this post was submitted on 12 Oct 2023
333 points (95.4% liked)
Privacy
31991 readers
978 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I think this app is pretty bullshit, if you want something secure just use Element... https://element.io/download
Signal isn't even fully open source, there is an obscured closed source code to check if you are sending spam/scam which probably also allows them to read your messages. They are good coding and making protocols, but they are forced to leak any data to the USA by law and also forced to not say anything about this.
Ah, and Element is officially on F-Droid. No bullshits.
that closed source code part you mention is on the server side... the client and protocols used are fully open source and constantly peer reviewd. signal cant really "leak" your messages to anyone since they are end to end encrypted.
https://signal.org/blog/keeping-spam-off-signal/
Yup, that's it.
Explaining myself better, it might be secure as it looks, still I keep the "bullshit" words as Molly comments are mainly that, he didn't want to upload it on F-Droid claiming it is too unsecure (no auto updates, lack of singing) so he decided to join Google Platform. He didn't help F-Droid to fix anything, still there are many frontend clients that work pretty good. He just abandoned people outside Google dominion. When he saw many people got infected (as this current post shows) he created that link to download the APK directly (https://signal.org/android/apk/) so people could at least download it from official sources.
About the report of spam, we all used other chats that had already in the group chatbots to manage this "captcha verifications" plus moderators on groups to check on what's happening. For unknown people talking to you, normally in other platforms you can "reject chat unless he has your phone number in contacts" and things like this.
The source code I was talking, doesn't seem a big problem as only reported chats are being sent to that external service, I just don't trust to an app that works with Google.