Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
med-mastodon.com is one of the many independent Mastodon servers you can use to participate in the fediverse.
Medical community on Mastodon

Administered by:

Server stats:

417
active users

med-mastodon.com: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

#moxiemarlinspike

0 posts0 participants0 posts today
Public
Levka

#Signal #MoxieMarlinspike #history.

"Moxie Marlinspike, the co-founder and chief executive of encrypted-messaging app Signal, has resigned.

He blogged it was a 'good time to replace myself as CEO' after working on Signal for over a decade.

Signal recently enabled crypto-currency payments within the app, which has concerned some users.

Mr Marlinspike remains a board member of the Signal Foundation, while the board's executive chair, Brian Acton, becomes interim chief executive."

bbc.com/news/technology-599376

a photograph of Moxie Marlinspike
www.bbc.comMoxie Marlinspike leaves encrypted-messaging app SignalThe co-founder and chief executive of Signal steps down but remains a board member.
Replied in thread
Public
Kevin Karhan :verified:

@max
To quote you directly:

"[...] easy to use solutions that are at the same time private and secure. [...]"

It is easier, faster, cheaper and overall simpler to get someone setup with #XMPP + #OMEMO espechally if they don't have a #PhoneNumber and/or #ID to acquire a #SIM.

And if you go and say, "Just buy a [insert country here] [e]SIM!" and expect #TechIlliterates without a #CreditCard, #PayPal or other means of #OnlinePayment to fiddle around with some #eSIM if not having to get some #eSIMcard because they can only afford to maintain one SIM and can't spend triple-digits on a new devices then you completely missed the point!

It's not that I expect anyone to get #TechLiterate within minutes, but similar to setting up a cordless DECT phone it's something one has to do once in 5 years and just have them put the password in a safe spot to retain...

Point is that #Signal #WontFix their setup and that was evidently clear even before @Mer__edith succeeded #MoxieMarlinspike: Their entire operation has a distinct #CryptoAG stench as it's an #unsustainable #VCmoneyBurning party!

A counterexample on how this could've been done are #Tor, #eMail and other truly #OpenSource as in #MultiVendor & #MultiProvider standards.

Whereas it's trivial to get people setup on one of many XMPP servers I've personally tested!

AFAIK Signal doesn't even have an #OnionService / .onion for their Website, much less any #API enpoints to use it with!

You're free to also provide evidence and supporting data to your arguments, rather then neighsaying against proven to be more secure and reliable [by virtue of decentralization] options like XMPP+OMEMO and/or #PGP/MIME.

The proper fix is to actually assess the situation and acknowledge the risks and limitations as well as the very nature of communications, which means upgrading later is exponentially more painful, thus getting people properly setup once is way easier.

  • Just because WE [ or rather @rysiek in this case ] rather privilegued enough to not be hatecrimed in their current location doesn't mean this is the case for everyone. And having places like Signal rely on a "#CDN" is just another red flag to me because questions like this one just don't arise with monocles.chat as people can just exercise proper #SelfCustody and just use Tor!

Speaking of #monocles: That business is at least #sustainable because it's funded by users (€2 p.m.) which they can pay anonymously

gruene.socialMax L. (@max@gruene.social)@kkarhan@infosec.space Sorry but no, the correct solution is to push for easy to use solutions that are at the same time private and secure. Hiding privacy and security behind a veil of "you need to know" is discrimination of people that are not able (either mentally, physically or monetary) to gain that knowledge. The correct move here is for @signalapp@mastodon.world and any other service to fix this and for legislators to enact laws enforcing proper security and privacy by design.
Public
Benjamin Carr, Ph.D. 👨🏻‍💻🧬

#Signal #Developer Explains Why Early Encrypted Messaging Tools Flopped
#MoxieMarlinspike criticized early #encryption software's user-unfriendly design at #BlackHat2024, admitting he and others initially failed to consider non-technical users' needs. Speaking with #BlackHat founder #JeffMoss, He said tools like #PrettyGoodPrivacy (#PGP) wrongly assumed users would adopt complex practices like keyservers and signing keys over dinner. "We were just wrong," Marlinspike said
pcmag.com/news/signal-develope

Public
Benjamin Carr, Ph.D. 👨🏻‍💻🧬

#Software innovation just isn't what it used to be, and #MoxieMarlinspike blames #Agile
"We spent the past 20 years onboarding people into software by putting them into black box abstraction layers, and then putting them into organizations composed of black box abstraction layers," Marlinspike said. He contended this approach has left many #softwareengineers unable to do more than derivative work, lacking the deep understanding necessary for groundbreaking developments.
theregister.com/2024/08/09/mar

Continued thread
Public *
Kevin Karhan :verified:

Seriously, if @signalapp was maintained by more competent people, they may have integrated some #Monero #PaperWallet like the one I archived and actually designed their project to be #decentralized like @torproject ...

  • But that would've required them to actually care, which even #MoxieMarlinspike didn't in his days...

Maybe @Mer__edith will yeet that #Shitcoin [aka. #MobileCoin] out of the #Signal app and point people to #Monero...

GitHubGitHub - kkarhan/paperwallet: Monero Paper Wallet GeneratorMonero Paper Wallet Generator. Contribute to kkarhan/paperwallet development by creating an account on GitHub.
#NotFinancialAdvice#NotLegalAdvice
Replied in thread
Public
Kevin Karhan :verified:

@valk @flora not only dumb but completely self-sabotaging any claims re: "#metadata protection"...

OFC even before #MoxieMarlinspike left and @Mer__edith took the helm, I did ask @signalapp why they did this and criticized them for it, as this is an absolute #NoGo given the fact that in more juristictions than ever, one cannot legally obtain an #anonymous #SIM or only one without a #PhoneNumber!

Not to mention them deliberately being located in the #USA post-#PRISM & #CloudAct makes them look like a #HoneyPot akin to #ANØM / #OperationIronside / #OperationTrøjanShield...

ExploreLive feeds
About