If I pair my Android phone and my laptop, I can share files over Bluetooth from the phone to the laptop. I’ve started finding this a really convenient method for me to send files to a Linux laptop without needing to install a separate app on either the phone or my laptop. Especially when I’m away from my home network (I use SFTP at home).
How secure is this? Is there encryption by default and could someone else nearby with a receiver potentially decode the file you’re sending?
You must log in or register to comment.
Heads up, I know you said “without additional apps,” but check out KDEconnect, it’s pretty sweet.
Also LocalSend
Pairdrop.net is better I would say
Couldn’t you just directly transfer files via a USB cable? Last time I checked, you don’t need any software for Android <–> Windows, or Android <–> Linux.
It’s alright but if you really want it to be private, specially when in a public space, you should use a cable. It would be faster too.
How can you send files over bluetooth when you are not home? You are confusing it with something else. Bluetooth has a 10 meter radius. Also, it is not secure at all, if you send important files and suspect that someone might be eavesdropping within 10 meters, don’t use it
… I assume they have both the phone and laptop with them when they are away from home?
It is extremely unlikely that there would be a motivated enough attacker to target you. And if someone is not targeting you, but just attacking everyone in range, it’s unlikely the files you are transferring are of any value to them.
No, thanks:
It uses a WebRTC peer-to-peer connection. WebRTC needs a signaling server that is only used to establish a connection. The server is not involved in the file transfer.
If your devices are paired and behind a NAT, the PairDrop TURN Server is used to route your files and messages.
It is encrypted, but the security of the encryption varies between implementations (some have been found to generate keys insecurely or screw up session management, etc). For most modern devices it’s decent, as long as you’re not actively targeted by some kind of intel agency
I’ve been using Flying Carpet, and it works pretty well. You can read about the encryption decisions further down the ReadMe.
https://github.com/spieglt/FlyingCarpet?tab=readme-ov-file
It utilizes the LocalOnlyHotspot API, and the data is encrypted in transit (and any potential hacker would have to be on the WPA2-protected network that’s generated, anyway). I recommend reading more about it yourself and not just taking my word for it.
