this post was submitted on 12 Jan 2024
81 points (75.8% liked)

Privacy

31982 readers
287 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

This is an article written by telegram's founder and CEO Pavel Durov in 2019 on "Why whatsapp will never be secure". Your thoughts?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 55 points 10 months ago (11 children)

What a load of hipocrisy. The dude uses unauthenticated DH for his apps "secret chats", which a bored student with a laptop can MITM in seconds. Other chats use just TLS, meaning they get to read EVERYTHING.

Use Signal, people.

[–] [email protected] 3 points 10 months ago (1 children)

which a bored student with a laptop can MITM in seconds

No, how can a bored student breach e2ee in seconds? note that no such cases have been reported by any telegram user so far.

[–] [email protected] 7 points 10 months ago* (last edited 10 months ago) (1 children)

Because the DH is unauthenticated, as I already said. Users can't report it because there is no way to tell for them.

[–] [email protected] -3 points 10 months ago (3 children)

Users can’t report it because there is no way to tell for them

Atleast the one who breached can tell? no telegram users data have been seen on dark web yet, no person/org have claimed to get any vulnerability in their system. Also if its that easy to breach why govt's keep banning telegram for not giving them userdata? despite telegram is the biggest app where most terrorist orgs operate, hub of piracy and illegal things, you can call it "public" darkweb.

[–] [email protected] 6 points 10 months ago (1 children)

if its that easy to breach why govt’s keep banning telegram for not giving them userdata

Same reason they ask Apple for backdoors even though they crack iPhones routinely. It's about legal precedent.

[–] [email protected] 0 points 10 months ago

They dont ban apple tho

[–] [email protected] 5 points 10 months ago (1 children)

The data is available. See this article - it's a Google link.

[–] [email protected] 0 points 10 months ago

That article literally praises telegram despite being non e2ee by default, authorities can only get ip address and phone number from it (those are public info already and both of them could be avoided by using voip amd paid VPNs), that just proves how solid mtproto have become. Also they are saying one can see your telegram message when they are physically logged in your account for which the Russian authorities took the help of their ISP, in that case its not telegrams fault, set up 2fa on your account or use VoIP.

[–] [email protected] 4 points 10 months ago (1 children)

Check stories about russian journalists..

I have some friends working in the police, many years they showed me how they can read messages of like anyone on telegram I was trying to tell people to stop using telegram for years, but now at least therecs some conversation is going on because of the journalists

[–] [email protected] 0 points 10 months ago

I have tried to google, most of them were assumptions or russian agencies using ISPs to login to their account in which case its not telegrams fault. Can you provide a substantial proof?

load more comments (9 replies)