One can technically put a trojan into your UEFI firmware. And from the description the law doesn’t specify which kinds of trojans it allows.

And - a hint - it’s called trojan because you don’t know you have a trojan when you have a trojan.

Reason one - both were kinda German, reason two - both were kinda fascist, reason three - you don’t say “no” when there’s no such variant in the poll.

The interior minister Gerhard Karner, described it as a “special day for security.”

This might be a Hollywood association with German accent, but feels like a really ominous quote. Like that sadistic guy in round eyeglasses in the Indiana Jones movie.

But, it sounds to me like more reason to want to self-host.

So do that. You can do that with Signal.

I don’t see any point to rehashing the other stuff. Non-TLS websites mostly went away once DNS spoofing at wifi hotspots became widespread.

Maybe I wasn’t clear, someone said that back in the day registration on a website was a new and bad thing, connecting it with privacy and comparing to Signal asking for phone number. I answered with the idea that not much commonly thought from that time about privacy has aged well. You wouldn’t register on websites, but you would communicate with them over plaintext. I hope that makes it clearer.

Server code openness doesn’t matter other than functioning at all. For a system acceptable in a privacy community.

Normal people don’t anyway.

Well, some of the stuff they wrote, not said, wasn’t stupid and wrong.

1. People were complaining about JS existing when SSL and TLS were not omniscious. If we disagree on that fact, move on.
2. A sequence of digits.
3. OK, what are your “simple heuristics” for a bunch of pieces of ciphertext with unknown sender (except for IP addresses) in your storage to pick spammers from that?

Signal protocol guarantees that what’s on the server we can discard in your suspicions, it doesn’t matter, because you are not trusting it.

The client is fully open.

One account per phone number versus infinity of accounts without.

1. When people would complain about JS on webpages, they were not.
2. Completely different things overlap all the time.
3. Because your status updates and messages are encrypted and stored (until retrieved, of course) once for every recipient, and that includes your other devices and their other devices.

1. they were talking of something like year 2003, when they were commonly not.
2. no, PSTN is not private.
3. for something end-to-end encrypted, including message metadata (not connection metadata), this statement seems amazingly stupid ; “simple heuristics” are usually used on something like plaintext e-mail.

I think choosing a server, like in some ICQ clients, is not a complex modification.

Do not let this derail us.

Nothing is derailing you personally. Why are you repeating this to others?

Signal’s internal identifiers are, of course, not phone numbers. And you can download their server and host it without requiring phone numbers for registration. Just they simply can’t afford it, they need to prevent bots from registering and sending messages somehow. A group message is stored in Signal as many times as there are group members, for example.

People told you a few times to go look for yourself what Signal can give away. Its protocol descriptions are pretty understandable.

The whole bloody reason it’s always recommended is because it’s absolutely the best thing in terms of yes, encrypting metadata. It’s state of the art, level above that bullshit you’re thinking.

Unfortunately, that also means that hosting it takes lots of resources, which means they have to screen bots and mults somehow. Phone numbers are one way. Paid accounts are another.

The barrier is that only you and your friends would be using that Fignal or Xignal or whatever home installation, and for that practically, for ease of use, it’s simpler to host Matrix which even a complete idiot can do.

You should have visited Signal’s github page first, I dunno. Before talking. Made up a lot of stuff.

They do have proprietary code for that crypto wallet they have there, well hidden, and for, eh, phone number registration, but other than that module it’s all released, I think.

The server and the client applications are FOSS. You can host it for yourself, patching out the domain names and registration parts the way you like it more.

0. Yes, and in that time you would visit a website with your own IP address likely, likely over HTTP without SSL/TLS, likely with your vulnerable browser fingerprint. Point?

1. Privacy, not anonymity. Two completely different things.

2. Because the way Signal is built hosting it requires a lot of resources (storage especially), so they want spam prevention and fewer accounts per person.

(Also this won’t really help you because Linux is a mainstream system with big corporate input. Backdoors hidden in plain sight are a thing.

This will make you feel better though, Windows sucks.)

on a connected bed

If the protocol was documented and simple enough, and if you could make it talk to your smart home RPi, then one could replace AWS with nginx + a perl or lua module.

Telegram isn’t P2P and isn’t recommended. Signal is good, but not P2P. Matrix is decentralized, not P2P. SimpleX is P2P, I think, but not sure.

Who puts their birth year in their username?

You are not very old, right?

Maybe now, in our stupid time, folks use phone numbers for identity, some stupid handle (or just their actual name) and then post a lot of text, photos and such, totally less harmful for their privacy than their birth year. And no birth year

But in the olden days it was the main solution to “such user already exists” problem, combined with things like ‘xXx’ and ‘+0+’ on both sides or something.

If it’s really plausible, then you’ve got no way to tell it’s a dogwhistle.

Your comment is equivalent to “I can’t prove that Jews rule the world, but that’s because they’ve worked for plausible deniability, I know they do”.

For limited people, maybe.

88 is:

1. important for people born in 1988

2. amateur radio romantic message (apparently older than Nazis, don’t ask me how I know, but it has to do with being used in that, and not HH, meaning in one Nazi song ; felt strange for me, until I’ve just read that it was a telegraph thing before radio)

3. two eternity symbols turned (not those wheely ones)

4. as people have mentioned, common as a lucky number in certain parts of the globe

5. people can also be born on 8 August

6. had that number on some item memorable for him (I had 72 in plenty of my nicknames, I can promise you it’s not about 72 virgins or 72 names of god and I’m not Muslim, I just had a yellow t-shirt with that number when I was a kid).

The funny part is that points #2 and #4 are probably known to him, tech company and all.

I’m thinking of going stoic and dropping anything Android, but this would require setting up an emulator working good enough for WhatsApp, Google Authenticator, MS Authenticator and probably something else.

3 shites dropped.

Telegram is not private. That makes the comparison to be infinity in favor of DeltaChat.

Friendly reminder that 10-15 years ago laws in this general direction were usually stuffed into leftist bottles.

Not anymore, but it would be a mistake to forget this.

You lose something … ? Tough shit, your problem, not mine.

You should learn something about things you use before talking about conspiracy theories.

Try Nostr, I dunno. Or VKontakte if you want the Telegram functionality of sending transcripts of your communications to FSB.

Dunno, my cousins’ dad was a 17yo soldier. One can say it was a better time cause he was on the winning side, and now that has become the losing side.

Mass surveillance was more old-school, but governments were still pretty harsh.

They had Trump. He just was younger, Democrat and apparently popular.

They had AI in your spam mail.

Climate collapse … again, where half my family is from, war broke logistics in the 90s, so to have heat at winter people would cut down trees. A lot of forest lost. But one can say it was a better time because “the world” cared more about civilians suffering than about forests. I suspect now climate activists would act differently.

Dunno. Our humanity was born from 80s and 90s too.

It’s like being surprised that body armor doesn’t help against being gassed.

Signal is private. This is c/privacy.

Telegram is not private at all, but has channels and big groups and even, yes, mini-apps.

So Telegram is not an alternative to Signal either, it doesn’t even start solving problems that are solved genially in Signal.

Telegram is not a privacy tool.

I mean, if he’s convicted for a privacy tool, while it’s not a privacy tool, we have a bit of ambiguity.

Arguably advertising something which is not a privacy tool as one is fraud. Maybe even phishing, since TG the company has in plaintext all the chat history of its users.

And this

The meaning of that word “complicity” seems to be revealed by the last three charges: Telegram has been providing users a “cryptology tool” unauthorised by French regulators.

in non-libertarian language means something similar, that is, that something not confirmed to be a privacy tool is being provided as a privacy tool.

I am a libertarian, but in this case they are consistent, if I’m reading this correctly. They are not abusing power, they are doing exactly what they are claiming to be doing.

Also maybe I’m just tired of Telegram. It’s engaging, and I have AuDHD, which means lots of energy spent, and I can’t drop it completely because work, and also some small communities are available as TG channels. Would be wonderful were they to move at least to WhatsApp, but it is what it is.

Still, ability to easily create a blog (what a TG channel really is for its users) reachable without bullshit is a niche in huge demand. LJ filled that at some point, Facebook did at another, TG does now.

Something like this is desperately needed. I’d say the solution should be complementary to Signal - that is, DMs and small groups should not be its thing. Neither should be privacy of huge chats and channels - they’d be public anyway. However, anonymity with means to counter spam should, so should be metadata of user activity.

If Signal was really as secure and private like everyone says it is then their executives would already be in jail and whatnot for “enabling criminal activities”.

It doesn’t have anything to do with what “everyone says”. We don’t do that with security. Well, Telegram users do, but Charles Darwin wrote about that process. Others look at what academics say or are competent enough themselves (no, you are not).

Or remember that you don’t have to be a wizard to

I mean, it’s almost fun thinking of how they’d react to my porn selection.