SucukIs it (still) worth trying to switch my family and friends from WhatsApp to Signal? (Read all of it, please.)
This may sound a bit dumb, but eh.... #signal
anon5621Can i ask why exactly signal?
Well, it's more privacy-focused, feels like home, and it's not hard to get used to and it's not a data-hungry company like Meta or Google. Also Other platforms i tested didn't really fit right with me.
Well,I am quite suspicious just about signal as company.And have some reasons for that.
- First. blacklistednews.com/…/how-cia-created-signal-mess…
- Second this is quite strange bug which was sending random photo sent random images from the gallery to the user’s contacts github.com/signalapp/Signal-Android/issues/10247
- Third they are betraying idea to free/open source signal.org/blog/keeping-spam-off-signal/
- Fourth Messenger Signal reported that it leaked phone numbers and confirmation codes of 1.9 thousand users. This happened due to the hacking of the Twilio database, which checks numbers. support.signal.org/hc/en-us/…/4850133017242
- Fifth From new president of Signal was required to remove the registration by phone number by users.But nothing happened community.signalusers.org/t/…/622?page=29 under reasons they are fighting with spam–
Hmm, good points.
Most of these have some kind of (strong or weak) counter-arguments.
I have mixed thoughts about the first point, they kinda have some good points though.2 and 4 got resolved, very critical issues nonetheless, shouldn't have happened. The 3rd point seems kinda OK, I'm sure they would like the idea of making that open-source, but that would probably make it bypassable, correct me if im wrong. I didn't know about the fifth! The reason they gave also seems defenseless.
Not trying to hate or back up Signal here, just my opinions.
southsamuraiThere’s no reason you can’t open source anti spam. The only reasons not to do so are that it’s either absurdly to bypass if it’s known, which makes it useless, or if they don’t want it visible.
Why wouldn’t they want extra eyes on it? That’s how a lot of vulnerabilities get found, people actually checking the code and testing it.
That suggests some other reason, and they haven’t said (that I’m aware of). Since that means that part can’t be trusted, you can’t trust the rest of it either. That isn’t to say you can’t choose to use it, but you’re using it blind, which makes it no more secure or private than telegram or any other options.
Hmm, yeah true. More people can take a look at the code, find vulnarabilities and fix it. Then it should be open-source too, since it would also be hard to bypass even if that happened. So there's not really an argument to not make it open-source.