• coolusername@lemmy.ml
    link
    fedilink
    arrow-up
    14
    arrow-down
    21
    ·
    edit-2
    2 months ago

    0% chance that the feds don’t have Signal backdoors, otherwise Wired wouldn’t be promoting it. fyi everyone Proton is CIA. It’s modern cryptoAG.

    • mipadaitu@lemmy.world
      link
      fedilink
      English
      arrow-up
      14
      arrow-down
      1
      ·
      2 months ago

      https://community.signalusers.org/t/overview-of-third-party-security-audits/13243

      https://freedom.press/newsletter/crossfire-over-messaging-security/

      https://freedom.press/training/locking-down-signal/

      You don’t have to take Signal’s word for it, because it’s been audited. The EFF, who are VERY privacy minded, and do extensive research into this type of thing, recommends Signal because it’s known to be secure.

      • Dessalines@lemmy.ml
        link
        fedilink
        arrow-up
        4
        ·
        2 months ago

        Does the EFF have access to signal’s server? Where they store all the phone numbers and messages for its users?

    • ramenu@lemmy.ml
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      3
      ·
      2 months ago

      Well, I disagree about Signal. Proton however, I agree is extremely shady and should be avoided at all costs.

      • JaggedRobotPubes@lemmy.world
        link
        fedilink
        English
        arrow-up
        9
        ·
        2 months ago

        That’s pretty strong and I’ve never seen or heard anything like it before. If it’s true I’m betting the rest of Lemmy would like some details, too.

        • ramenu@lemmy.ml
          link
          fedilink
          English
          arrow-up
          7
          arrow-down
          7
          ·
          2 months ago

          No support for Monero despite it being requested on uservoice 6 years ago. A Bitcoin wallet (seriously?) which is easily traceable. Important email metadata is also not zero access encrypted (i.e., subject headers, from/to headers) which leaks a substantial amount of information even if the body is encrypted. Not to mention they had clearnet redirects from their onion service a while back, something a lot of honeypots usually do.

          Even if it’s not a honeypot, you’re sure as hell not getting any privacy with Proton. That’s for sure.

          • ScreaminOctopus@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            5
            ·
            2 months ago

            You can’t e2e the to and from headers in an email. that’s a problem with the protocol, not with proton. I’d assume the subject line falls into a similar bucket, because mailservers probably want to use it to filter spam

            • ramenu@lemmy.ml
              link
              fedilink
              English
              arrow-up
              2
              arrow-down
              1
              ·
              2 months ago

              I never said anything about E2EE. Please re-read what I wrote carefully.

    • servobobo@feddit.nl
      link
      fedilink
      arrow-up
      9
      arrow-down
      7
      ·
      2 months ago

      Centralized service with servers in the US, requires a phone number to create an account, and tech bros like it. “0% chance” 100% confirmed.