dandelion
link
51Y

Interesting. They suggest : “the Threema apps will become fully open source, supporting reproducible builds” and according to https://en.wikipedia.org/wiki/Comparison_of_cross-platform_instant_messaging_clients they do end to end encryption. And they are not based in the USA. A win win situation for privacy friendly focused end users.

Future Me
link
21Y

This could mean the server-side code remains closed source. Good catch!

not actually a cat
link
5
edit-2
1Y

this is fantastic news imo. I can finally actually consider Threema which I haven’t been able to so far because of it being proprietary. consider me interested!

e: I hope they open source everything… servers, clients, etc. if not, this’ll be pointless. I also hope they pick a good license, not something obscure.

@some_dude
creator
link
51Y

Within the next months, the Threema apps will become fully open source, supporting reproducible builds

Doesn’t sound like the server software will be open sourced. Of course it would be nicer if they did that as well but as long as you don’t have to trust the server in any way I’m kinda okay with it

@ster
link
21Y

You have to trust the server with all your meta data. So it’s as good as whatsapp.

@some_dude
creator
link
31Y

But I also have to trust the server with my meta data if they open source it? Threema still has the advantage that they don’t need any personal information at all to create an account to the metadata can be as little as “key 1 send a message to key 2”

@ster
link
41Y

The metadata is who (IP address, so location) is contacting whom and how frequently they are doing so. Unless it’s P2P, which it doesn’t seem to be.

It’s an inherently flawed system due to its centralisation. Check out https://matrix.org for a fully free and open source software stack where you can host your own instance and control your own metadata.

@dreeg_ocedam
link
0
edit-2
2M

deleted by creator

@ster
link
21Y

ISPs are pretty cancerous, yeah. I mean even if you don’t host it yourself you’re susceptible to whoever you get to host your server and their ISP. You could use a VPN but you still have to trust the VPN provider. But ISPs have extraordinary amounts of metadata in almost every case anyway. In the UK ISPs are legally obliged to keep a list of websites that have been accessed.

Self-hosting is normally better than not self-hosting, and decentralised is normally better than centralised. But this is because of freedom much more than it is because of privacy. For privacy the best thing is to not use the internet at all.

not actually a cat
link
11Y

to be fair, the whatsapp apps aren’t open source, right?

@ster
link
11Y

No, but the data is end to end encrypted, allegedly

not actually a cat
link
11Y

allegedly

so the benefit of Threema in this scenario over Whatsapp would only be the clients being open source, and how good that is depends on how much clients actually do

@ster
link
1
edit-2
1Y

deleted by creator

@dreeg_ocedam
link
1
edit-2
2M

deleted by creator

not actually a cat
link
2
edit-2
1Y

I’m just hoping it’s worded funny. I don’t know what not trusting the server would look like but as long as it’s proprietary I’ll still avoid it

dandelion
link
4
edit-2
1Y

If Threema is end to end encrypted, which it is, the server side being closed source should not matter, right ?

@some_dude
creator
link
41Y

No it shouldn’t. And even if the server would be open source we could not verify that the one running is using the published code

@racoon
link
11Y

Can you do it within iOS?

not actually a cat
link
21Y

I’m not 100% knowledgeable on how that’d work so I can’t say, but I’d always have “why haven’t they open sourced the server?” in the back of my head when using it

I’m already messaging apps that are 100% FOSS – I’d only get interested if Threema did the same tbh

@Echedenyan
link
11Y

Always is not permissive is good I think.

dandelion
link
1
edit-2
1Y

I do applaud this development, but they show not having to sign up with phone number as pro (opposed to Signal), but one need to buy the app via Google or Apple or via their site with Paypal (or let someone else buy it for you). That is not particular private, isn’t it ?

Adda
link
11Y

Never heard of Threema, but it sounds interesting. Will keep an eye on it. Thanks for letting me know.

@Echedenyan
link
11Y

I want to know the network data use in comparison with Delta Chat at messaging level.

@some_dude
creator
link
21Y

I don’t think threema uses emails as a messaging format so probably pretty different? But if you’re interested there seems to be a reverse engineered api already

@Echedenyan
link
11Y

I am sure it doesn’t but that has nothing to do with my proposition. Just wanted to know the general network data use.

Idk, maybe with some tweaks to limit network continuous connection (like for send statuses or dont close connection) makes it better than Delta Chat because the messages have a lower size in comparison…

Something like that I mean.

@k_o_t
mod
admin
link
11Y

ok that’s cool but that’s a missed opportunity for a good domain hack

@onlooker
link
21Y

They can still do one. threema.ma, threema.na, threema.sh, threema.sk, etc. threema.ps would be confusing, though. And threema.ga… just no.

@k_o_t
mod
admin
link
2
edit-2
1Y

oh, they actually own the three.ma domain…

@onlooker
link
21Y

Opportunity unmissed!

@gottfried
link
2
edit-2
1Y

deleted by creator

@Junker
banned
link
-4
edit-2
10M

removed by mod

but that’s like totally different from Threema…

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

  • Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
  • Don’t promote proprietary software
  • Try to keep things on topic
  • If you have a question, please try searching for previous discussions, maybe it has already been answered
  • Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
  • Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

  • 0 users online
  • 17 users / day
  • 49 users / week
  • 161 users / month
  • 575 users / 6 months
  • 3.95K subscribers
  • 2.06K Posts
  • 9.68K Comments
  • Modlog