• 0 Posts
  • 15 Comments
Joined 2 years ago
cake
Cake day: June 22nd, 2023

help-circle










    1. There’s data-sharing agreements with more than just the N eyes countries
    2. If there’s an international warrant for that data the company is obliged to comply regardless

    The only countries in which n° 2 doesn’t apply for the US are countries you really don’t want your data in either.

    In short, however: if a government really wants your data it will find a way to get it no matter where you store that data, so the best thing is to simply not store that data at all, Mullvad and Signal don’t do that.


  • I mean maybe but you could also just say “we did some whacky shit here help us fix it please” and let the community help you in the effort. That’s the beauty of open source. Then again they may have their reasons and frankly I’m not even interested in a TikTok like social media so w/e as long as they don’t eat up their word it’s fine.


  • EuroNutellaMan@lemmy.worldtoFediverse@lemmy.worldHappy #GlobalSwitchDay
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    1
    ·
    edit-2
    2 months ago

    Jurisdiction is not that important. Even if it was in Switzerland it’d have to comply with international law enforcement and warrants. The key is that sure Signal is obliged to give out whatever data it has, but the point is that it doesn’t have much useful data to give. It’s the same as Mullvad, and a far smarter approach than “lol we just gonna ignore the warrant huhuhu look at us we host somewhere in Shitzerfuck” (oh btw “We are in X country which is not in N eyes” is just marketing).

    Oh and btw the same goes for instances of the fediverse (which are ran by volunteers you need to trust), and if they don’t comply and the US government really wants to break into them they probably will find a way. Doesn’t even need some complicated backdoors or anything it just needs to find an OPSEC slip-up, do some social engineering, arrest someone or at worst find a bug to exploit, and I can guarantee that unless you have some serious security wizards running your instance you’re not beating the FBI there and if the FBI is really persistent and focused on you for some reason then the wizards won’t be enough you need state actors.

    If your threat model actually includes the US government (aka you’re actually in danger and not some paranoia or just-in-case situation, be realistic with yourself) and there’s credible threats you may be targeted by it or other governments then you’re probably going to be using tor, briar, all that jazz, and wouldn’t be on lemmy. If you’re just some guy who just needs to message your family and shit Signal is perfectly fine, I can tell you that unless you’re a serious threat to the government they won’t waste resources cracking down ways to capture you via signal or whatever you use that is even somewhat secure (so no telegram, no WhatsApp, no messenger, etc), even if you’re a minority or activist, if not because you’re not important enough then because they have other easier ways to do it.

    Edit: oh and btw Signal was banned in Ruzzia (a country way more authoritarian than the US currently is) because the FSB couldn’t crack it so that goes to show it is pretty secure.


  • I somewhat disagree. Sure, telling windows users they have so many options will overwhelm them so it’s best to just give them 1 or 2 options. But telling other linux users who are about to put/suggest linux on someone else’s computer that there’s better options is good.

    For example, let’s take Ubuntu pushing snaps. A noob won’t know what they are, and there’s good chances they will have a bad experience with them and not understand what they are, they will probably think it’s a Linux problem rather than an Ubuntu problem and there’s a good chance they will leave linux because of them. I personally learned the problems I was having at the start of my linux journey were problems with snaps only because I read it somewhere in the zorin discord server or something like that. If it wasn’t for that I would have thought it’s a linux problem. Tho this wasn’t easy information to find and I was already well on my way to becoming a Linux nerd and I was interested in learning more, but the average user, in my experience, doesn’t know/want to look these things up and if you try to explain to them there’s a good chance you’ll lose them halfway through (which is normal, package managers aren’t a fun topic) Telling a linux user about it and that linux mint (for exampel) may be a better introduction for their resident noodles doesn’t run the risk because they’re already a linux user.