The Signal messenger and protocol.
- Search warrants for Signal user data, Santa Clara Countysignal.org Search warrants for Signal user data, Santa Clara County
Because everything in Signal is end-to-end encrypted by default, the broad set of personal information that is typically easy to retrieve in other apps simply doesn’t exist on Signal’s servers.
- Proxy Please: Help People Connect to Signalsignal.org Proxy Please: Help People Connect to Signal
Several countries have recently blocked Signal, leaving their residents without a trusted and safe place to communicate. To help in this situation, Signal provides a built-in censorship circumvention feature and also includes support for a simple TLS proxy that can bypass these blocks in many cir...
> Several countries have recently blocked Signal, leaving their residents without a trusted and safe place to communicate.
- Recent sync deletions feature can make you lose a conversation
Just a little post to make you aware that a recent update that allowed synchronized deletion of messages between devices (ex: deleting a message for yourself only on your computer will delete it on your phone as well) also applies to the feature to completely delete a conversation.
This previously didn’t happen and is a bit annoying as I just accidentally deleted a few conversations from both my phone and computer because I was used to deleting conversations on my computer (as they’re pretty much stored unencrypted and I don’t like it)
So sadly I thought this change wouldn’t affect this feature but it did, so that’s annoying, I just lost a ton of messages and media
- problem changing phone number
Im using Signal v7.15 on an OGSE with ios 15.8.2 Was trying to change my phone number but I keep having problems in receiving the OTP. Error message says there is an external failure but does not explain why. Possible solution to this? TIA
- About Signal's privacy policy
"Third Parties. We work with third parties to provide some of our Services. For example, our Third-Party Providers send a verification code to your phone number when you register for our Services. These providers are bound by their Privacy Policies to safeguard that information. If you use other Third-Party Services like YouTube, Spotify, Giphy, etc. in connection with our Services, their Terms and Privacy Policies govern your use of those services." > We work with third parties to provide some of our Services.
What type of Services? And do Signal use our contacts or something private like that for third-parties?
- Telegram founder and CEO alledges signal has backdoors, they don't provide reproduceible builds, etc.
cross-posted from: https://lemm.ee/post/31431894
> Here's what he said in a post on his telegram channel: > > > 🤫 A story shared by Jack Dorsey, the founder of Twitter, uncovered that the current leaders of Signal, an allegedly “secure” messaging app, are activists used by the US state department for regime change abroad 🥷 > > > 🥸 The US government spent $3M to build Signal’s encryption, and today the exact same encryption is implemented in WhatsApp, Facebook Messenger, Google Messages and even Skype. It looks almost as if big tech in the US is not allowed to build its own encryption protocols that would be independent of government interference 🐕🦺 > > > 🕵️♂️ An alarming number of important people I’ve spoken to remarked that their “private” Signal messages had been exploited against them in US courts or media. But whenever somebody raises doubt about their encryption, Signal’s typical response is “we are open source so anyone can verify that everything is all right”. That, however, is a trick 🤡 > > > 🕵️♂️ Unlike Telegram, Signal doesn’t allow researchers to make sure that their GitHub code is the same code that is used in the Signal app run on users’ iPhones. Signal refused to add reproducible builds for iOS, closing a GitHub request from the community. And WhatsApp doesn’t even publish the code of its apps, so all their talk about “privacy” is an even more obvious circus trick 💤 > > > 🛡 Telegram is the only massively popular messaging service that allows everyone to make sure that all of its apps indeed use the same open source code that is published on Github. For the past ten years, Telegram Secret Chats have remained the only popular method of communication that is verifiably private 💪 > > Original post: https://t.me/durov/274
- Android 7.6 featuressignalupdateinfo.com Signal for Android v7.6
Signal news and updates. We post about new and upcoming features to keep you up-to-date with your favorite E2EE messaging app.
- Group call reactions 🎉
- Double-tap a message to edit ✍️
- Link preview images no longer show in the 'Shared Media' section 🏞️
- Improvements to missed call handling 📞
- Updated permissions popup UI 🍾
- Volume is too low in calls
Am I the only one who has this issue? The volume in calls is way too low, even with the maximum volume set. Regular cell calls have higher volume and thus I can't fully switch a relative of mine to Signal.
There are similar issues on Signal's Github but they were all closed without real solutions.
- NSA ’just days from taking over the internet’ warns Edward Snowdencointelegraph.com NSA ’just days from taking over the internet’ warns Edward Snowden
The National Security Agency could be given expansive new surveillance powers under a proposed change to the FISA 702 bill — slated for a vote on April 19.
- Recent IOS Beta updates have no test notes
Anyone know what's up with the recent beta updates on IOS? I think the last 4-5 updates had no test notes whatsoever.
- Where can I geht signal?
I just installed GrapheneOS in my Pixel, but I couldn't fine Signal on F-Droid. Wäre should I go and geht it?I mean, its's FOSS, so I thought they'd provide an APK vor something somewhere...
- Share your Signal Groupscommunity.signalusers.org Share your Signal Groups
Hi friends 👋 I’m opening this thread as a new, centralized place to share Signal group links. If you want to share Signal group links on the forum, this is the only place to do so. Group links posted in other threads will be moved here. Guidelines Unlike previous threads, this one is strictly f...
- Modify contact name for signal contacts added via name rather than phone number
Tldr: how do you modify a contact's name?
I've been playing around with these signal names functionality. Adding a bunch of people via names rather than phone numbers.
I can't seem to figure out how to change the name of the person, or add a note to the person, otherwise modify the contact in any way. So if a person names themselves a, and I talk to them, and then they rename themselves b. I have no way to know their name used to be a, or that I added them and talked to them as a. I only now see them as b.
Ideally I'd very much like to add notes, or modify the name of my contacts. For my own reference. IE Bob from the coffee shop etc etc
- Is fine grained control over backup schedule possible?
I'm on Android and use automatic backups. At the moment it runs daily starting at night. I use syncthing to sync the backups to my NAS. It works well.
Since my chat history almost weigh in at 10 GB I'd like to decrease the frequency to lessen the burden on the NAND in my phone.
Is it possible to automatically make backups less often than daily?
- Live Tracking
I’ve seen the odd reference to live tracking (like WhatsApp) in Signal but as I can’t find any real detail I assume that it doesn’t exist. Is that the case?
- Locking down Signalfreedom.press Locking down Signal
Concerned about the privacy and security of your communications? Follow our guide to locking down Signal.
- Meta adds interoperability with Signal's techwww.pcmag.com Meta Adds Interoperability With Signal's Tech for WhatsApp, Messenger in EU
Meta turns on third-party interoperability for Messenger and WhatsApp users to comply with the Digital Markets Act (DMA), but only in Europe and if Signal's protocol is used.
- Usernames are now rolling out to everyone using Signal version 7.0!mastodon.world Signal (@signalapp@mastodon.world)
Phone number privacy and usernames are now rolling out to everyone using Signal version 7.0! Update your app to take advantage of these new features 🎇 https://signal.org/blog/phone-number-privacy-usernames/
- Signal’s New Usernames Help Keep the Cops Out of Your Datatheintercept.com Signal’s New Usernames Help Keep the Cops Out of Your Data
Ephemeral usernames instead of phone numbers safeguard privacy — and makes the Signal messenger app even harder to subpoena.
- Lawfare piece about Signal and phone number privacywww.lawfaremedia.org At Signal, A Revolution in Messaging
Today Signal makes phone numbers private and rolls out usernames—a historic, overdue step to protect users.
- Signal now lets you keep your phone number private with the launch of usernamestechcrunch.com Signal now lets you keep your phone number private with the launch of usernames | TechCrunch
End-to-end encrypted messaging app Signal is finally launching usernames, the company announced on Tuesday.
- Introducing usernames and phone number privacy on Signalsignal.org Keep your phone number private with Signal usernames
Signal’s mission and sole focus is private communication. For years, Signal has kept your messages private, your profile information (like your name and profile photo) private, your contacts private, and your groups private – among much else. Now we’re taking that one step further, by making your...
- Turning off overprotective security ?
Hi all.
For a long long time I've been very happy with Signal, but have lately become rather annoyed that:
- it too often bugs me about about an update and forces me to do an update before I can write to my single/only recipient, and
- it too often bugs me about my pin code, even tho I never asked for such an annoying level of security.
These security measures are completely overkill for my/normal use, unnecessary, annoying and very aggressive. I'm an adult, and unless there's a super dangerous zeroday attack/vulnerability, I don't need constant forced updates, I don't want to retype a pin code for any reason or interval, and I certainly don't need to be told how I should run my system, when to upgrade or have software on my system that 'randomly' gets locked down for whatever reason.
Does anyone know how I can turn it off (Linux, Android) ? Is there another client fork that don't force me to follow their idea of what security level is necessary ?
Thanks, and apols for negativity..
- IT'S HAPPENING??? (Usernames??) Signal 7.0.0 has been commited for Androidcommunity.signalusers.org Beta feedback for the upcoming Android 7.0 release
The Signal team is releasing the Signal 7.0 beta soon. If you’re interested in participating, join the beta group here. If you’d like to get releases even faster, consider signing up through Firebase App Distribution, where the release is available immediately. Share your feedback on the latest cha...
- Signal usage survey, what versions do you use? Wanted for potential Flatpak adoption - Fedditfeddit.de Signal usage survey, what versions do you use? Wanted for potential Flatpak adoption - Feddit
There are big wishes for Signal to adopt the perfectly working Flatpak. This will make Signal show up in the verified subsection of Flathub, it will improve trust, allow a central place for bug reports and support and ease maintenance. Flatpak works on pretty much all Distros, including the ones cov...
- Signal is getting Cloud Backups
We are getting Cloud Backups in the future! Currently, there are two tiers planned:
The free tier offers:
- 30 days of media backup
- ??? GB of storage
The paid ($3 / mo) tier offers:
- media & text backup forever
- 1TB of storage Both tiers' features and the pricing of the paid plan are still subject to change
What do you think about this?
Sources: SignalUpdateInfo
- About how we could decentralize Signal
Many of us (or at least me) would probably like to see Signal getting decentralized. Here are a few thoughts I had about this recently.
First let me define three persons:
- Peter (using the official signal.org instance)
- Ted (using the example.com instance)
- Andrew (using his own instance under andrew.chat)
Couldn't we use the upcoming username feature to build a decentralized signal network? For example with a modified client or maybe just a modified libsignal library we could parse the instance from the username which would look like an email address (ted.42@example.com or andrew.62@andrew.chat). If the username doesn't have a domain part it just uses the default instance (so Peter just has the username peter.94).
Maybe we have some people here who are already familiar with the Signal codebase and willing to assist?
EDIT: Yes I know Session and Matrix exist but Session is to extreme and technical and Matrix is more focused on communities and groups which aren't even encrypted. Besides that both of them have a much smaller userbase compared to Signal.
- What are your experiences with Molly?github.com GitHub - mollyim/mollyim-android: Enhanced and security-focused fork of Signal.
Enhanced and security-focused fork of Signal. Contribute to mollyim/mollyim-android development by creating an account on GitHub.
I've been wanting to link my Android tablet to Signal for ages now and recently came across Molly as an alternative app to use, which allows this possibility.
To import a backup from Signal you must use a matching or newer version of Molly, though, and where Molly is 6.41.3-2, Signal is 6.43.2, so I'll have to wait a bit before I can switch, I suppose. Looking at the open issues on Github though, it seems linked devices aren't all that stable yet.
How are your experiences with Molly, if you have them?
(I came across this disclaimer too: "unofficial forks are not supposed to use Signal’s infrastructure so Molly violates Signal’s TOS".)
- Beeper makes big privacy claims for its newest app
Tl;Dr: Beeper has rolled out a new app, Beeper Mini, just for iMessage. It claims that the new app is a privacy improvement over the standard Beeper app (now called "Beeper Cloud")
The claims:
All messages are end-to-end encrypted before being sent. Beeper (and Apple) cannot see your messages.
Encryption keys never leave your device.
Beeper Mini connects directly to Apple servers. There is no Mac server relay, like other apps.
No Apple ID is required. Beeper does not have access to your Apple account.
Your contact list never leaves your device.
In another post, Beeper says they plan to add Signal to Beeper Mini.
I currently use Beeper, but I do not give it access to my Signal messages.
If these new claims about Beeper Mini are true, though, and if Signal is ever supported in Beeper Mini.... I might actually consider bringing it in. I would love to have fewer chat apps!
- AppArmor profile for Signal Desktop in Linux
For those who have installed Signal Desktop in Linux, do you use an AppArmor profile to harden the program? If so, can you share your AppArmor profile for Signal Desktop?
- Meredith Whittaker response to the French government banning the use of popular messaging apps
YouTube Video
Click to view this content.
- Time-Memory Tradeoff Attacks on Signal & TLS1.3
Some interesting ideas on reducing the time to decrypt certain ciphered info, in spite of axolotl's large key-size.
- Signal leaked random contacts to me!
cross-posted from: https://feddit.de/post/6073226
> When I press on some message to forward it, it shows me Random usernames of contacts I don't know. And it even shows some Mobile Numbers I don't know. For example, one number starts with +964 that's Iraq. I'm from Europe tho. These contacts and numbers are from all over the place.
- SEPA and iDEAL based donations for Europecommunity.signalusers.org Beta feedback for the upcoming Android 6.41 release
To our European testers, we’ve enable SEPA for 6.41.x a little while ago, after a remote configuration refresh for your device you should start seeing it for supported country codes + Euro currency. iDEAL will hopefully be enabled shortly, waiting on our provider for a few things to flip on.