Delighted to see this in one place. Laughing at the recommendation of Threema at the end though, isn't that a proprietary, closed-source app?

yes, great article indeed.
I just don't understand why to make the recommondations they made.
I'm not an expert, but I prefer #xmpp /jabber.
thought also #briar, even so I yet do not understand how their implementation of bluetooth makes it a security issue if an attacker is nearby.

@paulfree14 @x0rz In terms of raw security, Signal's protocol is best but they do have the ability to add devices to an account, Australian-spy-style. But it will at least warn other users about "safety number changed". I overall recommend Signal, even though it's centralised and doesn't federate. XMPP's protocols look strong if used correctly.. but "used correctly" is always the failure point. So I'd never recommend to my tech-fail family.

for xmpp there're apps as conversations that are simple to use.
yet, one can switch between unencrypted and encrypted. So it's not safe for false usage here.

simple to use, and always encrypted is #briar. It's even p2p.

@paulfree14 @x0rz Briar is fairly new on the scene, so I'll remain cautious for a while. And, it's hard to model threats in P2P, there is usually a trade-off. Take Fediverse as an example: despite being free of overt, "legal" surveillance capitalism, the Fediverse generally is easier to crawl and monitor than, say, Twitter or Facebook. So illegal or covert surveillance is substantially easier here.

@paulfree14 I couldn't make bluetooth work on #briar (android). It works when adding contacts, but doesn't work for communication when both wifi and mobile data are switched off.

Sign in to participate in the conversation

Octodon is a nice general purpose instance. more