LWD @ LWD @lemm.ee

Posts

77

Comments

1,953

Joined

2 yr. ago

Moderating

---

Monero? First I've heard of this

It makes reasonable sense to run away from any product made by a company that not only has broken people's trust, but refuses to stop breaking it to start mending it...

The memo...recommended use of other messaging apps, including Microsoft Corp’s Teams platform, Amazon.com’s Wickr, Signal, Apple’s iMessage, and Facetime.

lol

A few observations from others about why Delta Chat is neat but not remotely close to a replacement for Signal (or probably much else):

It hasn't achieved the bare minimum for serious encrypted messaging

"No, Delta Chat doesn’t support Perfect Forward Secrecy (PFS). This means that if your Delta Chat private decryption key is leaked, and someone has collected your prior in-transit messages, they will be able to decrypt and read them using the leaked decryption key."

https://delta.chat/en/help#pfs

It's great they're being open about the implications. But given that there's better protocols out there (Signal protocol for example), it makes no sense to use inferior apps.

Forward secrecy and metadata privacy are table stakes in any modern secure messaging design, and Delta Chat has neither.

If Keybase hasn't managed to "fix" the same base encryption Delta Chat is using, there's no reason to assume this small project will have better luck.

PGP isn’t architecturally well-equipped to provide forward secrecy. In the mean time, I think it’s borderline negligent to put this in the category of secure messaging; the world’s expectations for security baselines have moved on beyond the mid-2000s.

(My reference point here is Keybase, which built a very user-friendly and misuse-resistant encrypted chat on top of PGP in the mid-2010s. They couldn’t get to forward secrecy either with PGP as their substrate.)

Delta Chat treats encryption as optional and requires extra steps to avoid accidentally exposing more data

No forward secrecy and will automatically switch to unencrypted messages if you receive an unencrypted message from a contact.

The way to have guaranteed encryped is creating two user encrypted group chat.

deleted by creator

deleted by creator

Is my client broken, or is the text just not visible after you cross posted? Here's the text from OP:

Meta: Coming after your data harder than ever

At this point it not about passive collection, corporations are going to extreme ends to get our data.

https://www.zeropartydata.es/p/localhost-tracking-explained-it-could

I am interested in what people are doing to enforce their privacy while using the web.

I have some things in place, looking to compare with the community.

(btw, I am new here, this is my first post. So uh… Hi )

It cannot be understated how absolutely deranged the orb has been from the beginning. Sam Altman is creating the problem (AI botspam) and promising he has the solution (this ungodly trash) at the same time.

Scam altman even sent a crew to Kenya to try coloniz... Uh, debankin... Oh, scanning eyeballs in exchange for a few piddly dollars. In response, Kenya booted his project out.

So he turned his sights to a country he apparently can exploit: the USA.

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

Based on your descriptions of the integration between Windows 96 and Office, I did get the feeling you might run into even more issues if more software wasn't installed alongside Windows as well.

I'm all Mac and Virtual Box doesn't run on M-series hardware.

I had no idea!

And hopefully my comment didn't come across as a dig against your article - it just promises to be a potentially fascinating follow-up. Especially when, even today, Windows Explorer feels like it added previews of files as little more than an afterthought (and occasionally as a PowerToy).

BTW I enjoyed 100% of your article, I think it's a good sign when it leaves the reader wanting more!

This is a very good article, but this part peeved me on a petty level (as well as explaining why there's precious little in the way of screenshots):

While I can't find any uploads that are set to run on their website in a virtual computing session, the files are available to download if you felt like spinning up a piece of computing history.

The opportunity to do a little investigative journalism is right there, and the blog author didn't take it

deleted by creator