Technology

58123 readers

4835 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS

168

Telegram starts to look like a super app, echoing WeChat (techcrunch.com)

submitted 11 months ago by original_reader@lemm.ee to c/technology@lemmy.world

113 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] jet@hackertalks.com 18 points 11 months ago (2 children)

Telegram has open source their client code. Not their server code. It's even on f Droid.

[–] smileyhead@discuss.tchncs.de 9 points 11 months ago* (last edited 11 months ago) (4 children)

But it's starting to get worse. Now they won't send you an SMS code for registration unless you are using official build of the app. Even chat app under libre licence must connect with something...

[–] atkdef@lemmy.world 3 points 11 months ago (1 children)

This actually is not a bad thing. If an unofficial client MITM the whole registration process, it's much harder for the true account owner to prove that he/she is the legit one.

Also, it doesn't really require a client to register; Telegram can be accessed from a browser.

[–] smileyhead@discuss.tchncs.de 0 points 11 months ago (1 children)

If unofficial app can MITM registration, it can the same way MITM login later.

doesn't require a client A side note, JavaScript app in the browser is as much an app as Java/Kotlin on Android. But I know websites and web-based applications are now so mixed together it sometimes can confuse me too.

And browser version of Telegram does not allow registering new accounts also.

[–] atkdef@lemmy.world 1 points 11 months ago* (last edited 11 months ago) (1 children)

Compared to login, MITM on registration means the culprit knows the IP address and the time of the registration, which is usually significant on claiming the account back.

I don't have a spare number to test, but I'm pretty sure entering a phone number in the web sends a SMS code. Do you have concrete evidence that it really doesn't work?

[–] smileyhead@discuss.tchncs.de 1 points 11 months ago

Unfortunetly not, I must test it also.

[–] clot27@lemm.ee 1 points 9 months ago

it costs them too much to send code as sms, also some client abuse that in some way, it also may help them to increase the download count of their official app which is not bad imo.

[–] jet@hackertalks.com 1 points 11 months ago (1 children)

I might be misunderstanding you, but I believe telegram requires SMS verification for all accounts, regardless of client.

[–] smileyhead@discuss.tchncs.de 3 points 11 months ago

What I mean is that they always require SMS code, but if you use app from F-Droid they won't send you this code.

[–] EngineerGaming@feddit.nl 1 points 11 months ago

One of the most egregious thing they've done imo is this:

If their app allows its users to access content from Telegram channels, third-party developers using the Telegram API are required to support and properly display official sponsored messages in their apps by January 1, 2022

As well as not allowing registration from desktop.

[–] cyberpunk007@lemmy.world 7 points 11 months ago (1 children)

Thank you. Installed fork client and now that stupid story crap is gone and there's new stuff I can do to fine tune things.

[–] darcy@discuss.tchncs.de 1 points 11 months ago (1 children)

How do I do this?

[–] cyberpunk007@lemmy.world 1 points 11 months ago

Search fdroid for telegram and it came up

https://www.f-droid.org/en/packages/org.forkgram.messenger/