Skip to content
/ Murmeli Public
forked from activityworkshop/Murmeli

An encrypted, serverless friend-to-friend messaging application using PGP encryption and Tor's hidden services.

activityworkshop.net/software/murmeli

License

GPL-2.0 license
0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bellyfat/Murmeli

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

72 Commits

images

images

 
 

lang

lang

 
 

test

test

 
 

web

web

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

brainstorm.py

brainstorm.py

 
 

brainstormdata.py

brainstormdata.py

 
 

compose.py

compose.py

 
 

config.py

config.py

 
 

contactmgr.py

contactmgr.py

 
 

contacts.py

contacts.py

 
 

cryptoclient.py

cryptoclient.py

 
 

dbinterface.py

dbinterface.py

 
 

dbnotify.py

dbnotify.py

 
 

dbutils.py

dbutils.py

 
 

fingerprints.py

fingerprints.py

 
 

gui.py

gui.py

 
 

i18n.py

i18n.py

 
 

imageutils.py

imageutils.py

 
 

log.py

log.py

 
 

message.py

message.py

 
 

messageshuffler.py

messageshuffler.py

 
 

messageutils.py

messageutils.py

 
 

murmeli.py

murmeli.py

 
 

pages.py

pages.py

 
 

pagetemplate.py

pagetemplate.py

 
 

postmen.py

postmen.py

 
 

startmurmeli.py

startmurmeli.py

 
 

startupwizard.py

startupwizard.py

 
 

supersimpledb.py

supersimpledb.py

 
 

torclient.py

torclient.py

 
 

Repository files navigation

Murmeli

An encrypted, serverless friend-to-friend messaging application using PGP encryption and Tor's hidden services.

The tool is very much still under development. The code published here currently covers the startup wizard and some components of the Murmeli application itself. This includes the step-by-step tool to check dependencies, set up the database, connect to tor and create the unique keypair for encryption; also the basic management of the contacts list and sending and receiving messages. The rest of the code will follow as it becomes more stable, but feedback is welcome on the code published so far.

More information about Murmeli is published online here: https://activityworkshop.net/software/murmeli/ including explanations of the concepts and ideas, some screenshots and a pair of youtube videos demonstrating setup, establishing contact and exchanging messages. Feedback, criticism and review of these proposals are very welcome.

Put briefly, the aim is to produce a way of sending encrypted messages from peer to peer, without using a server. The communication is done by both sides publishing tor hidden services, and the encryption is done using asymmetric PGP once public keys have been exchanged and verified. Because it runs without a server, peers have to be online at the same time in order to exchange messages. However, mutual trusted peers can act as blind relays for the encrypted messages, thereby reducing latency.

It uses Python3 and Qt for the desktop application, and it stores the messages inside a local file-based database. It should be cross-platform, but until now it has only been tested on linux (Debian, Raspbian and Mint) with all dependencies available from the standard (stable) repositories. Testing on Windows is ongoing.

Please try out the code and report back any difficulties encountered. The tool can be started with:

python3 startmurmeli.py

and the tests can be run with (for example):

    cd test
    PYTHONPATH=.. python3 ssdbtest.py

All feedback and help is very welcome.

Known issues

  • In the startup wizard, it would be nice to be able to select the executable paths with a file dialog.
  • The messages view doesn't yet have any sorting or paging options, it just shows all messages with the newest first.
  • It's not yet clear whether each message has been 'read' or is 'unread'.
  • Search results are not yet highlighted.
  • The punch-card now has added punch (but github doesn't show punch-cards any more).

Given the problems which were caused by the use of Mongo as a database, it was necessary to replace it with a different, simpler solution. This may not provide all the power of Mongo's functionality (in particular its search), but it avoids many of the authentication issues, service starting/stopping issues, cross-platform incompatibilities and resource usage.

  • There's an intermittent "Segmentation Fault" problem somewhere in the Qt library which is proving difficult to reproduce. Hopefully this is gone with the move to Qt5, we'll see.
  • It was necessary to port all the Qt4 code to use Qt5 (in particular the signals- and slots-handling) and also to port the use of QtWebKit to the new QtWebEngine. Unfortunately this means that Murmeli will no longer run on Debian Jessie or on the Raspberry Pi.

Redesign

There is a new branch called 'redesign' which will explore some possibilities for redesigning the architecture to make things more modular. In particular, separate components will be plugged together at runtime instead of being coupled in a single, fixed way. This should get rid of the singletons and make things much more testable. It would also be desirable to plug together a partial system for tests, and for the robot instances a gui-less system without dependencies on Qt.

These changes are being done in a separate branch, as they are causing substantial (but hopefully temporary!) breakage. But this means that they're much less visible here on github.

About

An encrypted, serverless friend-to-friend messaging application using PGP encryption and Tor's hidden services.

activityworkshop.net/software/murmeli

Resources

Readme

License

GPL-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 99.2%
  • CSS 0.8%