Technology

1928 readers

7 users here now

Rumors, happenings, and innovations in the technology sphere. If it's technological news, it probably belongs here.

Subcommunities on Beehaw:

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago

MODERATORS

[email protected]

The green bubble problem is about to get even worse (Apple/Android) (www.theverge.com)

submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]

141 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] RandomBit 5 points 1 year ago (2 children)

What security issues does Signal have?

[–] [email protected] 8 points 1 year ago (3 children)

There are two legitimate concerns about Signal: they use real phone numbers as identifiers, and you have to trust Signal as the server operator as they don't allow their client to be used with other servers. While the server software is also open source, you have to trust that they're running the same version in production.

[–] RandomBit 3 points 1 year ago (1 children)

I agree; however, the second point I don't see as Signal specific. In any service, how do you verify that a server is running unmodified open source code? For the vast majority of people, they are also depending upon the client being unmodified.

[–] [email protected] 2 points 1 year ago

If you could run your own Signal instance, then that could help alleviate concerns of bad faith operators. That's what Session is essentially (started as a fork of Signal): https://getsession.org

[–] [email protected] 3 points 1 year ago

With e2e encryption, you don't need to trust the server, you only need to trust the clients.

[–] [email protected] 1 points 1 year ago (1 children)

@sickmatter @dirtmayor @jmcs @RandomBit @realcaseyrollins

I'd argue another concern is Signal hosting data in the U.S.A. rather than a country with stronger data privacy laws and one that isn't part of fourteen eyes. The phone number requirement is my biggest issue though.

[–] [email protected] 2 points 1 year ago (1 children)

@PublicLewdness @dirtmayor @jmcs @sickmatter @RandomBit @realcaseyrollins Signal was forked to create Session

Delta Chat is better then
Telegram
Whatsapp
Signal
Session

Delta Chat -
Open Source
De Centralised
No app mandate
No SMS mandate
Works with pop3/smtp email
No Cloud
Not "Russian"
Not "American"

Delta Chat
Website delta.chat/en/
App f-droid.org/en/packages/com.b44t.messenger/

My video on Delta Chat
joshwhotv.com/v/.73TrMQ

[–] [email protected] 5 points 1 year ago (2 children)

@RandomBit I'm not aware of exactly what issues #Signal has, but I know it's centralized so I'm not a big fan of that

[–] RandomBit 3 points 1 year ago (1 children)

Yes, it's not ideal. Decentralized key distribution seems to be a intractable problem for mass adoption.

[–] [email protected] 3 points 1 year ago (1 children)

@RandomBit That said if #Signal ever supports #RCS I'd strongly consider getting it, since half my siblings are on #RCS

[–] [email protected] 1 points 1 year ago

@realcaseyrollins @RandomBit If Signal is ditching SMS, they aren't going to support RCS. Not to mention nobody other than Google (and via Google's direct offer, Apple) have the keys to use it.

[–] [email protected] 2 points 1 year ago (1 children)

Sort of off topic but are you replying from Mastodon?

[–] [email protected] 1 points 1 year ago (1 children)

@pootedesu Yep!

[–] [email protected] 2 points 1 year ago

That is pretty cool. I'm just figuring out how this all works so seeing 2 platforms melding into one comment thread is still like magic to me.