I only feel safe using end-to-end encrypted chatrooms. Currently, niltalk can read every message. At the very least, AES encrypting messages by the chatroom's password will reduce reliance on SSL. But it really should use public key crypto for a key exchange between users. This is what's done by other disposable chatrooms:<p><a href="https://crypto.cat/" rel="nofollow">https://crypto.cat/</a><p><a href="https://ephemeral.pw/chat/" rel="nofollow">https://ephemeral.pw/chat/</a> (Also written in Go)
You can checkout the public repo here: <a href="https://github.com/goniltalk/niltalk" rel="nofollow">https://github.com/goniltalk/niltalk</a>
Good work. Though I have to say I've seen so many of these web-based "secure, private, anonymous" chat services now, I've lost track.<p>What we need is end-to-end encryption and with an open source client that just has to be downloaded and built/installed once (and in such a way that it's verifiably secure, think reproducible builds).
I've been killed kicking around the idea of doing something similar, in go, with the domain I own ChatFor.Us<p>JavaScript encryption, as others have mentioned is the thing I see I was planning that's missing from yours.<p>I'm planning on going a different direction with the domain, this functionality for private messaging for a platform set up for chat rooms as well.<p>Right now though I'm investigating a node.js and rethinkdb infrastructure, but that's also because I will need to persist data somehow.<p>Thanks for building this, at least validates that someone else has similar ideas.
How one runs this? I installed go, and redis. The ran "go get github.com/goniltalk/niltalk", which installed. The previous command created three directories under my $GOPATH, one on which has a 'nilktalk' executable.<p>For someone who has never dabbled with go, how do I run nilktalk after all of the above was done?
This is an awesome service. Thanks for making it available to everyone. Can I ask what the use case is for this? I talk to my friends using FB messenger or Google chat and my customers using a chat widget on our site, so I'm curious when I would use this.
To make it even more instant (in terms of UX), I would display the message immediately so you don't get the little delay. From where I'm at, it's about 250 milliseconds from the point I hit ENTER to when I see the text displayed.
I have opened a room. <a href="https://niltalk.com/r/8CKyw" rel="nofollow">https://niltalk.com/r/8CKyw</a> I am not going to tell the password though. Let's see how long it lasts!
first off... this is great!
I wonder if you could make it so when you create a room, you can attach a message.<p>So for instance i could generate a password then sign it with my partners public key then paste that in the message box so theoretically only they could get access to the channel.<p>and and, create rooms that are meant for someone, so their public key is the index and their private key decrypts the message to get the password into the channel.
<a href="https://niltalk.com/r/h8XLk" rel="nofollow">https://niltalk.com/r/h8XLk</a> pw hnchat<p>don't delete the room! lol<p>edit: this doesn't work on a public forum. some asshole always deletes it.