• 3 Posts
  • 14 Comments
Joined 5 years ago
cake
Cake day: April 9th, 2020

help-circle








  • renorOPtoPrivacyWhat are your opinions on Session?
    link
    fedilink
    arrow-up
    1
    ·
    5 years ago

    Leaving by side ideologies, which I think think that are not too relevant for an open source replicable software (full trust), and for the interviews I’ve seen and listened Session guys they don’t really seem right wing.

    If you can replicate builds and compare with the actual server ones (like with Signal) you can trust as fas as the security of the code/protocol goes. Which with Signal seems to be a lot.

    Apps like Session help protecting free speech, activism, journalism, communication worlwide, etc. For now I’m waiting for the results of the audit, once the results are out I will decide if I trust Session atm or I have to wait more.



  • renortoPrivacyIs Signal Messenger Secure?
    link
    fedilink
    arrow-up
    9
    arrow-down
    1
    ·
    5 years ago

    Well that’s not quite true. First federation means sharing a lot of metadata: you have to federate so finding users on a federated i hard without sharing metadata. Matrix “leaks” a lot of metadata. Privacy with “what” you say? Yes, but most offer you this. Privacy with who talks to who, where, etc? Nope.

    Signal is Open Source and server builds are replicable (you can be sure that they run official on their AWS server), being centralised means that almost no metadata is leaked. But I also dislike the ways OWS and Moxie make their decisions.

    I recomend you reading the whitepaper of Session at getsession.org. Session is decentralised and it has all the Signal benefits (Signal protocol, and no metadata). How? Onion routing. As said, read about it I recommend you a lot.


  • renortoPrivacyIs Signal Messenger Secure?
    link
    fedilink
    arrow-up
    3
    ·
    5 years ago

    The metadata that needs to be shared on decentralised services is a lot and Riot/Matrix shares a lot of it. If you seek for anonimity and privacy this is not the best, you will always have to trust your instance admin. I too think that Riot/Matrix is the future but not for Anonimity. Only IM who has achieved not sharing metadata being decentralised is Session with the onion routing used when messaging.



  • renortoPrivacyIs Signal Messenger Secure?
    link
    fedilink
    arrow-up
    1
    arrow-down
    4
    ·
    5 years ago

    Server builds are replicable. So it’s not a problem beig hosted on AWS. Don’t spread misinformation. Sealed sender reduces metadata, so Signal along with Session are the two IMs that share the least metadata.