55
submitted 1 year ago by gianni@lemmy.ml to c/privacy@lemmy.ml

Molly advertises itself as a "hardened version of Signal," & its FOSS variant is the same without proprietary dependencies. TwinHelix's FOSS Signal fork goes further, adding OSM support instead of GMaps. Are these forks trustworthy, & are they worth using for added security compared to mainline?

you are viewing a single comment's thread
view the rest of the comments
[-] mtchristo@lemm.ee 6 points 1 year ago

Are they allowed to use signal servers ? last time I heard third party apps or forks were banned from using signals servers.

[-] KLISHDFSDF@lemmy.ml 8 points 1 year ago* (last edited 1 year ago)

Yes they are allowed. The devs have nothing against third party clients as long as they're not abusing the network or pretending to be the official Signal app.

The issue you're referring to happened, I believe, around 2016 and it was specific to one developer who was using a similar app name and the lead Signal dev basically told them specifically to not use their network.

Almost every other Signal client since then even report to Signal's servers as a third party client - and the signal devs can see this in their logs - and nobody has been kicked/asked to stop anything since.

I also seem to recall the issue may have been 3rd party clients unintentionally abusing the network at the time, causing issues for other users, so I can see the frustration from a dev perspective to potentially be woken up at midnight for an issue/outage affecting your users, that is caused or at least made worse by clients that are pegging their servers.

If anyone has more background or corrections, please let me know so I can update/edit my statement.

[-] itchy_lizard@feddit.it 1 points 1 year ago

Not true. There's an issue in the molly repo where Moxie chimed in and told them to stop using their servers.

So, theyre not being banned or sued...but they are not allowed either.

[-] KLISHDFSDF@lemmy.ml 1 points 1 year ago

Not that I don't believe you, but do you have a source? I mean, Molly has worked using Signal's servers for at least 5 years now and Signal's devs can see that people are using it and have the capacity to easily block them if they wanted to, so how are they not allowed but still allowed? Seems contradictory.

[-] notenoughbutter@lemmy.ml 1 points 1 year ago

I guess he is talking about this

https://github.com/LibreSignal/LibreSignal/issues/37#issuecomment-217231557

read the main page of this repo, the Dev made it clear that moxie made the right move in the end by accepting a gcm free notification feature

[-] itchy_lizard@feddit.it 0 points 1 year ago

Just search their repo issues for Moxies username. Should be easy to find.

[-] KLISHDFSDF@lemmy.ml 1 points 1 year ago

I tried but my google-fu failed me.

[-] itchy_lizard@feddit.it 0 points 1 year ago

Search in github, not google

this post was submitted on 31 Jul 2023
55 points (96.6% liked)

Privacy

31981 readers
234 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS