@snow But hey shoutout to @Mastodon for having #moderators on rotation to quickly yeet #Shitcoin #Scammers!
@snow same feel about that #Shitcoin - #Scam.
@Cappyjax IDGAF about "passion". All I care about is the security of users!
Requiring any #PII like a #PhoneNumber is inacceptable when it comes to #ComSec, #InfoSec & #OpSec, espechally given @signalapp is not only able but entirely willing to restrict service based off said numbers, making their "solution" insecure by design.
Espechally since obtaining a phone number anonymously is oftentimes illegal (i.e. #Germany made it illegal starting 07/2017, so using any service that demands a phone numner is out of question)
Obviously the devs of #Signal and @Mer__edith are well aware of this critical flaw, which is why I consider them to act as "useful idiots" or rather "controlled opposition" as #Signal could've been shutdown trivially by the #US Government or forced into banning users based off their #PhoneNumbers (they may call this "#sanctions #compliance" given they added a #Shitcoin - Wallet into Signal!)...
Whereas with @monocles / #monoclesChat, @gajim / #gajim and @delta / #deltaChat and @thunderbird / #Thunderbird respectably I can not only use Tor, but do #SelfHosting for the entire #communications infrastructure (i.e. using an #OnionService = only reachable via Tor) and get the advantages of a self-routing, self-authenticating & battle-hardened against censorship proxy network that can't be shutdown!
https://ilga.org/wp-content/uploads/2024/02/ILGA_World_map_sexual_orientation_laws_December2019.pdf
https://infosec.space/@kkarhan/114697690127511140
Let it go, already. No one uses MobileCoin. You can’t even find an exchange to buy it.
Then why does @signalapp still have that shit in it? @Mer__edith could've pulled that #Shitcoin yet refuses to do do!
The Cloud Act is a non-issue. Signal doesn’t have data on users, so they can’t be forced to disclose it.
That's literally wrong!
It’s been 30 years, and no one uses xmpp. Let it go.
Wrong again. Otherwise there wouldn't be thriving ecosystems and Apps to this day. It's just that corporate shills refuse to acknowledge that Signal - like all centralized, proprietary, #SingleVendor and/or #SingleProvider kessengers before and after - will inevitably die as their business model is not sustainable. Sake with #ICQ really. The only exceptions are those that abolish #privacy for #profit, integrate actually working payments or sellout to a #cyberfacist #government (all those apply to #WeChat!)
It’s shocking that people who claim to care about security and privacy push niche apps with terrible UX and no PFS like Delta or XMPP instead of the only private messenger with any real market share, Signal.
You know what's shocking to me: People who are unable or rather unwilling.to acknowledge that Signal is garbage and it's requirement for a #PhoneNumber kills any #privacy benefits it may have on paper by virtue of being at best pseudonymous (assuming the userd don't live in a juristiction that demands "#KYC" for even prepaid #SIM cards (ime. #Germany) or god forbid even #IMEI|s (i.e. #Turkey has a literal allowlist that'll kick any device off it's MNOs after 90 days within 365 days.
I'd rather help people onboard #XMPP+#OMEMO like @monocles and/or @gajim or #PGP/MIME like @delta & @thunderbird (incl. setting them up with #Orbot / #TorBrowserBundle / @tails_live so their traffic gets through @torproject and doesn't provide any useable IP addresses.
As for #Sustainability, providers like https://monocles.eu finance themselves by subscriptions (starting at €2 p.m.) which people can pay fully anonymous using #CashByMail and #Monero on top of common payment methods (i.e. SEPA wire transfer)...
@forthy42 @pascal_f @ulrichkelber selbst dann würde ich nicht darauf vertrauen dass der #DRM-Trick den @signalapp nutzt dauerhaft funktionieren wird.
Alle #API|s und #ABIs unter #Windows sind reine Bitten: Es gibt kein Anrecht (weder dokumentierte "MUST" capabilities noch juristisch) aufbZugriffe und Funktionen!
Wenn Signal kein #Shitcoin-#Scam (#MobileCoin) und #VCmoneyBurningParty unter #CloudAct wäre dann würden diese aktiv #Windows11 (und alle anderen Windows-Versionen) aussperren und stattdessen #SelfCustody, #Dezentralisoerung, #Tor und #Datensparsamkeit umsetzen!
https://infosec.space/@kkarhan/114695158410619458
https://infosec.space/@kkarhan/114695449755257786
@Mer__edith yet @signalapp still demands #PII and refuses to pull out of the #USA putting it's users at risk as per #CloudAct.
@jonathankoren I'm just the kind of person who expects shit to work on #LynxBrowser over @torproject and if it doesn't then it's ableist trash IMHO.
@JessTheUnstill @mrencyclopedia or rather the same WiFi Chipset and/or decade-long unmaintained Firmware with more CVEs than clients it's DHCP server can handle and more #Shitcoin-#mining and #DDoS-#Botnet-#Malware targeting it than it has Ethernet ports in the rear...
@colinstu @gregly @garrwolfdog besides #KISSprinciple, it's also a matter of #security, #privacy, #efficiency and #professionalism.
@t3n ja, und das Problem ist halt durch #Shitcoins und jene #PostPrivacy basierend.
Anders als #Banken wo die #ITsec, #InfoSec, #OpSec & #ComSec nicht nur keine #Transparenz des Kontostandes bietet sondern welche auch explizit Pläne für solche Szenarien haben, wo Leute ggf. bedroht werden und gezwungen werden deren Konto leerzuräumen.
@silhouette @richi @signalapp @torproject
1. You completely miss the points! There is no "#TechnicalNecessity" to demand #PII like a #PhoneNumber - espechally for a "#privacy"-focussed messenger!
2. & 3. #Signal is able and willing to comply with #Cyberfacism and pushing a #Shitcoin (#MobileCoin) makes it trivial to criminalize the App for "illegal & unregilated banking". If #Moxie or @Mer__edith cared they'd yeet that thing (or didn't even integrate it to begin with!) to avoid the attention. And yes Signal does restrict the App functionality when using a phone number from #Russia & #Iran (among other nations), thus affecting not only those in need of safe comms but by sending a verification code to them, earmarking them for police & intelligence. Which bings.me to the 1st agrument.
4. #Tor has a stellar record in terms of stability, integrity and censorship circumvention. DIY'ing something instead if following almost two decades of solid progress is absurd and violates "don't roll your own crypto" as a rule!
5. Only with #SelfCustody can you protect your own data. Or do you really expect Staff from Signal to not talk when facing lifetime in jail? If they have the keys, they can decrypt it, thus their #E2EE is just a "#TrustMeBro!" concept. I mean, what prevents them from being forced into backdooring all comms to @icij as per #NSL? Any "guarantee" without self-custody is worthless by virtue of being unenforceable!
Signal pushing #TechPopulism instead of teaching folks that their #ComSec is worth diddly-piss wothout.#OpSec, #InfoSec & #ITsec is dangerous!
Not to mention there are better options that don't do that shite (i.e. demand PII) and just work. @monocles / #monoclesChat & @delta / #deltaChat for example can adapt way better to said risks and ain't run by a #VCmoneyBurningParty!
@richi Except @signalapp is not "#Privacy-first" cuz if #Signal did, they'd not.demand #PII (#PhoneNumber) nor remain in the #USA (#CloudAct) nor peddle #Shitcoin-#Scams (#MobileCoin) and put their tech on @torproject / #Tor and fully #decentralized.with 100% #SelfCustody of all the keys!
@Arios The Problem is #Windows.
Don't expect the "#DRMflag" to work when it's being used by @signalapp (which in and of itself is problematic for demanding #PII like #PhoneNumbers and shilling a #Shitcoin-#Scam named #MobileCoin!) because like the #API to signal to Windows "I'm an #Antivirus product, disable defender!" this will be abused.
If you are actually concerned re: #privacy you'd yert signal, educate others and use #XMPP+#OMEMO (i.e. @monocles / #monoclesChat & @gajim ) or #PGP/MIME (i.e. @delta / #deltaChat & @thunderbird ) over @torproject / #Tor instead.
Not to mention #Signal falls under #CloudAct, so your privacy there is already nonexistant!
@radmin @vozercozer them featuring #Bitcoin #Ethereum, #BraveBrowser and not #Monero, #TorBrowser & #BitTorrent shows that the original creators (not the OP!) are #CryptoBros and #TechIlliterates as they shove in #Blockchain garbage everywhere and fail to acknowledge shortcomings.
Also noone wants garbage like Ethereum, #Filecoin and/or whatever other #Shitcoin they pitch!
A shitcoin is basically a cryptocurrency that has almost no real value, legitimacy, or usefulness. #cryptoforold #finance #shitcoin #meme
Read more at: https://cryptoforold.com/what-are-shitcoins/
@malteengeler well, as much as I hate #Shitcoins like #Bitcoin, it's not as if #Governments have made much progress to convince me or others that they do more than the bare minimum to make people not guillotine #billonaires.
