SIgnal has been compromised. If you want a secure (and still Open-Source) alternative, use the forked project Silence | Poal: Say what you want.

Welcome • User Guide
ToS • Privacy • Canary
Donate • Bugs • License

©2024 Poal.co

911

• (+7/-0)

SIgnal has been compromised. If you want a secure (and still Open-Source) alternative, use the forked project Silence (f-droid.org)

It's a fork of SIgnal before it was bought out, removing all the Google services (Signal uses giigle cloud messaging services to send all messages). Nothing goes over "Data". It's all SMS/MMS, old-school infrastructure, with end-to-end encryption. Also, all messages are encrypted locally. If your device is compromised, the attacker would still need to spend the time decrypting your messages.

Silence focuses on SMS and MMS. This fork aims to:

Keep SMS/MMS encryption

Drop Google services dependencies (push messages are not available in Silence)

Integrate upstream bugfixes and patches from TextSecure

- Silence gitlab (git.silence.dev) -- (self hosted cersion control, nice touch)

It's a fork of SIgnal before it was bought out, removing all the Google services (Signal uses giigle cloud messaging services to send all messages). Nothing goes over "Data". It's all SMS/MMS, old-school infrastructure, with end-to-end encryption. Also, all messages are encrypted locally. If your device is compromised, the attacker would still need to spend the time decrypting your messages. > Silence focuses on SMS and MMS. This fork aims to: > * Keep SMS/MMS encryption > * Drop Google services dependencies (push messages are not available in Silence) > * Integrate upstream bugfixes and patches from TextSecure > \- [Silence gitlab](https://git.silence.dev/Silence/Silence-Android/) -- *(self hosted cersion control, nice touch)*

(post is archived)

You are currently inside a comment thread.

Click here to see all the comments (7).

[–] • 0 pt

Couple things

Signal is no longer on Open Source App stores like F-Droid (signal started on f-droid)
$50 million investment into signal from WhatApps founder (whatsapp now owned by facebook): https://archive.vn/eVU5f
Mandatory signup using personal phone number
Signal must be kept up-to-date or you cannot use the app
You must update via Google Play Store or Apple App Store

You are correct about the encrypted messages being sniffed by the cell carrier; however, with Silence, there's a lower risk of your private keys being exposed. With SIgnal, I guarantee your private keys are being stored by google on, during, or after install/setup of the Signal app.

Hence, Google has your encrypted messages AND the private keys required to decrypt them. With Silence, Version m ay be able to sniff your encrypted messages, but they cannot decrypt them because you

Got Silence from an Open Source App store (or built it yourself)
Didn't have to sign up with any service using phone number

parent
link

[–] • 1 pt

Thanks for the reply. I checked up on Fdroid you're right not there anymore. Time to switch it up again. Security is a constant battle

parent
link

[–] • 0 pt

it is indeed.

This is waht I am switching to: https://getsession.org/

parent
link