Privacy

36501 readers

440 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

519

Signal is not the place for top secret communications, but it might be the right choice for you – a cybersecurity expert on what to look for in a secure messaging app (theconversation.com)

submitted 1 week ago by florencia@lemmy.blahaj.zone to c/privacy@lemmy.ml

108 comments fedilink hide all child comments

(page 2) 50 comments

sorted by: hot top controversial new old

[–] Termight@lemmy.ml 3 points 1 week ago (7 children)

Here are two reasons you might not want to use Signal: Your contacts, your settings, your entire Signal experience is tied to a Signal account managed by Signal. Metadata—who you’re talking to, when, and how often—can still be collected and analyzed. Question everything.

load more comments (7 replies)

[–] HiddenLayer555@lemmy.ml 3 points 1 week ago* (last edited 1 week ago) (1 children)

How's signal compared to Element?

Also, is there a secure way to directly send messages to someone else's phone without the message having to be stored on a central server? As in they're only stored on the recipient device. Is that even possible with how the internet works and how packets are routed between networks? Even if the server has no way of decrypting messages by default, just having the encrypted messages stored there is a liability because your encryption keys can easily get leaked by malware running on your device, phishing, etc.

[–] ReversalHatchery@beehaw.org 3 points 1 week ago

element keeps a lot of metadata unencrypted. but it is federated, you can choose the server that has access to it (deny federation for the room or set up federation ACLs if important to keep it there), and because of the former it's harder to just shut down.

https://redlib.catsarch.com/r/privacy/comments/1bqymdr/what_is_not_encrypted_in_element_matrix_client/

https://red.artemislena.eu/r/privacy/comments/da219t/im_project_lead_for_matrixorg_the_open_protocol/

https://github.com/matrix-org/matrix-spec/issues/660

https://red.artemislena.eu/r/privacy/comments/1bqymdr/what_is_not_encrypted_in_element_matrix_client/

signal doesn't, in theory they don't even know the recipient of your messages (but there's a twist in that part as I remember), but it is centralized around US servers. it is easier to shut down.

load more comments