I would use simplex if there was a desktop client. I like Signal because I can use it across all my devices.
this post was submitted on 04 Aug 2023
43 points (93.9% liked)
Privacy
31991 readers
884 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
The desktop client is in beta right now. I should go public by next week for all platforms save windows. Windows is planned for about a week later. However, in the first phase, there will be no account syncing. So you will need one account for each device, which is fine imho, since you can set up groups instead of 1-on-1 chats to resolve that issue.
Signal is wannabe private because of phone number, metadata and contacts mining (even though they say they don't, they can). Simplex looks promising and the guy is headed in the right direction. As soon as he makes it that the servers cannot correlate which IP is talking to which IP, I will say they are a really good solution. Telling people to use Tor with your app for privacy is not a solution.
Besides that, it is a very well made app that has a nice UI and works very well. Also many good features.
It runs well enough in Windows Subsystem for Android!
Right, you can just use an Emulator. If the apk runs on x86 not even that, Waydroid on Linux works natively
Another super cool thing about it is that it's written entirely in Haskell!
I did a bit of research for my personal use and what came out as the best options in 2023 are indeed SimpleX and Briar. What do you think of the latter?
The last time I tried Briar felt more of an emergency scenario pick then a comfortable one, it can do videocalls right now? Valid project btw.
Seems that's true. Text-only communication in Briar is built by design. I see this from its communication scheme. I don't think any other message options will come up. So I am also on it in case of the Internet outage. Besides, you can chat properly only when you and your contact are both online. Not a very handy option for daily use.
So SimpleX.Chat for privacy and Matrix for public groups.
Looks like they have 'public groups' in their roadmap: https://github.com/simplex-chat/simplex-chat#roadmap
Matrix's groups have an important difference from SimpleX. Even if the primary server is gone, the related servers will still have the copies.
Im not a fan of no identifiers. Sure simplex is secure with it but I would like to see something like simplex that uses 24 word seed phrases to generste millions of unique identifiers the user can easily backup and restore from a piece of paper and not from a digital backup file.
That wouldn't work for anonymity because in order to be able to restore from a passphrase or seed, it must be kept somewhere remotely that people can access and activity can be tracked. That's why there's no anonymity with bitcoin.
If all the identifiers are prerendered then they must be stored somewhere discoverable. What you are referencing is the best for security, SimpleX is the best for privacy.
Monero is a privacy coin that allows for multiple subaddresses.
The reason I prefer having identities (subaddresses) and to recover these addresses using a single 24 word seed phrase is for a simple one-time backup of your addresses. This will not backup anything else.
Lets say you generate a subaddress for every single friend you have and then a few years later your phone dies and you did not make a backup in over a year. The seed phrase will be able to recover your subaddresses. You may not know who address is for which friend, but as long your friend knows they can contact you and you will still receive the message.
If simplex implements multiple reuseable addresses that are generated by a seed phrase like a cryptocurrency, it will be a killer app. I am not against removing the single use one time codes to establish communications, that is a cool feature, just not possible to backup these communications on paper.
Paper backups are considered the most secure since it is not backup using a computer.
Have you contacted the developers to discuss it with them and ask to see if it may or may not work for optimally making contacts untraceable?
I have not
Instead of simply criticizing SimpleX, talk with the developers directly about a passphrase recovery and see what they have to say about it for them to address your point directly insteadig of you saying it but never sharing your feedback with them.
I am not complaining about SimpleX. Just expressing a feature I would like to see. I could try to reach out to the devs about it though.
I encourage you to contact the developers with all of your opinions and they will give you a detailed technical response to everything that you expressed.
Personally it's between SimpleX and Briar, but SimpleX having an iPhone app so people I know can use it makes it win out.
Simplex chat isn't really decentralized. This makes it simpler at the cost of centralization
It's not P2P, but it definitely is decentralized, as in anyone can set up a server:
Anyone can set up a server indeed, and you have no real way of knowing if you can trust them or not.
The official SimpleX chat website has this nice advice in this regard:
The servers have separate Anonymous credentials for each queue, and do not know which users they belong to. Users can further improve metadata privacy by using Tor to access servers, preventing corellation by IP address.
But IMHO if you need Tor to get the resemblence of metadata privacy, why use SimpleX at all and just use XMPP with Tor with works great?
To me this SimpleX is pure techno-solutionism that tries to solve a hypothetical problem and ends up basically security LARPing in nearly all real-world threat-models.
I kinda get where you're coming from, but I think your perspective might be too "techy". I actually do use XMPP myself for the time being, but I have like half a dozen contacts on it. IMO because the set up process, presentation and apps fit a protocol born in early 2000s. Which might not bother some IT guys, but you'll lose all the normies. SimpleX is on a whole other level it that regard, but keeps the benefit of being as secure, if not more. I have high hopes this app could become the signal killer we need.
We are together with you in favor of XMPP (I am with both hands)! You just "won't sell" that kind of solution to very many people. We are already living in a zoo of messengers. We need to come up with at least two that will cover all the basic needs and offer sufficient privacy.
True but basicly everyone is on the main server
This!