https://www.androidpolice.com/2021/04/06/it-looks-like-signal-isnt-as-open-source-as-you-thought-it-was-anymore/

https://www.xda-developers.com/signal-updates-public-server-code/

https://tech.hindustantimes.com/mobile/news/signal-updates-its-open-source-server-code-after-nearly-a-year-71617778373810.html

Look into their MobileCoin and how they implemented it. They are just banking on people forgetting about it.

Anybody pulling these antics with a cryptography product loses my (and others) trust immediately. I’m a security soft dev, and my colleagues and I migrated to Element and Matrix network when it happened. I remember the disgust vividly.

Of course all of this is not going to be the Signal wikipedia page… It’s amazing how their fanbois work.

That argument makes absolutely no sense. These server-side code does almost nothing. The only task it really has is passing around encrypted packets between clients.

So it knows about all metadata, plus registration with phone number, etc. got it.

The Signal protocol, which is used for client-side, local, on-device end-to-end encryption has always been fully open, and it can be used by any app/platform.

you conveniently leave out how you need to use the client built by Signal, with dependencies from Google Services and the like, and you can’t use one built from the source they provide. Which at that point means they can introduce whatever they want in whichever version.

Decentralisation is the only safe way.

And before lacked this and that. It keeps improving, contrast to Signal having the server code closed source for more than a year so the Signal devs could get a headstart and insider knowledge in their Signal-included crytpo coin grief.

How one can trust Signal after them showcasing what they truly stand for is mind blowing.

Conservatism is dead. Climate change is scientifically proven to be catastrophic.

If we do nothing, change will come to us, and fuck up everything. If we elect to change our society and systems, we save ourselves but our way of living changes.

One way or another there’s change. There’s nothing to conserve. Stop yelling and kicking like an irrational kid trying to save conservatism and crony capitalism.

Oh, you. I remember you from another thread the other week, saying how Chromium is not Chrome and that this would never happen. Hi. It is happening. Also, I remember telling you to stop moving goalposts, which is what you are doing here.

Microsoft would be happy to pay Firefox to set Bing as default (has happened in the past already) so even your goalpost moving is moot.

Come on, wake up.

Evidence? OF COURSE!

Have you even tried searching for it?

Google even says so for Chromium on its own official page!

https://security.stackexchange.com/questions/144289/privacy-with-chromium

You don’t need to trust us. Trust Google, they are telling you legally if you want to listen.

Also, look up the handful of open bugs on the Debian but tracker, where known people, with name and faces (I’ve met some on conferences), showcase and share how Chromium calls home and sends encrypted data. They share their Wireshark logs.

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792580;msg=53

Look up how Debian removed Chromium for a time, until some of it got removed upstream.

And all of this doesn’t mean that Google cannot re-introduce it or add different approaches in new updates.

Plus, Google actively creates and pushes for their “standards” via Chrome(ium), which allows them to push for even more surveillance.

In addition, Chromium is not a community project. It’s developed behind closed doors, with a secret roadmap, and a code dump happens on release. That’s no way to develop the 90% of web browser market that society needs in this day and age. But, don’t think you will care about that, do you? you are happy with papa Google for the foreseeable.