Nemeski to Technology@lemmy.worldEnglish · 1 month agoSignal messenger blocked in Russia, says Roskomnadzorwww.reuters.comexternal-linkmessage-square39fedilinkarrow-up1206arrow-down15
arrow-up1201arrow-down1external-linkSignal messenger blocked in Russia, says Roskomnadzorwww.reuters.comNemeski to Technology@lemmy.worldEnglish · 1 month agomessage-square39fedilink
minus-squaredoodledup@lemmy.worldlinkfedilinkEnglisharrow-up16arrow-down4·1 month agoThey don’t have reproducible builds afaik (unlike Signal). You can have a completely different code running on your phone than on GitHub. Besides, who is using Secret Chat anyways? All default chats and group chats are unencrypted.
minus-squarewoelkchen@lemmy.worldlinkfedilinkEnglisharrow-up4arrow-down4·1 month ago You can have a completely different code running on your phone than on GitHub. Just use the F-Droid version if there is any doubt. Besides, who is using Secret Chat anyways? Probably Russians who used Signal before.
minus-squaredoodledup@lemmy.worldlinkfedilinkEnglisharrow-up10arrow-down3·1 month agoThe F-droid version is also not reproducible. The binary you install has a different hash than the one you build from the GitHub.
minus-squareNonononoki@lemmy.worldlinkfedilinkEnglisharrow-up1·1 month agoIt’s reproducible if you compare it with F-droid’s tarball, which has all the source code in it.
minus-squarewoelkchen@lemmy.worldlinkfedilinkEnglisharrow-up2arrow-down2·1 month ago The F-droid version is also not reproducible. The binary you install has a different hash than the one you build from the GitHub. F-Droid builds from source, so any suspicion whether the Google Play version has been tampered is completely irrelevant for the F-Droid version.
They don’t have reproducible builds afaik (unlike Signal). You can have a completely different code running on your phone than on GitHub.
Besides, who is using Secret Chat anyways? All default chats and group chats are unencrypted.
Just use the F-Droid version if there is any doubt.
Probably Russians who used Signal before.
The F-droid version is also not reproducible. The binary you install has a different hash than the one you build from the GitHub.
It’s reproducible if you compare it with F-droid’s tarball, which has all the source code in it.
F-Droid builds from source, so any suspicion whether the Google Play version has been tampered is completely irrelevant for the F-Droid version.