>team doesnt identify itself
>unclear about funding
>shit security
>gets hacked
>censors feedback left by anonymous hacker on issue tracker
i'm envisioning a bunch of weak wristed 20-something trannies with blue hair and piercings. am i right?
Matrix hack
Ethan Nguyen
Matthew Carter
At least the protocol itself is good. If this were a """service""" like discord, it would be a much more serious problem. However, this is like IRC or XMPP in the sense that anyone can host an instance.
Dominic Campbell
apparently the messages arent even encrypted from the instance provider. not knowing much about matrix that was rather shocking to me, for something that purports to be so secure
Adam Campbell
>protocol itself is good
> REST/JSON shit without proper schema
> Only client to server part is stable, server to server is unstable
> Only single implementation by pajeets
> Good
Jack Cox
Also
> HTTP polling
Justin Parker
So what was the message?
Hunter Johnson
archive.is
archive.is
Isaiah Rivera
What's wrong with irc?
Cameron Bell
antifa cant use it to organize
Grayson Anderson
host your own server then you mong
Asher Clark
Matrix seems a bit too zoomery and shady for me. Feels like "privacy", "secure" etc have become kind of a buzzwords for shady shit nowadays.
Kevin Rodriguez
""""secure""" message hoster gets pwnd as hard as they possibly can and *i'm* the mong
Robert Torres
I've read through the Matrix protocol and it's not offering anything useful over XMPP and it's got less chance of replacing IRC.
Jaxson Brown
the CoC people are at it again github.com
what chat room do they mean?
Dylan Torres
it wasn't the matrix protocol or a matrix server or a matrix client that was attacked, retard. fucking xmpp shills
Isaac Collins
I don't use the matrix.org homeserver so this doesn't affect me.
COPE
Jeremiah Martin
uh they had access to the entire matrix.org production infrastructure, to the point where they could have signed malicious client code if they had wanted to
they also had access to unencrypted messages
how much harder do you think its possible to get owned?
Hudson Parker
shit happens, it's been fixed now
Dominic Butler
they are demonstrably clueless about security best practices (see archive.is
Jason Nelson
>not offering anything useful over XMPP
Voice/video calls. XMPP is just glorified and a bit improved email with 0 good clients outside of android.
Joseph Scott
they got advice on how to fix it and are going to implement the fixes
Grayson Jenkins
>censors feedback left by anonymous hacker on issue tracker
That was actually GitHub when they banned that account.
Zachary Perry
This.
It's really fucking bad as compared to both the XMPP and the Mastodon/ActivityPub ecosystem at every level.
You feel the forwarding delays and terrible clients as user, you suffer bloat or absence of features with servers. you suffer worse than average pajeet code as developer.
Noah Edwards
I think one of the best summaries is still up:
github.com
Chase Jackson
this is embarrassing, matrix will never recover
Connor Jenkins
Yeet
David Rodriguez
Enforcing E2EE in Matrix requires users to maintain their own encryption keys, which for many is not worth the hassle