious purposes - we have no idea since it's not open source (https://github.com/signalapp/Signal-Server/blob/main/.gitmod...).
Additionally, you cannot distribute branded forks or Signal, and if you do fork it, your fork is not allowed to connect to Signal's "official" OWS (open whisper systems) servers - hostility to federation should be viewed with prejudice and suspicion at the very least, it suggests a vested interest in a single point of failure (or control), which goes against user interests.
Further reading: https://drewdevault.com/2018/08/08/Signal.html
-
"The Signal client is built non-reproducibly, so you actually don't know whether it's running the source code available on Github."
It’s actually the signal server that isn’t reproducible because of the abusive message filter that’s in a private repository. It’s clear as day here: https://github.com/signalapp/Signal-Server
What are some alternatives?
rqlite - The lightweight, distributed relational database built on SQLite.
matrix-docker-ansible-deploy - 🐳 Matrix (An open network for secure, decentralized communication) server setup using Ansible and Docker
Signal-iOS - A private messenger for iOS.
mollyim-android - Enhanced and security-focused fork of Signal.
raft
libsignal-protocol-javascript - This library is no longer maintained. libsignal-protocol-javascript was an implementation of the Signal Protocol, written in JavaScript. It has been replaced by libsignal-client’s typesafe TypeScript API.
k3s - Lightweight Kubernetes
Signal-TLS-Proxy
Telegram-iOS - Telegram-iOS
simplex-chat - SimpleX - the first messaging network operating without user identifiers of any kind - 100% private by design! iOS, Android and desktop apps 📱!
OpenSSL - TLS/SSL and crypto library
ringrtc