151
US Feds Are Tapping a Half-Billion Encrypted Messaging Goldmine
(www.404media.co)
This is a most excellent place for technology news and articles.
How is it a lot harder to track if the FBI can just subpoena the sysadmin for server/room logs?
With respect, this viewpoint is not defensible from an operational security perspective.
It’s like saying they should use GMail because they have hundreds of millions of users. When the problem isn’t being a needle in haystack, but rather the fact that Google will gladly look through your private data and happily hand it over to the authorities.
"With respect", ya don't know what you're talking about.
Except it's not like that at all because Gmail is going to collect all the information about you they possibly can and Matrix is going to do the opposite.
If you’re a drug dealer and the FBI sends you a subpoena—you could simply….not respond.
There is actually a bunch of metadata tied to your account and your room. That’s partly how they caught that kid with the Pentagon leaks.
And again, there may be other services between the clients and the matrix server that collect personal data (e.g. reverse proxies, load balancers).
—
If you are someone who ostensibly cares about privacy and security (like a drug dealer) why would you rely on the benevolence and security hygiene of a stranger you can’t audit? Instead of using a known good actor, like Signal or SimpleX, or no actor, like Briar.
I mean sure, but then you'd have bigger problems.
I understand Metadata is a big problem with Matrix (even for me, personally). Metadata is not personal information if it remains detached from your identity.
LOL
I've already explained why.
Like I said, there are pros and cons of each. I'm not telling you you should use anything specific. You just have to use whatever works for your situation.