88
submitted 7 months ago by AprilF00lz@lemmy.ml to c/privacy@lemmy.ml

I'm thinking of the things listed on the Privacy Guides real-time communication section

https://www.privacyguides.org/en/real-time-communication/

you are viewing a single comment's thread
view the rest of the comments
[-] jet@hackertalks.com 4 points 7 months ago* (last edited 7 months ago)

Brute forcing 4-6 digit pins is trivial.

And even if the user set a actual password, it's still very trivial

https://blog.cryptographyengineering.com/2020/07/10/a-few-thoughts-about-signals-secure-value-recovery/

[-] ryannathans@aussie.zone 2 points 7 months ago

"Very trivial" if they set a proper password? Yet the source you provide says it's robustly secure

[-] jet@hackertalks.com 0 points 7 months ago

I can't find the phrase robustly secure in the last link:

https://blog.cryptographyengineering.com/2020/07/10/a-few-thoughts-about-signals-secure-value-recovery/

Signal asks users to set a pin/password which needs to be periodically reentered. This discourages people from using high entropy passwords like BIP38.

this post was submitted on 15 Apr 2024
88 points (94.9% liked)

Privacy

32169 readers
361 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS