this post was submitted on 26 Apr 2025
145 points (84.4% liked)

Privacy

39584 readers
202 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

glitr.io

im working on a p2p file transfer app. at the moment its a close-source webapp, but i hope to work towards some selfhosted options as seen on my other projects.

the storage is local-only from your browser/device. so like "the cloud", but the cloud storage capacity is made up of your devices.

ive recently updated the landing page and i hope ive got it as simple as possible to transfer a file from one device to another.

im looking for feedback on the experience.

(Note 1: its still a work in progress. if there is an issue, you can usually refresh the browser and try again)

(Note 2: it seems important to mention: this app is not libre software. This needs more consideration to see if I can align to this. For information and open-source examples of the code in action, take a look at the docs and github for decentralized chat)

top 50 comments
sorted by: hot top controversial new old
[โ€“] Churbleyimyam@lemm.ee 45 points 2 months ago (1 children)

That sounds cool ๐Ÿ‘ If you do decide to make it FOSS I'd be happy to try it out and give feedback.

[โ€“] xoron@programming.dev 11 points 2 months ago (1 children)

Thanks!

Perhaps you'd like to give feedback on a separate but similar foss project: https://github.com/positive-intentions/chat

[โ€“] Churbleyimyam@lemm.ee 4 points 2 months ago

That looks cool - thanks for the link :)

[โ€“] drkt@scribe.disroot.org 38 points 2 months ago

this app is not libre software.

useless

[โ€“] chaoticnumber@lemmy.dbzer0.com 32 points 2 months ago (7 children)

Foss or gtfo. Im not letting a black box see my files. I dont care what you claim, I have been burned before.

load more comments (7 replies)
[โ€“] opi@lemmy.ca 25 points 2 months ago (2 children)

There ain't no trust in this game. If it isn't open source then it's pretty much dead in the water. You can't compete with OSS with closed code in this space, really. There's a few alternatives (and ones that are more mature and proven) that will always be first choices.

[โ€“] starlight_caffeine@feddit.org 3 points 2 months ago (1 children)

Absolutely. Also, it probably is in your best interest to advertise details of your cryptography. What data is shared with whom, what algorithms are used, etc.; if you're doing something more exotic / low-level, Alice-Bob diagrams can be helpful. I'm not sure what other people do but when looking at security-sensitive software, the first thing I do is look for the cryptographic setup and research it.

[โ€“] xoron@programming.dev 2 points 2 months ago* (last edited 2 months ago)

I'm in the process of rebranding and moving domains, so the documentation links are broken. You can try the search. it seems to work reasonably well. A good place to start could be from here:

https://positive-intentions.com/docs/research/authentication#authentication-sequence

Feel free to reach out for clarity on anything.

[โ€“] xoron@programming.dev 1 points 2 months ago

Thanks.

I have a similar open source project. https://github.com/positive-intentions/chat

My general thoughts are that it isn't sustainable. While it clearly isn't a contender in the messaging-apps market, I think it demonstrates a unique concept in how it works as a webapp.

[โ€“] warm@kbin.earth 19 points 2 months ago (1 children)

So it's like croc, but closed source?

[โ€“] xoron@programming.dev 4 points 2 months ago (1 children)

I have a weird setup with open and closed source.

I have open source examples of this code in action. If interested: https://github.com/positive-intentions/chat

[โ€“] warm@kbin.earth 1 points 2 months ago

I understand you want to make money from this, but for privately sending files, the much more mature and free open source projects will be greatly preferred. So I dont see this app going anywhere. Closed source doesn't lend itself to privacy all that well. Gl.

[โ€“] butsbutts@lemmy.ml 18 points 2 months ago (10 children)

strong title

  • not open source
  • similar to other free software but might have some difference (webrtc?)
  • what is the market for that target user (doesnt seem include lemmy audience) who needs that difference
load more comments (10 replies)
[โ€“] nyankas@lemmy.ml 11 points 2 months ago (1 children)

Cool project, but it seems to be very similar to PairDrop with the major downside of not being open-source. What would be the advantages of using this project over existing FOSS-solutions?

load more comments (1 replies)
[โ€“] Thedogdrinkscoffee@lemmy.ca 9 points 2 months ago (1 children)

How is this different than FTP?

[โ€“] xoron@programming.dev 3 points 2 months ago

This is using the WebRTC protocol. As a webapp it's immediately good to go, there isn't a need to run something like a FTP server.

Of course limitations apply like sending larger files nukes my ram... But I after it's sent, it seems to settle down.

[โ€“] phoenixz@lemmy.ca 9 points 2 months ago* (last edited 2 months ago) (3 children)

If it's not open source then forget about it, it won't go anywhere. I've had that stance of all software for decades now, but in the last few years boat loads of others have caught on.

Its simple really. If the software is open source (ALL of it, servers, clients) we can all check it and all be sure it does what is advertised. If not, we have no way of knowing what you're doing, especially on the server side of things, and if we've finally collectively learned on thing, it's that we can't trust companies on the server side of things. Data WILL be used in other ways than advertised.

Since this software is supposed to be a security product, trust is paramount, and it's bot there at all. Unless this product would be open source I won't even look at it.

load more comments (3 replies)
[โ€“] als@lemmy.blahaj.zone 7 points 2 months ago (2 children)

I use magic wormhole for these sorts of things. There are many FOSS clients and the protocol is open. Here's my android client of choice and my Linux client of choice. There are also many options of other GUI and command line implementations.

[โ€“] Psyhackological@lemmy.ml 3 points 2 months ago

By the way this is a maintaned fork of your Android Client: https://github.com/iyox-studios/iyox-Wormhole

load more comments (1 replies)
[โ€“] Zerush@lemmy.ml 7 points 2 months ago* (last edited 2 months ago) (1 children)

From Switzerland, Sharrr, OpenSource, encrypted EE2E, no knowledge, 10GB/file, one time download. From the same author, https://scrt.link/, for share autodestructive encrypted notes.

[โ€“] xoron@programming.dev 1 points 2 months ago (1 children)

Nice! Can you tell me more about zero-knowledge encryption?

In my app I'm using asymmetric encryption to exchange a symmetric encryption key (Diffie-helman). I'm curious about other approaches for P2P authentication.

[โ€“] Zerush@lemmy.ml 2 points 2 months ago* (last edited 2 months ago)

it means exactly this, the server hasn't any knowledge about your uploaded files or encrytion key. It's very save, but not really P2P, because of an server in the middle where the files are stored until download. Real P2P is eg, Croc, which transfer files direct from one PC to the other, without any server in the middle, you send an link which pointed direct to the files in your PC. The advantage is that you have anytime full control over the files and with this no limits on filesizes, but maybe a drawback is, that downloads are only possible, when your PC is online, on the other hand, this permits also to interrupt downloads, simply going offline, (it's FOSS)

[โ€“] fmstrat@lemmy.nowsci.com 7 points 2 months ago (2 children)

Closed source and a crowded market.

Sorry to say, but I don't think you understand the audience for this.

[โ€“] xoron@programming.dev 2 points 2 months ago (1 children)

If interested in how it works and to see code examples, this project is based on my beefier open-source code seen here: https://github.com/positive-intentions/chat

[โ€“] phantomwise@lemmy.ml 1 points 2 months ago (1 children)

He probably means that people who want extreme privacy and would use such a tool would also not trust anything close source, even if it's based on an open source project

[โ€“] xoron@programming.dev 1 points 2 months ago

I mean to draw attention to the open source code in such a case.

load more comments (1 replies)
[โ€“] Ohh@lemmy.ml 3 points 2 months ago (1 children)

I need this. But ffsend + encrypted zip file works most of the time. Or onionshare.

Not sure I see how this helps.

[โ€“] xoron@programming.dev 1 points 2 months ago

For me, it's an achievement for it to be comparable to those tools. I aim to get to a similar feature set and make the user experience intuitive.

[โ€“] andMoonsValue@lemmy.world 3 points 2 months ago (1 children)

This is really cool. What kind of cryptography are you using?

load more comments (1 replies)
[โ€“] Melvin_Ferd@lemmy.world 1 points 2 months ago (1 children)

Very cool this is similar to dibbles. How is it different?

[โ€“] xoron@programming.dev 1 points 2 months ago (1 children)

I haven't heard of Dibbles. Can you point me to their site?

[โ€“] Melvin_Ferd@lemmy.world 4 points 2 months ago (1 children)

I'm sorry I lied. I made it up. I just wanted to fit in with everyone else shitting on the person creating stuff.

Just use OnionShare

load more comments
view more: next โ€บ