Post AVkLP5MgINeEvgzvbE by alexl@pkm.social
(DIR) More posts by alexl@pkm.social
(DIR) Post #AVjsEzkNQjYVwJuwsK by gianmarcogg03@mastodon.uno
2023-05-17T07:27:41Z
0 likes, 1 repeats
Uh oh... Time to switch to #Matrix and #XMPP full time? If you're on a #Mac you could be in danger, other platforms are fine, but it doesn't change the fact that #Telegram is kinda spooky.#CIA #Vulnerability #Glowies #BigTech #SurveillanceCapitalism
(DIR) Post #AVjsKVeAFrnSK5dofo by dcc@annihilation.social
2023-05-17T07:28:38.259148Z
0 likes, 0 repeats
@gianmarcogg03 you already should not use a service that requires a phone number
(DIR) Post #AVjsVMojQJ8O7klG52 by gianmarcogg03@mastodon.uno
2023-05-17T07:30:38Z
0 likes, 0 repeats
@dcc I made my account a long time ago, and when I wanted to get away from WhatsApp I did not know any better, which is why I wanna plan out proper migration(s) to Matrix and XMPP.
(DIR) Post #AVjsXe0IUlAK0SFzBQ by edendestroyer@masto.ai
2023-05-17T07:31:01Z
0 likes, 0 repeats
@gianmarcogg03 I would endorse #xmpp more than #matrix due to their recent fediverse and cop shenanigans.
(DIR) Post #AVjsfzn5NMNrtU3kVU by gianmarcogg03@mastodon.uno
2023-05-17T07:32:33Z
0 likes, 0 repeats
@edendestroyer that story is overblown, Element just wanted to sell hosting to the police as they just wanted to pay to safely communicate with each other, no takeover or anything like that.
(DIR) Post #AVjspzFsDqD781Hyoi by edendestroyer@masto.ai
2023-05-17T07:34:20Z
0 likes, 0 repeats
@gianmarcogg03 It isnt about takeover. Its about setting up a financial relationship with the group that a protocol like matrix is supposed to help protect us again - and not just that but trolling people ruthlessly and making conspiracy-toned rhetorics just like raspberrypi did instead of addressing the main issue.#matrix
(DIR) Post #AVjt6w23SSdu3VuHh2 by gianmarcogg03@mastodon.uno
2023-05-17T07:37:26Z
0 likes, 0 repeats
@edendestroyer if Element has ethical values, the financial relationship will always be just a financial relationship, you're assuming that with enough money dropping the police may have control over the company and the whole protocol, so you are expecting a takeover. Regarding the comments, I can't say anything because I haven't read them except for one saying that the police funds important privacy respecting projects like Tor, which is correct.
(DIR) Post #AVjzcjtWihm3P4SzGi by dgold@octodon.social
2023-05-17T08:50:24Z
0 likes, 0 repeats
@gianmarcogg03 in what way is it overblown?a FLOSS product seeking the custom of law enforcement is a FLOSS product playing footsie with cops.continuing to use a FLOSS product that plays footsie with cops means you're using a product that plays footsie with the same people who oppress and persecute many people in marginalised communities.and people are entitled to not do that, and call out people who want to continue to play footsie with the cops when they see it.@edendestroyer
(DIR) Post #AVk0OQRmKRZkzJE53I by gianmarcogg03@mastodon.uno
2023-05-17T08:59:01Z
0 likes, 0 repeats
@dgold I don't like the police either, but if they want hosting for their own chat server it's their own business, libre software empowers everyone, even the people you don't like. Also I prefer judging libre software based on its quality rather than any politics of the creator/s, so I use Matrix because it's a pretty good protocol overall (not perfect, but good enough and it keeps getting better).
(DIR) Post #AVk0mfsKcOs7muD0bo by dgold@octodon.social
2023-05-17T09:03:23Z
0 likes, 0 repeats
@gianmarcogg03 yeah, that's where you and i part company then.i don't judge software on its quality alone, but also on its ethics. i simply don't accept that libre software must empower the oppressor, no matter who that oppressor is.this isn't apolitical by element, this is a political statement that all the work put into the protocol by queer, trans, enby developers, developers of colour or developers who follow judaism or islam, all their work will now be used to oppress them.and i have a problem with that. so element can go swing, and hang with their new cop pals.
(DIR) Post #AVk98YI2IhReGZAuNk by ksv236@mastodon.social
2023-05-17T10:36:59Z
0 likes, 1 repeats
@gianmarcogg03 U are in danger only if u installed a Malware in Mac giving root permissions. And their official site version is safe and only the app store version has the vulnerability and it is being fixed.
(DIR) Post #AVk9H3aho8Vrf4xl9E by alexl@pkm.social
2023-05-17T10:38:31Z
0 likes, 1 repeats
@gianmarcogg03 To be fair this is the reply by Telegram (I had to manually search the thread, thank you for including a link /s):https://twitter.com/telegram/status/1658489536115277826Also, OP mentioned in his thread that:"iOS requires an app to be signed with Hardened Runtime entitlement to be uploaded to the App Store.macOS doesn't have this requirement."So the issue is in MacOS. And in general if an OS fails to isolate apps and hardware resources it is OS' fault.
(DIR) Post #AVkC7KdPstVBULHkCO by alexl@pkm.social
2023-05-17T11:10:21Z
0 likes, 1 repeats
@gianmarcogg03 Also notice that if Matrix were as popular as Telegram its clients would receive way more attention and similar if nor worse situations would be reported for them too.It's an old dangerous bias to assume <more niche product> is more secure; look for example at Linux desktop, where people can easily run binaries found on the Internet that can read everything in their home, including session tokens for online services. It took us decades to come up with something like Flatpak.
(DIR) Post #AVkCT06EujXqAe6E52 by gianmarcogg03@mastodon.uno
2023-05-17T11:14:18Z
0 likes, 0 repeats
@alexl I didn't say anything about Matrix and XMPP being better because they're niche, they are functionally better and are freedom respecting unlike Telegram where it has a proprietary back end with the encryption keys to all users' messages. Regarding Linux, while it is true that you can download and run random binaries like Windows, Linux users generally tend to use more trusted methods of software distribution and isolation (the distro's package manager, Flatpak, SELinux, etc.)
(DIR) Post #AVkCdA6Ma7yk5T0Djs by meso@asbestos.cafe
2023-05-17T11:16:09.537020Z
0 likes, 0 repeats
@gianmarcogg03 Perfect image combination
(DIR) Post #AVkCkRXEACRaBO2Xj6 by Zerglingman@freespeechextremist.com
2023-05-17T11:17:29.211669Z
2 likes, 0 repeats
@gianmarcogg03 TELEGRAM WAS GLOWIE FROM DAY ONE BECAUSE IT DEMANDS A FONE NUMBER
(DIR) Post #AVkDN6UyJHtYEWQ5Uu by Riedler@mas.to
2023-05-17T11:22:21Z
0 likes, 0 repeats
@alexl @gianmarcogg03 I was bombarded by 5 different popups by opening that link.I desperately want Firefox mobile to support all extensions so I can get the nitter redirect here too :(Also just so I actually say something on the matter at hand: I agree with telegram and you. Telegram still isn't great.
(DIR) Post #AVkDN7BrjoCqNYULM8 by gianmarcogg03@mastodon.uno
2023-05-17T11:24:25Z
0 likes, 0 repeats
@Riedler if you use Fedilab on Android you can set a link redirect directly on the app, also I use Privacy Redirect on the Iceraven fork of Firefox.
(DIR) Post #AVkDP1tuNLY8YK0BO4 by alexl@pkm.social
2023-05-17T11:24:47Z
0 likes, 0 repeats
@gianmarcogg03 Then you used the fear of vulnerabilities not addressed by Telegram to promote services that do better with self-sovereignty, you shouldn't mix the two or suggest that more ethical products imply better security...> Linux users generally tend to use more trusted methods[...]Not every Linux user is aware of what running a binary or an AppImage means nor I have ever seen a distro or DE do something to properly inform the user when they try to run binaries.
(DIR) Post #AVkDUBklAiN0YcBOYS by Riedler@mas.to
2023-05-17T11:25:43Z
0 likes, 0 repeats
@gianmarcogg03 oh, nice. Will have a look at that, thanks
(DIR) Post #AVkDbPOErwY6sV5jeK by gianmarcogg03@mastodon.uno
2023-05-17T11:27:02Z
0 likes, 0 repeats
@alexl I was personally more scared of the CIA making their own channel which coincided with the vulnerability as far as I can tell chronologically. Was this post the perfect exposure on Telegram? Probably not, but still the point remains.
(DIR) Post #AVkFeSafcrrva6UO80 by alexl@pkm.social
2023-05-17T11:49:58Z
0 likes, 0 repeats
@gianmarcogg03 I'm not sure what you are trying to imply, in some countries public institutions have official Telegram channels because it is popular there, they go where people are
(DIR) Post #AVkFjyXIHSNW6fXWLY by alexl@pkm.social
2023-05-17T11:33:02Z
0 likes, 0 repeats
@Riedler @gianmarcogg03 Telegram let me chat with a very large userbase with optional e2ee ("Secret Chats") and talk with (always-on) e2ee calls.Telegram also doesn't censor public channels and groups like Facebook, Twitter and YouTube do.For these two reasons Telegram is a bless for me.I hope Digital Market Act will force Telegram and the other messaging apps to federate ideally using Matrix:https://www.youtube.com/watch?v=yoKjXN3G8a8
(DIR) Post #AVkFjz9vxnHq2VcNZg by gianmarcogg03@mastodon.uno
2023-05-17T11:50:59Z
0 likes, 0 repeats
@alexl that's the issue: end-to-end encryption is optional, so most people are not gonna discover it, also it only works on mobile, no desktop. Censorship on Telegram is a lot softer than other platforms, but some decentralized federated servers are more resilient to censorship than a company's servers. I don't know much about Digital Market Act, but I don't see anything wrong with interoperability except for the fact that people may stick to what they already use and not get the benefits (1/2)
(DIR) Post #AVkFk0yJDzAzf2C7jU by gianmarcogg03@mastodon.uno
2023-05-17T11:50:59Z
0 likes, 0 repeats
@alexl of using a fully freedom respecting communication platform/ecosystem.
(DIR) Post #AVkGKoU4cGune5bCQS by alexl@pkm.social
2023-05-17T11:57:38Z
0 likes, 0 repeats
@gianmarcogg03 > that's the issue: end-to-end encryption is optionalYou had the opposite position when I pointed out Linux users can easily run binaries found on the Internet 😆> but some decentralized federated servers are more resilient to censorship than a company's serversIn a dictatorship yes, in a totalitarism the censorship comes from other citizens and it is what happened with the Fediverse, here you are easily censored by other people, on Telegram not, it is a fact.
(DIR) Post #AVkGs714jbhqg8uhQ8 by gianmarcogg03@mastodon.uno
2023-05-17T12:03:39Z
0 likes, 0 repeats
@alexl no I didn't? I said what's popular on one end (Linux) and what's popular on the other (Telegram). Also your Fediverse analogy makes sense only if you stick to servers that blocked federation with specific servers, if you change server or run your own you wouldn't be affected much or at all by the defederations.
(DIR) Post #AVkHMMHuWIGUjKD7Tc by alexl@pkm.social
2023-05-17T12:09:06Z
0 likes, 0 repeats
@gianmarcogg03 > no I didn't? I said what's popular on one end (Linux) and what's popular on the other (Telegram).Then phrase better your thought because you didn't mention what's the popular way to use those, but just optional vs non-optional...Censorship is not only closing servers or accounts but discrimitate what is allowed to spread, for example Facebook, YouTube etc all have the concept of "shadow-banning".
(DIR) Post #AVkI0TwfT9bC3vPHmq by gianmarcogg03@mastodon.uno
2023-05-17T12:16:23Z
0 likes, 0 repeats
@alexl OK then: the popular way of installing software on Linux is through package managers with trusted repos, the popular way of using chats on Telegram is normal NOT end-to-end encrypted chats (I still don't understand what this comparison has to do with the whole conversation but I digress). Show me an example of this kind of censorship on the Fediverse because you got me kinda confused with your last sentence.
(DIR) Post #AVkI3TfkwKaa5KvPFY by alexl@pkm.social
2023-05-17T12:16:44Z
0 likes, 1 repeats
@Riedler @gianmarcogg03 On Android you can use this app to open Twitter link in a Nitter instance of choice:https://f-droid.org/packages/app.fedilab.nitterizeme/This method is more resilient than sharing a Nitter link because that link will be tied to a particular Nitter instance that could disapper later
(DIR) Post #AVkIZ41PqNK9nW7Lqi by alexl@pkm.social
2023-05-17T12:22:34Z
0 likes, 0 repeats
@gianmarcogg03 > the popular way of installing software on Linux is through package managers with trusted reposAre you sure? Check this thread as an example:https://pkm.social/@alexl/110157523079313946> Show me an example of this kind of censorship on the Fediversehttps://t.me/ByobluOfficial/3104
(DIR) Post #AVkJ3IOaxzMb45NK9g by gianmarcogg03@mastodon.uno
2023-05-17T12:28:06Z
0 likes, 0 repeats
@alexl all the people I know do not use AppImage but the other (that are actually more popular) methods of installing software so this Logseq issue seems isolated to me, the Byoblu example has some validity as masto.host is very popular and Mastodon is by far the most used Fediverse software, but I can't say anything more because I don't know anything about Byoblu (in fact I've never ever heard of them).
(DIR) Post #AVkJcmE23K7DiPLx7w by Riedler@mas.to
2023-05-17T12:22:25Z
0 likes, 0 repeats
@alexl @gianmarcogg03 telegram has been dishonest about its practices multiple times. Do not trust companies.Anyway it's one of the best options we got rn, so I'm using it too.
(DIR) Post #AVkJcmvzPtHFujv3dw by alexl@pkm.social
2023-05-17T12:24:48Z
0 likes, 0 repeats
@Riedler @gianmarcogg03 In my experience every single time a controversy against Telegram arised it turned out it was wrong, just like this time. But people only read and remember clickbait titles.
(DIR) Post #AVkJcng4eY8mDfTrTU by Riedler@mas.to
2023-05-17T12:33:06Z
0 likes, 0 repeats
@alexl @gianmarcogg03 Like the time they gave data to german authorities? The *multiple times* they did that? Which was confirmed by said german officials?And they still claim "To this day, we have disclosed 0 bytes of user data to third parties, including governments." in their FAQ.I don't have a massive problem with what they're doing, but I do have a problem with them pretending like they don't and didn't.
(DIR) Post #AVkJcoGwRTdC40jIwK by gianmarcogg03@mastodon.uno
2023-05-17T12:34:29Z
0 likes, 0 repeats
@Riedler @alexl even if Telegram was innocent, there's still the problem of giving lots of trust with ALL of your conversations, you're giving them the possibility to do bad stuff and you have virtually no way to defend yourself.
(DIR) Post #AVkJdQFVFH3jqYLgyO by alexl@pkm.social
2023-05-17T12:34:38Z
0 likes, 0 repeats
@gianmarcogg03 Logseq is the first post on the thread, then I reported Obsidian and Zettlr but the list is long, I just lost interest. Almost every multi-platform app uses AppImage to target Linux.Byoublu was a popular YouTube channel censored in 2021 that consequently raised donations (~350 000€/month) to run its own national TV channel.Recently even Wikipedia deleted its Italian page about Byoblu with no stated motivations.As you can see only the bad evil Telegram is not censoring it.
(DIR) Post #AVkKbMM2r0H58vzO52 by gianmarcogg03@mastodon.uno
2023-05-17T12:45:28Z
0 likes, 0 repeats
@alexl you're ignoring the fact that distros package stuff themselves, not everything but a lot of stuff is either officially or unofficially packaged on core repos or Flatpak repos, even the Arch User Repository has basically all AppImages that have been converted into a normal package. I don't know about these three apps, but they are not indicative of what's the most popular packaging format. As I said, in terms of censorship, Telegram is better than every other proprietary platform, (1/2)
(DIR) Post #AVkKoG0lkUbNEcBgzA by gianmarcogg03@mastodon.uno
2023-05-17T12:47:47Z
0 likes, 0 repeats
@alexl but from what I understand Byoblu decided to close their own instance because of the eccessive blocking, but if they kept it up people without blocks could have been able to access it. Telegram also does some kind of shadow banning by osbcuring certain channels to users of Telegram installed from specific places (Play Store and App Store) in order to comply with those stores' terms, which could be considered censorship. Imagine if a chinese app store did this.
(DIR) Post #AVkLP5MgINeEvgzvbE by alexl@pkm.social
2023-05-17T12:54:25Z
0 likes, 0 repeats
@gianmarcogg03 I know, I am just saying that if you are on a crusade to make e2ee always used to protect other people privacy, it makes sense to want to protect other people's machines security by promoting the block by distro/DEs from running binaries and AppImages.Also Telegram has good reasons to not using e2ee everywhere while distro/DE have no reason to allow such a dangerous practice with no security measures like some kind of sandboxing.
(DIR) Post #AVkMCWDRFkQMObFKDo by gianmarcogg03@mastodon.uno
2023-05-17T13:03:22Z
0 likes, 0 repeats
@alexl what does AppImage have to do with the whole Telegram argument anyway? I never even promoted AppImage in my life, also rather than completely blocking them there's desktops like Plasma that give you a message on screen asking if you're actually sure to run an AppImage or generic binary. What is the good reason behind Telegram not enabling end-to-end encryption by default? Matrix does it by default unless you want it disabled or unless it's a public chat and Matrix works just fine.
(DIR) Post #AVkMDdB0rGTyH3drWK by alexl@pkm.social
2023-05-17T13:03:33Z
0 likes, 0 repeats
@gianmarcogg03 Byoblu was attacked mainly by the instance you are on, it was defamed by multiple instances to the point of being blocked by everyone and the same people pressured masto.host to stop provide its service to Byoblu and it did so by changing its terms of service to specifically exclude Byoblu.1/2
(DIR) Post #AVkMEr4weimpgFO5c8 by alexl@pkm.social
2023-05-17T13:03:47Z
0 likes, 0 repeats
@gianmarcogg03 You are the one that claimed a decentralized network like the Fediverse is more resilient to censorship than a centralized one like Telegram and I provided you a counterexample.You would be right for censorship in a dictatorship but in a totalitarism decentralization makes censorship even more efficient if you convince most people that there are good reasons to censor and boycott other people's ideas.2/2
(DIR) Post #AVkMWsNgYKTkvpkKP2 by alexl@pkm.social
2023-05-17T13:07:02Z
0 likes, 0 repeats
@gianmarcogg03 > What is the good reason behind Telegram not enabling end-to-end encryption by default? Matrix does it by default unless you want it disabled or unless it's a public chat and Matrix works just fine.The efficiency of Telegram search can be reached only server-side and there are other Telegram features that wouldn't be available with e2ee.Matrix is doing great but making a Telegram equivalent decentralized and e2e encrypted is very hard and it will take many years.
(DIR) Post #AVkN0EpcA4EQxUoKcC by gianmarcogg03@mastodon.uno
2023-05-17T13:12:21Z
0 likes, 0 repeats
@alexl I'd rather prioritize privacy and security over nice to have features, that's my mentality and that's the mentality of the Matrix devs, not to say they're never implementing new cool stuff, but they don't want to take shortcuts like what Telegram has done for so long. Most Telegram users are normies who don't care about privacy and security and Telegram actively misleads them (they're only honest in their FAQs when they say they store the encryption keys).
(DIR) Post #AVkNdsjDl9cNzSivuC by alexl@pkm.social
2023-05-17T13:18:57Z
0 likes, 0 repeats
@gianmarcogg03 Telegram doesn't sound misleading to me.> I'd rather prioritize privacy and security over nice to have features, that's my mentality and that's the mentality of the Matrix devsI agree but I am still grateful to Telegram for providing me e2ee chats and calls with a very large userbase and for not censoring news and unpopular opinions.Matrix doesn't cover at all the second part because it is not a social network like Telegram and there aren't enough users for the first part.
(DIR) Post #AVqQXpftOuvQWK3qT2 by 0@mamot.fr
2023-05-20T10:53:21Z
0 likes, 0 repeats
All hail the virtuous, pronoun wielding, @edendestroyer now.🤡@gianmarcogg03
(DIR) Post #AVqQXqPydZmwpFceIa by gianmarcogg03@mastodon.uno
2023-05-20T11:20:18Z
0 likes, 0 repeats
@0 after I pointed out that he was contradicting himself, he blocked me.
(DIR) Post #AVqRvthUBWl1uTqSm0 by 0@mamot.fr
2023-05-20T11:35:05Z
0 likes, 0 repeats
@gianmarcogg03Par for the course. These people don't like having a discussion, they just like the sound of their voices. They are the new face of totalitarianism.(Mind, I blocked the guy too. 😁)