this post was submitted on 03 Jul 2023
1583 points (90.9% liked)

You Should Know

33420 readers
334 users here now

YSK - for all the things that can make your life easier!

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules (interactive)


Rule 1- All posts must begin with YSK.

All posts must begin with YSK. If you're a Mastodon user, then include YSK after @youshouldknow. This is a community to share tips and tricks that will help you improve your life.



Rule 2- Your post body text must include the reason "Why" YSK:

**In your post's text body, you must include the reason "Why" YSK: It’s helpful for readability, and informs readers about the importance of the content. **



Rule 3- Do not seek mental, medical and professional help here.

Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.



Rule 4- No self promotion or upvote-farming of any kind.

That's it.



Rule 5- No baiting or sealioning or promoting an agenda.

Posts and comments which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.



Rule 6- Regarding non-YSK posts.

Provided it is about the community itself, you may post non-YSK posts using the [META] tag on your post title.



Rule 7- You can't harass or disturb other members.

If you harass or discriminate against any individual member, you will be removed.

If you are a member, sympathizer or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people and you were provably vocal about your hate, then you will be banned on sight.

For further explanation, clarification and feedback about this rule, you may follow this link.



Rule 8- All comments should try to stay relevant to their parent content.



Rule 9- Reposts from other platforms are not allowed.

Let everyone have their own content.



Rule 10- The majority of bots aren't allowed to participate here.

Unless included in our Whitelist for Bots, your bot will not be allowed to participate in this community. To have your bot whitelisted, please contact the moderators for a short review.



Partnered Communities:

You can view our partnered communities list by following this link. To partner with our community and be included, you are free to message the moderators or comment on a pinned post.

Community Moderation

For inquiry on becoming a moderator of this community, you may comment on the pinned post of the time, or simply shoot a message to the current moderators.

Credits

Our icon(masterpiece) was made by @clen15!

founded 2 years ago
MODERATORS
 

"When you use Signal, your data is stored in encrypted form on your devices. The only information that is stored on the Signal servers for each account is the phone number you registered with, the date and time you joined the service, and the date you last logged on."

This isn't an ad, I wasn't paid for this post. Just to clear the air: fuck facebook, fuck elon musk and twitter, fuck anyone who thinks this is a paid advertisement. I wish I was paid for this shit, I just wanted to spread the word. Thank you. 😀 👍

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 2 points 2 years ago (2 children)

I sometimes wonder who’s paying to run the servers, and where that money originates.

[–] [email protected] 4 points 2 years ago (1 children)

It kind of doesn't matter... That's the beauty of fully auditable open source end to end encryption.

[–] [email protected] 4 points 2 years ago (1 children)

They know the same things about me as WhatsApp. They have all contacts and all metadata. Why do you say it doesn’t matter?

[–] [email protected] 4 points 2 years ago (1 children)

There isn't any audit on whatsapp's side. So you are trusting they are running the code they tell you they run on their servers.

So it's not just about metadata, I wouldn't trust facebook not to have some kind of access to the content of the messages. Which is much worse.

Also, Whatsapp is Facebook right ? Not really an amazing track record when it comes to privacy. They said they implemented the Signal protocol but you still have to trust them to be doing so.

I think that's what the person you are responding to was essentially saying, we do not know for sure what Whatsapp does.

[–] [email protected] 0 points 2 years ago* (last edited 2 years ago) (1 children)

Well now you are really insinuating a conspiracy inside Facebook. That may be happening and that would be bad.

But I’m not talking about anything like that. I’m really only focusing on what Facebook openly says what WhatsApp is doing, and monetizing. And that’s exactly about the same data that we give Signal under the flag of open source and freedom. There’s no difference, except that in the case of WhatsApp I know the business model, and for signal I don’t.

I don’t pay for Signal servers, so who does?

[–] [email protected] 4 points 2 years ago* (last edited 2 years ago)

That information is easily found with a web search, so there is no need to cast aspersions. It's funded by Brian Acton's "activist" funding (interest-free loans of $100 million+ total to Signal Foundation over the years). I'd guess Acton used it as a huge tax write-off the year he sold WhatsApp to Facebook.

Other revenue sources include voluntary user donations and grants from many free press organizations whose members rely on Signal. Some years they report positive net income, and other years they report negative.

Signal Foundation tax forms, which list all general revenue sources: https://projects.propublica.org/nonprofits/organizations/824506840

What Signal says about how they operate: https://signal.org/blog/signal-foundation/ https://signalfoundation.org/en/

Signal Privacy Policy: https://signal.org/legal/#privacy-policy

All the code, including what runs on their servers and in their apps, so you don't need to take their word for anything. You can compile the signal client from source if you like: https://github.com/signalapp

Article which talks about their audit history (this is their weakest point. The full results of the audits Signal paid for were never published): https://restoreprivacy.com/secure-encrypted-messaging-apps/signal/

However, anybody can check for any spooky stuff in their code, so I doubt they would purposely try to hide anything untoward there.

[–] [email protected] 2 points 1 year ago (1 children)
[–] [email protected] 1 points 1 year ago (1 children)

No offense, but both style and factual claims that article shout conspiracy theory.

I can’t take this piece of writing as a serious source.

[–] [email protected] 1 points 1 year ago

Maybe, but I find it more likely to be true than false. My overarching takeaway is that if you actually care about the secrecy of a communication, don't use signal, use gpg.