Signal-Server
paper-research-privacy-matrix.org
Our great sponsors
Signal-Server | paper-research-privacy-matrix.org | |
---|---|---|
200 | 16 | |
8,817 | 112 | |
0.7% | 0.0% | |
9.8 | 1.5 | |
2 days ago | about 1 year ago | |
Java | HTML | |
GNU Affero General Public License v3.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Signal-Server
-
Signal: Keep your phone number private with Signal usernames
> They could at least BSL the server code and allow others to verify the server code and host but not compete.
This is exactly what they do (except they use AGPL): https://github.com/signalapp/Signal-Server
-
Are Signal Notifications Encrypted ?
https://github.com/signalapp/Signal-Server/blob/main/service/src/main/java/org/whispersystems/textsecuregcm/push/APNSender.java for APNs push notification payloads
- Signal Username Commit
-
How to Selfhost Signal Server?
git clone https://github.com/signalapp/Signal-Server.git
- Children’s data is probably being collected by messengers
- Belgorod People's Republic: "We need any fresh information on the enemy (equipment, manpower and the movement of motorized rifle companies that were sent to put out the fire) in this sector. Please only submit when YOU ARE SURE IT IS SAFE TO DO IT. Otherwise, don't post information."
-
Can't link main class in dropwizard project
yes it is available here https://github.com/signalapp/Signal-Server/blob/main/service/pom.xml
-
Signal would 'walk' from UK if Online Safety Bill undermined encryption
You could also start your own signal server, but with blackjack, and hookers
-
‘I will show you how safe Telegram is’
The fact that it locks you into using their servers, does not distribute on F-Droid (only Google Play OR an APK with an insecure update mechanism), and has a completely closed-source "abusive message filter" module server side, that could functionally be used for censorship, storing messages for future decryption, or any other number of nefarious purposes - we have no idea since it's not open source (https://github.com/signalapp/Signal-Server/blob/main/.gitmod...).
Additionally, you cannot distribute branded forks or Signal, and if you do fork it, your fork is not allowed to connect to Signal's "official" OWS (open whisper systems) servers - hostility to federation should be viewed with prejudice and suspicion at the very least, it suggests a vested interest in a single point of failure (or control), which goes against user interests.
Further reading: https://drewdevault.com/2018/08/08/Signal.html
-
"The Signal client is built non-reproducibly, so you actually don't know whether it's running the source code available on Github."
It’s actually the signal server that isn’t reproducible because of the abusive message filter that’s in a private repository. It’s clear as day here: https://github.com/signalapp/Signal-Server
paper-research-privacy-matrix.org
-
An actually private messaging self hosted server
I am trying to find something similar to discord that is actually private. Matrix phones home with a nasty amount of info: https://github.com/libremonde-org/paper-research-privacy-matrix.org/tree/master/part1, Snikket seems like a decent alternative, i just havent audited it for security purposes. Any suggestions? All im trying to maintain is the multiple-channels aspect of Discord, voice/video are optional, but preferred if possible
- MinesTRIX, A privacy focused social media based on matrix
-
XMPP Group Chat & Introduction
I present to you a MUC I've created on the XMPP (also informally known as Jabber) network. I've put some thought into which network would be best fit and decided that, while IRC is an excellent way to chat, there is an apparent lack of mobile support and perhaps lacks the ability to choose a server of your choice. Furthermore, I've concluded for many years that Matrix isn't a good choice for multiple concerning reasons, the most impactful being the Matrix Foundation itself receiving large amounts of metadata and being overly centralized over the entirety of the network. Matrix also utilizes CloudFlare (a popular CDN service) which, according to W3Techs, provides services for 19.2% of all websites. I don't believe CloudFlare is a bad actor but they certainly can MITM any websites utilizing their free tier plan. One can easily check if a website is using the free tier SSL certificate by checking here. You can see that in the "subject" area, it shows the SSL domain name as sni.cloudflaressl.com. CloudFlare's free SSL operates by encrypting only the data sent from you to the CDN, leaving the data that is sent from the CDN back to Matrix.org unencrypted. This isn't necessarily problematic for the entirety of the network, however, it shows the Matrix Foundation has an apparent lack of privacy/security practices while advertising their project as a privacy-oriented chat solution. I won't ramble on too much about Matrix's suspected privacy issues, instead, I'll leave you these two write-ups to read for yourself, here and here.
-
Why do people still recommend Matrix.
it's an entire paper written by a nonprofit dedicated to user privacy. it's also last updated 6 months ago? you can view all the commits here (https://github.com/libremonde-org/paper-research-privacy-matrix.org/commits/master)
- Communist Linux Discord server.
-
SimpleX Chat v1 released - the most private and secure chat and application platform!
I found this to be an interesting read about Matrix. https://github.com/libremonde-org/paper-research-privacy-matrix.org/blob/master/part2/README.md
- XMPP: the secure communication protocol that respects privacy
-
Element One – All of Matrix, WhatsApp, Signal and Telegram in One Place
Not sure what exactly they were referring to, but here are some of them: https://github.com/libremonde-org/paper-research-privacy-mat...
- What are some open source apps that are actually terrible for privacy?
- Which real time communication do you use and why?
What are some alternatives?
matrix-docker-ansible-deploy - 🐳 Matrix (An open network for secure, decentralized communication) server setup using Ansible and Docker
simplex-chat - SimpleX - the first messaging network operating without user identifiers of any kind - 100% private by design! iOS, Android and desktop apps 📱!
mollyim-android - Enhanced and security-focused fork of Signal.
matrix.to - A simple stateless privacy-protecting URL redirecting service for Matrix
libsignal-protocol-javascript - This library is no longer maintained. libsignal-protocol-javascript was an implementation of the Signal Protocol, written in JavaScript. It has been replaced by libsignal-client’s typesafe TypeScript API.
weechat-matrix - Weechat Matrix protocol script written in python
Signal-TLS-Proxy
simplexmq - ⚙️ SimpleXMQ - A reference implementation of the SimpleX Messaging Protocol for simplex queues over public networks.
RetroShare - RetroShare is a Free and Open Source cross-platform, Friend-2-Friend and secure decentralised communication platform.
TextSecure - A private messenger for Android.
paper-research-privacy-mat