lithium
LibreSignal


lithium | LibreSignal | |
---|---|---|
1 | 50 | |
77 | 257 | |
- | 0.4% | |
5.5 | 0.0 | |
5 months ago | almost 8 years ago | |
Java | C | |
GNU General Public License v3.0 only | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
lithium
-
WhatsApp gives users an ultimatum: Share data with FB or stop using the app
That's a good point. Threema using standard libsodium cryptoboxes (iirc) makes this easier to integrate with than these Axolotl-like protocols, though Threema still uses a custom protocol to communicate chat messages so you'll have to implement that. Also, Wire has a bot API so you don't need to pretend to be a real client to integrate in a chat. https://github.com/wireapp/lithium/wiki
Afaik Signal doesn't have that, there only seem to be third party implementations for bots.
LibreSignal
-
What Does It Mean to Be a Signal Competitor?
Signal is openly against third party clients:
https://github.com/LibreSignal/LibreSignal/issues/37#issueco...
Also how easy is it to run a custom Signal server?
-
Show HN: Beeper Mini – iMessage Client for Android
>what does this mean?
Moxie (Signal's founder) has thrown fits in the past over the existence of third-party clients using their servers: https://github.com/libresignal/libresignal/issues/37#issueco...
-
Signal: The Pqxdh Key Agreement Protocol
0: https://github.com/libresignal/libresignal/issues/37
I push back when anyone recommends Signal because they are fundamentally not an open network.
-
Hosting Signal frontend on a local server (Like Signal desktop but through website)
OWS has historically been hostile to third party implementations outside of their clients. There are multiple unofficial options but the only one I've been looking at is the bridge with matrix, though setting up a matrix server just for this is likely overkill.
-
After High Court Ruling, Telegram Discloses Names/Numbers/IP of Users
I have to say that I find him fascinating too, but there are a few things that raise my suspicion, but of course do not convict him of anything:
The way he is attacking this alternative Signal client and rules out interoperability:
https://github.com/LibreSignal/LibreSignal/issues/37#issueco...
Signal was a word before he decided to turn it into a brand.
The signal server source code repo was not updated for a year. Communication intransparent.
https://www.androidpolice.com/2021/04/06/it-looks-like-signa...
I am not even against crypto integration, but I found the choice of MobileCoin odd. Instead of integrating an existing privacy coin or working with the community, he decided to integrate MOB and to be one of their "advisors":
https://techcrunch.com/2018/04/24/mobilecoin-moxie-marlinspi...
https://www.coingecko.com/en/coins/mobilecoin
-
Snap Store administrators removed signal-desktop from Ubuntu Snap
Is that so surprising? Signal had always a hostile attitude to alternative clients. They have this weird disconnect of the new CEO saying they want to be available to as many people as possible and be a fully commited FOSS app, and then have no version on F-Droid (while Telegram has!) and actively fight alternative clients (see https://github.com/LibreSignal/LibreSignal/issues/37#issueco...)
Because of this hostility Signal is not a trustworthy organization at all.
-
Signal discontinuing SMS support.
LibreSignal existed before Moxie was like “no, don’t”: https://github.com/LibreSignal/LibreSignal
- Combattez la censure Iranienne en hébergeant un proxy Signal
-
Nokia 1680 phone gets new PCB, runs mainline Linux
They have shut down third party clients, and resve the roght to continue that.
https://github.com/LibreSignal/LibreSignal/issues/37#issueco...
-
Office 365 implementing AI to detect employees colluding, leaving and more
1) You need to audit that code, which.. everyone will have to do.
2) https://signal.org/blog/reproducible-android/
> the Signal Android codebase includes some native shared libraries that we employ for voice calls (WebRTC, etc). At the time this native code was added, there was no Gradle NDK support yet, so the shared libraries aren’t compiled with the project build.
a good answer in my opinion, but it means what you run from the play store is not reproducible and thus can never really be confirmed to be what the sources actually include. There are also binary blobs needed for interacting with Google Play.
3) Signal is openly hostile to third party client implementations: https://github.com/LibreSignal/LibreSignal/issues/37
What are some alternatives?
android - Android application to receive notifications
mollyim-android - Enhanced and security-focused fork of Signal.
openinwa - Create chat in WhatsApp without saving number to your phonebook
TextSecure - A private messenger for Android.
matrix-puppet-signal - A Signal bridge for Matrix
ringrtc
Signal-Android - Patches to Signal for Android removing dependencies on closed-source Google Mobile Services and Firebase libraries. In branches whose names include "-FOSS". Uses new "foss" or "gms" flavor dimension: build with "./gradlew assembleWebsiteFossProdRelease" (change "Website" to "Play" pre v7.15.4).
axolotl - A Signal compatible cross plattform client written in Go, Rust and Vuejs
Signal-Server - Server supporting the Signal Private Messenger applications on Android, Desktop, and iOS
Signal-iOS - A private messenger for iOS.

