For the Signal enthusiasts in your life :)
Conversation
Notices
-
Embed this notice
Signal (signalapp@mastodon.world)'s status on Friday, 20-Dec-2024 03:09:50 JST 
Signal
-
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Friday, 20-Dec-2024 03:09:48 JST 
djsumdog
Signal isn't open source and was likely funded by the CIA!
Use Molly instead: https://molly.im/
It's probably just as bad, but at least it's truly open source! -
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Friday, 20-Dec-2024 03:24:42 JST
djsumdog
The source is available, but apparently it's not the same version as deployed to the Play Store. There are also some old issues in their tracker for why they won't support building on F-Droid. Molly isn't in the official F-Droid repo, but they at least provide their own. Signal has an apk you can download which constantly tells you to update the app.
I'm not sure what all the differences are now; been a while since I looked into it. But here are some links on the CIA connections:
https://www.kitklarenberg.com/p/signal-facing-collapse-after-cia
https://yasha.substack.com/p/signal-is-a-government-op-85e
https://bigleaguepolitics.com/court-docs-show-fbi-can-intercept-encrypted-messages-from-deep-state-backed-signal-app/
(sorry for the DeFuckFace DeBastard Link, but he makes some points): https://drewdevault.com/2018/08/08/Signal.html -
Embed this notice
Hot Karla (k@wizard.casa)'s status on Friday, 20-Dec-2024 03:24:43 JST 
Hot Karla
@djsumdog @signalapp I already use Molly just for the minor security improvements so I never checked.
-
Embed this notice
Hot Karla (k@wizard.casa)'s status on Friday, 20-Dec-2024 03:24:44 JST
Hot Karla
@djsumdog @signalapp Is Signal's client not open source?
-
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Friday, 20-Dec-2024 03:36:52 JST
djsumdog
oh the app is probably secure and might not have any backdoors. It's just like TOR being developed by DARPA. If you have an anonymous network but it's only used by the CIA/NSA, every other country will be like "oh look, it's CIA traffic again." But if you allow ever scammer/pedo/normal person/malicious actor on it, now it becomes impossible to differentiate what's a person vs government.
Signal is likely serving a similar purpose; and is promoted by three letter agencies to particular groups the US/EU/GB want to have uprisings in a given nation.
kuteboiCoder likes this. -
Embed this notice
Hot Karla (k@wizard.casa)'s status on Friday, 20-Dec-2024 03:36:53 JST
Hot Karla
@djsumdog @signalapp I would still recommend Molly to ppl just because it's a better client but I don't think the normal Signal app is doing anything malicious either. Even if it's CIA backed, feds have been very pro encryption lately because foreigners keep hacking all our shit, so I don't think that's inherently a reason to distrust it.
kuteboiCoder likes this.kuteboiCoder repeated this. -
Embed this notice
Hot Karla (k@wizard.casa)'s status on Friday, 20-Dec-2024 03:36:54 JST
Hot Karla
@djsumdog @signalapp IDC about the CIA connection. That doesn't mean they have a backdoor. Signal has a history even recently of fighting against the EU on basic pre-encryption message monitoring to catch terrorists, pedophiles, etc. and I would suspect anything sus on their end being more "too many cooks in the kitchen" than anything else.
kuteboiCoder repeated this. -
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Friday, 20-Dec-2024 03:38:33 JST
djsumdog
Are those like BitMessage? (I heard it was terrible slow cause of blockchain. I met the dev's sister years ago. She was surprised anyone else had heard of BitMessage). -
Embed this notice
Hot Karla (k@wizard.casa)'s status on Friday, 20-Dec-2024 03:38:34 JST
Hot Karla
@djsumdog @signalapp If SimpleX was just a little better I would opt for it over Signal but there's a recurring bug where it's impossible to send messages for hours at a time. Call quality is also pretty bad no matter what.
Or Session, if they could figure out how to not make their block chain solution painfully slow.
-
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Friday, 20-Dec-2024 03:47:52 JST
djsumdog
I use to have all my chat programs bridged to Matrix:
https://battlepenguin.com/tech/matrix-one-chat-protocol-to-rule-them-all/
..but Telegram stopped working with my mobile carrier (and I only had one friend on there anyway) and I deleted all the other social media accounts. My signal-matrix bridge was very out of date, and when it stopped working I upgraded to the Go-rewrite version, but I never got it linked properly and just kinda gave up on bridging and just run the (very shitty and broken) desktop app.
Right now I only use: XMPP (my voice/SMS goes over XMPP too using jmp.chat), Signal and Matrix.
I was on qTox for a bit with some of the NoAgenda/NoAuthority peeps, but haven't started up that client in forever. -
Embed this notice
Hot Karla (k@wizard.casa)'s status on Friday, 20-Dec-2024 03:47:53 JST
Hot Karla
@djsumdog @signalapp SimpleX is like Signal without ID's, and you can pick your relay like NOSTR. You aren't bound to an official server to transmit your messages.
Session is just Signal on a blockchain. You have a random hash as a public key instead of using your phone number.
Neither are bad ideas, in theory they're slight improvements on Signal, but in practice neither work as well bc they don't have the same resources, and the minor improvements aren't worth it when Signal is already great.
-
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Saturday, 21-Dec-2024 11:17:30 JST
djsumdog
https://www.kitklarenberg.com/p/signal-facing-collapse-after-cia
https://yasha.substack.com/p/signal-is-a-government-op-85e
https://bigleaguepolitics.com/court-docs-show-fbi-can-intercept-encrypted-messages-from-deep-state-backed-signal-app/
https://drewdevault.com/2018/08/08/Signal.html -
Embed this notice
ckrypto (ckrypto@mstdn.io)'s status on Saturday, 21-Dec-2024 11:17:31 JST 
ckrypto
@djsumdog
Prove it -
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Sunday, 22-Dec-2024 00:16:00 JST
djsumdog
Only one of those is a "journalist." Most are independent. They have links to all their sources.
Let me ask you this: Signal requires a massive amount of resources and handles SMS nations across multiple nations (I have friends in NA and AU who use it). That ain't cheap. If governments and three letter agencies aren't funding it, then where the hell is it getting its money from? -
Embed this notice
ckrypto (ckrypto@mstdn.io)'s status on Sunday, 22-Dec-2024 00:16:01 JST
ckrypto
@djsumdog I've seen all those before. FUD propaganda BS by hack "journalists"
-
Embed this notice
Nicholas Conrad (nicholas@aklp.club)'s status on Sunday, 22-Dec-2024 01:45:13 JST 
Nicholas Conrad
A literal US intelligence agent working in digital censorship now chairs their board. Even if they weren't always compromised, they certainly are now.
https://www.city-journal.org/article/signals-katherine-maher-problem
-
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Sunday, 22-Dec-2024 04:18:32 JST
djsumdog
You ask for proof, and we give you proof and then you said, "your proof is bullshit," and you're obviously refusing to read it.
it's like saying because one employee at our natural health food store worked for a Burger King 10 years
It's literally the opposite of that. It's like the CTO of Burger Kang taking a job as the CFO of McDonalds. Katherine Maher isn't a low ranking cashier. She's a high ranking, c-suite, decision making person who's been at Mozilla, Wikipedia and NPR .. a government invested spooky piece of shit.
You do not care about finding out the truth. You have an idea in your head and you have dismissed everything that contradicts your own narrative story. You are a religious follower of the Church of Signal.
And I've made it clear, I think Signal is likely secure (I could be wrong) due to the 3rd party researchers who've tore it apart for fun and open source projects like Molly. But just like TOR, it's in government interests to make secure encrypted public projects like this because the general public is now using a service they can hide clandestine operations behind.
So it can be both secure/useful AND a government tool. Both work in this situation.
-
Embed this notice
ckrypto (ckrypto@mstdn.io)'s status on Sunday, 22-Dec-2024 04:18:33 JST
ckrypto
@nicholas @djsumdog it's like saying because one employee at our natural health food store worked for a Burger King 10 years ago when they were in high school, that means all the healthy stuff doesn't work.
Utterly absurd the lengths that people go to denigrate good tech as opposed to what? The security joke that is Telegram‽ -
Embed this notice
ckrypto (ckrypto@mstdn.io)'s status on Sunday, 22-Dec-2024 05:28:28 JST
ckrypto
@djsumdog @nicholas also, it's really weird that your last paragraph is the opposite of clear, in fact, it contradicts what you started with.
-
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Sunday, 22-Dec-2024 05:28:28 JST
djsumdog
I'm sorry your reading comprehension skills are so poor. It explains a lot.
-
Embed this notice
All GNU social JP content and data are available under the