Telegram is known as a privacy-focused secure messaging app because it markets itself that way. However, it is often criticized by security experts, privacy advocates, and people with common sense who can understand why its claims about being privacy-friendly don't make sense. In this brief article, I'll show you all
Yeah, the glaring problem of having to share your phone number is gone too:
https://support.signal.org/hc/en-us/articles/6712070553754-Phone-Number-Privacy-and-Usernames
They still tie it to your ID since you need the phone number.
And we just trust them not to share your social map to NSA which they totally don’t do. Trust me bro
That they do, but your contacts doesn’t have to get it anymore.
A self-hosted matrix stack built from source with matrix clients built from source with e2ee implemented that you yourself have the competence to verify the encryption and safety of would be the only secure communication I know of if you don’t want to trust a third party.
At the very least XMPP and Simplex, which are easier to host and lighter.
Doesn’t XMPP tend to use always-active sockets? I looked into switching my number to a VOIP service and considered jmp.chat, but I heard people complain about phone battery life. I’m going to test it out soon, but if I go that route, I may consider hosting my own XMPP server if it can handle both my phone (i.e. answer calls on my computer instead of phone) and regular IM.
And Simplex is awesome, but my issue is having the same account on multiple devices. I want to be able to see and respond to messages on my work laptop, personal laptop, personal desktop, and phone, and it seems Simplex only has basic support for it. I’m still playing with it, and I may end up switching to it, but for now, the experience isn’t very user-friendly.
I am very unfamiliar with jmp.chat and don’t use notifications, but from what I’ve heard - Conversations (with UnifiedPush notifications) isn’t that bad.
As for Simplex - a problem indeed, you effectively can’t have an account shared between devices, but I just have identical profiles on my phone and computer. Also, people have complained about it consuming battery quickly (they switch to checking for notification every set interval to save it).
But yeah - I think both are worth trying to see if maybe one of them fits you! They’re both super easy to host.
Yup. I got my SO to try out Signal as an alternative to SMS, so hopefully that works. If we can consistently use it, I’m going to nudge my other contacts (mostly my family members) to switch as well, because it’s certainly better than SMS. Signal is the most popular SMS alternative AFAICT, so it’s the safe choice.
That said, I installed Simplex on both my phones and connected them, and my kids had a blast sending messages to each other. I’m going to keep playing with it and probably host my own collection of nodes, but so far, the implementation details bleed through and kind of tarnish the user experience. I’ll keep messing with it though, and maybe we’ll end up using it as an in-house chat or something as a kind of Discord alternative. Or maybe I’ll host a Matrix node. We’ll see.
Guess I better stick with Facebook messenger then.
/s Does that even exist still?
I’m way more concerned about the privacy of what I say than who I say it to.
The NSA already has your social map from Apple, Google, Facebook/whatsapp, plus a hundred other sources you’ve given access to your contacts in the past decade.
Even if you’ve never used any of those, or given any app access to your contacts, 99% of your contacts have.
Data is about as good as it is current though and many people are reducing their exposure to these parasites
A person can now pretty easily go without logging into any of these apps with a few adjustments.
Hence why signal relationship maps will be even more valuable going forward. Hence my theory about signal…
I’m not getting you.
There’s correspondence, there’s metadata, and there’s phone-ID relationship.
Signal still protects #1 and #2 better than #3. And the way it works, infrastructure load is much bigger than for most other messaging platforms. So it makes total sense they limit registration somehow .
I’m not sure I remember by now what I’ve read about Signal protocol, but I think the fact of who messages whom they don’t have, so it’s not just trust.
~~Anyway, if you’ve read about 90s’ mixmaster servers for mail, while Signal developers don’t approve of alternative clients, there are libraries and it’s possible to make some kind of a mixmaster bot. ~~
I’ve left this, because it’s funny as a good illustration of why they don’t want alternative clients, among other things - because I’ve described a voluntary MITM.