Nemeski to Technology@lemmy.worldEnglish • 3 months agoSignal messenger blocked in Russia, says Roskomnadzorwww.reuters.commessage-square39fedilinkarrow-up1205
arrow-up1205external-linkSignal messenger blocked in Russia, says Roskomnadzorwww.reuters.comNemeski to Technology@lemmy.worldEnglish • 3 months agomessage-square39fedilink
minus-square@doodledup@lemmy.worldlinkfedilinkEnglish16•3 months agoThey don’t have reproducible builds afaik (unlike Signal). You can have a completely different code running on your phone than on GitHub. Besides, who is using Secret Chat anyways? All default chats and group chats are unencrypted.
minus-square@woelkchen@lemmy.worldlinkfedilinkEnglish4•3 months ago You can have a completely different code running on your phone than on GitHub. Just use the F-Droid version if there is any doubt. Besides, who is using Secret Chat anyways? Probably Russians who used Signal before.
minus-square@doodledup@lemmy.worldlinkfedilinkEnglish10•3 months agoThe F-droid version is also not reproducible. The binary you install has a different hash than the one you build from the GitHub.
minus-square@woelkchen@lemmy.worldlinkfedilinkEnglish2•3 months ago The F-droid version is also not reproducible. The binary you install has a different hash than the one you build from the GitHub. F-Droid builds from source, so any suspicion whether the Google Play version has been tampered is completely irrelevant for the F-Droid version.
minus-square@Nonononoki@lemmy.worldlinkfedilinkEnglish1•3 months agoIt’s reproducible if you compare it with F-droid’s tarball, which has all the source code in it.
They don’t have reproducible builds afaik (unlike Signal). You can have a completely different code running on your phone than on GitHub.
Besides, who is using Secret Chat anyways? All default chats and group chats are unencrypted.
Just use the F-Droid version if there is any doubt.
Probably Russians who used Signal before.
The F-droid version is also not reproducible. The binary you install has a different hash than the one you build from the GitHub.
F-Droid builds from source, so any suspicion whether the Google Play version has been tampered is completely irrelevant for the F-Droid version.
It’s reproducible if you compare it with F-droid’s tarball, which has all the source code in it.