Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

How is this project related to telegram ? #2

Closed
erfanmola opened this issue Nov 4, 2020 · 6 comments
Closed

How is this project related to telegram ? #2

erfanmola opened this issue Nov 4, 2020 · 6 comments

Comments

@erfanmola
Copy link

I was just wondering how is this project related to telegram, how is it gonna obtain Telegram-Related-Data if we run it on our own server, and if it's gonna obtain data from telegram's own servers, then why not just use the telegram's own Bot API ?

And is it safe to use this ? I mean is it guaranteed that user's data would be safe ? Or it will be accessible as raw data on server-side ?
@levlam
Copy link
Contributor

levlam commented Nov 4, 2020

This is exactly the same server as run at https://api.telegram.org. All other answers can be derived from that.

@dashezup
Copy link

dashezup commented Nov 4, 2020
edited
Loading

Does bots which uses its own bot API server makes user risk of getting their IP being logged? (are there cases that user client transfer data directly from the bot api server?)
Assume when I download a file from such bot, are there chance that I download the file directly from the unofficial telegram bot API server?
If it does then I guess telegram should flag such bot to notice user the risk of using such bots.

@levlam
Copy link
Contributor

levlam commented Nov 4, 2020

Users interact with Telegram API. Bots interact with Telegram API. Users don't interact with bots directly.

@MasterGroosha
Copy link

@dashezup

Assume when I download a file from such bot, are there chance that I download the file directly from the unofficial telegram bot API server?

Excuse me, but is there any difference? If the bot sends you (a Telegram user) a file, does it matter whether this bot runs the official API endpoint or its own? I guess it doesn't matter.

@dashezup
Copy link

dashezup commented Nov 5, 2020

@MasterGroosha
if the server send the user a dedicated file which has an unique ID and the user download the file directly from the unofficial server, the IP which get the file is very likely the user's actual IP (unless the user was using proxy/VPN).
It's important that when we were using official telegram client, we only connect to official telegram server (except for P2P calls or socks/mtproto proxy) to avoid IP leak.

But since levlan has point out that users don't interact with bots directly, it probably won't be this case.

@funnyflowerpot funnyflowerpot mentioned this issue Nov 5, 2020
Closed
@levlam
Copy link
Contributor

levlam commented Nov 5, 2020

You can find a nice diagram in #1 (comment). The only difference between using a local Bot API server and the api.telegram.org server is a location of the provided in this repository TDLib-based Bot API server.

@levlam levlam closed this as completed Nov 5, 2020
@Aqendo Aqendo mentioned this issue Aug 23, 2023
Closed
deus-developer pushed a commit to deus-developer/telegram-bot-api that referenced this issue Dec 23, 2024
@MarcoBuster @cavallium @giuseppeM99
GitHub Actions multi-arch build and push workflow (tdlib#2)
3e084c9 
* Update docker.yml

This reverts commit bb6708f.

Co-authored-by: Andrea Cavalli <[email protected]>
Co-authored-by: giuseppeM99 <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@MasterGroosha @levlam @erfanmola @dashezup