Cerques recents
Opcions de cerca
Administrat per:
One thing I don't like about #Signal is that it only supports one mobile device per account. I know they want to make it easy for the average user. But for someone who has two phones, it's very limiting.
That's why I prefer #Matrix. Adding another device and decrypting all existing messages doesn't even feel so clunky anymore.
@spla@mastodont.cat@sesivany did you tried Delta Chat? it also support several devices and several accounts in the very same device.
@spla You're going around and spamming every thread about Signal promoting some obscure messenger that is inherently less secure than Signal, because it lacks forward secrecy, cryptographic deniability, as well as post-quantum encryption. You're also spreading misinformation about the Signal backend being proprietary: https://mastodont.cat/@spla/114007636221905384
@Andromxda letting people know there are other options and expressing your opinion is not "sending spam" or now anyone that doesn't agree with you in how perfect and "state of the art" is #Signal is a spammer to you?
#DeltaChat is not an "obscure messenger", says the fanboy of a messenger that even makes you solve a CAPTCHA puzzle on registration and make misleading blog posts about how Signal "doesn't depend on phone numbers now" that everyone misinterpret and spread fake news
says the fanboy of a messenger
First of all, I'm not a fanboy of any messenger, I just follow the recommendations of industry experts. And I want a messenger that is actually suitable for normies. Neither Matrix, XMPP + OMEMO or whatever the currently recommended protocol extension for E2EE is, nor Delta Chat is a good and normie-friendly replacement for WhatsApp or iMessage.
messenger that even makes you solve a CAPTCHA puzzle on registration
What's wrong with a CAPTCHA? It is necessary, just like the phone number requirement, in order to avoid spam. A problem that Delta Chat will never have, because no one uses it, and it's not even interesting enough for spammers. This further proves my point about Delta being an obscure messenger.
misleading blog posts about how Signal "doesn't depend on phone numbers now"
I don't know how this is misleading, the blog post literally says that you still need a phone number to register: https://signal.org/blog/phone-number-privacy-usernames/#:~:text=(you%20will%20still%20need%20a%20phone%20number%20to%20sign%20up%20for%20signal)
@Andromxda it is pointless to discuss this with you when it is obvious you have never used Delta Chat and can't make an informed opinion, the reason there are not spammers in Delta Chat and there is no need for phone numbers or captcha is because people need to encrypt to be able to send messages so they can't abuse the server to send spam randomly, they first need the targets to send them an invitation link that would allow to send messages to them
@Andromxda about the blog post, I don't remember which of them was or if they updated it but IRL a Signal fanboy was insisting to me that it was no longer required and I had to reinstall Signal in front of him to try out and see it was not real. Looking quickly around I find some blog post from other sites that frame it like that:
@Andromxda
also forward secrecy is pointless if you don't use disappearing messages, to get the keys they need to get your phone and then they also have all the message history, who is doing this while what they want is too keep all the messages and family pictures?
About "cryptographic deniability" tell me one, JUST ONE, judge that has accepted this justification in court?
@Andromxda
Sealed sender is also pointless if they can relate your IP to your phone number, and it is opportunistic not even warrantied
And have you ever tried to track if your messages are sent with sealed sender? It is super hard to know, first you need to enable some advanced setting to show the icon and then it is only displayed if you manually select the message and check the info, you can't easily see it for all messages without manual action every time
@adbenitez @Andromxda
Signal does not advertise deniability and never committed to offer it. Apparently it does not hold already since the introduction of PQC and this is without analyzing group chats which have more complicated key management than multi-device 1:1 chats ("sender keys"): https://eprint.iacr.org/2024/741
If you need deniability, use #OTR which is designed to offer this property unlike Signal protocol.
1. Its server is centralized in the US and has a vendor lock-in. It means you and your contacts should be on signal to communicate. I know the signal server has its source code on GitHub but you cannot verify the same code is running on their servers.
2. The client on the play store is closed source. Unless someone has reproduced the build. I will take this back.
3. It requires you to give your phone number and contacts list to signal servers. They will tell you oh it's encrypted and processed on sgx enclaves etc. If someone verified it let me know.
4. It cannot be used on other devices with ease. You can't have multiple accounts. The desktop app is a bloated electron app. There's no web app. Imagine for sending text to another computer you have to package a whole web browser to make it work.
Signal is definitely a huge step forward from WhatsApp but its far from perfect. #matrix has similar centralization and resource usage issues. At least it doesn't need your phone number