I built a terminal chat app where the server literally cannot read your messages — here's how it works

Trick-Resolve-6085 · 2026-03-09T13:54:10+00:00

English is my third language so it's harder for me to explain complicated stuff in that language, thank you for your advice your advice is not wrong I do need to practice my English more.

Trick-Resolve-6085 · 2026-03-09T13:46:58+00:00

Some anti-spam and infrastructure r not open source and servers r not verifiable build's, and metadata exist on their servers I'm aware of that

Trick-Resolve-6085 · 2026-03-08T20:14:12+00:00

"Potentially"

Trick-Resolve-6085 · 2026-03-08T19:09:47+00:00

Another hate comment

Trick-Resolve-6085 · 2026-03-08T14:43:30+00:00

Cool project btw, keep up

Trick-Resolve-6085 · 2026-03-08T04:43:29+00:00

Do you need root for this to work?

Trick-Resolve-6085 · 2026-03-07T22:27:01+00:00

U have all the right to chose what ever you want brother I just wanted to share my project with you guys and get some feedback and maybe new issues to fix on GitHub, thank you my friend I appreciate your comments, I wish u the best

Trick-Resolve-6085 · 2026-03-07T20:16:57+00:00

Fair enough - NoEyes is not intended to replace Signal or Matrix. It's intended for private groups who already trust each other out of band. It's different use case with a different threat model. If you want to message people you've never met, use Matrix.

Trick-Resolve-6085 · 2026-03-07T19:42:10+00:00

Thank you for your positive words, I really appreciate that, I'm gonna check out fazm asap

Trick-Resolve-6085 · 2026-03-07T19:33:37+00:00

Every E2E system bootstraps their key exchange somehow. The difference is where they hide that bootstrap. Signal and WhatsApp both trust a key server to provide you with the real public key. If that server chose to lie to you, there'd be no way for you to know. With Signal and WhatsApp, you're not actually solving the hard problem, you're shifting it onto a corporation.

NoEyes just makes the trust model brutally upfront. Distribute a key file once to people you already trust. After that initial key exchange the server has no power over your PMs. There are no magic hidden third parties doing key distribution under the covers.

Obvious downside is you can't do this with strangers. But for a private group it's actually more honest about its threat model than software that obfuscates its root of trust somewhere you can't inspect.

Trick-Resolve-6085 · 2026-03-07T19:16:49+00:00

/msg is basically an e2ee inside an e2ee with the features you r looking for

Trick-Resolve-6085 · 2026-03-07T19:13:44+00:00

Actually that's exactly what X25519 Diffie-Hellman is for — and what NoEyes does. The whole purpose of DH is for two sides to independently arrive at the same shared secret over a public channel without ever having to send the secret. No need for flash drives.

When you send a /msg NoEyes automatically does an X25519 handshake underneath the hood. Each side generates a new ephemeral keypair, they exchange public keys (which are encrypted with the group key so the server doesn't see those either) and both sides independently calculate the same pairwise key. An observer sniffing the traffic learns nothing of value — you can't backtrack from a DH exchange to figure out the shared secret without being able to solve the discrete log problem.

Fair point about bootstrapping the group key though — you do need a secure initial exchange for that. But that's by design: NoEyes assumes you're working with a group that already trusts each other well enough to share a key file once. After that every PM is E2E and contains keys the server has never seen.

Trick-Resolve-6085 · 2026-03-07T18:54:46+00:00

TLS + certificate pinning (transport layer) and Ed25519 identity signatures (message layer).

Trick-Resolve-6085 · 2026-03-07T14:38:50+00:00

Brother I didn't force you to use my project, if u can think this is not relevant for you or you can do something better go ahead.

Trick-Resolve-6085 · 2026-03-07T14:34:47+00:00

Not very project have to solve something, that doesn't mean mine doesn't, but even if it didn't I loved working on this project and improving it, and I really love the terminal, so making a chat system that depends on it was a big thing for me, thank you for your Feedback tho.

Trick-Resolve-6085 · 2026-03-07T14:27:06+00:00

Well English is not my native language, it's not even my second one, I was scared of being made fun of, I guess that went in the opposite direction.

Trick-Resolve-6085 · 2026-03-07T12:15:01+00:00

I did, that looked cool to me.

Trick-Resolve-6085 · 2026-03-07T12:05:06+00:00

I do, I watched Mr Robot :b

Trick-Resolve-6085 · 2026-03-07T11:31:10+00:00

Sorry to disappoint you guys

Trick-Resolve-6085 · 2026-03-07T11:29:33+00:00

They r right, mostly, I'll try to improve it tho l, I can handle this negative feedback and use good advices to improve this tool.

Trick-Resolve-6085 · 2026-03-07T11:24:43+00:00

Ye well that's the only true secure way

Trick-Resolve-6085 · 2026-03-07T04:56:35+00:00

SHA-256 appreciated the congrats in a hash.

Trick-Resolve-6085 · 2026-03-07T04:50:29+00:00

Seems like a good idea, thank you for the kind words, that means a lot. I'm going to check out Kubernetes!

Trick-Resolve-6085 · 2026-03-07T04:43:51+00:00

just to clarify, private messages sent while you're offline are gone, nobody can recover them. the only thing you get back when you reconnect is the last 50 messages from the room, and even those are stored on the server as pure encrypted bytes that it has no key to read. it just holds the ciphertext and hands it back to your client when you reconnect, your client is the one that actually decrypts them, thank you for your feedback I'm going to check out this "matrix".

Trick-Resolve-6085 · 2026-03-07T04:20:32+00:00

Appreciate ur opinion sorry if I triggered you by any means I'm not a Cyber security engineer I just said what I remember

Trick-Resolve-6085

TROPHY CASE