Comment on Signal under fire for storing encryption keys in plaintext on desktop app
EngineerGaming@feddit.nl 4 months agoMy biggest issue with Signal is it being so mobile-oriented. Mobile use seems to be encouraged, and even to register you are directly told to go to the mobile app (and if you register in a VM, you’re then stuck using it because it wants you to scan a QR code which is so easy to do in a VM!) No thanks, I don’t trust my mobile - they’re much harder to make private and “yours” than a desktop. Was it that hard to just add a field for entering the verification code in the desktop client? Sure, I did end up using signal-cli, but it is not mentioned anywhere officially. Point is about how the Signal itself tries to push you onto mobile.
balder1991@lemmy.world 4 months ago
Still mobile phones are designed with much more security in mind than desktop environments, and basically everybody has a device.
EngineerGaming@feddit.nl 4 months ago
Security is not everything though, you need to balance it with privacy and independence as well. Which are, indeed, harder on Android.