Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

The ability to enable channel encrytion should be configurable #16

Open
wiebel opened this issue Jan 19, 2022 · 1 comment
Open

The ability to enable channel encrytion should be configurable #16

wiebel opened this issue Jan 19, 2022 · 1 comment

Comments

@wiebel
Copy link

wiebel commented Jan 19, 2022

In channels it could be problematic to force every participant into using e2ee. Also anybody being able to disable encryption at will, could pose a security risks. So it would be nice to have the ability to toggle e2ee in channels configurable. Ideally on a per channel base.
@aguinet
Copy link
Collaborator

aguinet commented Jan 21, 2022
edited
Loading

The per-channel encryption toggle has proven being a good tradeoff for us so far.

About the fact that it's a security risk to let everyone the power of changing that status, it is mitigated by two things:

  • a message is written in the channel log stating that messages aren't encrypted anymore
  • if you are writing a message in a clear channel, and the last message you wrote in this channel was encrypted, you got a warning message asking you to confirm you want to send a clear text message

That being said, we could add an option to only let administrators the ability to change encryption status, but it's not in our priorities yet.

We would though be happy to review any PR that would implement it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@wiebel @aguinet