fer0nAug 9, 2024

Signal has been blocked by Venezuela and Russia

https://lemmy.world/post/18467057

Signal has been blocked by Venezuela and Russia - Lemmy.World

> “We’re aware of reports that access to Signal has been blocked in some countries,” Signal says [https://x.com/signalapp/status/1821979304626155930]. If you are affected by the blocks, the company recommends turning on its censorship circumvention feature. (NetBlocks reports that this feature lets Signal “remain usable” in Russia.)

Show threadtired_n_boredAug 10, 2024
Client/Server apps will do that in hostile countries, that’s why people are moving to decentralized messaging platforms such as Matrix
Show threadMwaAug 10, 2024
Matrix is nice
Show threadAndromxda 🇺🇦🇵🇸🇹🇼Aug 10, 2024
Matrix lacks metadata encryption
Show threadbarryameltonAug 10, 2024

And before lacked this and that. It keeps improving, contrast to Signal having the server code closed source for more than a year so the Signal devs could get a headstart and insider knowledge in their Signal-included crytpo coin grief.

How one can trust Signal after them showcasing what they truly stand for is mind blowing.

Show threadAndromxda 🇺🇦🇵🇸🇹🇼Aug 10, 2024

Signal having the server code closed source for more than a year so the Signal devs could get a headstart and insider knowledge

That argument makes absolutely no sense. This server-side code does almost nothing. The only task it really has is passing around encrypted packets between clients. All of the encryption is client-side, of course including metadata encryption. That’s how end-to-end encryption works. The server code really doesn’t matter. The Signal protocol, which is used for client-side, local, on-device end-to-end encryption has always been fully open, and it can be used by any app/platform.

How one can trust Signal after them showcasing what they truly stand for is mind blowing

It’s very simple. The client is open source, and the encryption happens locally within the client application. You don’t need to trust anything or anyone except for the code and mathematics, which are fully open, so you can verify them yourself.

It’s mind-boggling how people attempt to spread so much misinformation while having absolutely no understanding of the topic their talking about.

Show threadbarryameltonAug 13, 2024

That argument makes absolutely no sense. These server-side code does almost nothing. The only task it really has is passing around encrypted packets between clients.

So it knows about all metadata, plus registration with phone number, etc. got it.

The Signal protocol, which is used for client-side, local, on-device end-to-end encryption has always been fully open, and it can be used by any app/platform.

you conveniently leave out how you need to use the client built by Signal, with dependencies from Google Services and the like, and you can’t use one built from the source they provide. Which at that point means they can introduce whatever they want in whichever version.

Decentralisation is the only safe way.

Show threadfira959
You can use reproducible builds to verify that the provided clients are the result of the source code and you can also use alternative clients like Molly
Aug 13, 2024 at 7:50amWeb