Unironically the best E2E Messenger we've got so far. Completely FOSS and normie friendly.
Unironically the best E2E Messenger we've got so far. Completely FOSS and normie friendly
Grayson Reed
Other urls found in this thread:
securemessagingapps.com
en.wikipedia.org
privacytools.io
motherboard.vice.com
wire-docs.wire.com
crysp.uwaterloo.ca
gitlab.com
gbhackers.com
twitter.com
Julian Gutierrez
>Requires a phone number
Haha. No. Wire is better.
Oliver Bennett
>Requires nothing but a prepaid sim card
And this is somehow bad?
Brayden Reed
Signal > Wire per security and privacy reasons,
but whatever, they both good alternatives, as they completely Open-Source,
not like Wickr
Signal - "Does the app encrypt metadata? = YES"
Wire - "Does the app encrypt metadata? = MOSTLY"
Source: securemessagingapps.com
Signal - "Does the company log timestamps/IP addresses? = NO"
Wire - "Does the company log timestamps/IP addresses? = SOME"
Source: securemessagingapps.com
Signal - "Profile information = STORED; CLIENT-SIDE ENCRYPTED"
Wire - "Profile information = STORED; NOT CLIENT-SIDE ENCRYPTED"
Source: en.wikipedia.org
Signal - "Chat metadata = NOT STORED"
Wire - "Chat metadata = STORED"
Source: en.wikipedia.org
Signal - "Profile information = NOT STORED"
Wire - "Contact lists = STORED"
Source: en.wikipedia.org
"Wire - Caution: The company keeps a list of all the users you contact until you delete your account."
Source: privacytools.io
P.S. If you care about needing phone number to register, just get free pre-paid even internet one and forget about it.
Charles Cox
"In May 2017, Motherboard published an article saying that the Wire servers "keep a list of all the users a customer contacted until they delete their account". Wire Swiss confirmed that the statement was accurate, saying that they keep the data in order to "help with syncing conversations across multiple devices", and that they might change their approach in the future."
Jason Edwards
SIM cards can be tracked
Austin Hall
"Wire maintains the following metadata about conversations on the backend
servers:
•Creator: The user who created the conversation.
•Timestamp: The UTC timestamp when the conversation was created.
•Participants list: The list of users who are participants of that conver-
sation and their devices. This information is used by clients to display
participants of the group and to perform end-to-end encryption between
clients (see Wire Security Whitepaper for further details).
•Conversation name: Every user can name or rename a group conversation."
Source: wire-docs.wire.com
Jeremiah Davis
"In December 2016, Wire's whitepapers were reviewed by a security researcher at the University of Waterloo. The researcher praised Wire for its open approach to security, but identified serious issues that still need addressing. These included a man-in-the-middle attack on voice and video communications, possible audio and video leakage depending on unspecified codec parameters, the fact that all user passwords are uploaded to Wire's servers, significant attack surface for code replacement in the desktop client, and the fact that the server is not open sourced. The researcher described the security of Wire as weak in comparison to Signal, but also depicted its problems as surmountable."
Source: crysp.uwaterloo.ca
Josiah Reyes
Heres the thing you fags dont get- yea its e2e is the best (secure and user friendly) so far, but it isnt the answer.
Matrix is the answer. You dont need to give it a cell number, you can self host the server, you can choose your server (synapse, dendrite, or others), you can choose your client (riot.im, nheko, weechat, paddle, etc), and you can moths fukin bridge! To SMS, hangouts, WhatsApp, Irc, slack, discord, etc. Also matrix encryption is just as secure, just not as user friendly yet (by a mile, until cross signing lands)
Signal has mastered e2e but thats it. It is flawed by design. If enough people people started using it tomorrow do you not think governments would be knocking at their door for a backdoor to their centralized server?
Youd be naieve to ever put your long term trust in a centralized solution
Thomas Baker
prepaids are now illegal in Germany because "bad people" use them.
Nathaniel Rogers
For once OP is not a faggot
>muh phone number
Just install a fucking free phone number app like textfree and use that number, then in signals settings turn on registration lock so even if someone else takes that number they can't use signal with it. If you cant figure this out you dont belong on Jow Forums
Mason Diaz
Prepaid SIM cards are not available in most of Europe anymore. Anyone have some info on the current situation? I believe Croatia still sold some.
Tyler Jenkins
Thank you for shining the light on Matrix.
John Davis
Tyler Rogers
Yes because you're uniquely identified and tied to your SIM card and your location can be narrowed down significantly. Also, some Orwellian countries like Germany can't have unregistered SIM cards. So wire is a better option for anonymity and convenience.
Matrix (Riot.im), Ring/Jami, XMPP (PixArt/Conversations), Tox (Trifa/qTox) and Briar are still better options for privacy.
Croatia sells pre-paid SIMs at kiosks. They're sometimes given away for free on the street. Pretty sure it's the same in every Slav country.
Evan Cook
Signal turned to shit years ago. Go look through the github and tell me again that it's a project you feel safe using. The deal-breaker for me was when they disabled XML export of messages, which I could see as nothing other than an attempt to lock-in their users by disabling them to move messages to a new app.
It's not like you can't use pgp on a throwaway email anyway. This shit is all about convenience, and only a fool would believe that convenience comes at no cost. Sure, if "messenger" means "shitty insecure phone app," then yeah, signal is the best one. But if you play stupid games, you're gonna win stupid prizes.
Aaron Wright
based slavs. i'm half slavic and I really believe that something about us is genetically ingrained such that we don't give a single fuck about government and laws. My grandfather was from a place where they create trash-can cannons as a celebration every year
Jose Ortiz
Explain how Signal is insecure. You're full of shit.
Kayden Scott
heres one example gbhackers.com
All you need to do is use the app, look through the github and decide for yourself though. As far as I can tell, most the developers that cared about making it a secure messaging platform left it long ago. If nothing else, the app has become very buggy and unusable.
I shouldn't be bumping this shill thread but im hoping someone reads my criticism. Don't ever trust a signed app with information you want to keep private, in fact, don't trust a cellular device with information you want to keep private.
Matthew Green
no, you just have to activate it via videoident
Isaac Bennett
>Wire
would tox be better?
Adrian Murphy
You can remove the sim and the app will continue to function, it is only needed for the initial confirmation that you have access to it.
You don't even need a sim, you can use any phone number.
Landon Martinez
>place where they create trash-can cannons as a celebration every year
Sounds like fun.
Tox is overall better for privacy
>doesn't have a central server
>there's no registration, no SIM/email needed
>works fine with Tor
But
>an account cannot be used on more than 1 device at a time
>can be less stable, depending on client
>messages are only delivered when both the sender and the recipient are online, due to it being serverless
Wire is better for convenience
>SIM/email to recover your password
>can be used on any number of devices
>has desktop recording
But
>the android app is shit and has issues delivering messages in some cases
>the desktop app is shit because it's written in electron and the GUI is garbage
The SIM has to be unique. And it's tied directly to you. The number can be used to track you down to a single city in some cases. It's a million times harder to get a SIM card fully anonymously than email. It's less convenient for people who don't use SIM cards at all. It's less convenient for people who'd have more than a single account. Signal is just shit for anonymity, which makes it slightly worse for privacy than Wire and even Threema, which is proprietary.
Also, stop ignoring the fact that in some countries you can't get pre-paid SIM cards.
Christian Martin
>uses google play services as a hard dependency; the developer actively discourages compiling from source and the use of third party builds or repos like F-Droid
>completely FLOSS
>normie
faggot
Oliver Perez
so what prevents people from buying and activating the phones in bulk, then reselling them on the black market?
Kayden Morgan
good point. i think the sellers will still bial for these numbers and i guess you have to report if you lose a sim card
Michael Barnes
>your location can be narrowed down significantly.
based schizo, what's the point of "finding" you when everything else is encrypted? literally nothing is traced back at the number
Thomas James
>CIA: we kill based on metadata
>user: lol just add more metadata you schizo xd