16
How do you guys keep Signal up to date?
(lemmy.ml)
A community for those that would like to get away from Google.
Here you may post anything related to DeGoogling, why we should do it or good software alternatives!
Be respectful even in disagreement
No advertising unless it is very relevent and justified. Do not do this excessively.
No low value posts / memes. We or you need to learn, or discuss something.
!privacyguides@lemmy.one !privacy@lemmy.ml !privatelife@lemmy.ml !linuxphones@lemmy.ml !fossdroid@social.fossware.space !fdroid@lemmy.ml
I'll reply to you since you first brought it up, but it's a question to anyone here recommending Molly: what makes you cofident that Molly is secure (i.e. they're not fucking up Signal's cryptography by accident) and maintained by trustworthy people. Signal does get audits from time to time, Molly doesn't.
Mind you, I'm not trying to shit all over Molly; Unified Push looks great. I'm trying to approach this with due caution though.
What makes you confident Signal is secure? It's a centralised service, so there's a single point of failure 🤷
Ignore the downvotes. That's a fair question to ask, but one that does have answers. Signal is FOSS, has E2EE and was audited several times, so we know that
Thus, while mistakes do happen and can open up severe vulnerabilities, cf. Heartbleed, there's reason to assume that Signal is relatively secure. Signal's centralisation of server infrastructure is a valid concern, but not for security, but rather for