Supernova1051

joined 2 years ago
[–] Supernova1051@sh.itjust.works 5 points 11 hours ago (1 children)

did they comment (maybe I missed it) on why they're ending development?

the rich always get a fast pass

they think because he inherited a recovering economy, that he himself had some major part in it.

~~as usual, devs are lost in implementing ludicrously complex scenarios for threat models that touch but a percentile of users, instead of implementing functionality that’s normal everywhere else.~~

as usual, users are lost in complaining about a privacy-centered application prioritizing on privacy-centered solutions, instead of using the hundreds of other already insecure applications that are normal everywhere else.

people really will complain about anything. It's like progress means nothing, unless a fully working solution is available day 1, it's completely worthless. bff

What is the use case for it?

The same use case as any crypto - to use as currency and pay debts.

Seems kind of pointless and a lot more tedious than just a bank transfer.

The same can be said of every crypto which doesn't hit any kind of adoption.

Why does signal include crypto nonsense in their app (I like crypto, but just can’t see any reason why it should be integrated in the app)

It aligns with Signal's mission statement to "Protect free expression and enable secure global communication through open source privacy technology." [1]. The reason it was integrated into the app was to support crypto that was "easy to use". The same way cash provides privacy by not allowing third parties to see what you're doing, they believe(d) that enabling a privacy preserving crypto wallet would further "protect free expression".

I’m sad that signal does not have support for 3rd party open source clients that could remove such features.

It's not not enabled by default and makes up for (based on github commits and pulling a random number out of my ass based on my continue following of Signal's development) less than 1% of development work since it was introduced.

Why not add support for monero instead?

Monero did not meet the technical requirements that the Signal developers were looking for at the time. Signal has commented that they would consider adding other crypto, as long as it meets the technical requirements - which I don't have so can't source unfortunately.

[1] https://signalfoundation.org/en/

[–] Supernova1051@sh.itjust.works 10 points 2 weeks ago

Actually yes. They want to privatize it so that they can make money on it. Failure is the goal.

Actually yes. They want to privatize it so that they can ~~make money on it~~ further exploit the working class. Failure is the goal.

Although you're right, I like to call out what it will do to everyone so it's more explicit and will hopefully click in people's minds.

[–] Supernova1051@sh.itjust.works 23 points 2 weeks ago

Trump's is Putin's puppet. He's set to destroy whatever he can.

Happens more than we'd like to believe. The mans dad wasn't actually even dead in the case linked below. The policy will continue to make these mistakes until the consequences of their failures comes directly out of their pay.

https://www.latimes.com/california/story/2024-06-01/fontana-police-coerced-false-murder-confession-with-lies

I bought a 20TB external hard drive a year ago for 0.015 cents per GB. This was after taxes, so it was technically cheaper.

$301.69/20,000 = 0.0150

nor any evidence of them selling or allowing anyone access to their servers and recent headline news backs this up

The entire point is that you shouldn't have to put your trust that a third party (Telegram or whoever takes over in the future) will not sell/allow access to your already accessible data.

There’s no evidence that MTProto has ever been cracked, nor any evidence of them selling or allowing anyone access to their servers and recent headline news backs this up

Just because it's not happening now does not mean it cannot happen in the future. If/when they do get compromised/sold, they will already have your data; it's completely out of your control.

Google, on the other hand, routinely allow “agencies” access to their servers, often without a warrant

Exactly my point. Google are using the exact same "security" as Telegram. Your data is already compromised. Side note - supposedly RCS chats between Android is E2EE although I wouldn't trust it as, like Telegram, you're mixing high/low security context, which is bad OPSEC.

WhatsApp - who you cite as a good example of E2E encryption - stores chat backups on GDrive unencrypted by default

  1. Security is about layers. E2EE is better than not having E2EE. Same as transport layer encryption is better than none. Would you prefer anyone on the wire can read your messages just because it's not perfect in every single use case? No, and for that same reason, E2EE is better.
  2. Backups can be made E2EE [1]. Is this perfect? No. But its significantly better than Telegram.
  3. I'm only pointing out that Whatsapp is better for privacy than Telegram - I still don't personally use or recommend it.

... can you be sure the same is true for the people on the other end of your chats?

Valid concern, but this threat exists on almost every single platform. Who's to stop anyone from taking screenshots of all your messages and not storing them securely?

[1] https://www.tomsguide.com/news/whatsapp-encrypted-backups

Signal is completely open source and auditable by anyone: https://github.com/signalapp

if you were to create your own clone, it would not interoperate with the real one.

The FBI can't just force them to add malicious code. A bad actor could try to contribute bad code, but Signal's devs would likely catch it.

view more: next ›