⚠️ ‘Use Signal if you're in Russia’ is a dangerous advice! ⚠️
Signal does not have usernames, all accounts and exchange is bound to phone numbers. Phone numbers in Russia are literally bound to passports and in cases can replace real passport.
Telegram might not be an encryption paradise, but they got one thing right — you can use it without EVER revealing your phone number or even assigning username.
STOP GIVING ADVICE TO USE SIGNAL. YOU'RE PUTTING PEOPLE'S LIVES AT RISK.
@yesfreenet@mastodon.ml @sasha_sorokin@mastodon.social @fdroidorg@mastodon.technology @IzzyOnDroid@mastodon.technology session is funded by crypto shit. Element is shady, and element is just a client, also many (most)matrix instance need email/phone verification unless you selfhost matrix server . Jami may leak IP address. No idea about manyverse. Briar is okay
@jf @yesfreenet@mastodon.ml @sasha_sorokin@mastodon.social @fdroidorg@mastodon.technology @IzzyOnDroid@mastodon.technology I'd like to suggest to NOT point out these flaws. They deter people from using it. You don't need email/phone for matrix.
@forever @yesfreenet@mastodon.ml @sasha_sorokin@mastodon.social @fdroidorg@mastodon.technology @IzzyOnDroid@mastodon.technology
You don't need email/phone for matrix.
I said "unless you selfhost" for a reason@jf I don't self host. I've never linked an email or phone to my account.
@forever some instances doesn't. Which instance though?
@jf matrix.org
🇪🇺
Please read this before blindly suggesting Matrix to others:
@jjj333p@mastodon.social @Mehrad@fosstodon.org @forever@stop.voring.me CCP may arrest if any chinese citizens react to a post/message which criticize them
@jjj333p@mastodon.social @Mehrad@fosstodon.org @forever@stop.voring.me its true. A dev suggest chinese not to star his repo https://github.com/cirosantilli/china-dictatorhsip-2
@jjj333p@mastodon.social @Mehrad@fosstodon.org @forever@stop.voring.me iirc github doesn't work correctly in Safari
@Mehrad@fosstodon.org @jjj333p@mastodon.social May I reveal to you:
You seem to care so much about metadata leakage. Nobody else really does.
@forever
Perhaps because I know how such data can be used/abused to hurt people based on my experience and expertise, or perhaps I have read about the topic a little bit more than you and others, or even perhaps I'm paranoid. But whatever it is, unlike some of these comments, my actions doesn't have the potential to cost others their lives.
Many people have unprotected sex and they don't care either about STDs/STIs. Does this justify that no one should care?!
@Mehrad@fosstodon.org @jjj333p@mastodon.social This could be true. But my point still stands.
most require no identity verification so maybe the fact you are messaging is visible and all the metadata around it is unencrypted, but no one will know who because no identity verification and the main content is encrypted so you can’t figure out who that way.
Plus ideally if you are really worried you find a matrix homeserver that you trust with your metadata.
@jjj333p
🤦🏻♂️ ok, enjoy using Matrix and imagine that it is ok that it is nit fully e2ee despite their ads, and be sure to post your IP, system information, client, active days and hours, amount of activity and much much more here. And since you are at it, how about publishing your bank account info, phone number records, you full name and all you passwords under copyleft license 😉
@Mehrad@fosstodon.org @jjj333p@mastodon.social
How about you read my bio, before trying that? I'd love to listen to you but sadly you're a candidate to be blocked.
@forever@stop.voring.me @Mehrad@fosstodon.org @jjj333p@mastodon.social whot
Metadata is just as sensitive — if not more sensitive — than the message content itself; that's why messengers like Signal and Threema put tons of work into reducing metadata transmission wherever possible. Meanwhile Matrix is over here increasing the amount of metadata that's sent between servers.
It's downright irresponsible to recommend Matrix to people in life-threatening situations imo. It has no place in discussions about private messengers.
@amolith@mk.nixnet.social @Mehrad@fosstodon.org @jjj333p@mastodon.social
okay
you're not even involved in this thread
@forever@stop.voring.me @Mehrad@fosstodon.org @jjj333p@mastodon.social it's called seeing a dangerous take and responding
@amolith@mk.nixnet.social @Mehrad@fosstodon.org @jjj333p@mastodon.social I really don't want to block another person in this thread But, alright. Is it dangerous because it leaks my credit card number through the metadata?
@forever@stop.voring.me @amolith@mk.nixnet.social @Mehrad@fosstodon.org @jjj333p@mastodon.social leaking times, origin, and other stuff is just as important as the actual message content, because context and circumstantial evidence is often enough to at least get a good idea of what's happening
@forever@stop.voring.me matrix is not the ultimate private messenger so many claim it is and suggesting otherwise is irresponsible and dangerous
if you believe that statement warrants a block, cool. it doesn't affect me either way 
@amolith@mk.nixnet.social peace be with you.
@forever@stop.voring.me @amolith@mk.nixnet.social @Mehrad@fosstodon.org @jjj333p@mastodon.social metadata which associates people together is a risk for dissidents, this is a relevant security concern, surely?
@Mehrad@fosstodon.org Okay? Who cares if you reacted with 🪕?
𝚜𝚎𝚕𝚎𝚊 
You dont need to provide your phonenumber....
I’d recommend @threemaapp all day long for actual, proper secure chat. No phone number or email address required, they use the bare-minimum metadata AND their code can be audited.
Telegram, I believe, has links to Russia.
The problem is, no one wants to pay for an app.
If the product is free, you’re the product.
@forever@stop.voring.me @jf@stop.voring.me @yesfreenet@mastodon.ml @sasha_sorokin@mastodon.social Some instances requiring your email address or phone number are just two of the smaller concerns imo. There are issues with the Matrix protocol itself that are far worse because they affect every user on every installation; Matrix may be more secure than other options but it's a far cry from private.
@yesfreenet@mastodon.ml @sasha_sorokin@mastodon.social @fdroidorg@mastodon.technology @IzzyOnDroid@mastodon.technology yes, yes Now I remember manyverse, its like Berty right? iirc I had installed it but didn't like the app
Element isn't shady, and the Matrix spec is completely open. You also don't need a phone number nor an e-mail address if you create your account on matrix.org.
@KopfKrieg@troet.cafe @IzzyOnDroid@mastodon.technology @fdroidorg@mastodon.technology @yesfreenet@mastodon.ml @sasha_sorokin@mastodon.social There are many public matrix instances which need phone number verification. Also using matrix.org doesn't guarantee your privacy https://github.com/libremonde-org/paper-research-privacy-matrix.org/blob/master/part2/README.md
@yesfreenet @sasha_sorokin @fdroidorg @IzzyOnDroid
Actually you should NOT use matrix (element) either, it is not fully encrypted. If you are in a country that unencrypted identifiable messages can rush your life, stay away from Matrix until they fully implement encryption
@Mehrad , matrix.org says that Matrix implement e2ee.
Do you mean something more specific?
@snowinmars
😂😂 Microsoft says they are privacy oriented, majority if criminals say they are innocent, 99.999% of religions claim they collect money for [gG]od
Jokes aside, read this and the HackerNews link someone else shared in that thread:
Don't take me wrong, Matrix is very good and I use it daily basis for work, but I would not bet my life on their false claim about "full e2ee". They confessed in that HackerNews thread that they are not encrypting everything. My main problem is knowingly claiming a false statement and putting people's lives at risk. People's lives are not toy or poker chips.
@yesfreenet
Xmpp with pgp, element/matrix, delta chat.
If you can't host the server don't rely on it.
@sasha_sorokin @fdroidorg @IzzyOnDroid
@yisraeldov isnt delta chat just email
@sasha_sorokin@mastodon.social also signal is owned by the same people who sold WhatsApp to Facebook. do not trust signal.
@sasha_sorokin@mastodon.social I trust the people on telegram more since they've always fixed issues quickly, and it has the most features and seemingly best security
@jessica@mk.absturztau.be @sasha_sorokin@mastodon.social true telegram has good features & lightweight clients (android clients battery consumer) but the Singapore data centre of telegram is very slow less than 2mb/s
@jessica@mk.absturztau.be @sasha_sorokin@mastodon.social I have never installed Singal shit lmao
signal
Simplex
@jf@stop.voring.me @sasha_sorokin@mastodon.social seems okay, but I don't see anyone using it, I've never heard of this platform
@jessica@mk.absturztau.be @sasha_sorokin@mastodon.social Do you only trust mainstream apps? I prefer quality over quantity
@jf@stop.voring.me @sasha_sorokin@mastodon.social If you're the only person using an app to someone, they're less willing to talk, less availability
@jessica@mk.absturztau.be @sasha_sorokin@mastodon.social my all friends use simplex. Its lightweight CLI app and it can be use in linux,mac,linux,android,ios,tv,car,plane,helicopter,tank,submarine,jupiter,earth 811 etc
@jf@stop.voring.me @sasha_sorokin@mastodon.social I've never seen anything wrong with telegram, just make sure to open a secret chat. same with anything else.
@jessica@mk.absturztau.be @sasha_sorokin@mastodon.social telegram encryption lmfao
@jessica@mk.absturztau.be @jf@stop.voring.me @sasha_sorokin@mastodon.social
This is why I don't use XMPP, or Signal, ect. Nobody (that I know) uses them.
@forever@stop.voring.me @jf@stop.voring.me @sasha_sorokin@mastodon.social I have about 30 people on xmpp but I never use it because if i want to talk to someone I just use fedi 90% of the time because they're from fedi.
I have 5 people on matrix, 10 people on telegram. 99% of the time I just use discord because it's what people use.
@sasha_sorokin
Added. Not use Telegram
Use Briar and Session, Element, Manyverse, Jami. 😃 Fediverse apps 😏
Use FLOSS app from FDroid and IzzySoft
@fdroidorg @IzzyOnDroid