• kbal@fedia.io
    link
    fedilink
    arrow-up
    4
    arrow-down
    1
    ·
    edit-2
    6 months ago

    Huh. I would’ve thought most desktop users just leave it running all day long like I do. Obviously there is the disk encryption passphrase at boot, adding another one for signal would in my case be redundant.

    But the point is not only how easy it is to enter a passphrase, but also how much security that actually gains you. I don’t think it does much on the typical desktop, be it windows or linux, where there are so many ways to escalate or persist privilege for anyone that has user-level access.

    • refalo@programming.dev
      link
      fedilink
      arrow-up
      5
      ·
      6 months ago

      I would’ve thought most desktop users just leave it running all day long like I do.

      They do. OP is not a normal user.

    • communism@lemmy.ml
      link
      fedilink
      arrow-up
      3
      arrow-down
      1
      ·
      edit-2
      6 months ago

      Obviously there is the disk encryption passphrase at boot, adding another one for signal would in my case be redundant.

      I also have full disk encryption, but I still have some databases on my disk encrypted because I decrypt my disk when I boot my computer. But yeah if you have Signal open (& its db decrypted) all the time it would probably be minimal. I don’t have Signal open all the time though, only when I want to check messages or am actively using it

      I don’t think it does much on the typical desktop, be it windows or linux, where there are so many ways to escalate or persist privilege for anyone that has user-level access.

      The point would be encryption, even the root user wouldn’t be able to read encrypted data if they don’t have the passphrase

      • kbal@fedia.io
        link
        fedilink
        arrow-up
        4
        arrow-down
        1
        ·
        6 months ago

        If you have root, intercepting all the user’s keystrokes is trivial.