Topic: Global untraceable phone calls - is it still a good idea? (Read 473 times)

If it's cheaper than any other options out there to call someone internationally then yes I think that it should be created and I think that this is a really good thing for many reasons especially for those that are trying to go off the grid but still have some phone calls to make, they're going to be your no. 1 customer. You're creating a service that provides privacy to someone so I think that this is always a good idea here in the forum.

Of course everyone should be careful but in this kind of service, it's the people that's responsible on how good it would be used and not the service itself, look at the Internet and the World Wide Web, it's creators didn't wish for all this gore and porn and everything deplorable online, it's the people that's using it that's created them, totally agree with your concern about false advertising though, I'm sure that it's a difficult thing to do but for me, we just have to trust them as a business, all it takes is just one time for them to prove that they're lying and you can just not use their service anymore but that thing only applies to some services, some services you really need that they're telling the truth.

Well, now that we have determined that the aim of the project are not to make the phone call untraceable... but rather to make the payment for the call untraceable, we need to dive into that. 

You need to educate the users on the correct methods to have pseudo anonymity for their transactions with Bitcoin... or this whole idea will be useless. (People should not re-use Bitcoin addresses or make payments via Exchanges or 3rd party wallets etc... so these things needs to be added as a "How to" guide on your site.)

Good luck with your project... it has some legal advantages. 

This is something absolutely new to me, and I think its a great idea, this is absolutely a unique concept and the fact that the calls are untraceable makes it even more amazing, But then, there has to be way to really verify that the calls are truly untraceable since if anybody is going to be trying this out, that would be one of the major reasons.

This also is my idea on further development of this project.
1. I think its worth giving it a try, it is an idea that i think would go places if its properly developed, you can have it as a side project which you work on on your spare time.
2. You should also have this on your roadmap, to develop the project into a simple mobile and desktop app simply for convenience, not everybody would want to keep visiting the website any time the need for this service arises, so having a mobile and desktop app will really help in encouraging people to use this service.

Well it is mainly because the operator I use for the trunking of the calls is an American company. This in combination with the EU roaming regulations from 2016 which makes calls within EU cheap, which in turn made the telcos charge more from calls from outside the EU. The solution would be to use a European company to trunk the calls, and there is no reason why I can't have several and chose the one that is cheaper for each call. I have a European one too, but I haven't been able to get my PBX software to work with that one yet. I will investigate this, to my defence I'll say that I think configuring VoIP servers and getting stuff to interoperate is way more complicated than it should be...

Alright! Temporary signup it will be... The session token is also a good idea.

Hm, but if the signup doesn't use email or phone number, what would you be using? You mean signup with username and password (but no email)?

Missed that with it not being on the 1st page / main page. My bad.
Did a test and it did work, going to try it at a location behind a sonicwall and see if it functions. Some services do work others do not. We have never been able to figure out why and neither has sonicwall. Never cared that much since what they need to use works, but it's been my test to see how other services handle oddball configurations.

-Dave

I just tested this and I can confirm that you are right, but rates are a bit higher than I expected for calls in Europe, maybe because server and everything else is based in United States.

I don't want to use anything like this that is connected with metamask wallet, so temporary sign-up would be just fine.
Maybe you can create something like Chipmixer website is using with their Session Token that is used to restore last session.
I don't have anything against normal sign-up registration as long as I don't have to use email addresses or real phone numbers.

Thank you so much guys for testing!

Will summarise some points here...

- Regarding the delay for the echo test. Depends on what you mean... The way that echo test works, is that it records for 5 seconds, then
reads back the recording. So that part of the delay is by design. But then also, I have noticed a bit of delay which I think is because of the location of my server. Ideally it should be close to where the caller is. Since I'm in Indonesia, I put it in Singapore. Which I don't think is close to where my costumers will be, so I think I will move it. Eventually have several servers in different continents, but should probably start with North America or Europe rater than Asia.

- I don't have a "rate table", because there are many different rates depending on the number you are calling. The way to get the rate for a number is to type it in the number input field and it will be shown. It is not 100% clear that it is supposed to work that way though, so will add a note about it.

- Yep there is an echo test by calling the number 801. But it is a bit hard to find, so will add a note about that too.

- The reason why you have to create an account is because I thought it will be too easy to lose your credit otherwise. If you don't have an account, the only way to associate you with your credit would be through a cookie in the browser, so if you clear your cookies, the credit will be gone. But then again, this is actually the way e.g. lightning-roulette.com works, i.e. with a cookie. And it is also the way good old phone booths worked, they didn't have an "account", you just paid the money for one phone call before you made it. So I think I will introduce a kind of signup-less temporary accounts, where the credit will be associated with a cookie. This is actually the way my old service worked, and I think this is OK as long as it is clearly stated. Either that, or I could add meta mask support, which will give a more anonymous signup. I have thought about both of these options, which one do you think I should prioritise?

- I don't know where that SSL error comes from... () I tried with Firefox just now, and it worked fine for me. I haven't done a lot of cross browser testing though, so I think I will get myself an account at Browsersack to do that.

Alright, thanks a lot for testing and feedback! This gives me a to do list which I will chip away at. Will let you know when there is something new to test!

It seems that it already has that option ^{[you just have to dial "801" and it doesn't require having an account]}.

• @limikael: Is the actual quality similar to what I've heard on the test call ^{[the delay felt like a couple of seconds (not sure if it has something to do with my net)]}?

When you type in a correct/valid number, it'll show you the rates beneath the number ^{[not sure if it was added recently]}.

Domain name papayaphone is cool, but nothing is showing for me on that website except error message, and I tried several different browsers.
Only browser that worked for me was Tor browser, so maybe there are restrictions for some IP addresses and regions?
I also wonder if Tor browser would even work and have a good call quality, so I didn't test it yet.
I did notice that QR code was not showing up when I created invoice, that is probably something related with strict Tor browser settings, but copy invoice would work just fine.
I guess this is related with HTML canvas image data that needs to be enabled.



This is error message I am getting in my Firefox/Librewolf browsers:


This is home page in Tor browser:



I would suggest that you add price rates for calls, so I would know how much I need to pay for one minute of conversation, or something like that.
For example this is how viber rates looks like:
https://account.viber.com/en/rates-index

Some thoughts.
1) Have to create an account & login? Why? Should be able to do this a bit more anonymously.

2) You need to have a 'test call' option. Browser / firewall / whatever compatibility is a thing and there are known issues with webrtc with certain security appliances.

https://www.reddit.com/r/sonicwall/comments/94efxq/sonicwall_possibly_blocking_webrtc_traffic/
https://campus.barracuda.com/product/webapplicationfirewall/doc/49054741/how-to-enable-websocket/
and so on....

-Dave

Alright! A very early version available now, mileage will probably vary, really curious if someone can get it to work and get feedback:

https://papayaphone.com/

So it is not chiliphone this time, because someone snatched my domain... Anyway, I realised that chili is not ideal in a domain name since it can be spelled both chili and chilli. So papaya it is! Similar service, different vegetable (or is it fruit?).

Well if something like that happened it would of course be very tragic. However I think that allowing people to communicate in general leads to a safer and more prosperous world (thereby combating both crime and terrorism). I would be happy to stand up for this opinion, it is not like I'm selling guns, drugs or organising or promoting gambling...

I think this is a good idea to remove untraceable wording, but you have to make it super easy to use for average users... it's not really that hard to install and use viber.
So when I call someone using your service is my phone number identification going to be the same each time, or this would change with each call?
I guess that receiving call probably means there would be a dedicated phone number.

When you have some early beta version ready post it here for testing.

The thing is.... can you live with yourself, if someone used your service for criminal activities. (That was the reason why one of the biggest Mixer operators closed their site)

Imagine some Pedophile using your service to groom a child and then ultimately ending up in him/her raping or murdering that child? (Will the authorities come after you, if something like that happens and will your ToS stand up in court?)

Scenario #2 : Imagine if a terrorist organization used your service to plan a terrorist attack like 911. The 3Letter agencies will come down on you with the full force of the law.

It is fine, if you create a service like this for yourself and some people that you know, but when it is public.... things become a lot more complex. 

Thanks guys for all the feedback! Will not answer to all the posts individually because that would make the thread quite messy. Will summarize my take aways and conclusion.

Regarding untraceability. I will rely on an external SIP trunk to connect to the telephone network, and only god knows what the telco in charge of that SIP trunk wants to do with the traffic. The point was not to make it super-private. It is more untraceable in the same way as good old burner phones that you buy for cash. I.e., the phone call will not be more private, but at least the way you pay for the phone call will be. I would imagine that a WhatsApp call is more private, but with WhatsApp you can't call the regular phone network. I don't have any special measure or secret sauce to make it more untraceable than that. Also, I will not store any information about anything, but you will have to take my word for it, there is no way I can prove that I won't.

Anyway, my key selling point was not really the untraceability part, it is more an "extra" feature. The initial idea is really to scratch my own itch. The main use case, i.e. the itch to scratch is more like the following. I'm a digital nomad, and sometimes I have to call my bank, insurance company, embassy, tax man, or some something other government related back in my home country. If I just buy a local SIM card, it will be expensive. I could of course use Skype or Viber and pay with a credit card, but the process of downloading, signing up and jumping to all kinds of hoops just to make a phone call with those services is quite a hassle. It would be more convenient to just make a Bitcoin or Lightning payment here.

So I think I will tone down the "untraceability" in my marketing, and just call it a service to quickly make phone calls in the browser and pay with crypto.

Yep maybe in the future I can add the possibility to receive calls too, and to send and receive SMS. But just have to start somewhere first...

Related to technical aspects I'm planning to use Electrum running as a daemon. The reason why is that in this case I don't need to download the whole blockchain. I think that with BTCpayserver I do. Please correct me if I'm wrong, and also let me know if there are any specific reasons why BTCpayserver would be better than Electrum.

Alright, will continue to hack on it for a bit, and post an update when I have something to show...

I don't know if you knew this, but most of the things like Encrochat or Sky phones are actually created by government agencies for spying on people.

Everything in telegram is unencrypted and stored on their servers, including calls, public chats and private messages, except maybe secret messages that have some obscure encryption claims.
This is all connected with your IP address and mobile phone number you used for registration, so there is nothing private or secure about telegram.

If we talk about anything untraceable, can we even put in the same sentence "untraceable" and any "Google service"?. In this case WebRTC.


It's enough to receive only one SMS to activate Telegram acc, and voila.

Well, if you're going to make them untraceable, you have better had already figured out from who you're making them untraceable to.

If from the telecommunication companies, you're pretty safe. But from governments handing over subpoenas to the telecoms for data? Less so. Don't make your service another Encrochat, have a TOS that prohibits and bans illegal use of the service (this can be accomplished by keeping temporary logs of the phone calls) so that you stay on the good side of the law.

Viber is example of service like this and they are offering paid service for calling any number you want, that is actually cheaper than using regular landline or mobile phone.
I would like to see something similar that would respect privacy and won't spy on it's users, and I think this service would have very big use case, not only for criminals.
Maybe some extension could be created that could work on top of XMPP protocol (Conversations app, etc), that would enable calling all phone numbers.
This is just my imagination going wild

Aye, but don't those services collect information on you? By either requiring Know Your Customer (KYC) information on you or by cross referencing from the data collection honey pot. Even sim cards that you buy online now need to be registered to an address, and while at the moment I do believe you can buy sim cards at a store without KYC, in certain countries they've even began to require that.

So, I can see the appeal for a service like this, but as time goes on it's likely to be considered a illegal operation, especially as times become more constrictive with KYC.