Mastodawn

Frédéric Jacobs Mar 25, 2025

When Signal was designed, our threat model was protecting the communications of civil society, journalists, just regular citizens ...

The threat model of military operations & sharing your hate of Europeans was not what Signal was designed for. Ephemeral messages and cryptographic deniability are not fit for communications that require accountability.
But I appreciate their effort to make government more efficient by adding journalists to the chat instead of requiring to go through FOIA.

@fj I still think @signalapp has fundamental flaws like demanding #PII (#PhoneNumbers can't be obtained anonymously around the globe and are trivial to track down to devices and thus users), being subject to #CloudAct as an unnecessary & 100% avoidable risk as well as #Shitcoin-#Scam shilling (#MobileCoin) and it's #proprietary, #SingleVendor & #SingleProvider nature that makes it inferior to real #E2EE with #SelfCustody like #PGP/MIME & #XMPP+#OMEMO!

CyberFrog Mar 25, 2025

@kkarhan @fj some of these are issues, but to be real the suggestion to use PGP and MIME instead of signal is laughable, not only is it nonviable as a replacement, but also is just bad to deal with and use in comparison

firstly, try to achieve similar security as signal with only PGP (or OMEMO), secondly after pulling off that technically impossible feat, try to use it without causing 100x more avoidable security issues than signal does right now

after doing that I think you can appreciate that although signal has many flaws (phone numbers being my biggest issue with them) they are actually still doing state-of-the-art security/privacy/cryptography services and can't easily be replaced by random other tools like this lol

bdf2121cc3334b35b6ecda66e471 Mar 25, 2025

@froge @kkarhan @fj Also XMPP is just bad, not only from a security standpoint (which I trust security experts on, not being one myself) but also as a protocol designed... before smartphones, basically. Being totally married to being connection- instead of session-oriented is basically why Matrix exists, at all.

@bdf2121cc3334b35b6ecda66e471 @froge @fj maybe but it's better than a #proprietary, #SingleBendor & #SingleProvider solutiom as it just works even on #throttled, sub-#2G speeds over #Tor...

And you get real #E2EE with #SelfCustody of all the Keys!https://infosec.space/@kkarhan/114223266562515116

Kevin Karhan :verified: (@[email protected])

@[email protected] @[email protected] I'm not replacing @[email protected] with *"random tools"* but good options. Like @[email protected] & @[email protected] as well as @[email protected] / #monoclesChat & @[email protected] which owrk flawlessly over @[email protected] / #Tor using @[email protected] / @[email protected] / #Tails and @[email protected] / #Orbot respectably. - Also these allow not only #SelfHosting but just work and I'd highly recommend #monocles as a hoster which finances iself by users paying *and* allows #anonymois accoubts & payments including not just #Monero but also #CashByMail! Considering the costs of even acquiring and upkeeping an #anonymous #SIM, I'd rather pay €2 p.m. for #XMPP+#OMEMO and #PGP/MIME-supported #eMail with thr option of self-custody than $2,50+ p.m. just to keep a phone number. - Plus I don't run around with a #tracking device that could be used to #deanonymize me any second...

Infosec.Space

@froge @fj I'm not replacing @signalapp with "random tools" but good options.

Like @delta & @thunderbird as well as @monocles / #monoclesChat & @gajim which work flawlessly over @torproject / #Tor using @tails / @tails_live / #Tails and @guardianproject / #Orbot respectably.

Also these allow not only #SelfHosting but just work and I'd highly recommend #monocles as a hoster which finances iself by users paying and allows #anonymous accoubts & payments including not just #Monero but also #CashByMail!

Considering the costs of even acquiring and upkeeping an #anonymous #SIM, I'd rather pay €2 p.m. for #XMPP+#OMEMO and #PGP/MIME-supported #eMail with the option of self-custody than $2,50+ p.m. just to keep a phone number.

Plus I don't run around with a #tracking device that could be used to #deanonymize me any second...

Or is anyone here expecting @Mer__edith to risk jail for life amd not comply with #CloudAct?

If #Signal was as secure as advertised, it would've been shutdown like #EncroChat and #SkyECC!

It stenches like #ANØM, because NOTHING IS FOR FREE and running a #VCmoneyBurningParty is expensive...

Kevin Karhan :verified: (@[email protected])

@[email protected] If your #OpSec, #InfoSec, #ComSec and/or #ITsec relies on @[email protected] and/or @[email protected] [risking jail *or worse*](https://web.archive.org/web/20210908180219/https://twitter.com/thegrugq/status/1085614812581715968), you fucked up! - If #Signal was secure, it would've been shutdown like #EncroChat & #SkyECC. Seriously, to me #Signal stenches #Honeypot like #ANØM & #CryptoAG. - All Signal fans do is #FUD #PGP/MIME and#XMPP+#OMEMO which are truly #decentralized and allow real #SelfHosting as well as #SelfCustody for complete control of all the data and keys... That's why I get people setup with it!

Infosec.Space

CyberFrog Mar 25, 2025

@kkarhan @fj that's fine, I actually really like deltachat and a few others, but none of them pretend to match the same level of security as Signal because they're not actually the same level of security/privacy/confidentiality in the real world, I don't really trust signal self hosting their servers either but that doesn't mean these alternatives match the same level of privacy and security on a technical level

for example the encryption used by Deltachat openly has flaws and doesn't support perfect forward secrecy in the cryptography, this is on purpose, they mention it several times in the documentation, because their goal is to be compatible with existing email systems and that requires protocol constraints and trade offs

Fact is deltachat (and many others on this list) are not as cryptographically secure as signal, and they're not trying to be, and that's fine as long as you understand many of these tools make tradeoffs in their privacy/security in unique ways for their use cases

still doesn't mean any of them will provide the same level of secure and private service that signal does, even if they are more decentralized and cheaper/easier sometimes for some people

Brahms Mar 25, 2025

@froge @kkarhan @fj decentralization is something you generally dont want, unless you properly solve it at the protocol level. Thats why matrix sucks and will always be inferior to a centralized solution like signal (unless fixed at protocol level, which most likely wont happen).

and yeah, most "competitors" arent really ones, if they think PFS is optional ...

CyberFrog Mar 25, 2025

@brahms @kkarhan @fj I do personally like that Deltachat is secure against a server compromise, and their efforts to hide metadata and content from hostile servers are nice, I think that has something over signal... but the lack of PFS (and indeed the ability to send unencrypted data by default) means other known attacks could be mounted instead, so to say it matches signal is still probably wrong on a technical level

besides a lot of these tools only work if you're smart enough to securely deploy and maintain an entire server yourself, and that is.... not possible for most of the population, even if they're a programmer or work IT-adjacent jobs

Demi Marie Obenour Mar 25, 2025

@kkarhan @froge @fj @signalapp @delta @thunderbird @monocles @gajim @torproject @tails @tails_live @guardianproject @Mer__edith Signal has been asked for data before. I believe they responded that they have the timestamp the user registered and the timestamp they last logged in, and nothing else.

The CLOUD Act does not allow the US government to force Signal include a backdoor into its clients.

@alwayscurious @froge @fj #CloudAct alone not, but it's just the tip of the iceberg.

I bet you that @signalapp & @Mer__edith will comply with even the most illegal and cyberfacist orders when facing "rubberhose cryptoanalysis", which is a valid and likely risk factor in the #USA...

Again: The only #security is #decentralization!

This is why @torproject is still up and running: It cannot be shutdown even when all maintainers are being held at gunpoint.

#Signal is as vulnerable as #EncroChat if it's not a #Honeypot like #ANØM!

NosirrahSec 🏴‍☠️ guillotine enthusiast Mar 25, 2025

@kkarhan @froge @fj @signalapp @delta @thunderbird @monocles @gajim @torproject @tails @tails_live @guardianproject @Mer__edith Someone explain to me how this isn't a bot just hashtagging random words.

john r red-horse Mar 25, 2025

I can't help but believe that you're confusing "private" with "anonymous"?

Dźwiedziu Mar 27, 2025

@kkarhan
PGP leaks metadata by design, and doesn't have forward secrecy by default.
(There is sequoia-pgp, that supposedly “unstuck” the PGP development, but being OOTL I've missed it.)
https://www.latacora.com/blog/2019/07/16/the-pgp-problem/

XMPP+OMEMO has a lot of problems.
https://soatok.blog/2024/08/04/against-xmppomemo/

You're left with Matrix, which has some problems, with a wonky security culture (like not hard-depreciating libolm) and leaking metadata.

Still, if you're against Signal, you're left with Matrix on the top.

The PGP problem

The PGP problem

Latacora

@dzwiedziu @fj @signalapp not really, as the #Metadata #FUD cited by #Signal is mitigateable with proper measures.

You can't even run Signal over @torproject and even if that point is moot when you're forced to quasi-#KYC by virtue of a #PhoneNumber aka. #PII they have neither legitimate interest nor technical reason to demand in the first place!

Every claim that things like #ITsec, #InfoSec, #OpSec & #ComSec can be solved with "Just use Signal!" is "#TechPopulism" at best if not being a "#UsefulIdiot"!

All #centralized, #SingleVendor & #SingleProbider systems are inherently insecure!

#EOD #thxbye #next

adison verlice Mar 27, 2025

@kkarhan I thought I was able to run signal over tor once. I think it was for messages rather than calls but it still worked