Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
veganism.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Veganism Social is a welcoming space on the internet for vegans to connect and engage with the broader decentralized social media community.

Administered by:

Server stats:

297
active users

veganism.social: AboutStatusPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.0-alpha.5+vegan

#signalmessenger

1 post1 participant0 posts today
Public
Preston Maness ☭

@Xeniax Totally nerdsniped :D I'd love to be a part of the study.

I don't think that #KeyServers are dead. I think they evolved into Verifying Key Servers (VKS), like the one run by a few folks from the OpenPGP ecosystem at keys.openpgp.org/about . More generally, I believe that #PGP / #GPG / #OpenPGP retains important use-cases where accountability is prioritized, as contrasted with ecosystems (like #Matrix, #SignalMessenger) where deniability (and Perfect Forward Secrecy generally) is prioritized. Further, PGP can still serve to bootstrap those other ecosystems by way of signature notations (see the #KeyOxide project).

Ultimately, the needs of asynchronous and synchronous cryptographic systems are, at certain design points, mutually exclusive (in my amateur estimation, anyway). I don't think that implies that email encryption is somehow a dead-end or pointless. Email merely, by virtue of being an asynchronous protocol, cannot meaningfully offer PFS (or can it? Some smart people over at crypto.stackexchange.com seem to think there might be papers floating around that can get at it: crypto.stackexchange.com/quest).

To me, the killer feature of PGP is actually not encryption per se. It's certification, signatures, and authentication/authorization. I'm more concerned with "so-and-so definitely said/attested to this" than "i need to keep what so-and-so said strictly private/confidential forever and ever." What smaller countries like Croatia have done with #PKI leaves me green with envy.

keys.openpgp.orgkeys.openpgp.org
Replied to Airikr :sweden: :endeavour:
Public *
Airikr :sweden: :endeavour:

Why Signal is not safe: https://yt.airikr.me/watch?v=mFn2IlTUStI

This is true for very many end-to-end encrypted chat services, including XMPP. And that's why the client you use must have a screenshot blocker! Signal clearly does not have this. Not even Conversations (the app I use for XMPP) has that feature, but Telegram has it in its secret chat feature, which any chat protected with E2EE should have.

But! In XMPP you can change a setting whether existing members of a group chat should be allowed to invite other members or not. This makes the group chat available only to trusted people. If that setting was in Signal and if the group administrator were to disable it, the JD Vance Signal scandal would probably never happen.

yt.airikr.mePipedAn alternative privacy-friendly YouTube frontend which is efficient by design.
#signal#signalmessenger#privacy
Public *
Airikr :sweden: :endeavour:

https://lemmy.ml/post/27758086

Signal is not safe! This is now confirmed by a cybersecurity expert. But it depends with whom you share something with.

I totally agree with Termight's comment, though: question everything! And that is exactly what I have been doing with Signal, years before it became cool.

lemmy.mlSignal is not the place for top secret communications, but it might be the right choice for you – a cybersecurity expert on what to look for in a secure messaging app - Lemmy
#signal#signalmessenger#privacy
VegansExploreLive feeds
About