I don't have a need for secure chat at this moment but if I did ...
I would just find a simple SSH application and give it to all of the chat participants.
Then I would establish a 1U server that I own and control, or even a raspi in my own house, and have everyone log in to run some simple (and old) version of 'talk' - presumably one that has a "wall" feature.
Very simple and very low trust.
Further, the exploit(s) required to infiltrate this are extremely valuable and also hyper specific.
I would have to be an extremely valuable and urgent target for any actor to burn an honest-to-god OpenSSH 0day on ... or a remote root FreeBSD exploit of a system running nothing but OpenSSH.
Bonus points if no ports are open and you have to knock ... which suggests a threat model of remote root vuln on a system with no ports open.
I would just find a simple SSH application and give it to all of the chat participants.
Then I would establish a 1U server that I own and control, or even a raspi in my own house, and have everyone log in to run some simple (and old) version of 'talk' - presumably one that has a "wall" feature.
Very simple and very low trust.
Further, the exploit(s) required to infiltrate this are extremely valuable and also hyper specific.
I would have to be an extremely valuable and urgent target for any actor to burn an honest-to-god OpenSSH 0day on ... or a remote root FreeBSD exploit of a system running nothing but OpenSSH.
Bonus points if no ports are open and you have to knock ... which suggests a threat model of remote root vuln on a system with no ports open.
FWIW I have no use for such an edifice.