You're viewing a single thread.
Signal is not Fediverse! Element/Matrix is!
Absolutely, signal isn't federated, but I don't want my messaging app to be federated. I want my social media to be federated. Lemmy is good because it's open. Signal is good because it's shut.
That’s your preference and there’s nothing wrong with it. Doesn’t make Signal a Fediverse alternative. Matrix fits that use case.
I prefer my messaging to be federated for the same reason I don’t want my other services depending on the benevolence of a single actor. But that’s me.
Don't use Matrix the devs knew about sidechannel vulnerabilities and ignored them for years. This is peak negligence and should immediately disqualify you from touching anything security related.
the author literally picked random projects from github tagged as matrix, without considering their prevalence or whether they are actually maintained etc.
if you actually look at % of impacted clients, it’s tiny.
meanwhile, it is very unclear that any sidechannel attack on a libolm based client is practical over the network (which is why we didn’t fix this years ago). After all, the limited primitives are commented on in the readme and https://github.com/matrix-org/olm/issues/3 since day 1.
From your link.
That is exactly what it says. They knew about security issues in their library and didn't fix them for years. This isn't being ignorant, this is negligence.
You do not have a solution.
I do, use Signal if you care about privacy. They are the only game in town when it comes to reasonably secure chat software. Sure, I would prefer a federated alternative but I haven't found one yet that is always end-to-end encrypted, open source, implements forward secrecy, and is user friendly enough to be used by my grandmother.
SimpleX is better, you don't even need a phone number.
SimpleX is cool, but fails the "my grandmother can use it" requirement. Signal has the huge benefit that is just as easy as WhatsApp. With Simplex you have to invite each of your friends individually.
Scan a QR isn't difficult, there are also tantum links
With Signal you just have to install the App and make an account to start chatting with your friends and family. SimpleX requires me to send a link or QR code to everybody I want to interact with. You will have a hard time convincing anyone to do that. Compare that to the first Twitter exodus, people chose Bluesky over Mastodon because picking a server was 'difficult'. The average person doesn't care about technology at all and will always pick the path of least resistance.
Thanks
No, Matrix is federated differently.
And Signal isn’t?!
Signal is centralised.
You now understood both my point and the OC’s, I hope.