You must log in or # to comment.
Centimeter by centimeter getting people towards signal and matrix chats
could not figure those out
Matrix I could understand because of federation. But Signal? That has to be rage bait
do people do ragebait here?
Ever since the CEO of Telegram was basically lured to Paris, arrested, then read the riot act for Telegram’s non-cooperation with French authorities, the company has been responding to warrants and downplaying its “E2EE” features. Expect them to have a fully accessible backdoor for LE.
By the way, don’t forget about that Bitlocker backdoor that “mysteriously” doesn’t affect Windows 10.
The EU and US digital surveillance states have been tightening their grip on encryption and online anonymity for years now. “Age verification” is just the latest push.
As long as the keys are handled via a closed source app and server system, e2ee is potentially broken.
Even if you generated the key, keep the private part locally and submitted only the public part to your communication partner, you can never be sure that the intransparent app does keep your private key private.
With WhatsApp I’m quite sure that they somehow can retrieve the private key. Certain events point to that. But I see no reason to consider signal or telegram any more trustworthy - they are all prone to governmental influence.
And as open source and closed app infrastructure are incompatible, I would not handle anything important on an Android or Apple device.
Why would you not trust Signal?
You don’t have to trust their server infrastructure, because the end to end encryption has been verified by countless experts (and all their client side code can be looked at by anyone).
to be fair there is no way to verify the google play distributed app has been built from the published source code. there are also people arguing that the closed source google components built into it could work as a backdoor
You can build the app from source code though. Couldn’t you compare that to the Google Build?
Also, you could use a fork like Molly, they removed all proprietary binary blobs and replaced them with FOSS alternatives. And it’s still fully compatible with Signal
only if the app is built reproducibly. I suspect the google libraries are likely minified/obfuscated by default though.
Also, you could use a fork like Molly
I do, but that’s only so much when the point of the app is communicating with other people
Signal (assuming you live in a country that hasn’t blacklisted them for refusing to install backdoors).
Signal still doesn’t support bots and is shit for bigger groups
Good for 1-10 friends and 1on1 chats tho
Are these negatives?
People criticising Telegram have no idea how big some of the channels there are. They’re stupid big. Like full ass Discord server but with one channel big.
That needs automated moderation tools - bots as well as built in tools to manage lager groups.
Signal doesn’t do that at all. It’s a good replacement for group texts, not communities.
And for me personally: missing first party bot support makes it a complete non-starter.
I mean, fair enough on you opinions, but it sounds as if all you’re saying is this one particular messaging tool doesn’t fit your requirements?
As I see it, (and I may be speculating and/or wrong), supporting bots might worsen some aspects of other users experience. If there necessitates a worsening of other users’ experience in order to support what you’d want to do, at what point should you just use a different app?
There’s little reasoning for catering to a niche use like huge channels and bots, and tbh that sounds like a dreadful experience to me. Dev time is costly, feature creep is a killer, I don’t see lack of support for unwanted (to me) features as a negative.
Signal has bit me already. Every single *Claw supports Signal bots, which pretend to be actual people.
Telegram has explicit first party bot support, a bot is always a bot and identified as such
Same. Any non-verifyable app in an app store is at least suspect.
Better than WhatsApp at least
As in “with WhatsApp we know, with others we cannot exclude the possibility”?
As in “fuck the zucc”
I would not limit it to him.
So it’s not selling all my information to the Kremlin?
Russia is a toothless tiger.
Security doesn’t equal private.
it is not hosted in the US or a country affiliated with the US, which makes it infinitepy more secure from the point of view of sovereign risk
No, it does not. There is a different primary actor, but that does not exclude anything.
