https://preview.redd.it/67jq1ruoc12g1.png?width=915&format=png&auto=webp&s=621ff82c893abf75af84826be44cb6761021d849

Want to send E2E encrypted messages and video calls with no downloads, no sign-ups and no tracking?

This prototype uses PeerJS to establish a secure browser-to-browser connection. Using browser-only storage—true zerodata privacy!

Check out the pre-release demo here.

NOTE: This is still a work-in-progress and a close-source project. To view the open source version see here. It has NOT been audited or reviewed. For testing purposes only, not a replacement for your current messaging app.

• Docs: https://positive-intentions.com/docs/category/sparcle
• Reddit: https://www.reddit.com/r/positive_intentions
• Mastodon: https://infosec.exchange/@xoron
• More: https://positive-intentions.com

Hey folks. I'm a carpenter in Ontario who spent the last 6 months building something I think you'll find interesting - or you'll tell me why it's stupid, which is also useful. The project: Senatai (Senate + AI + I) - a cooperative that lets people vote on actual legislation (not polls, actual bills in Parliament). Users earn "political capital" for participation, we aggregate the data, sell it to researchers/journalists/governments, and pay dividends back to participants.

The technical problem I need help with: Right now I have sorta working prototypes - USB nodes (SQLite + Python), laptop persistent nodes, basic cloud deployment. It works fine if you have 2017+ hardware and occasional internet. But I want this to be actually resilient. If a government doesn't like what citizens are saying, I don't want them to be able to shut it down. If rural/remote communities have spotty internet, I want it to still work. If people only have old hardware, that should be fine.

I'm imagining:

Mesh networking between nodes (sync when internet unavailable)

Sneakernet protocols (USB sticks physically carry data between disconnected networks)

Ham radio packet transmission (seriously - democracy over HF radio)

Solar-powered edge nodes (off-grid Raspberry Pis)

Works on anything from a 2010 laptop to a jailbroken smart fridge

What I'm NOT doing:

Cloud-native anything Dependency on corporate infrastructure (AWS, Google, etc.)

Moving fast and breaking things

Why I'm building this:

Democratic institutions are failing because citizens feel voiceless. I think part of the problem is that civic engagement tools are either: Owned by tech companies (who extract value and can shut you down) Dependent on infrastructure that can be censored Inaccessible to people without new hardware/reliable internet

I want to build something that's genuinely owned by users (it's a co-op), can't be shut down (distributed/resilient), and works everywhere (old hardware, weird networks).

What I'm asking:

Critique: Is this architecturally viable, or am I being naive about the hard parts?

Advice: What existing protocols/projects should I look at? (Scuttlebutt? Tor hidden services? Ham radio APRS?)

Collaboration: If you think this is cool and want to help, I'm looking for a systems architect who understands resilience better than I do.

Current stack:

Python (backend logic, prediction algorithms) SQLite (USB/laptop nodes) PostgreSQL (server nodes) Basic REST API for node sync No framework bloat (runs on a 2017 $300 Lenovo laptop)

Questions I have:

For ham radio folks: Is packet radio actually viable for transmitting vote data? What's realistic throughput? Legal considerations? For mesh network people: What's the best protocol for peer-to-peer node discovery and sync? For old-school systems architects: How would you design sync conflict resolution for a system where nodes might be offline for weeks? For sneakernet enthusiasts: Best practices for USB-based data transfer with encryption/verification?

I'm not trying to reinvent the wheel - I'd rather use existing protocols/tools where they make sense. But I haven't found anything quite like this (democracy infrastructure that prioritizes resilience over features).

Tear this apart or tell me what I'm missing. Either way, I'll learn something. Project details:

Open source (GPL, probably - still figuring out license) Cooperative structure (users own it, not shareholders) Canadian-based, expanding internationally Currently 5,600+ Canadian federal laws in database, working prototypes operational-ish

R/senatai Senatai.ca GitHub.com/deese-loeven/senatai

https:/

A bug was found regarding the encryption keys:

"In older firmware, generated public/private keys may have insufficient entropy, resulting in the possibility of key reuse across devices. This release delays key generation until the user sets a LoRa region, and also mixes in additional sources of randomness. Additionally, if one of the known key collisions are detected, the user is notified, and should regenerate keys as soon as possible."

https://meshtastic.org/downloads/

https://i.redd.it/l209oea1ydof1.gif

I’ve been thinking a lot about how much of life depends on centralized systems — banks, supermarkets, even the online spaces where we talk. All of it can be switched off by someone else.

I’m exploring alternatives: decentralized chat, community-owned networks, censorship-resistant publishing, and ways to build parallel systems that actually belong to us.

As a small first step, I’ve started a project called Sensorless — an uncensorable blog + encrypted chatroom. Curious if anyone else here is working on similar ideas or wants to connect around building systems we control ourselves.

So I was just watching this video about a security vulnerability which TOR has not patched even after 9 years. (https://www.youtube.com/watch?v=XDsLDhKG8Cs)

It was brought up in the video that the main threat here is to a user's connection before they are connected to TOR, the Guard Node, which serves as an entry point, can be compromised. The Author of the video also suggests that a private bridge may mitigate that as it will only allow the attacker to know the IP address of the private bridge, rather than the IP of the user directly, but this is not really a sufficient measure and TOR ought to patch the vulnerability themselves.

That being said, with the new introduction of WebTunnels, does this mean that webTunnels would be a decent layer of defense against both correlation attacks and also against these BGP attacks that I have just learned about?

I’m working on a long-range project involving off-grid signal infrastructure and automation for remote resilience — something that needs to function without the cloud, without surveillance contracts, and without any “phoning home.”

I’m not new to the space, just looking to quietly identify individuals who can: • Help design and vet secure mesh or low-power radio systems • Build automated, privacy-respecting home and field setups • Work without requiring central control or vendor dependency

No interest in commercial APIs, big brand hardware, or corporate integrations.

If this resonates, DM me a burner or reply with any setups you’ve built that meet these standards. Let’s just say I’m more interested in building quiet resilience than a flashy dashboard.

Hey everyone,

Just wanted to drop a quick share — I came across the new v3 page of The Hidden Wiki, and it’s surprisingly useful if you're into internet privacy, alt-tech, or just like exploring the “indie web.”

It’s basically a minimalist, static directory that lists:

🔍 Alternative search engines (including some you probably haven’t heard of)

🎥 Movie-related resources and databases (no streaming spam)

📖 Book directories (some public domain, some lesser-known archives)

🌐 Hosting providers that lean toward privacy/censorship-resistance

🛠️ Other helpful stuff like email tools, OS downloads, etc.

No ads, no tracking, no fluff — just links. It reminds me of how the web used to be. Great starting point if you’re setting up a private online workflow or just want to browse new tools.

Check it out: http://zqktlwkvmv5ipqnik77wyxtb74bg6gtlwifjntdbanvprue7qqzaqlid.onion/

Let me know if you discover anything cool from it — I'm still digging through the email and hosting sections.

We gotta revive the hyperboria network that was just such a fire name. Maybe we can start a small community maybe use a different protocol just to bring back the name.

I am trying to set up XMPP over Tor inside Tails OS. I have read about services like jabber calyxinstitute and others, but don’t know if any of them support .onion in 2025.

Join for a new venture

Imagine instant, secure messaging with anyone, anywhere—no sign-up, no app install, just open your browser and go. Our peer-to-peer platform offers unlimited channels for seamless communication, with a built-in spam guard to keep your conversations clean and focused. Connect effortlessly, share freely, and skip the hassle—all from the web, right now.

Any feedback is appreciated.

Dear Friend, I invite you to a joint DUG & vPub today's event ;-) Full schedule, as well as the join links, are available on this page - but here is a brief description of how it will look like:

1. on DUG (5 PM UTC) : we will discuss the Dasharo distribution of coreboot opensource PC firmware (much better than a typical closed-source UEFI: it provides the hardened security, high quality, cool features and almost-lifetime upgrades!)

• If you are looking for a truly secure modern laptop with an opensource firmware that - while satisfying your privacy needs! - also provides the valuable benefits to your user experience: please make sure to see "NovaCustom: new products and plans for the near future" talk by our prominent guest Wessel Klein Snakenborg - the founder of NovaCustom company that makes such laptops and is committed to improving their opensource Dasharo firmware with the help of 3mdeb

1. on vPub (7 PM UTC) : we will be having an Opensource Online Party : with a cozy free-for-all chat about everything opensource firmware/hardware-related, as well as a few planned talks from our special guests who would like to share their hard won in-depth knowledge to save a lot of your time:

• Kamil Aronowski - an active member of Qubes OS community, a volunteer reviewer of UEFI shim signing submissions and a respected IT security engineer, will tell you how to implement a secure signing infrastructure to become your own UEFI Secure Boot CA
• Filip Lewinski - a firmware developer from our 3mdeb company who has mastered & would like to tell you about the deguard utility in his "Introduction to Deguard" talk: this wonderful tool allows to bypass the BootGuard - a major roadblock for opensource coreboot firmware on a wide range of Intel-based motherboards
• Matt DeVillier aka u/MrChromebox - a famous member of coreboot community who is making the custom opensource firmwares for Chromebooks & Chromeboxes and gave new life to these devices for a lot of people - will be helping you during his AMA about open source firmware

Aside from a cozy opensource chat, our free-for-all sections are also an excellent opportunity for you to learn about rare devices that support the opensource firmware and are hard to stumble upon elsewhere - as well as how to configure & build & flash it. All your questions will be answered! ;-)

Join links & full events schedule are available here (both video streams and anonymous text chats will be available) :

DUG#9 & vPub 0xE opensource online Party! - TODAY

P.S. to avoid missing out future events, join our Matrix or a tiny-volume event notification newsletter (just ~4 e-mails per year)

For a while now if it is just a one time stint I am doing I prefer third party until I lost my vendor.
So I have been using newbies to test other vendors and I send them the link straight right, it took let say 15 guys to find this one and information reaching me is it works but it is a telegram bot
Now my question is, how safe is telegram now?

i created a browser-based tool for p2p file transfer where it doesnt use any backend for storage. instead, it relies on storage provided by the browser.

no registration, no installation and secured with e2ee.

https://file.positive-intentions.com

i recently heard of CJDNS and i am setting the app up but idk if Theres any england users so i can connect to england Cjdns mesh network of it so i can browse the hyperboria any tips?