This is making the rounds re: Signal being run by activists of the US state dept for regime change


https://www.city-journal.org/article/signals-katherine-maher-problem

@feld

U.S.-supported Color Revolutions abroad.

This is 100% Russian propaganda language and the whole article is built on this narrative 🤮

@kravietz You cannot deny that Signal's funding came from the Open Technology Fund which came out of Radio Free Asia which was operated by the CIA. This is a fact.
@kravietz this is the response everyone has, and then 25 years later when all the documents go public revealing how deep and nefarious the relationship was everyone goes "how could we have not known?????"

@feld

The problem is that the article does not point to any specific surveillance or backdoor issues in Signal code which, as we all know, is open-source. It does not even point to any specific legal or organisational issues which could lead to tampering the software. And because the author does not have any such arguments, the whole premise of the article is built on top “look, she worked there” and the rest is left to the reader and their personal paranoias 🤷

And these references to “regime changes” and “color revolutions” only confirm author’s own political bias and highly insulting to everyone in these countries where people fought for their own freedom.

Adding Durov’s quote on top of that is rather ironic, as the messenger is known to cooperate with FSB requests and completely opaque as it comes to its operations and server-side code.

@kravietz Telegram provides reproducible build instructions for both iOS and Android

Signal refuses to provide reproducible build instructions for iOS

Why?


Yes, there are technical hurdles to do reproducible builds on iOS: you need a jailbroken device or one of the unlocked phones from the security research program. But it's possible to do.
@kravietz you should pay more attention to Yasha Levine who has done extensive research on the US Govt's role in subverting internet security back to the origins of it in Vietnam. Go pick up a copy of Surveillance Valley, plenty to learn in there.

https://yasha.substack.com/p/signal-is-a-government-op-85e
@feld @kravietz Levine and a few other former Pando Daily guys have a hardon against Tor too (which does have reproducible builds.) I am really suspicious of the attacks on Tor/Signal because they never have a smoking gun just "look who made it." I can't discount them either but they feel so motivated to me like they're being paid to be attack dogs. I can't prove anything.
Follow

@sun @kravietz @feld signal just freaks me out a little bit because you need to sign up with your phone number. Session is the better choice if you're looking for privacy. They literally can't give out that information because they don't have it, whereas Signal has complied with orders and given numbers before iirc. Could just use a burner phone or something but, you know, still.

Tor is funded by the government but they use it too, it's in their best interest to keep it as safe as it is. They don't need to do anything crazy to catch people with bad opsec (dread pirate Roberts for instance) and most of the time they're just using honeypots anyway (like those "hire a hitman" services), not that the network itself is compromised. As long as you don't have an entire string of government connections then you're good, and if you're really concerned then you can always use a new connection on every site. Someone going to those lengths probably has a lot more shit they need to worry about lol.

@beardalaxy @sun @kravietz Tor is something that needs enough usage to hide the traffic of spies and shit, really. Its in their best interests to have as much noise on that network as possible.
@feld @kravietz @beardalaxy Levine doesn't outright say that Tor is a honeypot but he very heavily implies that it is.
@sun @kravietz @beardalaxy I need to re-read his Tor stuff because it has been a while and then we can chat about it over dinner
@feld @kravietz @beardalaxy there's a piece about tor on levine's website that covers his entire position on it, it has an unflattering portrait of roger dingledine on it
@beardalaxy @kravietz @feld if you actually need Tor security you need to run a bridge in your home at all times and attach to that so that your traffic cannot be correlated via connection time. This is how the police caught a guy at Harvard making a bomb threat.
Sign in to participate in the conversation
Game Liberty Mastodon

Mainly gaming/nerd instance for people who value free speech. Everyone is welcome.