banner
LightNews
peergos.org
Peergos
@peergos.org
210 followers 70 following 94 posts
A humane, privacy-focused, self-authenticated social web. Recipient of NGIPointer grant, graduate of Oxford Foundry, audited by Cure53 and Radically Open Security https://peergos.org https://github.com/peergos/peergos
peergos.org
Posts Media Videos Starter Packs
peergos.org
Peergos @peergos.org · 4d
p.s. We're still working on iOS ;-)
1
peergos.org
Peergos @peergos.org · 4d
It's been a huge year, with 14 releases (compared to 8 last year), with first release of the Android app, Desktop apps, and sync engine. We are just getting started! Come and join the future of the web. peergos.net
Peergos
peergos.net
1 2
peergos.org
Peergos @peergos.org · 4d
We've got a new release out folks! github.com/Peergos/web-...
This let you easily migrate servers with a single click! This of course keeps all your data, friends, and identity intact. There is also a way to request/pay for another server to live mirror your data.
Release Easy migration + mirror · Peergos/web-ui
This release includes UI support for easy migration between servers. You can now request or pay for storage on another server and have it live mirror your data. Once a server is mirroring your data...
github.com
1 2 4
Reposted by Peergos
natanael.bsky.social
Natanael, Tech janitor @natanael.bsky.social · 19d
"Bad news: The proposal is going forward to be voted on on October 14th, and there's still no blocking minority achieved, as Germany reverted its position to undecided.

Good news: There is still time to fight back!"

Shut this monstrosity down NOW
The battle to stop Chat Control continues, act now!
Unfortunately, the battle against Chat Control continues this month. For human rights, for civil liberties, for safety, and for democracy, this privacy-wrecking proposal must be stopped. We need your ...
www.privacyguides.org
10 11
peergos.org
Peergos @peergos.org · 20d
Client side it scales with the number of people you follow. If you follow more than 10,000 you'll probably have a bad time. Beyond 10,000 recipients there isn't much point in practice for privacy and it should probably be public. But the network as a whole can trivially scale to twitter size.
1
peergos.org
Peergos @peergos.org · 20d
So far, to our surprise, we haven't needed indexing, as search client side is fast enough. With more advanced search our plan is to build the index client side and store that encrypted.
1
peergos.org
Peergos @peergos.org · Sep 12
There;s a new version of peergos out folks! HTTP proxy support, lots of fixes and some optimisations.
github.com/Peergos/web-...
Release Proxy and http2 · Peergos/web-ui
This release includes support for using a http proxy with the shell, proxy or sync commands, and adds support for http2 to all sync, shell and proxy requests. It also add support for passkeys from ...
github.com
2 2
Reposted by Peergos
peergos.org
Peergos @peergos.org · Sep 12
We've already solved these problems in Peergos. Apps can be given permission to store app private data, read private user data, or write private user data, on a per file/dir granularity. Everything is stored E2EE on your PDS in Peergos. We treat your PDS *and* apps as current adversaries.
1 2 4
peergos.org
Peergos @peergos.org · Sep 12
We believe that for truly portable accounts your data should be E2EE, then you really don't need to trust the host, because they can't misuse or sell your data.
1 1
peergos.org
Peergos @peergos.org · Sep 12
Custom apps are described here: book.peergos.org/features/app...
They can also (with permission) send E2EE messages to your friends. These apps don't need login, auth, or even storage! That's all handled by peergos. They don't even need an sdk, it's all just basic REST calls.
Custom Apps
book.peergos.org
1 1
peergos.org
Peergos @peergos.org · Sep 12
This is our proposal for atproto: github.com/bluesky-soci...
Private, non-shared data in repo? · bluesky-social atproto · Discussion #3363
I have a use-case for keeping private data in a repo, i.e. data that does not leave the repo via the standard sharing mechanisms, and before I leap into modifying the code to support it, I'd like t...
github.com
1 2
peergos.org
Peergos @peergos.org · Sep 12
We've already solved these problems in Peergos. Apps can be given permission to store app private data, read private user data, or write private user data, on a per file/dir granularity. Everything is stored E2EE on your PDS in Peergos. We treat your PDS *and* apps as current adversaries.
1 2 4
peergos.org
Peergos @peergos.org · Sep 9
The defences we have against this kind of attack include:
1) We don't use npm (we manually review the few JS dependencies we have when updating)
2) We only have a handful of JS deps
3) We vendor our dependencies in git
4) We use strong CSP that blocks any external communication to other domains
truthphoenix.bsky.social
TruthPhoenix @truthphoenix.bsky.social · Sep 9
JavaScript packages with billions of downloads were injected with malicious code in world's largest supply chain hack, geared to steal crypto — a phishing email is all it took to undermine npm packages

www.tomshardware.com/tech-industr...
JavaScript packages with billions of downloads were injected with malicious code in world's largest supply chain hack, geared to steal crypto — a phishing email is all it took to undermine npm package...
Yet all the attacker did was attempt to steal cryptocurrency
www.tomshardware.com
2 6
peergos.org
Peergos @peergos.org · Sep 2
Don't outsource your sovereignty. Use end-to-end encryption.
anderagakura.bsky.social
Alexandre Nderagakura @anderagakura.bsky.social · Sep 1
Microsoft to French Senate:
- If US makes a "correct" requests, Microsoft must share EU data
- EU clients may not be informed of the disclosure, data sharing
=> Any US company under Patriot Act and Cloud Act, must cooperate

www.frandroid.com/culture-tech...
Microsoft avoue enfin : « Non, je ne peux pas garantir » la protection des données européennes
Microsoft France vient de reconnaître devant le Sénat qu'il ne peut pas protéger les données européennes du gouvernement américain. Cette déclaration sous
www.frandroid.com
1 2
peergos.org
Peergos @peergos.org · Sep 1
The approach we took here is to put everything in an exfiltration proof sandbox, and gate read and writes to your data and other APIs.
1
Reposted by Peergos
johnchildren.bsky.social
John Children @johnchildren.bsky.social · Aug 25
www.youtube.com/watch?v=yDU4... Peergos seems pretty interesting
Peergos: The Architecture of Privacy - Ian Preston
YouTube video by libp2p
www.youtube.com
1 3
peergos.org
Peergos @peergos.org · Aug 26
@igalia.com Great post! Some small corrections for blogs.igalia.com/jfernandez/2...
1. Peergos doesn't depend on js-libp2p at all (we don't do p2p stuff in the browser for privacy and security reasons).
2. We've used webcrypto Ed25519 when present for over a year: github.com/Peergos/web-...
Ed25519 Support Lands in Chrome: What It Means for Developers and the Web.  – make everything intensely
blogs.igalia.com
1 4
Reposted by Peergos
dane.is.extraordinarily.cool
Dane @dane.is.extraordinarily.cool · Aug 14
i think part of the reason this hasn't been done yet on atproto is because there's no means for private data yet so anything someone in a group would post would be public
1 2 7
peergos.org
Peergos @peergos.org · Aug 19
"And while there are instances of venture capital enabling genuine innovation in the past, it has increasingly turned toward trying to monopolize parts of the economy."
3
peergos.org
Peergos @peergos.org · Aug 19
Apparently it was "non-profit day" a few days ago. We are proud to be a non-profit and not have any investors. We think the future of the web is too important to leave to venture capitalists. We were reading this the other day - wedontagree.net/technically-... - and this section jumped out at us:
Technically Radical
Over 2024, we saw major tech investors and company owners overtly turn toward the right, overtly backing Donald Trump in his electoral campaign. This group of individuals, which commentators have take...
wedontagree.net
1 1 2
peergos.org
Peergos @peergos.org · Aug 19
We've got a new release out folks! This enables sync from any drive in Windows and Linux, and includes a 3X faster GC on large blockstores.
github.com/Peergos/web-...
Release 3X faster GC + Sync fixes · Peergos/web-ui
This release includes a lot of sync fixes for desktop and Android. It makes GC 3X faster on a 10 TiB blockstore by caching the block graph and block list between GC runs, and using an infini-filter...
github.com
1 7
peergos.org
Peergos @peergos.org · Aug 14
We've been using Ed25519 in browsers for over 10 years now (every identity and writer is an Ed25519 pair in Peergos), so we really appreciate this and how much work it has been. The size of nacl.js is 30KB so not a significant benefit, but the web-crypto version is 10x faster!
ipfs.tech
IPFS @ipfs.tech · Aug 14
Oh yeah — Ed25519 is now available in Chrome!

Read what the ineffable @bumblefudge.com has to say about this wonderful piece of news.
ipfsfoundation.org/ed25519-supp...
Ed25519 Support in Chrome: Making the Web Faster and Safer
We're happy to share that Ed25519 is now supported in Chrome (version). Following Ed25519 support in Firefox 129 in August 2024 and Safari 17.0, Chrome finally following suit in 137 in May of this yea...
ipfsfoundation.org
7 14
Reposted by Peergos
ianopolous.bsky.social
Ian Preston @ianopolous.bsky.social · Aug 12
The GC (garbage collector) in @peergos.org has been taking > 3 hours to run on a 10 TiB remote block store, and during this time it was maxing out the metadata DB cpu (during the mark phase), so I've been trying to optimise it. The metadata db is used by live queries so this wasn't great.
1 2 4
peergos.org
Peergos @peergos.org · Aug 6
End-to-end encryption is the ultimate in decentralizing forces because it requires everything to happen client side - on devices the people control. Everything else becomes dumb pipes.
1 1
peergos.org
Peergos @peergos.org · Aug 6
Decentralization is a necessary but not sufficient ingredient for democracy. You also need privacy. If the digital world is the Panopticon with everything public, then no resistance will be able to organise to fight against dictators.
mmasnick.bsky.social
Mike Masnick @mmasnick.bsky.social · Aug 5
Tried to pull together a bunch of threads of things I've been talking/thinking about lately, about how decentralized tech & democracy go hand in hand, and are necessary for fighting fascism.
techdirt.com
Techdirt @techdirt.com · Aug 5
Take Back Our Digital Infrastructure To Save Democracy

Watch the tech oligarchs who lined up behind Donald Trump at his inauguration, and you'll see the most important story of our time: the fascists are winning because they've built a direct pipeline from concentrated technological power to…
1 3 7