Yup, there are several options... And I guess, as everything, it's a matter of taste. I do believe Tox shouldn't be used when looking for privacy and security, and somehow, perhaps due to lack of developers, that hadn't changed for quite some time. FYI, there's a Briar for gnu+linux, though I can't tell if there's a desktop version of it (I do know ubuntu touch makes it available for phones). Unfortunately I don't like status.im, it includes a crypto wallet within, and though it's OSS, it's not FLOSS, which I prefer, having an option. I'm hopping for Jami to get more polished, both on the devices syncing and the UI. I have to see what happens with Briar for gnu+linux, and although I lost hope some time back, I'd really like Tox to improve on its security status. BTW, I used Tox (I really had high hopes on it), and there's no multi-device support. On Android I used both, trifa and antox (it seems antox has been dropped now a days), and on desktop I used qtox. And with no exception, on Android, tox apps, briar, jami, all are power hungry, which is the other thing I'd really like them to improve, but have low expectations given their p2p nature...
je_vv
It seems cool, particularly if already using gpg for signing/encrypting (it uses autocrypt), however, as based on openpg (gpg), it doesn't support (perfect forward secrecy), but it's the same for gpg signing/encrypting.
What is really bad about delta chat, is that it doesn't support (encrypted keys), which to me is really, really, a bad idea. Even openKeyChain (android) manages encrypted keys, as well as any desktop email client supporting gpg, so I really can't see why delta chat wouldn't.
And though email is decentralized by nature, it still requires an email service provider. You might self host one, but not everyone can, so in the end, it's not much different than having another messenger service, such as xmpp. With the advantage those other messengers support voice/video calls, which delta can't, since it's based on email in the end, and also most support perfect forward secrecy (some through double ratchet e2ee, like xmpp+omemo, or through other means, like jami).
Though in the end, if no additional service is wanted, voice/video calls are not required, and no perfect forward secrecy is required, then delta might be an option. Thunderbird used to offer chatting as well, I'm wondering if it was based on delta chat, or the other way around, :(
I think Jami is one of the best contenders, on the serverless p2p sides, :)
Well, not exactly, I believe Tox hadn't moved away from needing a lot of auditing they lack. Seed:
https://github.com/TokTok/c-toxcore
https://github.com/TokTok/c-toxcore/issues/426
https://github.com/TokTok/c-toxcore/issues/210
https://github.com/TokTok/spec/issues/50
What it seems is that tox was left behind, compared to other protocols... But most importantly, that they're really lacking the auditing they need.
I was a fan long time ago, but now I no longer know... Besides tox, there are other p2p ways to communicate, like Briar and Jami. Though Jami doesn't use double ratchet encryption, it does offer e2ee, and it's the only offering multi devices syncing, though it doesn't really work well yet.
The other thing about p2p + e2ee communications, is how impractical they become on mobile devices, whether you keep them deactivated, or you get your device battery drawn in half a day or so... But I'm still hoping for they to become better on both aspects, power consumption and multi devices syncing, supporting both, desktop and mobile devices. In the meantime, I settle down with xmpp, :)
I didn’t like Briar because it isn’t cross platform
Why you think there wouldn't be linux (kernel) upgrades? Are there tweaks not getting upstream? It seems their SW is FOSS, so they could contribute back if they want (though contributing to linux is not as easy, hehe)... And for the distro, besides linux support for the HW, it seems like a really polished plasma mobile (at least both jingos and cutefishos desktops seem Qt based). And plasma mobile on top of manjaro is what pine64 chose for its phone, and I guess tablets. So it seems one might be able to move somewhere else, as long as there's linux support for its HW.
Though I'm betting more on pine64 to be honest, :)
I don't know if Matrix is the solution for everything. There's xmpp, on the side of decentralized+federated options, which seems to me better in terms of meta data leaking, and for self hosting, less resource intensive. And on the side of distributed p2p mechanisms, there's Jami, Briar and others, which should be even better for privacy. The important thing is to make people realize centralized, and not so FOSS solutions (not sharing the actual code being at use, doesn't seem really open source, for example), plus having to trust the service provider, is not private neither secure...
Thanks a lot !
I'm wondering what happened to lrnpg, :( It used to be my preferred printers spooler. At some point genius people on GTK+ decided they would only support cups on GTK applications buttons, and there was no way to print anything from GTK GUIs anymore. I'm not sure if that changed or not, neither if Qt people followed (they end up following on everything, except on CSD, which is what I miss the most from Qt GUIs). There were several great scripts to make lprng great, and it wasn't ever as bloated as cups... Ohh well, I was forced to use cups...
Well, for web frameworks, there's also Flutter. I believe Flutter might be closer to native than Tauri, but to be honest, I'm not using any app based on them...
SMS is not secure by nature, so I barely send anything on SMS. But I still have Silence, and it works just fine. It's been while since there are no new releases though, and if that's a concern, perhaps you can look at alternatives. I'm OK with Silence so far. The only thing I'm missing is syncing with some sort of desktop app, but that's really uncommon to find among SMS clients/apps...
Weird that teams, which is not open source is commented here. Granted Electron is (though the major development comes from Chrome, which is not), but ditching Electron is a good thing on any platform, given its poor performance and resources handling, :) And as mentioned by @[email protected], it's ironic it's been replaced by some form of Edge, :)
yep, but not only decentralized, I remember the issue about a company claiming they could extract Signal messages from the phone, if they were able to overcome the phone encryption (easily if the phone is unencrypted, though I believe LOS AOSP in general don't allow unencrypted phones fro quite some time now)...
I'm wondering if p2p app also suffer the same. I honestly have no clue, but I would guess it should be the same, unless you provide a decrypting password or mechanism any time you open the app, to decrypt keys keeping the contents encryupted (supposing it keeps some sort of agent when opening, so you don't need to keep decrypting the keys while the app is open)... Perhaps they don't do it by default, but AFAIK, briar, jami, antox and triffa were not having content encrypted in the phone, and I'm not sure if there was an option to opt-in for such encryption...
Going back to xmpp, the same mentioned on the post, applies to the desktop apps, for example, I'm not awae of Dino, Gajim or Kaidan encrypting local content... I'm wondering if there are apps doing that by default, and perhaps without opt-out mechanisms...
That's why both, the phones and the desktops/laptops/mobile/etc, require to have the storage encrypted. And even though the storage is encrypted, all private keys (GPG and/or SSH) must be encrypted as well. There are people keeping private keys unencrypted, for convenience I'd guess, but that's really bad if the device keeping them is compromised...
In brief, I'm not aware of apps, phone or desktop, which besides doing e2ee for content transmission, they keep all local content encrypted. Not sure if there are some which can do it by setting some preferences, but if there are, please share which ones, :) Thanks !