“Not so bad” at what? They’re doing this out of their own interests. It doesn’t mean at all that they care about the privacy of their constituents, and in fact they’re one of the worst offenders.

LOL imagine creating a game that runs like total ass on a powerful PC and then releasing it on Playstation…

I already explained several times why that’s not realistic

You haven’t. You’ve only explained why you don’t want to do it, which is fair, but you keep presenting as if it’s not possible, which is not accurate. Lots of apps can and do create encrypted backups.

It’s not that I don’t want. I can’t implement it because I don’t offer a server.

You don’t have to. You just have the app encrypt the data before it’s backed up and exported.

you are not understanding mine which is the actual use case of the app

I understand the usecase but you’re acting like you don’t understand the purpose of encryption, for some reason suggesting that it’s supposed to prevent hacking, when that is not at all what it does.

If a server gets hacked where a user sent data from Colota there is nothing the app can do about it or to prevent it

It can’t prevent the hack, it absolutely can protect the data, and make it useless. That’s the entire purpose of encryption.

I don’t think it’s the job of an Android app to protect a server from government hacking attacks.

Again, it’s not supposed to.

Also the app is offline-first. There is no server needed unless the user specifically configures that.

The server is needed for the same reason a server is needed for anything: to back up the data.

If you don’t want to implement it, that’s fine, I respect your decision, but there’s no reason to come here pretending not to understand its purpose.

!worksonmymachine@tubefree.org

There’s no third party to encrypt against.

Encryption does not exist for third parties. It exists to protect sensitive data from malicious or state actors who might hack your server and steal the information for various purposes. Here in the US law enforcement is free to hack and steal and demand whatever they want.

All these backends would have to support the same decryption which Colota offers, which is not realistic.

I would prefer single-party encryption vs. integration, personally. Could make it optional.

I appreciate your contributions but for me personally this is a dealbreaker.

Thank you for sharing. Is this information encrypted? Doesn’t seem safe to use without that…

Doesn’t matter if it’s predictable or not, you keep doing it as long as it’s effective.

This marks the day they lost me as a long-term customer. Perhaps ought to have happened earlier, but for me, it happened today. I encourage others to consider the same.

I mean I’ve never been an Apple customer. At least not since the OG iPods. But what company are you going to move to that wouldn’t do the exact same thing in that situation?

Apple is uniquely shitty in having endless contempt for their own customers, which is why I’ve always avoided them. But this just seems like kind of a weird “last straw”. But hey, anyone boycotting Apple has my support.

EFF should probably be the last one to leave. You wanna reach idiots on Xitter, being on Xitter is the most effective way to do that.

Given their description it sounds like it’s more of an issue of the algorithm and conservation of org resources. Their campaigning there is almost completely ineffective. They’ve been shoved down the list by the likes of Elon and the Rogan “manosphere”.

In order to find out, they’d have to also be using Meta, which is embarrassing enough in itself so they shouldn’t be talking.

Aha, yeah, add it to the list of problems with Signal.

Yes, that was my entire point.

Well that’s exactly my point.

Honestly I would probably pay for it and be happy but Premium doesn’t solve many of the problems that still exist:

• being shown the same content over and over
• Dislikes hidden
• in-video ads
• Shorts absolutely crammed down your throat everywhere
• broken search results
• AI-generated slop absolutely everywhere
• crypto spam
• Google-connected account using view history to spy on you

etc. etc. All problems Google could solve easily but simply won’t.

Yeah but they’re not really people

It’s a relatively complicated question with no “correct answer” but I’ll do my best to boil it down in a quick post.

Signal is probably the best option. It’s easy to use and easily the most widely-adopted, and basically sets the standard for security, with most other private messengers using the same protocol for encryption. The most common criticism is their requirement for a phone #. However this also makes it the easiest to connect with people, and it’s the reason why I regularly communicate with a dozen IRL people like family and friends. I know literally no one else who uses any other private messenger, personally. I’m not sure what you mean by “numbers are blocked”.

SimpleX is also relatively easy to use, feature-complete, decentralized and more private and resilient than Signal. Doesn’t require a phone number and doesn’t really have any identifiers whatsoever. Downsides are you need to know someone already uses it and you need to get an invite code somehow to message them. Upsides are absolutely zero spam, for the same reason.

Next is “chatmail” (DeltaChat, ArcaneChat, etc.). This has tons of cool features and is also decentralized and easy to use.

Matrix I’m going to argue is too difficult to use, both from the user and server standpoint. And I’m not going to argue about it, so don’t @ me.

XMPP is very old and mature, but also fragmented and more complicated to use, with various encryption protocols. It’s fine.

So if you’re looking to add friends and family to a new chat platform, I recommend SimpleX. Otherwise, it’s Signal.

This is a good thing for everyone 👏