Skip to content
  • Home
  • Categories
  • Recent
  • Popular
  • World
  • Top
  • Tags
  • Users
  • Groups
  • Documentation
    • Home
    • Read API
    • Write API
    • Plugin Development
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo
v4.0.0 Latest
Buy Hosting
  1. Home
  2. Uncategorized
  3. A fork of the Signal Messenger known as Sessions has omitted several important security properties found in the original source code, making it a less secure alternative, a researcher says.

A fork of the Signal Messenger known as Sessions has omitted several important security properties found in the original source code, making it a less secure alternative, a researcher says.

Scheduled Pinned Locked Moved Uncategorized
2 Posts 2 Posters 4 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • Dan GoodinD This user is from outside of this forum
    Dan GoodinD This user is from outside of this forum
    Dan Goodin
    wrote last edited by
    #1

    A fork of the Signal Messenger known as Sessions has omitted several important security properties found in the original source code, making it a less secure alternative, a researcher says. The deficiencies include:

    -- no forward secrecy

    • insufficient Entropy in Ed25519 Keys
    • no in-Band Negotiation for Message Signatures
    • using Public Keys as AES-GCM Keys

    Stay away from this offering unless you really, really, really know what you're doing:

    https://soatok.blog/2025/01/14/dont-use-session-signal-fork/

    Eloy 🔜 FOSDEME 1 Reply Last reply
    0
    • AmberP [email protected] shared this topic
    • Eloy 🔜 FOSDEME This user is from outside of this forum
      Eloy 🔜 FOSDEME This user is from outside of this forum
      Eloy 🔜 FOSDEM
      replied to Dan Goodin last edited by
      #2

      @dangoodin "Stay away from this offering unless you really, really, really know what you're doing"

      well, @soatok really knows what he's doing and is staying away from it, I would advice anyone to stay away from it

      1 Reply Last reply
      0

      Copyright © 2025 NodeBB | Contributors
      • Login
      • Don't have an account? Register
      • Login or register to search.
      Powered by NodeBB Contributors
      • First post
        Last post
      0
      • Home
      • Categories
      • Recent
      • Popular
      • World
      • Top
      • Tags
      • Users
      • Groups
      • Documentation
        • Home
        • Read API
        • Write API
        • Plugin Development