okay
Man, I haven’t seen a goat.se in years
Not trying to be pedantic, but the original was goatse.cx
Yeah everyone likes to call it “Goat-see” or “Goat-say”, but it was originally supposed to be “goat-secx” i.e. “goat sex”.
I think part of the confusion may be that when the site was taken down, the mirrors that sprung up were things like goat.se, etc.
I’ve heard it pronounced “goatsee” and said that myself back when the original site was live. You are 100% right on the intent of the name though.
That’s probably the only reason I clicked it. Honestly, kinda regret that I did because the author just seems like a dude yelling at the sky because he’s wildly critical of the smallest things but doesn’t offer up any solutions.
So you’re disappoint it wasn’t a rickroll of the original image?
No I think he clearly said he’s disappointed by the low quality content.
The original, while disgusting, was not low quality content.
I (wrongly) assumed that if he was hilarious to have made that graphic, that he’d maybe be more reasonable, hopefully funny. I was disappoint.
It did kick off me spending about 2 hours comparing Signal to SimpleX, and Briar, and a bunch of others, and I can only conclude Signal is the best out of them. The security community seems to be REALLY paranoid about every, single, tiny little thing - but I understand that they must be.
SimpleX doesn’t do any kind of IP address masking or have quantum resistant double ratchet encryption.
Briar doesn’t account for rogue-tor nodes, etc.
There’s just always some big glaring flaw in one of them.
Hard to take them seriously, if they can’t even use a search engine to realize most of this is complete bullshit. What is this? A Twitter post?
What is this? A Twitter post?
Just about. JWZ is known for his cynical hot takes on tech in general.
I don’t think any of his complaints are invalid, though his conclusions are uncharitable at best. Making a communication tool that’s both reasonably secure and sufficiently palatable to people who don’t know how to use computers to achieve broad adoption is a hard problem with no perfect solutions. If he has a better idea, well… he’s a skilled and somewhat famous programmer; he’s better equipped than most to implement it.
There are some fairly good solutions tho. Matrix is still kinda half-baked (specifically thinking about 2.0 and Element X) and Conversations has limited capabilities, but they are fairly easy to use
Edit: Although I would really wish Matrix had a ‘normie-mode’, with secure and reasonably easy to handle defaults
I use Matrix, and I’ve moved some conversations with people I met in public rooms there to Signal because it kept failing to transfer keys rendering it unable to decrypt messages. I haven’t seen that in a while so maybe it’s fixed, but I haven’t been using it for one-to-one conversations lately.
Unfortunately, I’ve found most people have a lot of resistance to adding another messaging app. I don’t really understand why that is, but it’s true. Asking someone to install a messaging app when I’m their only contact who uses it and they have another way to contact me has a success rate near zero.
Yeah, I also had encryption problems, especially when I was running Conduit rather than Synapse. However, I never had such problems in XMPP with OMEMO.
Who is this clown “jwz” and why does his opinion matter?
Kids these days…
He’s someone that was a developer for Netscape and Firefox. I used to follow him but stopped doing so and now I find him quite annoying, haha
I agree with him in many things but he’s always replying people like he’s better than everyone which makes me think he must be a very shitty boss considering he’s the owner of a club.
“Right about a lot of things but fucking insufferable” is an apt summary of JWZ
Also got the same impression back when I used XScreenSaver from jwz. I looked in to customizing the logo shown on the login dialog and some of the screensavers, only to find a rather preachy write-up on the advantages of XScreenSaver and a very stubborn affirmation that the logo is hard-coded and should not be changed because it is the identity of the program or something.
Oh yeah, the Debian vs. JWZ XScreenSaver spat, that was royally stupid and led me to stop using it altogether
This was exactly my experience.
“Insufferable ass” doesn’t begin to summarize my experiences with him. But he’s been right about a lot of things.
The fact that there are no interoperable third-party implementations, or even third-party builds/distributions of the Signal app
that’s not true, Molly is perfectly fine
Sorry but in this house we avoid jwz’s opinions on things like the plague
He’s like the Morrissey of foss
Every interaction I’ve had with that person is insane. Who even are they?
Among many other things, the person who created Mozilla/Firefox.
Thanks! I only knew them as yelling, cursing, and attacking others on mastodon person
He’s old and cranky like me 🤷
Haha! How did you simpsonify a photo of yourself?? That’s so cool!
I know him as the guy who made his webserver respond to everything with a ballsack in an eggcup if your Referer is hacker news. Seems childish
More like one of many developers
Obviously. But it wouldn’t have happened at all without him.
that author seems to be the last douchebag you should listen to. who the fucking hell sends someone to pound sand for correcting him?
I understand that you might be moved to engage me in debate on this topic, but that won’t happen because I will just immediately block you.
Fuck all the way off with this shit
signal crypto is a scam, but this person is just a raging retard.
A Beehaw user using slurs, not something you see everyday…
(I was under the impression Beehaw was “Aspiring to bee a safe, friendly and diverse place”)
sorry, sometimes I can’t hold it back anymore. maybe I should just stay silent sometimes
They could just be older than 30, it’s predominantly considered a slur by the young.
mostsome of the stuff on that list isn’t even true (at least not anymore) lolThere are six bullet points. Which ones are no longer true?
The only one I know of is point 4, in that you can now choose not to share your phone number. But, IIUC, the app uses the dark pattern of forever nagging you to share it, hoping you’ll eventually accidentally click the wrong choice.
Point 2 is mostly not true, in that Molly exists and you can do reproducible builds with either implementation.
Unless Signal’s policies recently changed, Molly is not interoperable, since Signal does not allow third-party clients to use their servers/network. That would make point 2 correct.
If that policy has changed, then someone please link the announcement so I can update my notes.
They’ve been allowing Molly to continue to function for multiple years. Notably, from Molly’s readme:
Molly connects to Signal’s servers, so you can chat with your Signal contacts seamlessly.
I looked over the terms of service linked there and don’t see anything specifically calling out third party clients. Is that elsewhere in another terms page somewhere or is it just not being specifically mentioned?
It was a few years ago when I read Signal’s statement about this, so I’m afraid I don’t have a link for you.
I believe you when you say Molly functions, but it’s important to note that without Signal’s blessing, anyone using Molly can be locked out of the network (and their chats and contacts) at any moment. It’s not the same as official interoperability.
I wonder if the Digital Markets Act will eventually force it.
If they have such “security concerns” with third-party clients, a compromise would be to mark profiles using unofficial clients, and make it possible to see what client it is. Because it’s audacious to disapprove of third-party ones while your own lacks features people find important! Such as:
- Allowing an arbitrary proxy rather than just their own solution (because not only is their own solution inferior to some of the more advanced censorship-evading technology, but this is the field that needs multiple options when one stops working. Also if a person uses a proxy for everything else anyway, making them set up a whole separate solution or find someone else’s proxy just for your app is pointless.
- UnifiedPush.
- Allowing tying a desktop client by typing a code rather than scanning a QR code, which is important when registering on an Android VM (because again, Signal just arbitrarily disallows account creation on a desktop, nevermind that most phones are very hard or impossible to make private!)
Is there a better alternative? I don’t see anything conclusive in the link on that front
I sure don’t know. SimpleX is suggested, among others: https://dessalines.github.io/essays/why_not_signal.html#good-alternatives
Could you explain/elaborate to a know-nothing (me) on the following from your link?:
Caveats of federation: Metadata leaking
When using federation, Matrix’s room states (containing a lot of Metadata) get replicated and stored indefinitely on every homeserver any user connects with or connects to. While this is a feature for enabling distributed chat rooms, it comes at a serious privacy cost.
To avoid this, you can either disable federation, or make sure that your users signed up with no linkable identifiers other than their user names.
Matrix is not really a chat system, but rather a distributed database that pretends to be a chat system. As a result all servers participating in a room get a full copy of the room metadata all the way back to when the room was created, which is a serious privacy issue.
This is not a general problem of federated systems though, and XMPP for example basically only shares the metadata that other participating servers strictly need to function.
How…do you think chat systems with storage are supposed to work? They store data. In a database
What specific fields are shared by matrix but not xmpp?
The main difference is that in Matrix, a chat’s history and media is stored indefinitely on every participating server, while on XMPP it’s only the duty of the one “hosting” it. And to my understanding, in 1-to-1 chats, the server doesn’t even retain the messages after delivering them, since there’s a separate module for “syncing” the history between devices (that you can set the retention time for).
Yes in a local database, not a distributed one.
The main difference is that XMPP (like most other federated systems) is based on passing messages, so if a new server joins a chat, it gets send messages from that point onwards.
In Matrix that is different. When a new server joins a chat it exchanges the entire database for that chat, and for DAG consistency reasons this means all the metadata since the chat was first created, often years ago.
