I was on the beta testing team and have been using Beeper for a little over two years now.
The convenience of having an application to house all of your chat networks is amazing.
While I agree that it would be nice to only have one app installed in order to chat with everyone, the fact that it’s not open source makes me question the privacy involved. I’ve already sold my soul to these individual chat apps. I’d rather not compound that problem.
In the back of it, it seems to be a series of Matrix bridges https://github.com/beeper
oh sweet. I care far more about the backend than frontend
I see what you did there!
The bridges are all open source, and they use matrix synapse as their server installation - though their client is a closed source fork of element with changes. You can use any matrix client to connect to it, and they say it’s a standard synapse setup.
If privacy is a concern, bringing your own client should remove that concern as the rest is open source. It’s also e2e encrypted, as any matrix server is.
I self host my own matrix homeserver with bridges set up using their code. The only bit of their stack I can’t use is the client. I don’t like that that’s closed source, that’s frustrating.
Edit: while writing this two more people made the same comment. Sorry!
Beeper’s server set up is actually a lot more complicated than just standard Synapse at this point. When they say you can “self host Beeper” that’s really not accurate at this point at all. All of their 3rd party chat bridges are dynamically spun up on a per user basis with hungryserv and those servers operate in parallel with a synapse server for Matrix interoperability all behind a roomserv server. Here’s a presentation that one of their lead developers created regarding their new architecture.
Most of that extra stuff is there to handle user contact privacy and security with the bridges, which is fair. I don’t have any interest in self hosting beepers full setup, I want to get the functionality of multiple messaging services in one client - which I have, with my self-hosted matrix instance and the bridges they help develop and maintain.
I wish all of it was open source, but I did feel it necessary to head off comments that imply that the entire thing is closed source. Their implementation around dynamic servers and isolated containers spinning up isn’t really the bit that seems relevant regarding user privacy with regards to data scraping or anything. There are a lot of comments in here implying it’s fully proprietary, but there’s a lot more nuance to it than that, as you point out.
Personally, I think it’d be nice if you could self-host just the bridge instances and connect them with beeper yourself, so that the part that isn’t e2e encrypted is running on software you can validate and hardware you control.
Personally, I think it’d be nice if you could self-host just the bridge instances and connect them with beeper yourself, so that the part that isn’t e2e encrypted is running on software you can validate and hardware you control.
I 100% agree this would be a great solution. That’s what I thought this page was going to be at first until I kept reading and realized it’s just a config guide for the Matrix Ansible setup. I wish they didn’t say “self host Beeper” on that page at all because self hosting Matrix has absolutely nothing to do with the Beeper service other than their devs built the bridges that they’re showing you how to set up with Matrix.
closed source fork of element with changes
🚩🚩🚩
e2e encrypted
More like “e2mitm2e” encrypted, with the mitm being the bridges.
If the target network doesn’t support encryption, that’s “e2mitm2null”… does it at least alert you in that case?
Then run your own matrix instance with these bridges that they maintain for the community.
That still doesn’t fix the e2e problem. Just because only me, and let’s hope not too many others who manage to break into the instance, can mitm everything, doesn’t make the mitm go away.
There really should be a standard, or at least a set of standards, on how to do e2e, so the bridges would only need to route the messages.
The last time I heard the word beeper it referred to a pager. You kids know what a pager was?
You kids know what a pager was?
Yes.
My worry would be who is funding it and how they plan to keep operating. Venture Capital startups will always betray their users.
They will be offering a premium subscription offer for more bells and whistles other than the free option…I don’t know anything about user betrayals conducted by Beeper.
Proprietary clients.
I don’t understand the concern here.
You have no way of verifying that the client is only doing what it claims. The Open Source community is highly suspicious of proprietary software, doubly so when it’s based off of Open Source code.
If youre okay with that then no worries, but ofr myself and many others it’s an absolute deal breaker.
I’ll take the risk knowing what I know about the Beeper people that I’ve been working with for over two years.
“I know these guys, trust me” is not a valid security assessment.
Why juggle multiple messaging apps when you can have all your conversations in one place? SocialSmartly is the solution you’ve been waiting for. 😍
This post reads like an ad, how is it upvoted so much?
Well known software built using Matrix. A lot of people have been following this project.
There’s reasons people moved away from multi-network apps like Trillian and Gaim/Pidgin… They were always playing catch-up with the official clients, and frequently broke when there were server-side changes. Protocols for proprietary messaging apps were (and still are) undocumented. I’m not convinced they’ve actually solved any of these issues.
I think they mostly died when GChat turned off XMPP support and became a walled garden.
If Beeper does become a successful business though, there’ll be a full time development team “playing catch-up” with money behind them. It’s interesting if you read this that they’re rolling out features ahead of the message providers in some cases!
They’re also leveraging some existing infrastructure. Beeper is built on Matrix which does a lot of the heavy lifting for them.
Huh, in my opinion people simply moved away, because the underlying messenger were used less and less. Once everyone ran around with smartphones using WhatsApp, fewer and fewer people cared about MSN, ICQ, etc.
Not “everyone” uses Whatsapp though - I deleted mine after the Cambridge Analytica scandal and I know of a few others who also did so. As far as I know Whatsapp has still never changed their T&C to pass metadata upstream to Facebook.
This is really region dependent. In Europe (or at least the Netherlands) almost everybody with a smartphone uses Whatsapp
Talk to anyone in latin america, you must use whatsapp. There’s no avoiding it. Some have tried Telegram a while ago, but most have reverted back to their usual whatsapp or facebook messenger. It’s crazy.
I am in a different part of the world, and what you are saying is also true here for the older generation, while the younger one has no escape from Telegram.
Pidgin. That failed. Then we have matrix. That kinda failed. And now beeper?
I don’t know…
Beeper is Matrix in a trenchcoat, judging by their Github page.
Pidgin didn’t use bridges, it tried to be “all the possible clients in one”… with closed source protocols… which went south, fast. It still works for some, though.
Matrix is running just fine, it doesn’t have the infinite flexibility of XMPP which made XMPP clients incompatible with each other, so as long as it doesn’t jump the shark, it’s just a matter of time to drive adoption.
Why do you feel like matrix has failed? I joined it recently and to me it looks like it’s kinda growing.
Well… I said ‘kinda failed’. Synapse is still way too slow. And the new dendrite server is still not up to spec. Joining large rooms is still gives me a headache. I can’t easily protect DDoS or spam accounts. I was forced to basically close registrations my Matrix server. And Dendrite is not yet production ready which is a shame… Don’t get me wrong, I do like Matrix in general. I just hope my previous remarks are taken seriously by their devs.
Idk, that’s more of a “not yet finished” thing rather than “failed” imo