Over the past days, two popular chat services have accused each other of having undisclosed government ties. According to Signal president Meredith Whittaker, Telegram is not only “notoriously insecure” but also “routinely cooperates with governments behind the scenes.” Telegram founder Pavel Durov, on the other hand, claims that “the US government spent $3M to build Signal’s encryption” and Signal’s current leaders are “activists used by the US state department for regime change abroad.”
(I’m gonna find sources for the last two statements a bit later to not be unsubstantiated)
Done.
Although, we all can agree, that Signal is still better than Telegram, or WhatsApp, or Threema, or whatever.
Still, we probably want to look at the better alternatives, like Simplex or Session.
Session is also sus because you effectively cannot host a node, last I have seen. They claim it is “against a Sybil attack” but all it does is making sure only people wih large disposable funds can have nodes, and the effect might be the exact opposite.
Simplex is more interesting in this regard because while I am concerned with initial centralization (the default servers), they made hosting your own easy. But I personally stick with imperfect yet trusty XMPP.
Don’t get me wrong. As far as we know, no malicious code have been funded. The very fact that the Signal was sponsored by the CIA is suspicious (maybe I used some incorrect words, sorry if so). Of course, it’s totally up to you whether you think that fact is sus or not.
Telegram requires a phone number too? I mean yeah there’s the option to use that blockchain phone number service, but you can do the same for Signal. 🤷
Signal no longer requires a phone number. You can now create an account. Not sure if that helps your outlook on it, but yeah. It was a fairly recent update that this was rolled out.
Edit: being told we still do need numbers to register. I haven’t gotten a new phone since well before the change was made, so I haven’t actually created an account and gone through the process. It looks like I misinterpreted what was going on when I read the changelog.
Last I have seen, it still requires a number to register - it just doesn’t have to be public.
What gets me the most is the requirement of a smartphone to register. No way I am trusting my non-public chats to a phone, so that means either Waydroid/VM (which creates issues with copypasting) or signal-cli (which is fairly inconvenient).
Let’s be honest, Signal is not perfect either:
(UPD: It was funded by CIA)
((UPD)Source: https://www.androidpolice.com/2021/04/06/it-looks-like-signal-isnt-as-open-source-as-you-thought-it-was-anymore/#update-2021-04-06-1-39pm-pdt-by-ryne-hager)
(I’m gonna find sources for the last two statements a bit later to not be unsubstantiated)Done.
Although, we all can agree, that Signal is still better than Telegram, or WhatsApp, or Threema, or whatever.
Still, we probably want to look at the better alternatives, like Simplex or Session.
Session is also sus because you effectively cannot host a node, last I have seen. They claim it is “against a Sybil attack” but all it does is making sure only people wih large disposable funds can have nodes, and the effect might be the exact opposite.
Simplex is more interesting in this regard because while I am concerned with initial centralization (the default servers), they made hosting your own easy. But I personally stick with imperfect yet trusty XMPP.
Which lines of its libre software source code are malicious?
It’s centralised
It’s not about code, but about funding.
Yes, and it’s the downside, no matter how you look at it.
So, which malicious lines of libre software source code have been funded? This is how we stop FUD. Don’t let them derail us.
Don’t get me wrong. As far as we know, no malicious code have been funded. The very fact that the Signal was sponsored by the CIA is suspicious (maybe I used some incorrect words, sorry if so). Of course, it’s totally up to you whether you think that fact is sus or not.
It’s not. Our devices run software, not funding.
Telegram requires a phone number too? I mean yeah there’s the option to use that blockchain phone number service, but you can do the same for Signal. 🤷
Yes, it does. And yes, it is equally bad in both cases.
Not anymore, right? Or does it still need your number for signing up?
Just to sign up
Wait until you find out where computers, the Internet, GPS, weather satellites and Tor came from.
Signal no longer requires a phone number. You can now create an account. Not sure if that helps your outlook on it, but yeah. It was a fairly recent update that this was rolled out.
Edit: being told we still do need numbers to register. I haven’t gotten a new phone since well before the change was made, so I haven’t actually created an account and gone through the process. It looks like I misinterpreted what was going on when I read the changelog.
That’s not true. A phone number is still required to register, you can just set it not to be public.
Source: I just tried to register and it asked for my phone number.
Last I have seen, it still requires a number to register - it just doesn’t have to be public.
What gets me the most is the requirement of a smartphone to register. No way I am trusting my non-public chats to a phone, so that means either Waydroid/VM (which creates issues with copypasting) or signal-cli (which is fairly inconvenient).