480
submitted 4 months ago by ForgottenFlux@lemmy.world to c/privacy@lemmy.ml
you are viewing a single comment's thread
view the rest of the comments
[-] DemBoSain@midwest.social 32 points 4 months ago

Why is Signal almost universally defended whenever another security flaw is discovered? They're not secure, they don't address security issues, and their business model is unsustainable in the long term.

But, but, if you have malware "you have bigger problems". But, but, an attacker would have to have "physical access" to exploit this. Wow, such bullshit. Do some of you people really understand what you're posting?

But, but, "windows is compromised right out of the box". Yes...and?

But, but, "Signal doesn't claim to be secure". Fuck off, yes they do.

But, but, "just use disk encryption". Just...no...WTF?

Anybody using Signal for secure messaging is misguided. Any on of your recipients could be using the desktop app and there's no way to know unless they tell you. On top of that, all messages filter through Signal's servers, adding a single-point-of-failure to everything. Take away the servers, no more Signal.

[-] GlenRambo@jlai.lu 4 points 4 months ago

Whats the next best alternative?

[-] ruse8145 4 points 4 months ago* (last edited 4 months ago)

Matrix or xmpp, bonus points with a personal server

Thanks to interest of late, the conversations and gajim apps have come a long way in recent years, and matrix has made good strides too with element-x

[-] GlenRambo@jlai.lu 4 points 4 months ago

I'd tried matix but without a high level of technical experience it was pretty difficult to setup. I got as far as docker, that needed ansible, that wouldn't compile. I also recall there was services I could pay for, but then I'd rely on them to provide the security/servers.

Matrix doesn't seem for the majority of people taking a first step away from big tech.

[-] toastal@lemmy.ml 3 points 4 months ago

Snikket is meant to be super simple to self-host. Ejabberd has a web GUI that can make configuration easier.

[-] refalo@programming.dev 2 points 4 months ago* (last edited 4 months ago)

I would only ever suggest matrix if you're running a private self-hosted instance that is NOT federated, which you can do even easier with Signal anyways.

[-] ruse8145 2 points 4 months ago
[-] refalo@programming.dev 3 points 4 months ago* (last edited 4 months ago)
[-] uis@lemm.ee 1 points 4 months ago

Looked into anarc blog. What there wss said about Matrix can be said about SMTP and probably XMPP. To do GDPR you need to know every server you have sent message to. And compared to IRC defaults(forward and remove) anything will look like GDPR nightmare. GDPR was not designed for federated(like matrix and activitypub) communications and especially wasn't designed for peer-to-peer communications.

[-] ruse8145 1 points 4 months ago

Interesting, thanks for the links I'll take a look

[-] uis@lemm.ee 1 points 4 months ago

bonus points with a personal server

Only with appservices. Doesn't make sense otherwise.

load more comments (13 replies)
load more comments (47 replies)
this post was submitted on 06 Jul 2024
480 points (94.3% liked)

Privacy

32165 readers
416 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS