You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
Kevin Froman 5afbed63cf Merge branch 'bind-args' 3 years ago
.github Create stale.yml 4 years ago
.vscode added sneakernet auto importing 4 years ago
docs added graph info to readme 3 years ago
install added install readme disclaimer and don't log max thread messages to terminal 4 years ago
scripts fix tests 3 years ago
src Added custom port and bind address args 3 years ago
static-data Added custom port and bind address args 3 years ago
tests Added custom port and bind address args 3 years ago
.dockerignore Removed Windows specific code 3 years ago
.env change env to 3.8 4 years ago
.gitignore bump version 3 years ago
.gitlab-ci.yml added helium test deps to ci 4 years ago
.onionr.yml Rename AUR package to onionr-git 4 years ago
AUTHORS.MD * started endpoint for non-app specific control of direct connections 4 years ago
CHANGELOG.md decrease pow, bump version 3 years ago
CODE_OF_CONDUCT.md fixed everything being executable permission 4 years ago
CONTRIBUTING.md fixed some bugs 4 years ago
Dockerfile Docker improvements 3 years ago
ISSUE_TEMPLATE.md fixed everything being executable permission 4 years ago
LICENSE.txt Update LICENSE.txt 4 years ago
Makefile moved to niceware from mnemonic 4 years ago
README.md correct yt link 3 years ago
SECURITY.md moved tests to parent directory 4 years ago
git-update.sh bug fixes in block creation and directory security 3 years ago
make-release.sh added site lister 4 years ago
onionr.sh Added custom port and bind address args 3 years ago
requirements-dev.in Bump pip-tools from 5.3.1 to 5.4.0 3 years ago
requirements-dev.txt Bump pip-tools from 5.3.1 to 5.4.0 3 years ago
requirements-notifications.in added sound notification support and forward secery setting finished 4 years ago
requirements-notifications.txt boards now load async 4 years ago
requirements.in Bump watchdog from 0.10.4 to 1.0.1 3 years ago
requirements.txt Bump watchdog from 0.10.4 to 1.0.1 3 years ago
run-onionr-node.py Added custom port and bind address args 3 years ago
run_tests.sh finishd tests for multicast lan service discovery 4 years ago
sandboxed-onionr.py + added sandbox script 3 years ago
setprofile.sh fixed everything being executable permission 4 years ago
start-daemon.sh added restart command 4 years ago
start-many-nodes.py added script to start many nodes 4 years ago
start-ram.sh improve start ram script to use quotes 4 years ago

README.md

Privacy Respecting Communication Network 📡

Anonymous social platform, mail, file sharing.

Install Features Screenshots
Docs/web copy Get involved Onionr.net/.onion

The main repository for this software is at https://git.VoidNet.tech/kev/onionr/

Mirrors: Github, Gitlab

Onionr ("Onion Relay") is a decentralized/distributed peer-to-peer communication network, designed to be anonymous and resistant to (meta)data analysis, spam, and corruption.

Onionr stores data in independent packages referred to as 'blocks'. The blocks are distributed to all interested nodes. Blocks and user IDs cannot be easily proven to have been created by a particular user. Even if there is enough evidence to believe that a specific user created a block, nodes still operate behind Tor and as such cannot be trivially unmasked. Anonymity is achieved by a stateless network, with no given indication of what node a block originates from. In fact, since one is not required to participate in routing or storage to insert a message, blocks often do not originate from any identifiable node.

Through message mixing and key privacy, it is intended to be nigh impossible to discover the identity of a message creator or recipient. Via long-term traffic analysis, a well funded adversary may discover the most probable node(s) to be creating a set of related blocks, however doing so would only lead them to a node behind Tor. As the first node that a block appears on is almost always not the creator of the block, there is plausible deniability regarding the true creator of the block.

Onionr gives the individual the ability to speak freely, without fear of surveillance and censorship.

Users are identified by ed25519/curve25519 public keys, which can be used to sign blocks or send encrypted data.

Onionr can be used for mail, as a social network, instant messenger, file sharing software, or for encrypted group discussion.

Due to the nature of anonymity, the graph as implemented in this reference network is dense, undirected, cyclic and can be disconnected. As a result, current scalability is poor but sufficient for high latency communications. As the need arises isolated stream solutions may be implemented (in a manner similar to described in the Bitmessage whitepaper). Since Onionr is technically just a data format, any routing scheme can be used to pass messages.

The whitepaper is available here.

Main Features

  • 🌐 Fully p2p/decentralized, no trackers or other single points of failure
  • 🔒 End to end encryption of user data
  • 📢 Optional non-encrypted blocks, useful for blog posts or public file sharing
  • 💻 Easy HTTP API for integration to websites
  • 🕵 Metadata analysis resistance and anonymity
  • 📡 Transport agnosticism (no internet required)

Onionr ships with various application plugins ready for use out of the box:

Currently usable:

  • Mail
  • Public anonymous chat/message board
  • Simple webpage hosting - Will be greatly extended
  • File sharing (Work in progress)

Not yet usable:

  • Instant messaging

Watch the talk from BSidesPDX 2019

improving anonymous networking talk link

Screenshots

Node statistics page screenshot

Home screen

Friend/contact manager screenshot

Friend/contact manager

Encrypted, metadata-masking mail application screenshot

Encrypted, metadata-masking mail application. One of the first distributed mail systems to have basic forward secrecy.

Documentation

More docs coming soon.

Install and Run on Linux

The following applies to Ubuntu Bionic. Other distributions may have different package or command names.

Master may be unstable, you should use the latest release tag. (checkout via git: $ git checkout release-latest)

$ sudo apt install python3-pip python3-dev tor

  • Have python3.7+, python3-pip, Tor (daemon, not browser) installed. python3-dev is recommended.
  • Clone the git repo: $ git clone https://gitlab.com/beardog/onionr --tags
  • cd into install direction: $ cd onionr/
  • Install the Python dependencies (virtualenv strongly recommended): $ pip3 install --require-hashes -r requirements.txt
  • (Optional): Install desktop notification dependencies: $ pip3 install --require-hashes -r requirements-notifications.txt

(--require-hashes is intended to prevent exploitation via compromise of PyPi/CA certificates)

Run Onionr

  • Run Onionr normally: $ ./onionr.sh start
  • Run Onionr in background as daemon: $ ./start-daemon.sh
  • Open Onionr web interface $ ./onionr.sh openhome
  • Gracefully stop Onionr from CLI $ ./onionr.sh stop

Contact

Email: beardog [ at ] mailbox.org

Help out

Everyone is welcome to contribute. Help is wanted for the following:

  • Development (Get in touch first)
    • Creation of a shared lib for use from other languages and faster proof-of-work
    • Android and IOS development
    • Mac support (already partially supported, testers needed)
    • Bug fixes and development of new features
  • Testing
  • Translations/localizations
  • UI/UX design
  • Running stable nodes
  • Security review/audit
  • I2P support

Contribute money:

Donating at least $3 gets you cool Onionr stickers. Get in touch if you want them.

sticker

Bitcoin: 1onion55FXzm6h8KQw3zFw2igpHcV7LPq (Contact us for a unique address or for other coins)

Monero: 4B5BA24d1P3R5aWEpkGY5TP7buJJcn2aSGBVRQCHhpiahxeB4aWsu15XwmuTjC6VF62NApZeJGTS248RMVECP8aW73Uj2ax

USD (Card/Paypal): Ko-Fi

Note: probably not tax deductible

Security

Onionr is alpha software. This means it is unstable, probably insecure, and experimental.

No matter how good Onionr and other software gets, there will always be ways for clever or well-funded adversaries to break your security.

Onionr does not protect your identity if you associate your user ID with your name either on Onionr or elsewhere.

Do not rely on Onionr or any other software to hold up if your life or liberty are at stake.

Licenses and Branding

Onionr is published under the GNU GPL v3 license, except for the logo.

The Tor Project and I2P developers do not own, create, or endorse this project, and are not otherwise involved.

Tor is a trademark for the Tor Project. We do not own it.

The Onionr logo was created by Anhar Ismail under the Creative Commons Attribution 4.0 International License.

If you modify and redistribute our code ("forking"), please use a different logo and project name to avoid confusion. Please do not use the project name or logo in a way that makes it seem like we endorse you without our permission.