1) it is pretty lame that aws going down takes down signal with it, the outage earlier was a few hours
2) since signal is end to end encrypted there is no trust required in amazon on the privacy side regardless
Login to reply
Replies (106)
So what you’re really saying is we need a NOSTR version of signal right?
Water is also wet btw
@White Noise will fix this but its still very early
looking forward to not giving my phone number over for end to end encrypted messaging that’s easy to use
Maybe you’ve heard of a lil something called simplex
Keet.io
Yup. Can't wait for @White Noise adoption.
BTW, I like Signal, but no matter who made the shitcoin (Moxie apparently?), it's almost 2026 and MobileCoin is still part of the app, instead of Bitcoin.
I will start donating to Signal on a monthly basis the day this is addressed. I won't be the only one.
Oh yes, that too. 💯
they’re still using it? I thought they dropped it
I’ll probably be called a shit coiner for this, but there are going to be a handful of projects out there that provide value beyond the bitcoin ecosystem. Could they be implemented atop bitcoin? Perhaps and they may be eventually. But Akash Network (on Cosmos) is decentralized cloud infrastructure that allows rapid deployment of Kubernetes apps on 50+ providers across the globe. No vendor lock in - google, azure, Amazon, etc. You can fund with bitcoin on Akash, but they do use their own token within the ecosystem. Is something like this being built that would be considered bitcoin native?
#NDN
Network effects are a huge bitch. Signal is the only security app I have ever moved a large group of friends and family too. Simplex, white noise, keet,etc. I am trying with them all but those damn network effects
White noise fixes the messaging focused issue, unless I’m misunderstanding. It doesn’t fix the cloud infrastructure centralization issue. Are there any projects addressing the broader issue?
The good part, though, is that Signal’s end to end encryption keeps your chats private—Amazon’s servers nly handle the message delivery, not the content..... Even during downtime, there’s zero trust required in AWS for user privacy since messages are always encrypted before reaching the cloud..
The Shitcoin page is still there, in the settings. One reason some people happily use Molly (a good fork of Signal).
NSA say they kill based on metadata.
Still enjoy Signals metadata in the hands of AWS/NSA?
Was super excited about this when it first dropped but the app was so buggy and almost a pain to use. Has it improved since then?
The problem I had was that its peer to peer nature means everyone you communicate with gets your real IP
CIA/NSA will track your meta data whether on AWS or not but let's not make it overly easy for them by centralizing it
That's definitely bad for privacy, is there a workaround that can be deployed or it's infeasible with its current architecture?
Relays don't depend on any particular cloud infrastructure
It's the whole point of hole punch so I think working around it means not using it
hahaha! Totally make sense, another reason for me not to go back apart from the buggy experience
Yes, nostr relays don’t depend on particular infrastructure. How about complex apps that may use databases, require redundancy, must be performant, need fault tolerance, etc, that want to use nostr protocol and provide edge locations around the world? Where do those run?
Nyhw they can track it.... That cnt be stopped...
I vibe-coded an app using MLS/MDK (ie. the library that White Noise is based) on, and I included Cashu via the Cashu Dev Kit.
I'm not saying my app is any good, it's just a fun side project to get me into privacy tech 😀. But I found it quite easy because they (the White Noise Folks and the Cashu folks) made libraries that are reasonably easy to use.
And my app "should" be compatible with other apps using the same protocol. So I'm very optimistic that some of these apps will take off sooner or later
Demo video here:
PWA app here:
Github: 
MLS Cashu
Encrypted group messaging with Bitcoin ecash payments
GitHub
GitHub - SatsAndSports/cashu_mls_chat
Contribute to SatsAndSports/cashu_mls_chat development by creating an account on GitHub.
Signal is too centralised.
Meanwhile, my private comms server was up, I was able to hop on a call with my crew and play, and then video-call my family.
Yes in my opinion
Very good or the best solutions for all of that exist as open source. The AWS value-add is convenience.
Yeah, that makes sense. It’s just degrees of friction. I can have my company’s data centers built out in different regions and run my own hardware, middleware and software. It’s just a lot more difficult than someone coming up with a decentralized version of “Amazon” and me using that. Providers would sell excess hardware capacity to users like is done in Akash Network, which is not on bitcoin payment rails. Someone could possible take Akash open source solution, rip out the shitcoinery and use lightning or cashu payments…. Maybe.
Impressive! What do you use?
😨 😨
the signal server only knows when you are connected, not who you are messaging
pretty strong metadata privacy
Cool! What service do you use?
Signal is honeypot, use matrix or anything that you can host yourself
signal is not perfect but offers a pretty awesome tradeoff balance: great ux, reliable, strong privacy guarantees
matrix does not have auto delete messages and the apps are shit
simplex is solid but reliability and ux could be better
keet is not open source
whitenoise is promising but early
I want to believe.
Do we have an actual way to proof this? In SimpleX we do know exactly how it works. So if in doubt I'dcalways vouch for SimpleX.
Signal/Molly is what I use as a backup network.
Signal is not a privacy app. Look at all the permissions required : https://play.google.com/store/apps/details?id=org.thoughtcrime.securesms&hl=en-US
Signal = complete honeypot.
Simplex doesn't even require a phone number.
I'm also looking into whitenoise.
Keet is cooler and will be open source, and on desktop you can already grab all the code
Keet is also getting disappearing messages in about a month
Not needing a phone number or email makes onboarding to Keet easy. The large social groups on Keet are alone also reason to use it
Also Keet is the only messenger that can scale with no cost or effort to WhatsApps size, where as signal, telegram, none of them can do that
Keychat is dope.
Element X works kind of nice, but yeah, I am missing a better UX overall on desktop and anywhere outside Element X for matrix.
For me it is the best option though. Open source, decentralised, and I get to guard my own key to messages.
Apps… not great but usable. To me, my daily use tool. What do you pick for secure private chatting? @ODELL
Deltachat is interesting.
its Openpgp and not Signal encryption.
so no perfect forward secrecy
but e2ee chats over email?!
Not Another Protocol™ ?
and its extremely easy to spin of an email server
so you can have your selfhosted strong encrypted messages and hide metadata without dealing with Simplex relays and usability.
I have never successfully started at KC chat with anyone except @Keychat
i use the KC browser everyday but I think you need your counterparty to be on their relay with sats in the ecash wallet to actually chat
Delta chat is clunky
Keet.io
Keet.io is not a honeypot
Keet.io selfhosts with no effort
I’ve been using simplex for some time and I’m very happy with it. Has tradeoffs? Yes. But also way better privacy
Signal without phone number would also be something to consider for better UX
Your page is probably different than mine because I can't see a list.
How many people have been arrested because they participated in this "honey pot?"
It really isn't a honeypot. You are just trying to spread FUD to make yourself feel smarter than everyone else.
Wait, really?🤣
That doesn't event work
You can click on the "permissions" to see the list of permissions required by the app on the google play store.
Seems that people forget what encryption means. I don't love that it is hosted on aws but does it really matter that much?
I thought they open sourced keet, no?
Elon using the AWS outage to FUD signal is poor form
I don't see a "permissions" button. The only data I have been able to find is "phone number."
Signal Messenger is Open Source as SimpleX, more over, both have upgraded their encryption to level of quantum resistant...
This matters, most believe that if you are using a service that is e2ee you are good, but you are not.
Why?
Cyber Criminals and I will assume most three letter agencies are collecting all raw data they can from centralized services/servers and storing them for future decryption, clearly, if your cloud service is not upgraded or your messenger service is not resistant, all the data will be open for cyber criminals and agencies to look at...
I keep advising family, friends and clients, stay away from centralized services if possible and if not, verify they are upgraded if they use encryption
Problem with decentralized messengers is that now that data lives on MULTIPLE sources. And openly accessible ones.
So E2EE messages in 1 location are still more secure than in multiple locations, if both have the same encryption level.
The most safe is messages stored on zero servers: P2P.
P2P should be every messengers aspiration.
Session.
So freaking usable. No PFS but it's Anon so good enough. At least it works.
I'll be able to recommend them as soon as they become open source.
not yet, they keep saying “soon”
Element Server Suite, on the Matrix Network.
Until Nostr is ready and capable for these use-cases, it'll be our go to, and has been for the past 4 years since we moved our Gaming community off Discord and family off other chat apps.
Hosting a server is super easy now, and in just a year it's night and day compared to just a year ago as they nail in the spec for Matrix 2.0 - 
We federate with other Matrix servers and communities.
GitHub
GitHub - element-hq/ess-helm: Element Server Suite Community Edition
Element Server Suite Community Edition. Contribute to element-hq/ess-helm development by creating an account on GitHub.
See response to other user.
you're wrong
how many security checks did you make with your contacts?🤡
X3DH: Making Sense of Signal's Key Exchange | Jauhar's Blog
@ODELL you are damn it right. People out there want to keep it simple, reliable and functional.
Easy. Give them what they want in a profitable way.
I have no problems whatsoever, but the counter party has to use Keychat too. Any relay I think even though why not use theirs
And the best thing, push notifications properly work. All the time.
Oddly, even with an empty Keychat wallet and no access to the Keychat relay, messages are still routed through other free relays. The other user must be on Keychat.
You can also install Keychat Desktop, create a new ID, and add that ID to your phone’s Keychat to test.
I'll double check my counterparties are using it
![▓▒░[Danielsan256]░▒▓'s avatar](https://cdn.nostrcheck.me/7df42aa73a08b5d684c578607de2650ea746e1aa22acf6fe74ceafbe86df934e/7744481a01ec3570e32cc01cfc9fa7bfb4d9d956a9df37b0034b6a5ab514a318.webp)
@Keychat is already that.
nevent1qyt8wumn8ghj7un9d3shjtnwdaehgu3wvfskueqqyzcv7d3h7ufflcvrg29aucngqnayh0v9zgepyrg423jmy24x8x29qaldpux
Somehow any time I hear Matrix I get instant unpleasant taste in my mouth. I know that you have a private community but the amount of censorship in the other public matrix groups is on another level.
Most of the code is open, from the perspective of helping make more P2P apps they have been very good. They have had an external audit of keet and always committed to open sourcing it when it's out of beta which looks like within 6 to 12months
Keet.io
Keet.io already way out performs matrix and with no censorship
Signal only knows that but who sits on signals connection monitoring traffic? The NSA, and others
Wouldn't you just rather run the one app that does that bit and the messenger combined? With less effort? Keet.io
Improved is an understatement, it is basically nearly at the same level as signal and exceeds it in some areas too
Not exactly as data usually relays, but use a VPN if you are worried. Tbh people that raise this point are you not worried about other apps too? and already use a VPN?
Also are you not concerned ips are not being logged at the network level up stream from signal because that is literally what the NSA does
There has been discussion to add ways to hide your IP in keet in future like onion routing
Try keet.io
Yes keet.io addresses it all
Relays ultimately don't scale, reduce privacy and speed. The fediverse has tried this. You will never get enough servers to scale because the barrier to running and using them is too great. P2P solves this by completely removing that barrier and making essentially every app install a server keet.io
Still needs servers so will never scale. Only P2P can compete with bigtech keet.io
I've made 3 accounts within white noise itself but could not talk or message between them or my existing account no matter what relays I used 🤷
To be fair, one, sent a couple of messages but then stopped and never recovered.
They're valid npubs cause I login to keychat and amethyst and primal with those accounts just fine.
I check on every update, no worky🤷
I'm sorry I thought hole punching bypasses VPN but apparently it doesn't.
You can use split tunneling if you want anything to bypass a vpn
Hole punching is for opening ports thru nat and firewalls
i'll try but e can't find the source code, can you send the URL?
Yes!
keet.io doesn’t need servers
Look all of us here get a hard-on for p2p, but the point is that we also realize it just does not work. To quote the innitial post on Nostr by fiatjaf:
"It doesn't rely on any trusted central server, hence it is resilient; it is based on cryptographic keys and signatures, so it is tamperproof; it does not rely on P2P techniques, therefore it works."
Now i don't understand why you would compare a federated system with Nostr, because they are different. I also don't understand what you mean when you effectively say that webservers don't scale, that seems to be a demonstrably false notion.
I don't think you actually understand what the idea behind Nostr/relays is, combined with a remaining fetish for p2p (we get it, we have all been there, and to some extend part of us will always remain there).
Maybe it will click for you one day, maybe not. Have a nice day
Oh PS. Insofar the discussion is about private messaging specifically; everything sucks, there is no sollution, talk to eachother in person.
i like keet, hopefully they open source it soon
I can't completely visualize how it works with a VPN in the middle, or whether the VPN provider needs to (not) do anything to allow it to work. i just need to try it out.
in the privacy sections of settings is a toggle for indirect calls. Routes them over signal servers
No servers no downtime
Keet is not fully open source yet but about 90% of their code is here 
GitHub
Holepunch
The Peer to Peer Company. Holepunch has 530 repositories available. Follow their code on GitHub.
The VPN just relays all your traffic including keet, keet is designed so you don't need to do anything for it to work, if you did it would be too difficult for people to adopt
Keet has a process of hole punching to make connections which is the key to its success and why they named the company holepunch
This is a great video on the tech and hole punching
There is connections that are more compatible with keet and they show as green in the keet profile page, there is yellow connections which require other peers to help but obviously still work
But P2P does work it works very well, Keet has proven this. P2P is superior than client server
Fiatjaf made assumptions (wrong) based on existing P2P tech, Keet did not exist
Both nostr and federated systems used a client server model. Nostr is a bit more efficient but the limitations of the servers still exist
Webservers don't scale when you look at it from startups and free services like in the fediverse or nostr. Servers cost money, big money when you get lots of users. Providing for them ultimately if you are to scale to WhatsApp involves becoming a megacorp that sells data like meta is, like telegram is. You don't get from signals 70million users to WhatsApps 3500million users without finding at least a few billion dollars per year which comes with many conditions
The fediverse has hit numerous server issues, nostr too, servers get over loaded, go down, censor and ultimately when users hit some level the server pool and utilisation just does not cope. Nostr has mitigated some of these issues by truly decentralizing content but it still has not solved servers
P2P solves servers, BitTorrent proved this, kazaa and Napster proved this, it however is quite different from server client, more difficult in some ways but also more easier. One particular way P2P is difficult is to collect data, monetize it and control it, so from that perspective you might see reasons big corp and tech have rarely gone down this path. So until now never has a really serious well funded effort been made into p2p, but that has now changed. We are literally just months away from having an app that has more features and better UX than WhatsApp that can also go from its current maybe 50k users to 4 billion in literally 1 day if people wanted, all with no extra costs, no downtime, no scaling issues
Keet is truly the first app that looks like it will and can displace bigtech. It is already technically capable to scale there, scale to everyone on the planet using it, it just lacks enough features to get the adoption, but already it has some features better than apps like WhatsApp and telegram
Yes I am a rabib fanboy, but dive into the app and tech, watch every video and read everything on it and see if you are not the same
Why am I saying this on nostr? Because audience matters, nostr is certainly cool, very cool indeed but it hasn't solved servers
100% i think everyone wants them fully open source but the code they have released so far is massive and their support to open source and dev using their code is undeniably solid. Just go hang out in the dev rooms in keet or read their GitHub to be certain of this
MMMM this is a problem for a super private chat app.... but i'll try
I just watched a few talks at PlanB from Paolo and Mafintosh the guys in charge of Keet and they are both committed to open source to make sure this stuff remains free. It's stated to exit beta next year and was always stated to be fully open source once out of beta
Either way it's still remarkable technology and that bit is already opensource