Oddbean new post about | logout
0xtr | 1 months ago (raw) | root | parent | reply | flag 
 Is there any good reason they kept DMs in cleartext?
Derek Ross | 1 months ago (raw) | root | parent | reply | flag 
 No?
0xtr | 1 months ago (raw) | root | parent | reply | flag +1 
 It's kind of a trick question since there is no valid reason for doing cleartext DMs but I'm at the same time genuinely interested in why they went with it anyways.
Derek Ross | 1 months ago (raw) | root | parent | reply | flag +1 
 I have no idea. Maybe someone more versed in the protocol can answer? nostr:nprofile1qqsqgc0uhmxycvm5gwvn944c7yfxnnxm0nyh8tt62zhrvtd3xkj8fhgpzdmhxue69uhhqatjwpkx2urpvuhx2ue0hswhhl
0xtr | 1 months ago (raw) | root | parent | reply | flag +1 
 Poor Alex, we've tagged him multiple times today about this same question in another thread 😂
Derek Ross | 1 months ago (raw) | root | parent | reply | flag 
 🫠
Alex Gleason 🐍🚬 | 1 months ago (raw) | root | parent | reply | flag +2 
 It's cleartext because it's just easier. There have been proposals to do E2EE on Mastodon, and there's even a branch where they implemented Signal's protocol, but it's too hard to have a cross platform experience with the preferred UX unless users control their keys directly, which users on Mastodon don't.
Derek Ross | 1 months ago (raw) | root | parent | reply | flag +1 
 makes sense. thanks!
Jameson Lopp | 1 months ago (raw) | root | parent | reply | flag +1 
 Mastodon is all about giving instance admins god mode over their fiefdom.
inpc | 1 months ago (raw) | root | parent | reply | flag 
 As opposed to one single entity like X.