Warning: Some posts on this platform may contain adult material intended for mature audiences only. Viewer discretion is advised. By clicking ‘Continue’, you confirm that you are 18 years or older and consent to viewing explicit content.
I don’t consider myself exceptional in any regard, but I stumbled upon a few cryptography vulnerabilities in Matrix’s Olm library with so little effort that it was nearly accidental. It…
meanwhile, it is very unclear that any sidechannel attack on a libolm based client is practical over the network (which is why we didn’t fix this years ago).
Wow… Uh, that’s certainly a thing for a developer to let slip out, huh?
One thing I don’t get about Signal/Telegram/etc is that they claim to be secure and private… Yet also require you to prove your identity via a phone number? I don’t really get it.
That would be a massive deal breaker to some people I want to push off Discord and is one of the reasons I haven’t tried Signal yet, but have tried Matrix.
Wow… Uh, that’s certainly a thing for a developer to let slip out, huh?
One thing I don’t get about Signal/Telegram/etc is that they claim to be secure and private… Yet also require you to prove your identity via a phone number? I don’t really get it.
That would be a massive deal breaker to some people I want to push off Discord and is one of the reasons I haven’t tried Signal yet, but have tried Matrix.
signal no longer requires phone numbers as they have implemented a username system
I figured, but my question is: Why did it take them so long, especially for something that prides itself on privacy?
i wish i knew