Replied in thread
@tauon Also what goid is an encryption like @signalapp is you don't have #SelfCustody of all the keys?
- Shure you could disable encryption but @monocles shows you when it's active and when not and comes with sensible defaults like having #OMEMO active per default...
I can setup over a dozen #TechIlliterates 1:1 with #XMPP accounts and #monoclesChat & @gajim / #gajim in the time it takes me to get a #nonKYC #eSIM from overseas with a phone number as mandated by @signalapp and maintaining that number for #Signal will easily cost like $2,50 p.m. at minimum.
- Whereas a Data-only eSIM is way faster and cheaper to get and maintain.
In fact even legitimately acquiring and registering a #Prepaid #SIM in-store in #Germany takes longer than setting up #Fdroid & monocles chat & a XMPP account whilst on throttled #EDGEland speeds...
- Plus unlike Signal, I can just push #XMPP through @torproject / #Tor and/or any #VPN & #Proxy...
Possum City🌸 lily 🏳️⚧️ :flag_pansexual: :flag_ace: θΔ ⋐ & ∞ (@tauon)@kkarhan@infosec.space
> centralised
tbh i agree, i don't like that signal is centralised, but that isn't insecure, it's just an anti-feature
> proprietary
no it isn't, every element of signal is open source
> subject to cloud act
what is that? are you talking about subpoenaing of information? they legally have to do that anyway, and can't give anything except for the account creation date and the date that the account was last accessed
> collects pii like phone numbers
i'm pretty sure they don't
signal is more secure than anything you've mentioned because on signal, encryption is not optional. any service where encryption is optional is not secure.
RE: @tauon@possum.city no, it is not because it is a #Centralized, #proprietary, #SingleVendor & #SingleProvider solution subject to #CloudAct that collects #PII like #PhoneNumbers, which makes it inherently less secure, as they are able and willing to restrict access as they please.
RE: ...