Not shocked. Apple pulled privacy products from the UK recently after a request for backdoor access. Whatsapp/Meta didn't. Tell's me all I need to know.

What a shocking headline!

I am not convinced with Signal but @SimpleX Chat is good imo. Other options, imo, are Nostr protocol based chats like @0xchat or @Keychat .

Ich benutze SimpleX, White Noise und Signal. Aber Signal ist leider mit Mobiltelefon Nummer Registrierung, was definitiv eine Privatsphäre Schwachstelle ist.

Or DeltaChat!

Eso es lo que yo pienso. Las personas cercanas a mi de verdad, mantenemos la comunicación igualmente. El resto, eran personas que sobraban. Me ha abierto los ojos mucho no tener nada de meta. Ahora tengo menos contactos, más verdaderos. En mi caso uso Session. Solo se lo han descargado 4 personas. Las justas y necesarias. Y para las demás, llamada de toda la vida. No he probado signal pero tengo entendido que es centralizado y el servidor no es open source. Y que si realmente lo querías open source tenias que montar un servidor y aun así no iba a poder hablar con todo el mundo. Y simplex no lo he probado pero no se si es tan seguro como session.

Me guardo esta nota para cuando la gente me pregunte por que "un informático no usa whatsapp". Yo creo que la respuesta es obvia. Es como si un mecánico te dice que no usa volkswagen, por ejemplo.

Telegram is secure. Signal is trust me bro, secure.

Telegram is "I was taken hostage by Macron, but I didn't agree to collaborate, he just randomly let me go". And it syncs between multiple devices, saving in the cloud. Signal is, as you say, "trust me bro". Content likely secure, metadata... depends how much we want to trust. Simplex, now, simplex where its at. I have all three, for different levels of security

Telegram publishes its checksum for production apps. Do not trust, verify.

I trust the app, but I have no way to verify what the network backend is doing. Its not meaningfully e2e.

Literally inverted, how do you even get the confidence to assert this as fact?

Pero esas apps que nombras son realmente privadas? O todas las opciones de mensajeria tienen puntos vulnerables?

Hate to tell you that the compromise is deep down into the chips.

are you surprised? I am not! Hence, I have not installed nor used it ever even though people around me asked so. 😬 #asknostr #plebchain #grownostr #gm View quoted note →

The checksum just proves that the binary you have is the same as what's on the server you downloaded from. It does not verify that the binary is compiled from the source code, nor does it verify that youre not the victim of a MITM attack. Also most telegram connections are not end-to-end encrypted and thus relying solely on TLS encryption to a proprietary server. Basically you're compromised. Also there are no metadata protections for even e2e chats and you have to sign up with a non-VOIP SMS number. It's one of the shittiest messengers dude, come on. If you want easy UX and decent privacy, choose signal, ideally with the Molly client for better notification privacy. If you want ideal metadata protection and plausible deniability then you must go with SimpleX. Also if you don't already know this shit do not recommend anything you think is "privacy tech" to anybody. You got much more to learn.

Inferior to SimpleX. We have the golden goose for now, until something meaningfully superior arises.

👀 View quoted note →

Correction, group chats and normal Telegram chats use a modified TLS version called MTProto. Still only transmission level encryption so my argument remains sound. You are completely compromised by the server for all group chats and non e2e default chats.

I heard that signal could be compromised. Whatsapp is horrible. Telegram... Highly suspicious now. Exploring Arcane chat. What is your opinion?

amen. friend of mine is continuously bitching that he has "this stupid app" just because of me. ok, then don't write me 🤣

Normies gonna normie. Your family and like-minded friends who you do care about, bring them onto the freedom tech. They are they only social network that matters anyways.

Fedegram is "just trust is bro", Signal is Slightly less "just trust us bro". White Noise, Bitchat, and NOSTR are the only "don't trust, verify" privacy chats.

I wish too tapi saat ini hampir semuanya perlu whatsapp termasuk urusan sekolah dan booking appoitment #whatsapp #daily View quoted note →

Whonix

Send Telegram Messages over Tor with Whonix ™

Use Telegram over the Tor network with Whonix.

Songs on the Security of Networks

Telegram is indistinguishable from an FSB honeypot

Many people who focus on information security, including myself, have long considered Telegram suspicious and untrustworthy. Now, based on findings...

Thread by @matthew_d_green on Thread Reader App

@matthew_d_green: Telegram has launched a pretty intense campaign to malign Signal as insecure, with assistance from Elon Musk. The goal seems to b...

Both are centralised and need a phone number which, for most people, links to their identity. Unlike Signal, Telegram chats and calls are not end-to-end encrypted by default. Even Telegram does not claim that.

Simplex is just beauty, you can’t be on iOS though if you want to self host

Get out of Nostr world. Bitchat is useless save for local mesh network communication, and is extremely poor for locational privacy due to always having Bluetooth LE always on. Nostr DMs and White Noise basically shotgun your metadata across a bunch of relays, poor for timing analysis, giant metadata leaks. SimpleX is the golden goose with ephemeral one time chat links and multi hop asymmetric chat relays. It has nearly impeccable metadata obfuscation. Session is pretty good, a good chunk better than XMPP mainly in metadata obfuscation from individual relay runners and from a network observer. XMPP is okay, good e2e but only when OMEMO is enabled. Poor metadata privacy from a network observer and from a server operator. Really good for LAN messaging though, and a super simple protocol, easy to integrate aside email servers since addresses are of the same format. Matrix has a bunch of known issues relating to metadata and data leaks and has the same weaknesses of XMPP. Signal has WhatsApp UX with strong encryption guarantees and some degree of metadata obfuscation. Big weakness in the phone number requirement.

Matrix clients also have the known issue of being made of bugs..

Deltachat is awesome, arcane is a good client. you should assume Signal can see your social graph, but they can't see the contents of your chats.

Will check deltachat for regular folks. For important stuff I am self hosting a pbx + chat server with client connected with VPN tunnels. Not an easy thing to add regular people but my folks is ok with that

Unless buisness, family, counter-insurgancy I don't advocate privacy. I advocate being a signal. Let Palantir attempt to big data k-means and keep giving their masters crap intel

Get out of here with that nonsense. Defeatist cope.

OK, I'll leave you to purity spiral

Some people slept through covid ...

In Ukraine Russia are using cabled drones.

Have fun exposing your private communications to entities that hate you.

I did an actual laugh out loud for that