ᗪᗩᗰᑎ

do we actually know that no US citizen has been sent? Without due process, there’s no way to confirm. Or am I missing something?

I’d be interested to hear what you think a made up job is

everyone does their own thing, but semantic versioning is specifically:

• Major: Incompatible changes (breaks existing code).
• Minor: New, compatible features.
• Patch: Bug fixes, small improvements.

it’s only gotten better. now you can run it in your browser and play local files

https://webamp.org/

MLS only deals with encryption and key management, which is great but that’s been a “solved” problem since TextSecure (now Signal) introduced the TextSecure Protocol (now the Signal Protocol) in 2013.

What I’m aware is missing with RCS / MLS compared to Signal (someone with more recent knowledge please correct me):

• Sealed sender so only the recipient knows who sent the message.
• Not storing metadata or logs.
• No built in crash reports.
• Private contact discovery.
• Published government requests providing evidence that they don’t have any data.
• Open source client.
• Looking at the Google Play store, Google’s Messenger shares precise location data with third parties, Signal doesn’t.
• Also on the Google Play store, Google’s Messenger app list a lot of data collected. Signal only lists phone number.

RCS still leaks metadata like a sieve. Encryption, considering the platforms that exist today (Signal and SimpleX), should not be the minimum requirement. Plain-text messaging should not even be possible in modern secure messaging platforms. The platform should be open source and be engineered to mitigate the collection of metadata - like Signal and SimpleX.

Signal is a publicly available app that provides encrypted communications, but it can be hacked.

This is misleading statement that will only confuse people who want to use a secure messenger.

To clear things up with anyone who’s not technically inclined: Anything can be theoretically hacked. Signal has not been hacked and has no history of being compromised.

The Signal “hacks” that linked people’s Signal client to devices that aren’t theirs were sophisticated phishing/spoofing attacks. The equivalent of getting someone to click a malicious link via email because it looked like the real thing.

A reminder that you still need to do your due diligence even when using a secure service. Technology alone cannot completely protect you.

But then you’re indirectly giving the enemy (Google) power by increasing their browser market share, which in turn lets them dictate the future of the web.

Tesla facilities face wave of attacks as Elon Musk delves into politics

I love good news!

Just a reminder for anyone not in the know:

While Bluesky is better than Xitter right now, don’t forget that it’s still a centralized service that has censored - and will continue to censor - content they disagree with. Bluesky Relay servers costs so much to run that it’s only financially feasible for big corporations to run them. This forces centralization, although technically can be decentralized, and puts it’s end users onto the same path of enshittification that Xitter and other social networks have gone through.

Mastodon, while imperfect, is actually decentralized (including DM’s - all Bluesky DMs are centralized amd can be viewed by its admins) and cannot suffer this type of censorship.

I’ve been giving them the benefit of the doubt, but I’m kinda done with them. Anyone have any suggestions for a mail provider? I’m not yet willing to self-host that.

I couldn’t get work to pay for it so I found a better, cheaper alternative, Notesnook. It’s open source (client and sync server), you can publish notes, and it’s end-to-end encrypted.

alien invader

keep spreading FUD, my guy 😎

The day security researchers say Signal is bad is the day I’ll stop using it. Until then, it’s the best option we have that both provides both great privacy and UX. The only thing that comes close - and it still has a ways to go - is SimpleX, but it’s basically a signal fork and it’s devs still support Signal.

nearly daily Apex player moving to Linux full time again now that many more games work with it (knowing Apex no longer works). It will suck, but fuck microsoft and good riddance EA.

Telegram, for all their security claims, is basically not actually encrypted at all.