Oddbean new post about | logout
freemymind 🇨🇭 | 1 months ago (raw) | root | parent | reply | flag 
 Try it. When you did not write a code yourself. How could you trust it? Somwhere comes the trust. Y tend to trust more on free software then propriatery. And more the more download it has. And the more the better I understand how their businessmodel works.
J6 | 1 months ago (raw) | root | parent | reply | flag 
 It costs a lot of money to run Signal. Yet the product is free. What measures has Signal put in place to demonstrate that they aren't a honey pot run by the US government? Reproducible builds would prove that the public source code is the exact code that was used to create the binaries, without any backdoors added. Does Signal provide verifiable reproducible builds? #security #signal #privacy #asknostr
freemymind 🇨🇭 | 1 months ago (raw) | root | parent | reply | flag +1 
 They run on donations. Thousands of people, which donate a small amohnt to make sure the product will be free in the future as well. I donate 100chf a year.
ckrypto | 1 months ago (raw) | root | parent | reply | flag 
 What measures have you put in place to demonstrate you're not Russian FSB attempting to spread FUD, so people use less secure options and your spying attempts are easier? I mean, as long as we're asking questions here...
J6 | 1 months ago (raw) | root | parent | reply | flag 
 There would be no need for "trust" if Signal provided reproducible builds, because you could verify for yourself that the source code was not tampered with during the build process.
freemymind 🇨🇭 | 1 months ago (raw) | root | parent | reply | flag +2 
 It is not a would. One only needs to search for it and you find it:
https://github.com/signalapp/Signal-Android/tree/main/reproducible-builds