frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Show HN: Terminal Phone – E2EE Walkie Talkie from the Command Line

https://gitlab.com/here_forawhile/terminalphone
78•smalltorch•2h ago
TerminalPhone is a single, self-contained Bash script that provides anonymous, end-to-end encrypted voice and text communication between two parties over the Tor network. It operates as a walkie-talkie: you record a voice message, and it is compressed, encrypted, and transmitted to the remote party as a single unit. You can also send encrypted text messages during a call. No server infrastructure, no accounts, no phone numbers. Your Tor hidden service .onion address is your identity.

Comments

marcosqanil•1h ago
I love this. In your view, how would users go about securely swapping credentials ? PGP over email ?
smalltorch•1h ago
Thanks! My realistic use case is that I am already speaking to someone who I know and trust, so ideally exchange credentials in person. A preferred out of band secure messanger of choice is probably fine.
deadbabe•1h ago
What do you guys talk about?
smalltorch•1h ago
I have my wife's phone set up on autolisten running in the background, so I just pop in and ask how her days going and crack jokes.
Pinkert•1h ago
Using a v3 onion address as both the cryptographic identity and the NAT traversal layer is such a clean architectural choice. No STUN/TURN servers, no hole punching, you just boot the script and Tor handles routing.

For those who use Tor regularly for things other than web browsing: how bad is the real-world latency for pushing a ~20KB Opus audio chunk over Tor these days? Are we talking a 2-3 second delay, or is it much worse?

idiotsecant•1h ago
Beep boop
smalltorch•1h ago
The real world delay is about 2-3 seconds your spot on. I initially started with a full duplex version but it was absolutely terrible. Walkie talkie kinda forces the recieve, listen, response from the users so the latency isn't as much of an issue.
ale42•1h ago
Is audio transmitted while it is being recorded or afterwards? Is it played before everything is received or is everything buffered? In the later case, I find it more akin an audio message on Signal or similar, than as a walkie-talkie, which is much more "dynamic".
smalltorch•1h ago
It's not streamed. It gets recorded, compressed, (voice effects if you want), encrypted on device, then piped through, reverse process, auto played on reciever end.

Also, once it's decrypted and played back, the message gets destroyed.

nunobrito•22m ago
STUN/TUN are important because of bandwidth. With STUN the bandwidth used is only between the two connected devices, with VPN like Tor there is a bandwidth cost on all the servers where this data is passing. This is a big blocker for anyone hosting the service on a VPS with a few GB of traffic data per month.
rustyhancock•1h ago
> Exclude Countries -- Exclude specific countries from your Tor circuits. Presets for Five Eyes, Nine Eyes, and Fourteen Eyes alliances, or enter custom country codes. Uses ExcludeNodes with StrictNodes in the torrc.

Interesting that people do this, I wonder how much it improves security? Afterall, any serious surveillance would involve running relays and exits in foreign lands.

smalltorch•1h ago
This was another one of those things I built in because we can. I really don't know... But the Tor developers built this in as an option on the torrc so there must be something to it. We know there are definitely compromised nodes...I think it's just neat that you can have that level of control regardless if it's effective.
kortilla•48m ago
It might not help for controlled nodes, but it does help avoid ISPs controlled by said governments from seeing it
oybng•1h ago
Looks fun, I've yet to test it but I did skim it.

'|| true' 76 matches 'echo ""' 50 matches ' [ ' 261 matches '=$(' 90 matches

lxgr•1h ago
> 21 curated ciphers are available

Why!? That sounds like approximately 20 too many.

smalltorch•1h ago
The library is openssl and that comes with all these ciphers available. No other reason than because we can!

I wish AES-GCM was available...but openssl can't do it on its own without further dependencies to parse the authentication correctly.

Really this whole layer is complelty redundant actually. It's already E2EE without openssl via Tor. I like that it's encrypted before I hit the network pipe though.

lxgr•30m ago
> No other reason than because we can!

Then maybe your scientists should spend some time to stop and consider whether they should ;)

But seriously, I'd just limit this to one option on the selection side, even if you continue supporting more than that at the protocol level for cryptographic agility.

inigyou•3m ago
If a library doesn't do what you need, you need a different library, but this is impossible from a short bash script, so it's one of the tradeoffs of your design.
Tepix•13m ago
Using a line based protocol and base64 encoding the audio data? Not my first choice.

The README doesn't mention it, but I assume both parties have to online at the same time?

Show HN: Terminal Phone – E2EE Walkie Talkie from the Command Line

https://gitlab.com/here_forawhile/terminalphone
79•smalltorch•2h ago•19 comments

Google API keys weren't secrets, but then Gemini changed the rules

https://trufflesecurity.com/blog/google-api-keys-werent-secrets-but-then-gemini-changed-the-rules
811•hiisthisthingon•17h ago•171 comments

Show HN: Agent Swarm – Multi-agent self-learning teams (OSS)

https://github.com/desplega-ai/agent-swarm
6•tarasyarema•40m ago•3 comments

Fentanyl makeover: Core structural redesign could lead to safer pain medications

https://www.scripps.edu/news-and-events/press-room/2026/20260211-janda-molecule.html
3•littlexsparkee•12m ago•0 comments

Jimi Hendrix was a systems engineer

https://spectrum.ieee.org/jimi-hendrix-systems-engineer
537•tintinnabula•16h ago•165 comments

The Physics and Economics of Moving 44 Tonnes at 56mph

https://www.mikeayles.com/blog/heavy-haulage-basics/
32•mikeayles•2d ago•17 comments

Tell HN: YC companies scrape GitHub activity, send spam emails to users

125•miki123211•3h ago•46 comments

Hightouch (YC S19) Is Hiring

https://hightouch.com/careers#open-positions
1•joshwget•54m ago

Technical Excellence Is Not Enough

https://raccoon.land/posts/technical-excellence-is-not-enough/
16•bo0tzz•3h ago•4 comments

Men in their 50s may be aging faster due to toxic 'forever chemicals'

https://www.cnn.com/2026/02/26/health/forever-chemicals-aging-men-wellness
36•jb1991•58m ago•12 comments

How will OpenAI compete?

https://www.ben-evans.com/benedictevans/2026/2/19/how-will-openai-compete-nkg2x
296•iamskeole•14h ago•401 comments

Banned in California

https://www.bannedincalifornia.org/
207•pie_flavor•13h ago•237 comments

First Website (1992)

https://info.cern.ch
245•shrikaranhanda•13h ago•68 comments

Windows 11 Notepad to support Markdown

https://blogs.windows.com/windows-insider/2026/01/21/notepad-and-paint-updates-begin-rolling-out-...
304•andreynering•19h ago•457 comments

Making MCP cheaper via CLI

https://kanyilmaz.me/2026/02/23/cli-vs-mcp.html
245•thellimist•16h ago•99 comments

Artist who “paints” portraits on glass by hitting it with a hammer

https://simonbergerart.com
197•cs702•3d ago•84 comments

Bus stop balancing is fast, cheap, and effective

https://worksinprogress.co/issue/the-united-states-needs-fewer-bus-stops/
374•surprisetalk•20h ago•542 comments

You Want to Visit the UK? You Better Have a Google Play or App Store Account

https://www.heltweg.org/posts/you-want-to-visit-the-uk-you-better-have-a-google-play-or-app-store...
115•rhazn•1h ago•158 comments

Large-Scale Online Deanonymization with LLMs

https://simonlermen.substack.com/p/large-scale-online-deanonymization
291•DalasNoin•1d ago•210 comments

Show HN: Respectify – A comment moderator that teaches people to argue better

https://respectify.org/
184•vintagedave•22h ago•182 comments

Out of Light Adjust Share: Caravaggio, La Tour, and the Art of Attention

https://harpers.org/archive/2026/03/out-of-light-nicole-krauss-caravaggio-georges-de-la-tour/
24•prismatic•3d ago•1 comments

RAM now represents 35 percent of bill of materials for HP PCs

https://arstechnica.com/gadgets/2026/02/ram-now-represents-35-percent-of-bill-of-materials-for-hp...
299•jnord•10h ago•234 comments

The First Fully General Computer Action Model

https://si.inc/posts/fdm1/
272•nee1r•2d ago•69 comments

A 26-Gram Butterfly-Inspired Robot Achieving Autonomous Tailless Flight

https://arxiv.org/abs/2602.06811
17•Terretta•3d ago•3 comments

Nihilistic Violent Extremism

https://en.wikipedia.org/wiki/Nihilistic_violent_extremism
8•doener•43m ago•0 comments

Writers and Their Day Jobs

https://lithub.com/the-work-behind-the-writing-on-writers-and-their-day-jobs/
42•simplegeek•4d ago•13 comments

Tech companies shouldn't be bullied into doing surveillance

https://www.eff.org/deeplinks/2026/02/tech-companies-shouldnt-be-bullied-doing-surveillance
330•pseudolus•12h ago•106 comments

The Om Programming Language

https://www.om-language.com/
279•tosh•19h ago•77 comments

Show HN: Modern Reimplementation of the Speck Molecule Renderer

https://github.com/vangelov/modern-speck
8•vlad_angelov•4d ago•0 comments

Dissecting the CPU-memory relationship in garbage collection (OpenJDK 26)

https://norlinder.nu/posts/GC-Cost-CPU-vs-Memory/
101•jonasn•1d ago•30 comments