Over the last few days we've had constant requests to respond to @[email protected]'s 'The ecosystem is moving' blog post & recent 36c3 talk - we've tried to articulate Matrix's viewpoint over at https://matrix.org/blog/2020/01/02/on-privacy-versus-freedom.
It’s true that if you’re writing a messaging app optimised for privacy at any cost, Moxie’s approach is one way to do it. However, this ends up being a perversely closed world - a closed network, where unofficial clients are banned, with no platform to build on, no open standards, and you end up thoroughly putting all your eggs in one basket, trusting past, present & future Signal to retain its values, stay up and somehow dodge compromise & censorship… despite probably being the single highest value attack target on the ‘net.
@harald @matrix How can Marlinspike even call phone numbers "user-owned identifiers"?? If I want to port my phone number from one provider to another, I have to go buy a new SIM card, and then call both companies, and beg their customer service agents for permission to move. And if a bad actor clones my SIM, or just manages to convince a level-1 service rep that he's me, then he gets to steal my phone number forever.
The talk is available via peertube (ironically a federated service) and YouTube.
I've seen the talk but not read his blog post and the arguments brought in the talk are even more ridiculous.
He discontinued p2p video/voice because clients could discover each others IPs. (A fact that is only sometimes true and can be mitigated by the use of additional services) but still defends the use of phone numbers as identifiers to share with everyone you want to talk to.
@matrix The more moxie opens his mouth, the less I trust him to build and maintain a secure messaging platform. Signal is kind of a basic first measure, I would never trust any centralized network with something I actually wanted to be private. But neither would I trust matrix yet, maybe once the client has it's own built in server and mixing servers. Right now the very basic torchat seems to be the only real option for secure/anonymous coms and I'm not sure I trust that.
@matrix ye 'that' Moxie's talk .... where he reveals he don't understand art production (finished pieces is something the public thinks they see, not the artists) nor the people that want decentralized systems ... nor freedom nor SPoF indeed
@stereo heh - so does that make us the microkernel? :D always seemed amusing that the punchline to that debate was Android = torvalds and iOS = tanenbaum; turns out both can work...
Thanks @matrix for the detailed blog on why #decentralised vs #centralised ecosystem. Seems like Moxie of signal missed the fundamental thing called #freedom to choose the server you like, the client you like for messaging. Thats the freedom you also see on #Federated messaging like #Fediverse systems of #Mastodon, #Pleroma , #Peertube etc. https://matrix.org/blog/2020/01/02/on-privacy-versus-freedom
@matrix What's not to love about the fact that a talk titled "The ecosystem is moving" gets people to explain the details of exactly that movement & to accelerate it?
Sometimes using tounge-in-cheek pokes, but more importantly standing together against #SurveillanceCapitalism!
mastodon.matrix.org is one server in the network