This is an article written by telegram’s founder and CEO Pavel Durov in 2019 on “Why whatsapp will never be secure”. Your thoughts?

  • EngineerGaming@feddit.nl
    link
    fedilink
    arrow-up
    11
    arrow-down
    2
    ·
    10 months ago

    Signal is not the best choice, it’s just a somewhat aceptable middle ground. I prefer something that doesn’t require a phone number and something you can self-host, like XMPP.

    • Dehydrated@lemmy.world
      link
      fedilink
      arrow-up
      5
      arrow-down
      3
      ·
      10 months ago

      Good luck convincing normies to use some obscure messaging protocol. It’s difficult with Signal, even harder with Matrix, basically impossible with XMPP. 99.99999% have never in their life heard about XMPP. Also most mobile clients absolutely suck. You also can’t get proper push notifications without completely ruining your battery life. What a great choice!

    • ShortN0te@lemmy.ml
      link
      fedilink
      arrow-up
      3
      arrow-down
      1
      ·
      10 months ago

      You mean that XMPP protocol which is not encrypted by default? Oh yes you mean that.

      XMPP would need to be redesigned from ground up as a secure and private messaging protocol to be a valid choice.

      XMPP has it advantages but to many cry out that it is the savior when it is not. We need something better.

      • EngineerGaming@feddit.nl
        link
        fedilink
        arrow-up
        1
        ·
        10 months ago

        The major clients now do have OMEMO. Yea, I agree it’s flawed but that’s so far it’s the one I settled on. Do you know other, more refined selfhostable solutions? I am now looking for development there but doubt I’d get few people that I already got there to switch again.

        • ShortN0te@lemmy.ml
          link
          fedilink
          arrow-up
          1
          ·
          10 months ago

          Not aware that there is a modern decentralized secure and private chat protocol. Sadly. I also am not aware of any developmenta of something like that, so XMPP is the best we got (for decentralized open widly supported protocols)

          I know that a lot of clients do encryption of the message body by default, but it still leaves a lot of stuff in plain text (afaik).