You should know when and how you are being tracked, and you should have an easy-button to say thanks, but no thanks.

Opt-out!? That’s not even close to being a good solution.

Your data should not be collected, and you should not be tracked, UNLESS you agree yo it, ie opt-in, AND data collection is proportional/appropriate for the stated goal.

That’s the spirit of GDPR.

Is there a server component, or is everything running in the browser?

The mobile standard setter, GSMA, and Google have said encryption will be coming to RCS, but there’s no firm date yet.

GSMA, please don’t come up with yet another poorly designed encryption standard.

The IETF is already working on Messaging Layer Security (MLS), please work with IETF and adopt MLS. IETF have more experience and do a good job at designing secure protocols. And multiple organisations and services are already working on adapting MLS (Mozilla, Google, Matrix, Wire, …)

LG Botnet Machine

even a broken clock is right twice a day

Telling your contacts not to use Google nor Meta/Facebook. If everyone you email use gmail, then Google has all your emails.

If it fitsssss, I sssit.

It would be fair to compare browsers without adding extensions, with default settings.

This would show which browser have the best security and privacy out of the box. Also, the comparison would be practically impossible otherwise.

Most people use defaults, and I suspect a large portion of users install no extension, unless maybe if a tech-savy relative adds an adblocker.

Sucked the soul out of him

Translation: We’re extremely short staffed, so we are shaming our employees into sacrificing their vacation

While that’s true, but there’s no indication of Microsoft brute forcing with million of combinations.

The article you link says Microsoft is only trying a few obvious passwords: the filename, and words found in the plaintext message.

Proper encryption isn’t just about using a strong algorithm. It’s also about proper key management, ie not sending the password in the clear via the same channel as the encrypted files.

ZIP isn’t a good way to encrypt, but what Microsoft is doing is simply reading the email, and decrypting zips with the password found in the email body.

All encryptions schemes can be trivially broken if you have the key. It’s not even breaking, it’s just normal decryption.

Quite the contrary.

Password hashing is standard nowadays.

When a database is compromised, brute forcing hashes is necessary to recover passwords, and the short ones are the first ones to be recovered.

Taler is closer to an EMV card alternative, rather than a cash alternative.

Hopefully cash remains. But regions and businesses are already starting to go cashless, so I’d rather have Tale as an option.

Would Taler be more resilient than a typical EMV/AmEx card? It’s designed as an online payment system but it’s less centralised, so that could help.

It’s already an attractive project due to its privacy feature, and due to it being more regulation-friendly that cryptocurrencies. If it’s resilient enough it could act as a digital cash.

That’s interesting. Thanks for pointing it out.

My point is having a very old constitution isn’t much of a boast if keeping it as-is causes political issues.

Tradition and inertia.

The USA is proud to have the oldest and longest-standing written constitution. The fact it hasn’t been rewriteen in a long time help explain why there’s still an electoral college, slavery for prisoners (13th amendements), and weak regulation of campaign finance.

Thanks for the explanation. I’m considering Matrix but will hold off, at least until v1.11 or v1.12 solves the unintended CDN issue described in another comment here, cf https://matrix.org/blog/2024/06/20/matrix-v1.11-release/#continue-reading

I’m interested into the technical details, not actual URLs. How come servers cited in the video keep hosting/seeding chatrooms despite closing corresponding accounts? Is this impossible due to Matrix’s design, or is it poor moderation from server admins?

About URLs: the author is absolutely right to blur these. The only people he should be sharing this is police, or maybe admins if they’re not aware of the abuse on their server.

That’s the first time I hear of Matrix having this issue.

I’m curious to know more, but the video only cite an anonymous source. Are there evidence or more technical details available regarding this?