Transfer sensitive data safely
How to transmit sensitive data safely via the Internet? Emails? Well, that's a bad idea. Your password for your email could be hacked and you never know whether your email service provider would take a look at your emails. To stay safe, you must encrypt the transmitted data. GnuPG is a great tool to encrypt your message. However, it requires both the sender and receiver to have GPG client installed.
Talk is inspired by the Password-Manager project, which stores your data encrypted with your passphrase and generates a unique link for the data. The receiver can access this link and use the same passphrase to obtain the data. Thus, instead of sending data directly, you just send this link.
The passphrase can be the answer to one question that both you and the receiver know. The question (or passphrase hint) will be shown after the receiver clicks the link.
Of course, just like Password-Manager, data will be encrypted and decrypted at client-side to make sure the service provider won't have access to the data.
Here is the project example: talk.zzeyu.com
You need at least PHP 7.1, MySQL support and HTTPS support on your server.
-
Copy everything in
srcfolder to your server and importinitial.sqlto your database -
Edit
js/crypto.js, changeCLIENT_SALTto a new random string. -
Edit
function/config.phpwith your server setup. -
Enable HTTPS on your site
-
If you use Nginx, configure your 404 page so it redirects to
404redirect.php. This is to enable short link