earbs 💖💛💙Jun 1
Julia  
New signal vulnrubility: in the app, you can read your messages in plaintext!!! Matrix prevents this
May 31 at 2:26pmWeb
Show threadSammy Arson Fox ("weird furry")May 31
@julia 
Show threadJulia  May 31
@theresnotime WAAAA WHAT DID I DO
Show threadLuna TRANS RIGHTS!!!  May 31
@julia 🔒 Encrypted
Show threadJes - Hedgehog Edition May 31
@julia just run an aes256 algorithm in your head  /joke
Show thread0x4d6165 (Julie)May 31
@julia @[email protected] like that scene in gravity falls
Show threadМя ��Jun 1

@Jes just imagine keys other person didn't send you, simple as that

@julia

Show threadCryptGoatMay 31
@julia lmao
Show threadResunaMay 31
@julia Lol, like 40 years ago I wrote a program that caeser-ciphered your chat messages and got banned from at least one system for it. I called it "Captain Midnight's Secret Encoder Term" which was a huge clue and there were people who didn't bother running it and decoded it in their head.
Show threadApex Chert 🪨May 31
@julia pfffff
Show threadSheaMay 31

@julia


Show threadRavafina May 31

@julia and to make it extra safe Element X it won’t tell you that it protected your messages and instead just say “Waiting for message”!

@sigmasternchen

Show threaddirtsideMay 31
@julia whoa
Show threadPinkMay 31
@julia [unable to decrypt]
Show threadClaudiusMay 31
@julia [unable to decrypt message]
Show threadJulis 🦊 Fox GrrrlMay 31
@julia a message that you can read is a message someone else can also read under certain circumstances. ;D
Show threadMartin Owens May 31

@julia

[This Reliquary is Encrypted]

Show threadTotoyMay 31
@julia 😅
Show threadChristina RichardsMay 31
@julia *reverses strings for fun* sick burn, luv
Show threadfatboy May 31
@julia in matrix, no one can read your messages, it’s all encrypted turtles all the way down 🐢
Show threadnothackingMay 31
@[email protected] 🔒️ unable to decrypt reply
Show threadDigital Mark λ ☕️ 8647May 31
@julia Matrix is safer because you can't send messages.
Show threadMistake not ...Jun 1
@mdhughes @julia yea it forces the user (a potential attacker) to work with ciphertext only, in my experience most symmetric ciphers are a lot less vulnerable when you don't give the attacker known plaintext/ciphertext pairs. So this is clearly a great security feature of Matrix. ooc: (I had all these problems until I migrated away from matrix.org, since then matrix just works, group chats and all)
Show threadOoze 𓁟Jun 1
@julia Do you have a source for this please?
Show threadJulia  Jun 1
@Ooze source: it's a joke
Show threadOoze 𓁟Jun 1
@julia Ah. Sorry. There was no context.
Show threadJulia  Jun 1
@Ooze The joke is that of course you can read your own messages in the app

otherwise it'd be useless
Show threadOoze 𓁟Jun 1
@julia Oh gods, of course. I am an idiot.
Show threadwoe2youJun 1
@Ooze @julia I've managed to avoid using Matrix thus far because I hear it's an absolute ballache to run, but I assume the "Matrix prevents this" is exactly as funny as it sounds.
Show threadRobynJun 1

@woe2you @Ooze @julia

It absolutely is.
So much hassle to persuade it
"I am sending a message to someone, please show it to them"

Show threadSheaJun 1
@Ooze @julia unfortunately, the context could not be decrypted 🔒
Show threadIty Kitty [unit X-69]Jun 3
@nu @julia @Ooze cross-signing corruption! Megolm session expired! Olm ratchets out of sync! Oops, to-device lost in transit!
Show threadSheaJun 3
@tranquillity @julia @Ooze oh? never seen that before, whats that from?
Show threadIty Kitty [unit X-69]Jun 3
@nu @julia @Ooze various reasons why Matrix gets UTDs (Unable To Decrypt errors)
Show threadSheaJun 3
@tranquillity @julia @Ooze ahh, ngl act, the only reason ive experienced people being unable to decrypt their stuff was not verifying their devices, or resetting their state because they forget to store the key (also commet ig but that app was in alpha so like, yea, what could i expect)
Show threadIty Kitty [unit X-69]Jun 3
@nu @julia @Ooze I've seen a bunch lol
Also, not verifying devices is technically bad cross-signing state (okay not necessarily but in practice yes)
Show threadRaineer  🦆Jun 1
@julia holy lol this is so good
Show threadGarretSidzakaJun 1
@julia @volpeon
That's a feature not a bug
Show threadJulia  Jun 1
@GarretSidzaka @volpeon its a joke
Show threadÆ Sea F.Jun 1
@julia @volpeon @GarretSidzaka I am unable to decrypt your joke
Show threadMiStJun 1
@julia still leaks metadata in form of who tried to message you. this needs to be stopped!
Show threadManuel KehlJun 1

@julia Whaaat?! That means it’s open to all sorts of social engineering attacks and people peeking over your shoulder?!

They should be showing messages in a made up language that only the recipient understands. Common industry practice, innit? SMH

Show threadSpring Jo 🥚  🍀Jun 1
@julia thank you for making me choke on my food out of laughter
Show threadSpring Jo 🥚  🍀Jun 1
@julia that punchline is an assassin istg
Show threadvriska, thief of light Jun 1

RE: https://60228.dev/@leo/112663800408732679

@julia

Show threadSumana HarihareswaraJun 1
@julia I enjoyed this joke.
Show threadDeven PhillipsJun 1
@julia uhhhhhhhh... Oh, nevermind.
Show threadВинт ПроксJun 1
@julia goddammit
Show threadCat 🐈🥗 (D.Burch) Jun 1

@julia @goldstein Opened the thread to look for people not getting the joke.

Was not disappointed 😹

Show threadfluffboy   Jun 2
@julia matrix directly beams the encrypted stream of conversation into your brain. you have to install a homomorphic encryption comprehensor flesh blob into your brain to use it
Show threadn1k01d ago
@julia @aspyrine matrix prevents this *in app*, not when leaking messages https://www.bleepingcomputer.com/news/security/french-govt-messaging-service-breached-in-account-hijacking-attack/
French govt messaging service breached in account hijacking attack

DINUM, the digital affairs directorate of the French government, warned that hackers used a hijacked user account to breach Tchap, the French government's encrypted messaging platform.

BleepingComputer