this post was submitted on 19 Oct 2023
123 points (92.4% liked)

Android

16904 readers
164 users here now

The new home of /r/Android on Lemmy and the Fediverse!

Android news, reviews, tips, and discussions about rooting, tutorials, and apps.

🔗Universal Link: [email protected]

💡Content Philosophy:

Content which benefits the community (news, rumours, and discussions) is generally allowed and is valued over content which benefits only the individual (technical questions, help buying/selling, rants, self-promotion, etc.) which will be removed if it's in violation of the rules.

Support, technical, or app related questions belong in: [email protected]

For fresh communities, lemmy apps, and instance updates: [email protected]

💬Matrix Chat

💬Telegram channels / chats

📰Our communities below

Rules

  1. Stay on topic: All posts should be related to the Android OS or ecosystem.

  2. No support questions, recommendation requests, rants, or bug reports: Posts must benefit the community rather than the individual. Please post to [email protected].

  3. Describe images/videos, no memes: Please include a text description when sharing images or videos. Post memes to [email protected].

  4. No self-promotion spam: Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.

  5. No reposts or rehosted content: Share only the original source of an article, unless it's not available in English or requires logging in (like Twitter). Avoid reposting the same topic from other sources.

  6. No editorializing titles: You can add the author or website's name if helpful, but keep article titles unchanged.

  7. No piracy or unverified APKs: Do not share links or direct people to pirated content or unverified APKs, which may contain malicious code.

  8. No unauthorized polls, bots, or giveaways: Do not create polls, use bots, or organize giveaways without first contacting mods for approval.

  9. No offensive or low-effort content: Don't post offensive or unhelpful content. Keep it civil and friendly!

  10. No affiliate links: Posting affiliate links is not allowed.

Quick Links

Our Communities

Lemmy App List

Chat and More

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
Devgard
[email protected]
123
Telegram is still leaking user IP addresses to contacts (techcrunch.com)
submitted 8 months ago by [email protected] to c/[email protected]
9 comments fedilink hide all child comments
top 9 comments
sorted by: hot top controversial new old
[–] TheGrandNagus 27 points 8 months ago (1 children)

The same Telegram that gets widely criticised by security experts but still purports itself to be secure and private? Say it ain't so!

[–] [email protected] -4 points 8 months ago (2 children)

P2P calls are inherently more privacy friendly, dumbass. look it up. Guess what protocol Briar uses?

Eating that shit up without an ounce of knowledge on the subject.

[–] TheGrandNagus 4 points 8 months ago* (last edited 8 months ago) (1 children)

You seem angry.

Telegram doesn't even have E2E encryption for all chats lmao. But even for those that are, the algorithm they use isn't the best, it's had several vulnerabilities in the past.

(They used to use SHA-1, which was laughably obsolete, they updated this a little while ago, but since then vulnerabilities have still been found)

Your messages get stored in the cloud and their server infrastructure is closed source.

After the Ukraine war began, Telegram also agreed to send user data to Russian authorities when requested for it.

There's also the fact that prior to the previous elections, Telegram deleted pro-opposition channels, defending it by saying "if we didn't we'd be blocked in Russia again" - tough shit. Then Russia can block it ffs

Telegram is not secure.

[–] akrot 6 points 8 months ago

but since then vulnerabilities have still been found

After the war began, Telegram also agreed to send user data to Russian authorities when requested for it.

Do you have sources?

[–] [email protected] 1 points 8 months ago

That's not very nice of you to call this person a dumbass. It is totally uncalled for and very rude

[–] [email protected] 13 points 8 months ago (1 children)

Doesn't this affect Signal too? There is a setting under "Privacy -> Advanced" called "Always relay calls", which routes calls through Signal servers to prevent IP leaks (and can decrease call quality)... This setting is disabled by default

[–] [email protected] 19 points 8 months ago* (last edited 7 months ago)

[This comment has been deleted by an automated system]

[–] [email protected] 7 points 8 months ago

TLDR: It happens (by default) for calls between you and someone in your contacts list, because it's a p2p connection. It can be avoided by disabling p2p calls.

The reason Telegram leaks a user’s IP addresses during a call is that, by default, Telegram uses a peer-to-peer connection between callers “for better quality and reduced latency,” Telegram spokesperson Remi Vaughn told TechCrunch.

“The downside of this is that it necessitates that both sides know the IP address of the other (since it is a direct connection). Unlike on other messengers, calls from those who are not your contact list will be routed through Telegram’s servers to obscure that,” Vaughn said.

To avoid leaking your IP address, you have to go to Telegram’s Settings > Privacy and Security > Calls, and then select “Never” in the Peer-to-Peer menu, as shown below.

[–] [email protected] 3 points 8 months ago

They also started banning people quite agressively without possibly to appeal.

The platform seems to be going downhill