Have you seen this news?
-
Have you seen this news?
#Mastodon just got funding to add end to end encryption into their software.
So, some time next year, you’ll be able to send truly private messages to the vast majority of the #Fediverse
Im so excited about this.
Because it’s an open spec, this opens the doors for every Fediverse app to join the party.
Yesterday, this project was a proof of concept. Today, Mastodon has turned it into a stampede.
Sovereign Tech Agency funding
Announcing a service agreement for new work to improve Mastodon and the broader ecosystem.
Mastodon Blog (blog.joinmastodon.org)
@benpate@mastodon.social Unable to decrypt message
-
Have you seen this news?
#Mastodon just got funding to add end to end encryption into their software.
So, some time next year, you’ll be able to send truly private messages to the vast majority of the #Fediverse
Im so excited about this.
Because it’s an open spec, this opens the doors for every Fediverse app to join the party.
Yesterday, this project was a proof of concept. Today, Mastodon has turned it into a stampede.
Sovereign Tech Agency funding
Announcing a service agreement for new work to improve Mastodon and the broader ecosystem.
Mastodon Blog (blog.joinmastodon.org)
@benpate
i cant wait for "Cant decrypt this message" -
Have you seen this news?
#Mastodon just got funding to add end to end encryption into their software.
So, some time next year, you’ll be able to send truly private messages to the vast majority of the #Fediverse
Im so excited about this.
Because it’s an open spec, this opens the doors for every Fediverse app to join the party.
Yesterday, this project was a proof of concept. Today, Mastodon has turned it into a stampede.
Sovereign Tech Agency funding
Announcing a service agreement for new work to improve Mastodon and the broader ecosystem.
Mastodon Blog (blog.joinmastodon.org)
Is this similar to what @apps has implemented in @HolosSocial ? Will they be compatible then?
-
Have you seen this news?
#Mastodon just got funding to add end to end encryption into their software.
So, some time next year, you’ll be able to send truly private messages to the vast majority of the #Fediverse
Im so excited about this.
Because it’s an open spec, this opens the doors for every Fediverse app to join the party.
Yesterday, this project was a proof of concept. Today, Mastodon has turned it into a stampede.
Sovereign Tech Agency funding
Announcing a service agreement for new work to improve Mastodon and the broader ecosystem.
Mastodon Blog (blog.joinmastodon.org)
@benpate
Good information -
Ok, I'm confused. What are your concerns exactly about E2EE in the fediverse? Is it added complexity for server admins?
As an user living through this period of the internet I barely see a reason why I wouldn't want E2EE for anything with direct personal communication. In fact I choose services exactly for that.
Shouldn't good E2EE be able to operate securely especially under hostile conditions? And is that not the point of open standards to do so?
>Is it added complexity for server admins?
Yes
>Shouldn't good E2EE be able to operate securely especially under hostile conditions?
Yes
-
Have you seen this news?
#Mastodon just got funding to add end to end encryption into their software.
So, some time next year, you’ll be able to send truly private messages to the vast majority of the #Fediverse
Im so excited about this.
Because it’s an open spec, this opens the doors for every Fediverse app to join the party.
Yesterday, this project was a proof of concept. Today, Mastodon has turned it into a stampede.
Sovereign Tech Agency funding
Announcing a service agreement for new work to improve Mastodon and the broader ecosystem.
Mastodon Blog (blog.joinmastodon.org)
-
Is this similar to what @apps has implemented in @HolosSocial ? Will they be compatible then?
It’s very similar in principle, but different details mean that Holos will not be compatible with the Mastodon implementation.
Hey Holos guys/gals/peoples, we’d love to talk to you about making all these encrypted messengers work together. The spec is public and we’re meeting on video pretty regularly to work out details.
I know it sucks to refactor code, but just think of how cool it will be when all of these apps work together!
-
@benpate I don't understand the internet but this sounds like a huge improvement. And because it does, I think, can it remain inviolate?
“Inviolate” is a pretty strong word..
I’d say that this will make it prohibitively expensive for most “people in the middle” of your conversations (like server mods, IT workers, web scrapers, or general looky-loos) to intercept your encrypted messages. MUCH better than what we have now.
There’s always other ways that a well funded or morally unhindered group can break into your stuff.
Relevant comic: https://xkcd.com/538/
-
@benpate I'm reminded of an old adage, Zawinski's Law: "Every program attempts to expand until it can read mail. Those programs which cannot so expand are replaced by ones which can." I've always thought it was stupid. Not the law. The fact that it happens. I already have perfectly good messaging systems, I don't need another one. Can't programs just stick to doing what they do well and let other programs do what they do well?
I already have RCS, Signal, WhatsApp, Instagram, oh and E-mail ...mastodon is doing DM encryption because users want it
that's all
"WhatsApp, Instagram"
why are you using those spy apps? you complain about bloat and intrusion, and use these?
i mean use them if you want to. but it's just odd to take a stand on a point of purity, then in the same comment, betray that very sense of purity
-
@benpate I love that almost immediately after the announcement of potentially adding E2EE support there are a whole lot of posts saying "how dare they give us encryption!"
Like even if you have... some kind of bugaboo about it, it doesn't hurt you if it's there... It does, however, help protect a lot of users.
(And I'll never understand the "first fix absolutely everything else before adding anything new!" mentality. A. people can do two things at once, that's one of the great things about having more than one person working on a thing and B. there will always be something else that needs fixing. That is the nature of reality and imperfect things... If everything else must be fixed first, nothing would ever get done. Literally. We'd still be trying to perfect pointy sticks.)
because everyone is an armchair CEO
they have their own personal agenda, and their point of view is "anything that strays from my personal point of view is impure and insincere, somehow. oh, and this entitles me to whine and sometimes even be abusive about it on social media and dictate orders"
-
@benroyce @benpate @rusty__shackleford @dusk you guys are on an instance whose admin has decided to block most of the fediverse because someone somewhere might say a mean word at you and your admin thinks you can't handle it.
-
mastodon is doing DM encryption because users want it
that's all
"WhatsApp, Instagram"
why are you using those spy apps? you complain about bloat and intrusion, and use these?
i mean use them if you want to. but it's just odd to take a stand on a point of purity, then in the same comment, betray that very sense of purity
-
@benroyce @benpate @rusty__shackleford @dusk you guys are on an instance whose admin has decided to block most of the fediverse because someone somewhere might say a mean word at you and your admin thinks you can't handle it.
@sampler @rusty__shackleford @benpate @dusk
i give your troll attempt a... 3/10
nice try troll
keep working at it
remember: the point of trolling is entertainment, so you want to make me feel like i should go get the buttered popcorn
i believe in you. you can do it. be the best troll you can be!
-
that's what *you* are doing
so you put the "dictating what we all want" out there. but how dare anyone push back?
it's absolutely fine to get your opinion out there
but you can't fallback to the comment you just made, expecting as if you won't receive any other opinion in response to yours. that's not the way it works
i'm not in charge here. and *you* aren't in charge here. get your opinion out, receive some pushback: welcome to life
-
“Inviolate” is a pretty strong word..
I’d say that this will make it prohibitively expensive for most “people in the middle” of your conversations (like server mods, IT workers, web scrapers, or general looky-loos) to intercept your encrypted messages. MUCH better than what we have now.
There’s always other ways that a well funded or morally unhindered group can break into your stuff.
Relevant comic: https://xkcd.com/538/
@benpate Thanks for opining. I like my word choice, and I like you for answering my question.
-
@benpate Thanks for opining. I like my word choice, and I like you for answering my question.
@Lizette603_23 notes like this are why I wish Mastodon would let me like things with little hearts and smiles instead of just stars.
I’ll have to put it here instead
️ -
@Lizette603_23 notes like this are why I wish Mastodon would let me like things with little hearts and smiles instead of just stars.
I’ll have to put it here instead
️@benpate Hi and you're welcome and thank you again. Let's beat the system and flamenco appreciation
-
@reflex @benpate @earth_walker
I'm not trying to be snide here, I mean this very literally.
I don't know what I don't know about operating an E2EE, patio, porn, or recycling business. All I know is they are all regulated, require licensing, insurance, have wildly different requirements in different jurisdictions.
I've done the work for operating social media services.
I have no intention of doing the work for any of the other services listed.
(Export controls come to mind though.)
@jaz @benpate @earth_walker I understand you do not know, but my point is if you are operating a mastodon instance, and you are connecting users via https, you are already operating a E2EE service. That is what https is (via TLS, used to be SSL). You do not need to know more to have your messaging be E2EE within the instance unless they have done something very wrong with the masto instance.
It's an international standard, the concerns you have can be raised, but likely are not valid.
-
@jaz @benpate @earth_walker I understand you do not know, but my point is if you are operating a mastodon instance, and you are connecting users via https, you are already operating a E2EE service. That is what https is (via TLS, used to be SSL). You do not need to know more to have your messaging be E2EE within the instance unless they have done something very wrong with the masto instance.
It's an international standard, the concerns you have can be raised, but likely are not valid.
@jaz @benpate @earth_walker HTTPS is E2EE between the server (instance) and client (app/browser/etc). It ensures data in transit cannot be intercepted easily. E2EE messaging is the same thing but user to user, essentially keeping the data invisible to the server (instance). Same principle. It's commonly used and typically invisible to the admin.
It does not block screenshots, reporting mechanisms will still be valid.
Again, assuming this implementation does not do something weird.
-
@jaz @benpate @earth_walker HTTPS is E2EE between the server (instance) and client (app/browser/etc). It ensures data in transit cannot be intercepted easily. E2EE messaging is the same thing but user to user, essentially keeping the data invisible to the server (instance). Same principle. It's commonly used and typically invisible to the admin.
It does not block screenshots, reporting mechanisms will still be valid.
Again, assuming this implementation does not do something weird.
@reflex @benpate @earth_walker I believe you may be underestimating my understanding of and experience with internetworking including the network and transport layers, but I'll just say that encryption in transit is not end to end , and the simple fact that I can moderate user-to-user (end to end) content on my service expressly informs that fact.
Let me put it another way, I have no intention of operating an unmoderatable community service.
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login