Yes, I write credentials in a file and encrypt them with my public key. Then I use my private key to decrypt them when needed.
gthutbwdy
joined 2 years ago
I think we can be more certain that they can't afford losing all workers on a strike, then that they can't possibly cut down on CEO's salary and let workers keep the jobs.
Also I think that the very fact that if companies workers are not in a union, they are more likely to make risky decisions, such as these, to expand too fast and risk losing all the works when they go on a strike.
I was referring for them taking the bribe and letting the app die. At which point switching to another app will be unavoidable. It is better to make a switch now, then wait longer until possibly even more users depend on it.
I think XMPP is more well-known than SimpleX, I simply mentioned Briar for the sake of possible ease of use argument over some XMPP clients.
I disagree, both about alternatives and about trust. I outlined XMPP (and even matrix) as alternatives in my post. If only popularity is an issue with these alternatives than we have to work on that, to make it popular, that is what this post is for. Just like Lemmy had few users once, XMPP and matrix are not as big as Signal. But their design is better and their use should be encouraged. I don't think that trusting a single entity, such as Signal is something we have to do. Trust should be only depended on if there is no way to build a system without or less of it. It is better to fight for it now, since Signal use can eventually grow and make it harder to switch. We can debate over likeliness of this corporation being good forever, even when it's current members are replaced (due to old age if nothing else), but I think it is easier to debate over their capability to be good if they are under pressure of US security agencies. Even if they are willing to risk their freedom (and their lives) for their users, they can't stop the government of shutting them down. The state has killed people for far less over the years.
I have already explained this in my post, it's a second paragraph. I will quote it for you:
"I am sure people will make an argument that its FOSS and people will just fork it if it goes bad, but a new fork will have 0 users and Signal will still have all of your old contacts. Why not make a switch now? Before it is even more popular and you have more reasons to stay? Why fork it if there are already decentralized apps that use same encryption, like XMPP apps?"
XMPP is there for more than 20 years, we shouldn't need to make a switch everytime a new app comes along. If there are some problems with how clients look, its FOSS and open protocol, instead of forking centralized apps, you can fork an already used services.
XMPP is decentralized, you can run your own server. In open decentralized protocols, such issues are resolved by design. Further more most XMPP servers don't require a phone number, why would they, unlike Signal.
Briar is an app that is just as easy to use, plus you dont need a phone number, so it is easier. Yet it has no point of failure and it was simpler to write. It is P2P, uses tor, you dont get better privacy and security than that.
You dont know what their server is running, you cant prove that. They can release the code, but you have to trust them that they are running that exact code.
Ease of use is an excuse, they have a centralized model. That is a big flaw. There is more to security then E2E, xmpp clients have E2E as well, they use the same algorithm.
I never claimed that you should pick a random server. You can pick servers run by groups that have just as good record of privacy or even better or are run by the person you know or yourself.
When you have a decentralized service you can choose who you trust, you are not stuck with one corporation. Picking a completely random server is the worst possible example you could have chosen.