I use a third-party fork of Signal called @mollyim.
I imagine I'm safe because I'm basically trusting the dev of that rather than the Signal dev. And it's all end to end encrypted so no-one's trusting the server.
Or maybe not. Maybe he hasn't audited the code before modifying it.
I imagine I'm safe because I'm basically trusting the dev of that rather than the Signal dev. And it's all end to end encrypted so no-one's trusting the server.
Or maybe not. Maybe he hasn't audited the code before modifying it.
the project was actually a State Department-connected initiative that planned to wield open source Internet projects made by hacker communities as tools for American foreign policy goals”—including by empowering “activists [and] parties opposed to governments that the USA doesn’t like.” Whatever the merits of such efforts,
The enemy of my enemy is my temporary ally.
Do they provide reproducible build instructions for Android?
- replies
- 1
- announces
- 0
- likes
- 0
What do you think of SimpleX Chat?
There are no global identifiers and it’s decentralised so the metadata privacy should be good. The creator is suspicious of Crystals-Kyber so he used strnup761 instead for PQC. And it’s possible to switch servers smoothly if you get kicked from one or there’s a problem with it.
Aren't private chats in Matrix basically encrypted multi-user rooms between two people?
I ask because you can easily "upgrade" a two-person room to a multi-person room.
I ask because you can easily "upgrade" a two-person room to a multi-person room.
I don't really see how it could be fixed in any case. How can you send a presence notification to a participant in a chat without also notifying the server they are on? Even if it's encrypted it will still indicate that you are online.
Or is the problem that notifications are being sent automatically without the user's knowledge?
Or is the problem that notifications are being sent automatically without the user's knowledge?
Right. I was thinking about the bug mentioned in the gist that room joins are unauthenticated and therefore a server can maliciously add users to spy on the participants.
The top company there by gross income is American. The second is British.