Happy #GlobalSwitchDay
-
You are confusing privacy with anonymity. You aren't anonymous because your user is linked to a phone number, but your communications are private due to how their encryption works.
On the location attack: it is a matter of configuration and your location will be as ambiguous as thousands of miles.
Finessing the terms doesn't fix it.
-
30 million dollars https://element.io/blog/element-raises-30m-as-matrix-explodes/
You can argue that element is not matrix but youβre fooling yourself. Others even have to look at how element implements stuff instead of following the matrix spec
Good to know, thank you for the link
-
Downvote for what? What part is wrong?
Wasting other people's time.
If you want to use an LLM that's fine, but if you're cutting and pasting it into a discussion you should warn other people that it's not human generated.
And most of it isn't wrong, it's just a giant wall of text that's largely irrelevant to the conversation.
-
Regarding SMTP:
SMTP (Simple Mail Transfer Protocol) is a foundational technology for email, but it has some limitations. Here are some ways it could be improved:
- Security: SMTP was designed in a time of less pervasive security threats. It lacks built-in encryption and authentication mechanisms, making it vulnerable to eavesdropping, spoofing, and spam. While extensions like TLS/SSL and authentication methods exist, they are not universally implemented or enforced.
- Efficiency: SMTP is a "chatty" protocol, meaning it involves multiple back-and-forth exchanges between the client and server. This can lead to latency and increased resource consumption, especially for large emails or bulk sending.
- Deliverability: SMTP doesn't have mechanisms to guarantee email delivery. Emails can get lost, delayed, or filtered as spam. While techniques like SPF, DKIM, and DMARC help, they are not foolproof.
- Features: SMTP is primarily designed for sending emails. It lacks features for managing email content, tracking delivery status, or handling complex email workflows.
Possible Improvements: - Mandatory Encryption: Enforcing TLS/SSL encryption for all SMTP connections would protect email content from interception.
- Stronger Authentication: Implementing more robust authentication mechanisms would prevent spoofing and ensure that emails originate from legitimate senders.
- Enhanced Deliverability: Developing mechanisms to track email delivery, provide feedback on delivery failures, and reduce spam filtering would improve deliverability.
- More Efficient Communication: Exploring alternative protocols or extensions that reduce the "chattiness" of SMTP could improve efficiency.
- Integration with other technologies: Integrating SMTP with other technologies like REST APIs or message queues could enable more complex email workflows and features.
It's important to note that some of these improvements are already being addressed through extensions and best practices. However, there is still room for improvement in making SMTP a more secure, efficient, and reliable technology.
That said, it looks like Delta Chat doesn't actually use SMTP, having scanned through the website. Though I'm honestly unsure either way as it was only a scan.
PGP is a very curious choice. A quick Google search says a downside of this is that it does not provide "forward secrecy". From the Wikipedia page on forward secrecy, it prevents things like the following.
If an adversary can steal (or obtain through a court order) this static (long term) signing key, the adversary can masquerade as the server to the client and as the client to the server and implement a classic man-in-the-middle attack.
-
Oh that's good.
I've often wondered how could I make my instant messaging less instantaneous, while giving a new app access to my banking emails.
If you struggle making more than one email address try starting somewhere basic.
-
Finessing the terms doesn't fix it.
Precise language is important if you want to understand and communicate truth. It helps a lot to understand the difference between privacy and anonimity there is a scenario where a person doesn't care that an adversary knows their id, but does care about the content of their messages. In which case, differentiating tools that provide that particular service requires language to discuss it.
-
This post did not contain any content.
Did anyone tell the WhatsApp users?
-
Precise language is important if you want to understand and communicate truth. It helps a lot to understand the difference between privacy and anonimity there is a scenario where a person doesn't care that an adversary knows their id, but does care about the content of their messages. In which case, differentiating tools that provide that particular service requires language to discuss it.
He clearly does care about the phone number.
-
If you use your email, it's anonymous but you have to use your email which is almost never anonymous and has your phone number. Also you have to "Create an app-specific password" that delta chat will use and gain full access to your email account, which is way worse than signal or any other application. That's a really stupid idea.
If you struggle making a new email address, this is not for you.
-
you need a phone number to make an account. but you can chat with others without divulging your phone number
Unregistered users can't chat, so it needs a number, like OP said.
-
Unregistered users can't chat, so it needs a number, like OP said.
-
It's not anonymous.
-
If you use your email, it's anonymous but you have to use your email which is almost never anonymous and has your phone number. Also you have to "Create an app-specific password" that delta chat will use and gain full access to your email account, which is way worse than signal or any other application. That's a really stupid idea.
During onboarding of the app you only choose a name and get a random email address
-
Did anyone tell the WhatsApp users?
-
This post did not contain any content.
Fragment it's the first time I hear about Delta chat
-
Signal is private in that other people can't intercept your messages, including signal. The signal app is open-source so you can be relatively certain it's not tracking your decrypted messages, unlike closed-source apps like WhatsApp or Facebook Messenger or any other private social media.
Signal is not anonymous from an account standpoint, because you need a phone number to sign up, even if you can choose not to display it in your account.
-
Wasting other people's time.
If you want to use an LLM that's fine, but if you're cutting and pasting it into a discussion you should warn other people that it's not human generated.
And most of it isn't wrong, it's just a giant wall of text that's largely irrelevant to the conversation.
Wall of text? I provided information requested and then went back and provided more information to clear up a claim I got wrong. Let's not focus on how we get the information, but rather what the information is. If it's not for you personally, just move on.
-
PGP is a very curious choice. A quick Google search says a downside of this is that it does not provide "forward secrecy". From the Wikipedia page on forward secrecy, it prevents things like the following.
If an adversary can steal (or obtain through a court order) this static (long term) signing key, the adversary can masquerade as the server to the client and as the client to the server and implement a classic man-in-the-middle attack.
-
If you struggle making a new email address, this is not for you.
-
Signal is private in that other people can't intercept your messages, including signal. The signal app is open-source so you can be relatively certain it's not tracking your decrypted messages, unlike closed-source apps like WhatsApp or Facebook Messenger or any other private social media.
Signal is not anonymous from an account standpoint, because you need a phone number to sign up, even if you can choose not to display it in your account.
This does nothing to fix the problem.
