woah, #telegram fixed their huge privacy problem regarding phone numbers. i didn't expect it. apparently, now you can configure it in a way that a user will only be able to find you by your phone number if you have them in your contacts (which are uploaded to telegram servers). so if you don't allow telegram to see your contacts, nobody will be able to. finally.
i saw people who would add all the numbers possible and build a huge database. so it meant that the link between your hidden phone number and your visible username wasn't public, but also wasn't too hard to discover. and it was impossible to do anything about it.
and those people sell their databases to the police... as the new option is opt-in, i don't think they're going out of business anytime soon.
@KeyWeeUsr no thanks, matrix is a nightmare i don't wanna go back to. besides, their approach to privacy makes them hard to recommend as a private messenger.
(not a fan of telegram, have to use it against my will.)
@KeyWeeUsr this: https://gist.github.com/maxidorius/5736fd09c9194b7a6dc03b6b8d7220d0 . an in-depth review of all the non-obvious kinds of data collection, and a defensive and ignorant reaction of matrix devs.
Integration server matters only if you allow widgets. It doesn't matter if you don't and use #e2e
If #matrix does not want to implement fixes against #datacollection, then we have a problem. Definitely not sooner than that imo + solving that by doing the whole Matrix implementation alone is kind of silly due to the lack of manpower instead of using #matrix people who are willing to work on it.
@KeyWeeUsr sorry for being rude, but to me it sounds like, "it's foss, so rewrite the messenger from the ground up yourself, no one owes you privacy, even if they say they have it".
there're better alternatives if you're ok with using a huge setup including tor (e. g. ricochet). most people aren't (one of reasons is that it's almost impossible on mobile). and without using tor, well, there're better alternatives to matrix, given how many things it leaks.
@KeyWeeUsr okay, then their advertisement was misleading for me. but why did you jump into a thread of mine and suggest that i use matrix?
if it isn't private, then why did you say it's better than signal, which worries about privacy at least to some extent?
@leip4Ier Due to Matrix not requiring any of your personal data input + if you combine it with #tor, it's still much better than #telegram or #signal therefore if you know how to operate anonymously on the net, the #patterns are not that much of an issue, especially patterns that are closed to #riot platform only such as jumping between rooms.
@leip4Ier If it is used in any means to #create your #key, then it is about the #security too. I believed #signal used the number to #generate the key(s), however I can't find the #code now. Any #specs for that would be nice though.
#wire I don't know, however #ricochet didn't have any #mobile !client the last time I've checked (it is possible to run a HS via #orbot) and afaik there is no #group chat too. #tox I see the first time and it seems much #secure on #android, I'll give it a try.
Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.