Post
Every time #Signal says that they will pull out of a country if some law is passed, they remind everyone that they are a single point of failure. How many times have you ever heard that email will pull out of a country if some surveillance law is passed?
Mastodon too! Bet @jerry never pulls out of anything.
It might be helpful to take into account that having local staff in a country (voluntarily, or forced by law) is different from just being "available" in a country.
Signal is investing a lot of effort into being available also in countries that outright suppress it. But they would not maintain a local point of representation there.
What exactly are you expecting, or demanding?
@david_chisnall the problem facing designers of true p2p software at the moment is 1. IPv4 NAT, and 2. IPv6 default firewalls not under user control. The services off-device systems should only need to act like a trusted directory service, like a mobile HLR. Most current centralized services are a response to the everybody is a client consumer, lowest common denominator easy workaround for NAT
@david_chisnall Right, when Swiss Proton mail was adked by Seiss authorities to give info that those authorities then sent to the Anericans that had requested it, they did indeed not pull out. They instead participated…
@david_chisnall I am still shocked they had a global SPOF on AWS us-east1. its such a p2p/decen-amenable architecture at heart
@david_chisnall back in the day Google pulled out of China, man… those were the days!
@john380 And Signal didn't pull out of Iran, they instead added Tor integration and encouraged everyone to run Tor relays so that people in Iran could use Signal.
@david_chisnall your reasoning is solid. And yet, I am old enough to remember being told by infosec friends to adopt Signal, way overkill for my infosec needs, to help normalize it so that people with keener needs than mine could hide among the normies. That worked, kind of, better than with PGP plugins on Thunderbird and such, anyway. So yes, you are right, but to some extent this was the result of a consciously made compromise and not a mistake. Or?
@david_chisnall your reasoning is solid. And yet, I am old enough to remember being told by infosec friends to adopt Signal, way overkill for my infosec needs, to help normalize it so that people with keener needs than mine could hide among the normies. That worked, kind of, better than with PGP plugins on Thunderbird and such, anyway. So yes, you are right, but to some extent this was the result of a consciously made compromise and not a mistake. Or?
It’s still probably the least bad option.
Install bonfire.cafe
Get the full app experience
