Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

algorithms don't matter for shit to the person that controls the (mandatory) updates.

its the same issue with all modern e2e apps like whatsapp or signal, if there is a single client implementation its not secure at all to these kind of attacks.



> signal [...] > if there is a single client implementation its not secure at all to these kind of attacks.

There are (where?) actually multiple "distributions" of signal, like textSecure on f-droid. Last I checked it worked with signal, but that was a few years ago.


No, Moxy killed the alternatives with really shitty arguments and banning from using Signal official servers.


Exactly! All it takes is a "demand letter" from any government with jurisdiction. See: https://en.wikipedia.org/wiki/Lavabit




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: