Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
hachyderm.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Hachyderm is a safe space, LGBTQIA+ and BLM, primarily comprised of tech industry professionals world wide. Note that many non-user account types have restrictions - please see our About page.

Administered by:

Server stats:

9.6K
active users

hachyderm.io: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.5

Public
Matthew Lyon

It's open source, you can trust it

screnshot of a prompt asking if it's ok for "Syncthing" to connect to an IP address, with a list below of about two dozen addresses which I've forbidden it from connecting to
Public
Matthew Lyon

so it turns out this open source dropbox-style thing has "relaying" on by default; it doesn't ask you, and instead assumes it's ok by you to just connect to random ips without asking first

I don't care that they "can't see my data", the assumption is a breach of trust

Of course, it took hunting down some forum thread to understand what was going on

open source projects really need to take this sort of user experience more seriously

Public
Amber (WoofGPT6.9)

@mattly@hachyderm.io Do they have any technical justification for the relay system? The only thing i can think of is that it might help transfers on networks with poor peering.

Public
Matthew Lyon

@puppygirlhornypost2 I didn't go looking for one; but the non-answer in their FAQ is enough to put me off from the whole thing

Public
Amber (WoofGPT6.9)

@mattly@hachyderm.io I mean yeah me too, I'm just curious at this point why they would think that's okay.

Public
rm

@puppygirlhornypost2 @mattly i think the main point is that most home- and almost all mobile networks use NAT. so, connecting from your (NATted) phone to your (NATted) homelab is going to be quite difficult without outside help - this is what the "relay" proto is for:

docs.syncthing.net/specs/index

wether or not you want your node to participate as a relay node ... now, this is something that maybe they should get consent for. but it does help everyone to turn it on.

docs.syncthing.netSpecifications — Syncthing documentation
Public
Matthew Lyon

@rm if it looks like malware and talks like malware…

Public
rm

@mattly it is a p2p protocol. so it does p2p protocol things. would you be suprised if your bittorrent client started to connect out to the world? of course you wouldnt!

Matthew Lyon

@rm it’s not advertised as that, it’s advertised as a file sync program. I see nothing on Syncthing’s homepage indicating it’s P2P. My use case doesn’t require that, and the architecture actually works against my use case

Mar 24, 2025, 03:03 PM·Public·Web
0boosts·0favorites
Public
rm

@mattly yes, i agree that they probably should be a bit more upfront about this - but on the other hand - in all UIs etc, it never uses DNS names. and yet, clients do find each other. without a centralized server, and if not for some sort of p2p functionality - how do you think this would work?

i mild disapproval of the lack of "p2p" in the overview is understandable, but malware? that's quite a leap.

ExploreLive feeds
About