The world seems to be shocked by the news that WhatsApp turned any phone into spyware. Everything on your phone – including photos, emails and texts – could be accessed by attackers just because you had WhatsApp installed [1].
This news didn’t surprise me, though. Last year WhatsApp had to admit they had a very similar issue – a single video call via WhatsApp was all a hacker needed to get access to all of your phone’s data [2].
Every time WhatsApp has to fix a critical vulnerability in their app, a new…
This is an article written by telegram’s founder and CEO Pavel Durov in 2019 on “Why whatsapp will never be secure”. Your thoughts?
Signal is not the best choice, it’s just a somewhat aceptable middle ground. I prefer something that doesn’t require a phone number and something you can self-host, like XMPP.
The major clients now do have OMEMO. Yea, I agree it’s flawed but that’s so far it’s the one I settled on. Do you know other, more refined selfhostable solutions? I am now looking for development there but doubt I’d get few people that I already got there to switch again.
Not aware that there is a modern decentralized secure and private chat protocol. Sadly.
I also am not aware of any developmenta of something like that, so XMPP is the best we got (for decentralized open widly supported protocols)
I know that a lot of clients do encryption of the message body by default, but it still leaves a lot of stuff in plain text (afaik).
Signal is not the best choice, it’s just a somewhat aceptable middle ground. I prefer something that doesn’t require a phone number and something you can self-host, like XMPP.
You mean that XMPP protocol which is not encrypted by default? Oh yes you mean that.
XMPP would need to be redesigned from ground up as a secure and private messaging protocol to be a valid choice.
XMPP has it advantages but to many cry out that it is the savior when it is not. We need something better.
The major clients now do have OMEMO. Yea, I agree it’s flawed but that’s so far it’s the one I settled on. Do you know other, more refined selfhostable solutions? I am now looking for development there but doubt I’d get few people that I already got there to switch again.
Not aware that there is a modern decentralized secure and private chat protocol. Sadly. I also am not aware of any developmenta of something like that, so XMPP is the best we got (for decentralized open widly supported protocols)
I know that a lot of clients do encryption of the message body by default, but it still leaves a lot of stuff in plain text (afaik).