this post was submitted on 11 May 2025

156 points (85.5% liked)

Privacy

37745 readers

721 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

156

Why does Signal want a phone number to register if it's supposedly privacy first? (programming.dev)

submitted 1 day ago by 0101100101@programming.dev to c/privacy@lemmy.ml

244 comments fedilink hide all child comments

I remember a time when visiting a website that opens a javacript dialog box asking for your name so the message "hi " could be displayed was baulked at.

Why does signal want a phone number to register? Is there a better alternative?

you are viewing a single comment's thread
view the rest of the comments

[–] solrize@lemmy.world 5 points 1 day ago (2 children)

Is there a quick explanation of what signal actually does? I don't understand the need for a phone number either. Jami doesn't ask for a phone number. It has other deficiencies that make me not want to use it, but those are technical rather than policy, more or less. Similarly, irc (I'm luddite enough to still be using it) doesn't ask for a phone number either. So this is all suspicious. There are a bunch of other things like this too (Element, Matrix, etc.) that I haven't looked into and tbh I don't understand why they exist.

[–] CosmicTurtle0@lemmy.dbzer0.com 4 points 1 day ago (1 children)

Signal is a messenger service. You can expire messages after a certain amount of time.

They ask for a phone number to limit bots. I used my Google voice number and it worked fine. I like Telegram which banned me after a day of use for using Google Voice.

[–] solrize@lemmy.world -2 points 1 day ago (1 children)

I get that Signal is a messaging system (not sure if "messenger service" has a specific meaning). What I don't understand is why I'd want to use it instead of any of the million others that are out there. I've never used Signal and don't have the slightest clue about how it operates, but apparently it tries to mess with the contact list on your phone? That sounds bad. I use Nextcloud Chat sometimes and its web design is ugly, but it works ok and you can self-host it fairly easily. It doesn't do anything with your phone contacts. Jami is distributed but (maybe unrelated) I often have trouble getting it to work at all.

[–] ryannathans@aussie.zone 4 points 1 day ago (2 children)

It doesn't "mess with your contacts". You can choose to give contacts access if you wish to have secure contact discovery. Contacts are not uploaded.

It's robustly encrypted and quantum secure, without metadata leaks like the sender of a message.

It's recommended by Edward Snowden.

If you want to message someone, have the ability to verify there is no man in the middle attack, have perfect forward secrecy, very strong crypto, use open source software and still have all the conveniences of a modern message app, use signal.

[–] rirus@feddit.org -1 points 10 hours ago (1 children)

CONTACTS ARE UPLOADED

Robust encryption isn't useful if you don't verify the fingerprint and signal makes that not intuitively.

SIGNAL CLIENT HAS UNFREE SOFTWARE INCLUDED

[–] ryannathans@aussie.zone 1 points 4 hours ago* (last edited 4 hours ago)

Contacts are never uploaded

Hashes of some numbers are if you enable contact discovery

Verifying keys is easy, what are you talking about?

[–] solrize@lemmy.world 3 points 22 hours ago (1 children)

Do you mean the client side is open source? What about the server? If you're required to use Signal's server, how do you know it's not disclosing metadata? If you can self-host it, why the phone number?

[–] ryannathans@aussie.zone 2 points 20 hours ago* (last edited 20 hours ago) (2 children)

The idea is you don't need to trust the server

Messages sent don't contain a readable sender field

Mobile numbers may not be necessary long term, architecture depends on accounts being created Witt phone numbers. Usernames were very recently introduced. Soon we may see requirement for phone number dropped, unless related to spam control

[–] rirus@feddit.org 1 points 10 hours ago

You trust the server if you don't verify fingerprints. Signal makes that too difficult.

Sealed sender is a theater that you can enable but still have to trust Intel, aws and the signal server.

[–] solrize@lemmy.world 2 points 20 hours ago (1 children)

The wikipedia article looks informative and I will read through it: https://en.wikipedia.org/wiki/Signal_(software)

Is spam a serious problem on other messaging systems?

[–] ryannathans@aussie.zone 1 points 4 hours ago

I have received maybe 3 spam messages in many years of use

Spam is a huge problem on other messaging apps I have tried

[–] devfuuu@lemmy.world 2 points 1 day ago (1 children)

It's not suspicious. It's been talked about for years. People know exactly what the phone number is used for. Easy discoverability, quick and seamless onboarding of new users by providing a way to bootstrap their social graph, and it being very similar to the process of the other biggest player that people just understand. And spam prevention. The phones are not leaked or used for anything else. The other alternatives exist and you are welcome to onboard the people you want onto them if you think it's simpler.

The code is open, if you don't trust other people and can't read the code to understand then hire someone you trust to validate the claims and assure you. But spreading FUD and saying it's suspicious is not productive to anyone.

[–] solrize@lemmy.world 1 points 22 hours ago* (last edited 22 hours ago) (3 children)

I don't understand what you mean about discoverability: is my presence on the network advertised to strangers and spammers? That doesn't sound good. What does the onboarding process look like?
You still haven't said what Signal's advantages are supposed to be over alternatives, though I can guess some (e.g. better/more crypto than irc has). Jami seems conceptually ok, but buggy in implementation. Nextcloud Talk works but is kind of clunky. Matrix is popular though I've never used it: is it the main alternative to Signal these days? I thought it was what all the hipsters had migrated to while luddites like me were still on irc. Jitsi Meet looks nice though again I haven't explored it much. I've been puzzled for a long time that there is so much work in this area yet everything has deficiencies. Are there difficult problems to solve?
If Signal's code is open then of course I'd want to self-host the server. Can I do that? Does that get in the way of the onboarding process you mention? Where does the phone number come in, in that case? If I to use Signal's server, that doesn't sound so open, and normally there's no way for me to verify that it's running the same code that they claim.

I don't see where I'm spreading FUD. Ignoring a question and calling it FUD doesn't invalidate the question.

[–] rirus@feddit.org 2 points 10 hours ago

You can easily migrate everyone from WhatsApp to Signal and they don't have to exchange usernames as most people have the phonenumbers in their contacts. (This has massive drawbacks addressed somewhere else, one lesser known fact is that they would have to verify fingerprints anyway to be sure they are speaking to the right person an not a proxy. Instead of that they could also exchange username+fingerprint initially, like Simplex does it.)

[–] rirus@feddit.org 2 points 10 hours ago (1 children)

You can't easily selfhost Signal. They engineered it purposefully to only run on Big Tech Clouds with specific Intel CPUs they put (too much) trust in.

[–] solrize@lemmy.world 1 points 7 hours ago

Very interesting, thanks. Do you mean they use SGX (Intel's buggy secure enclave feature)? Any idea what they use it for? If not SGX, do you know what the issue is? AMD Epyc processors have something similar but different, fwiw. If there is such highly secret info on the server though, that makes self-hosting even more important. It also makes the architecture suspect.

[–] rirus@feddit.org 2 points 10 hours ago (1 children)

Yes, kinda, if they have you in their contact books, they get a notification you joined.

[–] solrize@lemmy.world 1 points 6 hours ago

Thanks. The more I think about it, the more this seems like outright evil behaviour on Signal's part to pursue user growth, similar to Facebook etc. Imagine that you and your boss are in each other's contacts for obvious work-related reasons. Do you really want Signal notifying your boss that you registered for Signal? For some of us it's fine, but in general it seems like a terrible idea.