[Sync: Security Is Our Highest Priority]

If security is your number one priority devise a system that doesn't allow anyone to see others IP addresses! Why would anyone want to share a file using bittorrent sync when their IP address is revealed?

 

Yeah, brilliant idea! Let's make the bunch of computers directly sharing stuff between each other not know any other's IP address!

That's genius, why haven't I thought of that? Let's just make them exchange the data through the central server, like Dropbox! Oh, wait...

 

IP addresses and peer data could be encrypted with a derived key, like the ENC-RO key. That's just one idea.

[Is It True There A Limit Of 50 Distinct Users Using Same Secret To Distribute Media.]

Yes, it's an edge case but if there are exactly 51 at the time they will connect to each other and until one of them goes offline there is no free place. Unless there is a built-in re-peering solution.

This is the most pressing issue. 

[Is It True There A Limit Of 50 Distinct Users Using Same Secret To Distribute Media.]

Well, if you have 51 online peers and they form a complete graph (each connecting to 50),

the 52nd peer would be all alone in the darkness. 

[Latest Desktop Build 1.3.106]

@Moe

They were intended to show in a short format. Thanks for the feedback.

 

Oh, noes.

[Latest Desktop Build 1.3.105]

@Lightning

Thanks for the bug report - we'll fix it. Not sure what do you mean regarding the path - both in 1.3.94 and 1.3.105 it shows full path including the dir name. Could you please elaborate / show a screenshots?

 

Sure. Here: https://i.imgur.com/3o3bnhG.jpg

... and after a service restart: https://i.imgur.com/y7qTLoq.jpg

[Syncapp.zendesk Spam]

I figured as much but it would've been nice to turn off notifications for these.

Anyway, I think there are no more tickets left of mine.

[Syncapp.zendesk Spam]

Can we please do something about the ticket system's automatic e-mails?

It's going haywire.

 

In the last ~24 hours I've got like 12 useless mails already. 

Things like "How would you rate the support?"

or "This request is automatically closed by a script due to inactivity."

 

Put me out of my misery! 

[Latest Desktop Build 1.3.105]

@JimmyTheSaint, @merlinuwe, @sandymac, @nils

 

Thanks a lot for the feedback regarding new UI. I'm checking what can be adjusted in new versions.

 

I very much prefer the new WebUI. It's great! 

I don't need to - nor do I want to - see a mile long page of peers.

 

One small bug at first glance: Encrypted secrets don't show up in the input box like read-only secrets.

 

And a question: At first, it only showed the basename of the paths, now it shows full paths.

Why? Can it be configured?

[Remote Desktop (Rdp) Implementation]

I'd take this to the network layer: It'd be awesome if BTSync peers could create a P2P VPN. Then we could use it for virtually anything. At first 1-to-1 could do, then n-to-n.

 

Indeed, this would be a huge side-project and the only thing that we could reuse is the peer discovery, as far as I "know" the system. A VPN can't have delays, so torrent as a transport protocol is not really a viable option.

Should I open a thread for this? Is it feasible?

[Btsync With Vnc]

Here's a good example: freedns.afraid.org

 

... and a script for CloudFlare: (original source unknown), but they have decent tutorials/scripts too if you need one.

#!/usr/bin/env pythonimport urllib2, json, socketfrom urllib import urlencodedef setipforsubdomain(subdomain, domain, email, tkn, apiaddr, ip):	dictionary = dict([		('a', 'rec_edit'), 		('type', 'A'), 		('z', domain), 		('tkn', tkn), 		('email', email), 		('name', subdomain), 		('content', ip), 		('service_mode', '0'), 		('ttl', '1')])	rec_all = urllib2.urlopen(apiaddr, urlencode(dict([		('a', 'rec_load_all'), 		('tkn', tkn), 		('email', email), 		('z', domain)])))	rec_all = json.loads(rec_all.read())	for dicts in rec_all['response']['recs']['objs']:		if dicts['name'] == host:			id = dicts['rec_id']		else:			pass	dictionary['id'] = id	rec_edit = urllib2.urlopen(apiaddr, urlencode(dictionary))	print urlencode(dictionary)	print rec_edit.read()if __name__ == "__main__":	subdomain = "dyn"	domain = "domain.tld"	email = "cloudflare-login@domain.tld"	tkn = "secret_api_token"	apiaddr = "https://www.cloudflare.com/api_json.html"	host = "%s.%s" % (subdomain, domain)	ip = urllib2.urlopen("http://icanhazip.com").read()[:-1]	current_ip = socket.gethostbyname(host)	if ip == current_ip:		pass	else:		setipforsubdomain(subdomain, domain, email, tkn, apiaddr, ip)

[Btsync With Vnc]

There are countless free dyn DNS providers, some actually work.

If you already own a domain, CloudFlare's API can do this for you with the help of a little script.

[Heartbleed Vulnerability]

Not for Windows, no. It does not use OpenSSL on Windows.

 

I vaguely remember it uses Win Crypt API. Am I right?

 

By the way, when can we have a look at the black box crypto specification? 

[Sync API wishlist]

Get_peers should also return IP addresses along with client names.

[Syncapp Mobile: Wishlist]

Automatically disable auto-sleep on android when the device is plugged in.

[Windows 7 Issues]

Better yet, rename the file to sync.conf and put it in C:\Users\{YourUser}\AppData\Roaming\BitTorrent Sync.

This way it will be loaded even if the app is started automatically.

[Sync Dev Ideas]

Will the Plus version have (free) centralized management? If not and there still won't be anything good floating around when I'll have time for it (early 2014 maybe) then I'm planning on doing that.

 

Until then, a couple of important feature ideas for the API, I'd really like: Option to pause sync per share like on android and as some of us said before, event listeners which could be of two types: URL callbacks and local application/script callbacks (for example for stopping sync while working on a project in an IDE).

[extreme slowness when btsync encounter symlinks when stat() files]

Symlinks should be propagated from Linux to Windows and vice versa?

Neither Win nor *nix symlinks are synced, but Win junction points are which is good.

[Android battery use comparison: BitTorrent Sync, Dropbox, DS Cloud]

That's why the droid client disconnects from other peers when it goes to sleep mode.

[If You Have Sync Issue]

It'd be nice to know about these changes or maybe even get full feature specifications...

I hope these command characters are escapable. 

[Latest Sync Build: 1.1.70]

Android builds have different version numbers.

Besides, you can get the latest version from Google Play.

[Latest Sync Build: 1.1.70]

I started syncing pidgin settings and it's annoying to see the buddy list xml being updated every minute

and clogging the logs. So please consider adding the option to rate limit certain files or entire shares.

[syncing databases]

Sounds like a job for SQL replication.

Preferably over a secure channel like an SSH or a VPN tunnel. (It's easier to keep a VPN connection truly persistent.)

[Accessing WebUI through Apache reverse proxy]

Just change the RewriteRule line to RewriteRule ^ /btsync/gui/en/index.html [L,R=301] in my last example.

It does an ugly JS redirection which is hard to handle without overriding and redirecting /gui as well.

Other than that, everything should work fine.

P.S: The new rewrite rule does not apply to all versions. 

[Best Practices for Sending Secret]

Security through obscurity is bad practice.

Use PGP or steganography and send it in cat pictures.

[BTSync uses AES128 in CTR mode, which is good (was: Bittorrent Sync is using 128-bit AES in ECB mode!)]

Please forgive me for reviving a security thread.

In this new spy-age would you consider adding the option to change the cipher to AES256-GCM or something similar?

I'm not saying AES128-CTR is not sufficient but we'd better be prepared for the future.