this post was submitted on 08 Dec 2023
107 points (95.7% liked)

Technology

60133 readers
3036 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
all 38 comments
sorted by: hot top controversial new old
[–] [email protected] 72 points 1 year ago* (last edited 1 year ago) (2 children)
[–] [email protected] 32 points 1 year ago (2 children)

To be fair, I would totally believe Apple changed something small for the sole purpose of breaking iMessage interoperability with Android.

[–] roofuskit 21 points 1 year ago (1 children)

I would be surprised if they didn't have it ready to go and flipped the switch once they felt it would hurt the apps reputation the most.

[–] [email protected] 9 points 1 year ago* (last edited 1 year ago)
[–] [email protected] 4 points 1 year ago* (last edited 1 year ago)
[–] [email protected] 11 points 1 year ago (1 children)

The tech is pretty interesting but the business is sus...It's kind of like selling fake admissions to a club and calling that a startup.

[–] [email protected] 7 points 1 year ago* (last edited 1 year ago) (2 children)
[–] [email protected] 7 points 1 year ago

The product Beeper is selling is essentially access to "blue bubbles" and iMessage without having to pay the price of admission (i.e., owning an iDevice and working with Apple). That's the part that's shady and sus. What they are paying or saving on infrastructure cost is irrelevant - they are basically still running a counterfeit operation, doesn't matter what their costs are.

[–] [email protected] 2 points 1 year ago (1 children)

The push servers are required for beeper Mini, because it acts as a gateway between GCM and ANP.

Beeper Cloud uses Mac Minis, and Beeper posted the software on github so you can self host it.

The two apps work very differently.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)
[–] [email protected] 25 points 1 year ago

Lol no shit it was gonna stop working. Dunno why anybody thought otherwise.

[–] almar_quigley 19 points 1 year ago (2 children)

Why is this a thing? I like iMessage but is there a reason people are trying to force their way into the protocol or whatever? Just to show blue or is there something unique to iMessage that no one else has?

[–] [email protected] 18 points 1 year ago (3 children)

iMessage chats are supposedly horribly broken for people participating over SMS. It got so bad in the US that teenagers treat it as a status symbol too.

[–] Joelk111 20 points 1 year ago* (last edited 1 year ago)

As an android user, I treat it as an early red flag, if someone treats it as a status symbol.

[–] [email protected] 11 points 1 year ago (4 children)

Adding to this, people in the US in general treat the blue message bubbles as a status symbol.

We’re also apparently the largest userbase of iMessage, whereas the rest of the world has more sense to use third-party apps to talk to family and friends from around the world.

[–] [email protected] 5 points 1 year ago

~~people~~ Some/many iPhone users in the US in general treat the blue message bubbles as a status symbol.

Ftfy.

Plus, the iMessage approach is the right answer. A single messaging app that will use a modern network-based comm channel with anyone who has the capability, with a fallback to SMS/MMS for those who don't.

Which Signal was doing until this year, unfortunately.

[–] [email protected] 3 points 1 year ago (3 children)

I use textra. My message bubbles are blue. I am cool.

[–] [email protected] 1 points 1 year ago

Hahahaha, have an upvote.

[–] Joelk111 1 points 1 year ago

I switched from Textra recently to get the benefits of RCS in Google Messages. I really wish more apps would(/could?) implement it than Google's own.

[–] [email protected] 0 points 1 year ago

Hahahaha, have an upvote.

[–] SpaghettiYeti 1 points 1 year ago

Never heard of this being a status symbol in the US.. what a dumb notion.

[–] [email protected] 1 points 1 year ago

people in the US in general treat the blue message bubbles as a status symbol.

Children. Children do that.

[–] [email protected] 5 points 1 year ago (1 children)

You know, people mention the status thing, and I keep thinking "I've never once ever heard or read someone even remotely implying that (except super obvious trolling). Who the hell is actually saying this? Sounds like something people just say about 'fanboys'".

But being a thing with kids makes sense. Especially how little I care about what they think.

[–] [email protected] 7 points 1 year ago (1 children)

I've heard it, I have Millenial and much younger family members, and it's a real thing.

Kids/young adults are horribly status conscious, and since SMS really breaks iMessage conversations, they'll sometimes leave out people who don't have iMessage rather than deal with the downgrade.

It's crappy, it's juvenile, but it happens plenty... Just like the dumb, juvenile stuff we did when we were... juveniles

[–] SpaghettiYeti 1 points 1 year ago

Am millennial. Wtf people are dumb.

[–] [email protected] 17 points 1 year ago (1 children)

We need a sticky for this.

When a group chat on iPhone includes an SMS-only participant, it downgrades the conversation for everyone to SMS. So everyone gets crappy images, and certain iMessage group features don't work.

[–] yokonzo 17 points 1 year ago (1 children)

Well it’s the first few days, let’s give it some more time before screaming sinking ship

[–] [email protected] 29 points 1 year ago (2 children)

...Beeper CEO Eric Migicovsky responded to TechCrunch’s inquiry about Beeper Mini’s status by pointing us to the X post acknowledging the outage, and providing more detail. Asked if possibly Apple found a way to cut off Beeper Mini’s ability to function, he replied, “Yes, all data indicates that.”

Emphasis mine. Source: Techcrunch.

[–] alquicksilver 16 points 1 year ago

I am shocked. Shocked, I tell you.

[–] peregrine_falcon 9 points 1 year ago

Full points for transparency, I guess?

[–] WhiteOakBayou 2 points 1 year ago (3 children)

I've been using it for a few days and was going to put it on my wife's phone tonight. Maybe the next one won't be so well publicized.

[–] [email protected] 8 points 1 year ago (1 children)

Whoa. That is way too short of a trial for migrating something new to the wifephone.

Don't forget to cancel your subscription!

[–] WhiteOakBayou 1 points 1 year ago

Yeah, she's grown used to, but not fond of, me installing buggy alpha or beta software on her phone. The promise of non potato quality pictures from her family was going to be the selling point :/

[–] [email protected] 4 points 1 year ago* (last edited 1 year ago)

I tried it yesterday, it still has some growing pains (had some trouble getting it to connect).

Going to keep watching though, for a new app it looks pretty good, fluid, well designed from a UI standpoint.

Given the dev was able to reverse-engineer Apple's ANP (equivalent to Google's GCM), build an app, backend, etc, it should be fun to watch.

It's also generating a conversation around the misperception of iMessage being perfectly secure, and how SMS downgrades iMessage to not secure at all.

Hacker News story about the lack of Forward Secrecy and other concerns: https://news.ycombinator.com/item?id=38537444

A summary of what I think is the primary issue with iMessage security that most people can easily understand (I've quoted this from another commenter, this is in the article):

  1. iMessage uses RSA instead of Diffie-Hellman. This means there is no forward secrecy. If the endpoint is compromised at any point, it allows the adversary who has

a) been collecting messages in transit from the backbone,

or

b) in cases where clients talk to server over forward secret connection, who has been collecting messages from the IM server

to retroactively decrypt all messages encrypted with the corresponding RSA private key. With iMessage the RSA key lasts practically forever, so one key can decrypt years worth of communication.

I've often heard people say "you're wrong, iMessage uses unique per-message key and AES which is unbreakable!" Both of these are true, but the unique AES-key is delivered right next to the message, encrypted with the public RSA-key. It's like transport of safe where the key to that safe sits in a glass box that's strapped against the safe.

**BearOfATime Comment: **This lack of Forward Secrecy alone is enough to say iMessage is nowhere as secure as we've been lead to believe. The delivery of the AES key with the AES-encrypted message but the package encrypted with RSA that virtually never changes is so blindingly flawed. This setup makes the AES encryption pointless, if you're going to package the key with it. Because once the RSA is broken/acquired, they have the AES key for the message (and ALL messages)!

The concern over the RSA key length is a bit premature, I'd say it's more of a future concern that Apple is probably working on.

The other issues (unchanging identifiers, for example) are a valid concern. Something I've seen other apps take into consideration (Signal, Briar, SimpleX Chat).

[–] kaitco 2 points 1 year ago (2 children)

If they don’t publicize, they won’t make any money.

[–] [email protected] 2 points 1 year ago

The dev has always been pretty open. The published a self-hostable version of Beeper Cloud on github, and the dev published some docs on how iMessage works, how their implementation of ANP works, etc. Like detailed docs that are frankly above my pay grade.

[–] WhiteOakBayou 1 points 1 year ago

The iptv guys seem to do alright and they stay out of the limelight.