proprietary and unaudited (last I checked) which is just bad crypto practice
off by default unless you enable "secret messages" for individual conversations
not even possible for group chats.
It's a really slick app but these issues are too large to ignore. Besides, there's talk of them bending over and helping Putin "fight the threat of terrorism", implying either a backdoor or some level of compliance with government, which again they can only do because shit isn't end to end encrypted.
I think they are orthogonal issues. Even If the server side code was published they still have access to your plan-text conversations. And the secret chats are secret even if the server side code is proprietary.
Encryption on telegram is:
It's a really slick app but these issues are too large to ignore. Besides, there's talk of them bending over and helping Putin "fight the threat of terrorism", implying either a backdoor or some level of compliance with government, which again they can only do because shit isn't end to end encrypted.
It's neither of those things. And I really really don't think they'll 'bend over to Putin' given their history.
Pretty sure the server-side code is proprietary. Also, their history really doesn't matter as long as they have the ability to.
Roskomnadzor on Thursday said it was prepared to lift restrictions because Durov, who has been living in self-imposed exile since 2014, was prepared to cooperate with Russian government counterterrorism efforts to combat extremism on the platform.
This is true and bad, but it doesn't matter for encryption as long as the clients are free.
It does matter if e2e encryption is not the default. The server does have access to your plan-text conversations
I think they are orthogonal issues. Even If the server side code was published they still have access to your plan-text conversations. And the secret chats are secret even if the server side code is proprietary.