If Telegram is considered an encrypted messenger, than FB messenger should be too. Works exactly the same. 🙄
Is Telegram really an encrypted messaging app?
Submitted 2 months ago by db0@lemmy.dbzer0.com to technology@lemmy.world
Comments
quaff@lemmy.ca 2 months ago
woelkchen@lemmy.world 2 months ago
FB messenger should be too. Works exactly the same. 🙄
Facebook licensed Signal’s encryption: signal.org/blog/facebook-messenger/
quaff@lemmy.ca 2 months ago
Yeah, the fact that FB messenger uses Signal protocol, means the encryption is better than the one used in Telegram. But the lack of on by default or the need to drill in a few options before enabling secret chats… I mean it’s even named the same thing as Telegram.
technocrit@lemmy.dbzer0.com 2 months ago
If Telegram is considered an encrypted messenger, then FB messenger should be too.
But strangely only one is being prosecuted.
quaff@lemmy.ca 2 months ago
I suspect that’s because Telegrams marketing and users consistently tries to place itself in the same categories as actually secure and encrypted messengers. Whereas I don’t see tech blogs claiming that FB messenger is secure.
pressanykeynow@lemmy.world 2 months ago
That’s ridiculous, Telegram client is opensource, Facebook is not. We know for a fact that Facebook shares their data with… well, anyone. The reason of the recent arrest of the Telegram CEO seems to be that he apparently doesn’t share anything.
quaff@lemmy.ca 2 months ago
I mean that is a fair point. But open source client only matters if people were using Telegram’s secret chats consistently. The closed source server is what’s most important when almost all communication happens plain text.
noxy@yiffit.net 2 months ago
When you can’t use secret chat at ALL on desktop, fuck no it isn’t.
Assuming end-to-end encryption is what’s meant in the question.
rottingleaf@lemmy.world 2 months ago
You can with Pidgin and purple-tdlib plugin for Telegram.
But then I’d ask the other person to use the same thing, and we’d both use OTR for encryption, not TG’s bogus E2EE.
noxy@yiffit.net 2 months ago
wow I haven’t used Pidgin in like a decade
undrivendev@lemmy.world 2 months ago
One of the most important rules of cybersecurity is: never roll your own encryption.
Which is exactly what Telegram did.
If you are into Telegram because you think it’s secure, think again. There are much better alternatives out there, Signal or Matrix just to name a few.
endofline@lemmy.ca 2 months ago
No, it’s not the rule itself. It’s rather an advice not to do as rolling own crypto is very tricky and complicated thing. You have to be very aware of many possible attacks, how they do work, to create own crypto properly
EngineerGaming@feddit.nl 2 months ago
More like “don’t roll your own crypto unless you’re ready to spend years getting it scrutinized and polished”.
testo12@lemmynsfw.com 2 months ago
Generally a good rule, however Signal did develop their own encryption. It was so good it became the industry standard.
viralJ@lemmy.world 2 months ago
What does ‘rolling encryption’ mean (if it’s possible to ELI15).
lichengeese@lemmy.zip 2 months ago
‘Rolling your own…’ is a comparison to rolling your own cigarettes. That is, creating your own version from scratch instead of using something ready-made.
gressen@lemm.ee 2 months ago
OP probably meant “to roll out”, meaning: “to deploy”.
nutsack@lemmy.world 2 months ago
if the people you want to talk to are using telegram then you don’t have much of a choice
iopq@lemmy.world 2 months ago
Maybe tell them you are using signal and that they don’t have a choice but to use it
RangerJosie@lemmy.world 2 months ago
Oh here we go.
Manufacturing Consent to tear it down because victims around the world use it to get their voices out when everything else is shut down. People organizing against oppressive governments using it when nothing else is safe.
It can’t be allowed to exist. This is them social engineering your acceptance of their tyranny. Don’t bite the bait.
db0@lemmy.dbzer0.com 2 months ago
What is this nonsense? This is a technical post explaining why it’s not encrypted.
Plus there’s plenty of time other services like matrix which can do the same thing better without enriching a billionaire
ZealousSealion@discuss.tchncs.de 2 months ago
It can be that. But it is also a medium for public forums.
MehBlah@lemmy.world 2 months ago
Sure its is. Russia has the keys so they can snoop. Its encrypted though so just the kremlin can read it. Enjoy.
timewarp@lemmy.world 2 months ago
The comment where everything’s made up and the points don’t matter
MehBlah@lemmy.world 2 months ago
Telegram CEO Pavel Durov’s Arrest Upends Kremlin Military Communications tech.slashdot.org/…/telegram-ceo-pavel-durovs-arr… I’m sure its nice with your head in the sand but it doesn’t make any of you right.
The idea that any of them are secure is a pipe dream.
iagomago@feddit.it 2 months ago
Durov has been blacklisted in Russia because he refused to cooperate with Putin’s government on several occasions.
MehBlah@lemmy.world 2 months ago
Yet he is still alive. Misdirection nothing more nothing less.
Evotech@lemmy.world 2 months ago
Aha that’s why telegram is banned and blocked in Russia
nao@sh.itjust.works 2 months ago
Wasn’t it unblocked again soon after?
MehBlah@lemmy.world 2 months ago
Its not and it wasn’t banned for very long unofficially.
ayyy@sh.itjust.works 2 months ago
What was your methodology to determine that?
pressanykeynow@lemmy.world 2 months ago
Racism.
PriorityMotif@lemmy.world 2 months ago
Somehow it has public groups and requires your phone number. Not really sure how to find the groups though.
lepinkainen@lemmy.world 2 months ago
But unlike Signal, nobody can see your number
quaff@lemmy.ca 2 months ago
You can hide your phone number now with the release of usernames in Signal. Still need it for registration tho.
sugar_in_your_tea@sh.itjust.works 2 months ago
No.
woelkchen@lemmy.world 2 months ago
No, it’s not. It’s very easy. In the bottom right corner there is a pencil button to compose a new message and right there it asks which tpye of chat to start. Secret chat is the second topmost option after group chat. Really not hidden or complicated at all.
sugar_in_your_tea@sh.itjust.works 2 months ago
It should be a setting to always use encrypted chat, and it should probably prompt you when you first login.
Better yet, don’t have an option to not have encrypted chats. I don’t see a reason to not have everything E2EE all the time.
curry@programming.dev 2 months ago
My man, have you ever worked in tech support? I admire your optimism.
quaff@lemmy.ca 2 months ago
It’s three clicks. And it opens a separate chat from the existing one. It’s obscure enough that you could say the UX deprioritizes (which at best is not an actively malicious design choice) usage of end-to-end encryption.
Kekzkrieger@feddit.org 2 months ago
Why would it even be an option to have a non-encryted chat if the app can do encrypted?
rottingleaf@lemmy.world 2 months ago
Encryption is part of defense strategy, otherwise it’s like a steel door in a house with wall panels made of paper.
That strategy involves all communications being encrypted. Otherwise rubber hose cryptanalysis becomes practical.
fmstrat@lemmy.nowsci.com 2 months ago
It is not easy, as it’s not even possible on desktop.
umbrella@lemmy.ml 2 months ago
also their encryption is proprietary. you can’t actually know its good.
pressanykeynow@lemmy.world 2 months ago
That’s incorrect, their client is opensource, you can check their e2ee yourself.