GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Notices by Avitus (avitus@ioc.exchange)

  1. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Wednesday, 09-Apr-2025 09:59:51 JST Avitus Avitus
    in reply to
    • Delta Chat
    • feld
    • Linux Is Best

    @Linux @delta @feld "That you know of" doesn't apply when Signal reports the subpoenas they receive and their responses with the data they provide:

    https://signal.org/bigbrother/

    This is going in circles. No service is Fort Knox. You have to accept some level of risk whether that be the service itself going bad or some outside force prying sensitive information from the service.

    Signal, as shown at the link I've now provided three times and has been totally ignored throughout this conversation, mitigates first and third-party risk by collecting as little data as possible so they don't have it to give.

    In conversation about 2 months ago from ioc.exchange permalink
  2. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Wednesday, 09-Apr-2025 06:20:10 JST Avitus Avitus
    in reply to
    • Delta Chat
    • feld
    • Linux Is Best

    @Linux @delta @feld We went from talking about if Signal is safe to now talking about serving subpoenas to organizations other than Signal, and gaining physical access to devices. That in itself is a testament to how safe Signal is. Whether a subpoena is served to CloudFlare, or what a given person's threat model is, is irrelevant to what Signal itself does to protect its users.

    In conversation about 2 months ago from ioc.exchange permalink
  3. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Wednesday, 09-Apr-2025 03:51:50 JST Avitus Avitus
    in reply to
    • Delta Chat
    • Linux Is Best

    @Linux @delta Any significance of this is negated because Signal has very little data about users.

    https://signal.org/bigbrother/

    The cops have to provide a phone number, and in all cases Signal can only say "yes, this number was registered". They don't know the identity of the number owner, who they talk to, what they've said, where they're located etc. unlike WhatsApp, Telegram, Facebook Messenger etc.

    In conversation about 2 months ago from ioc.exchange permalink

    Attachments


  4. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Saturday, 08-Mar-2025 11:10:48 JST Avitus Avitus
    in reply to
    • Sir Rochard 'Dock' Bunson
    • adb
    • Vee
    • feld
    • Eric K3FNB (they/them)

    @adbenitez @feld @k3fnb @VeroniqueB99 @SrRochardBunson Signal doesn't "track social graphs" because it can't: https://signal.org/bigbrother/

    In conversation about 3 months ago from ioc.exchange permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: signal.org
      Government Communication
      from @signalapp
      When legally forced to provide information to government or law enforcement agencies, we'll disclose the transcripts of that communication here.
  5. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Monday, 27-Jan-2025 03:35:51 JST Avitus Avitus
    in reply to
    • Michał "rysiek" Woźniak · 🇺🇦
    • Leszek
    • Cassandra Granade 🏳️‍⚧️

    @rysiek @xgranade @makdaam Signal made a direct statement to the bug bounty hunter, which was provided to 404 Media and published. So the statement given to the bug bounty hunter is the statement from Signal.

    In conversation about 4 months ago from ioc.exchange permalink
  6. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Wednesday, 22-Jan-2025 09:39:00 JST Avitus Avitus
    in reply to
    • Michał "rysiek" Woźniak · 🇺🇦
    • Leszek

    @makdaam @rysiek CloudFlare already fixed the issue and Signal provided a statement to 404 Media: https://www.404media.co/cloudflare-issue-can-leak-chat-app-users-broad-location/

    In conversation about 4 months ago from ioc.exchange permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: www.404media.co
      Cloudflare Issue Can Leak Chat App Users' Broad Location
      from @josephfcox
      A security researcher made a tool that let them quickly check which of Cloudflare's data centers had cached an image, which allowed them to figure out what city a Discord, Signal, or Twitter/X user might be in.
  7. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Wednesday, 22-Jan-2025 07:46:04 JST Avitus Avitus
    in reply to
    • Michał "rysiek" Woźniak · 🇺🇦
    • Leszek

    @makdaam @rysiek There's nothing for them to say. It's a problem with CloudFlare, so CloudFlare needs to fix it.

    In conversation about 4 months ago from ioc.exchange permalink
  8. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Thursday, 05-Dec-2024 01:37:08 JST Avitus Avitus
    in reply to
    • Tinker ☀️
    • Dennis Faucher :donor: :mastodon:

    @dennisfaucher @tinker Millions of spouses and children in families that don't have millions of dollars are left behind every year when insurance denies coverage for life-saving care.

    In conversation about 6 months ago from ioc.exchange permalink
  9. Embed this notice
    Avitus (avitus@ioc.exchange)'s status on Friday, 14-Jun-2024 09:53:47 JST Avitus Avitus
    in reply to
    • Kevin Beaumont

    @GossiTheDog They'll just sneak it into an update in six months. They're not open-source so nobody will know until it's too late.

    In conversation about a year ago from ioc.exchange permalink

User actions

    Avitus

    Avitus

    Internet privacy advocate | Volunteer Signal beta tester | Veteran Major Incident Manager (MIM)

    Tags
    • (None)

    Following 0

      Followers 0

        Groups 0

          Statistics

          User ID
          203563
          Member since
          24 Oct 2023
          Notices
          9
          Daily average
          0

          Feeds

          • Atom
          • Help
          • About
          • FAQ
          • TOS
          • Privacy
          • Source
          • Version
          • Contact

          GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

          Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.