21·
3 days agoTelegram has been under fire from the start, lol. 'we have math PhDs" 🤷
Natanael
Cryptography nerd
Fediverse accounts;
Natanael@slrpnk.net (main)
Natanael@infosec.pub
Natanael@lemmy.zip
@Natanael_L@mastodon.social
Bluesky: natanael.bsky.social
- 0 Posts
- 8 Comments
Joined 2 years ago
Cake day: August 16th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
There’s also a big difference between published specifications and threat models for the encryption which professionals can investigate in the code delivered to users, versus no published security information at all with pure reverse engineering as the only option
Apple at least has public specifications. Experts can dig into it and compare against the specs, which is far easier than digging into that kind of code blindly. The spec describes what it does when and why, so you don’t have to figure that out through reverse engineering, instead you can focus on looking for discrepancies
Proper open source with deterministic builds would be even better, but we aren’t getting that out of Apple. Specs is the next best thing.
BTW, plugging our cryptography community: !crypto@infosec.pub
1·3 days agoI did pay attention, and I saw noone serious think that would be legal to do
The biggest errors was not pushing harder against his first campaign, not pushing harder during the impeachments, letting Jan 6 go without another impeachment, and not calling out the billionaires helping his campaign with the intent to dismantle agencies that protect people, etc.
The SCOTUS appointments were big issues but due to the timing meaning they happened when dems lacked majorities there wasn’t much to do about them. Getting Trump out of the office is the only fix.
Only exception would’ve been SCOTUS reform immediately after Biden’s election when he had a majority, but the problem there is he couldn’t get enough votes for it
How were they supposed to override the “turtle” though? Sure they should’ve fought harder, but what legal options were there?
Looks like the same dev from reddit
https://www.reddit.com/r/crypto/comments/1iumxl3/how_far_can_i_push_closesource_code_towards_being/
No audits and doesn’t want to share the code
https://www.reddit.com/r/crypto/comments/1iumxl3/how_far_can_i_push_closesource_code_towards_being/
You’re missing important factors like Trump getting help from SCOTUS and agency heads bowing down to him. Biden would never have been allowed to do a fraction of this because none of it would’ve reached the enforcement stage
Wireguard is most reliable in terms of security. For censorship resistance, it’s all about tunneling it in a way that looks indistinguishable from normal traffic
Domain or IP doesn’t make much of a difference. If somebody can block one they can block the other. The trick is not getting flagged. Domain does make it easier to administer though with stuff like dyndns, but then you also need to make sure eSNI is available (especially if it’s on hosting) and that you’re using encrypted DNS lookups