79
submitted 11 months ago by admin@beehaw.org to c/technology@beehaw.org
all 47 comments
sorted by: hot top controversial new old
[-] noodlejetski@lemm.ee 83 points 11 months ago

Beeper Mini avoids some of those problems because it’s operating in a fundamentally different way. Its developers figured out how to register a phone number with iMessage, send messages directly to Apple’s servers, and have messages sent back to your phone natively inside the app. It was a tricky process that involved deconstructing Apple’s messaging pipeline from start to finish. Beeper’s team had to figure out where to send the messages, what the messages needed to look like, and how to pull them back down from the cloud. The hardest part, Migicovsky said, was cracking what is essentially Apple’s padlock on the whole system: a check to see whether the connected device is a genuine Apple product.

yeah, I give it until Thursday.

[-] fraydabson@sopuli.xyz 8 points 11 months ago* (last edited 11 months ago)

It’s been out for a long time with limited access and nothing yet. Maybe Apple will change their mind toward it when it’s being used by a large group of people finally. Hopefully not.

Edit: I was wrong. See below.

[-] noodlejetski@lemm.ee 15 points 11 months ago

It’s been out for a long time with limited access and nothing yet.

you're thinking of regular Beeper, wthich used Macs hosted by the company to relay iMessage messages.

[-] atocci@kbin.social 3 points 11 months ago

That sounds exactly like what what Nothing Chats was shamed for a couple weeks ago, how has Beeper been fairing so well?

[-] noodlejetski@lemm.ee 17 points 11 months ago

Beeper's entire premise is based on decrypting your messages on their servers, re-encrypting them and sending them to you, and pinky promising that they're not reading them.

[-] atocci@kbin.social 2 points 11 months ago

So it really is the exact same thing as Nothing Chats then? I don't think I trust them any more than Sunbird...

[-] beefcat@beehaw.org 22 points 11 months ago
  • Beeper can be self-hosted if you have a Mac, so you don't have to trust their servers
  • Sunbird's app (Nothing Chat) was riddled with its own security vulnerabilities that allowed users to read other users messages, which were all stored as unencrypted plaintext, all discovered by the community within 24 hours of launch
  • Beeper is actually open about how their technology works and what it's limitations are, while Sunbird/Nothing basically lied about their product and never provided any meaningful documentation
[-] IlliteratiDomine@infosec.pub 10 points 11 months ago

The difference, as I understand it, is Beeper hasn't claimed to not be doing that. Sunbird/Nothing touted E2EE and that was a lie.

[-] atocci@kbin.social 8 points 11 months ago

That makes sense I suppose. A company that doesn't outright lie about how their service works would have more goodwill behind it, wouldn't it.

[-] lea@feddit.de 5 points 11 months ago

Beeper's backend is also fully open-source, there's nothing stopping you from hosting your own iMessage bridge and accessing it via any matrix client.

[-] beefcat@beehaw.org 6 points 11 months ago* (last edited 11 months ago)

It wasn't just that E2EE was a lie, their own server software was full of its own bugs that allowed third party access to user messages, which were stored unencrypted in their database.

[-] AnActOfCreation@programming.dev 1 points 11 months ago

Aged like wine!

[-] scrubbles@poptalk.scrubbles.tech 23 points 11 months ago

Okay I'm out of the loop, why is iMessage on Android such a big deal? I know that images get compressed but it sounds like Google and Apple are finally working together to draw up a spec there. Besides that it's... A color difference?

[-] lotanis@discuss.tchncs.de 21 points 11 months ago

There's a massive cultural thing in the US about the iPhone being the preferred phone and if you don't have one it must be because you're too poor to afford one. Obviously this is a result of marketing and isn't universal but it is a surprisingly widely held view.

Given that, showing up in a group chat as a lone blue bubble marks you out as the inferior group member (in some people's eyes). It doesn't matter so much 1:1 but if there are 10 people the odd one out stands out.

[-] janguv@lemmy.dbzer0.com 4 points 11 months ago

The real issue here is that people in the US are tied to using SMS for real-time chat groups when so many better (and private, and well known) alternatives exist. Thankfully, in Europe, nobody so far as I know ever really uses SMS anymore – whether for single or group chats.

[-] snowe@programming.dev 2 points 11 months ago

Not really a thing. Google is trying to make it seem like there is, but I’ve never met a single person that has ever cared.

[-] verdare@beehaw.org 12 points 11 months ago

Google and Apple are finally working together

I think this is the primary reason. Apple only announced working on RCS support very recently. Once that’s out, I don’t really see a place in the market for this.

And it isn’t just compressed images. MMS doesn’t support reactions, replies, typing indicators, or read receipts because it’s ancient. A proper, standardized replacement has been long overdue.

Granted, I’ve heard that RCS is currently heavily reliant on Google’s own servers, so it could be argued as to how “open” this really is.

[-] redcalcium@lemmy.institute 3 points 11 months ago

RCS protocol is open. The apps... not so much.

[-] verdare@beehaw.org 3 points 11 months ago

I think the currently available apps not being free software is less important than the protocol being open, which is good. It allows for the possibility of FOSS clients in the future. My bigger concern at the moment is if most/all of the actual backend infrastructure is controlled by a single stakeholder.

[-] beefcat@beehaw.org 8 points 11 months ago

It's not as big of a deal as people like to pretend it is

[-] evident5051@lemm.ee 2 points 11 months ago

The messages app also supports forwarding text messages to other devices.

We can even ignore the other features of iMessage. This adds a layer of convenience to those who use both iOS and Android.

[-] scrubbles@poptalk.scrubbles.tech 4 points 11 months ago

Eh still, Android offers this, Windows you can do this with an android or an iphone I think, not a game changer personally

[-] evident5051@lemm.ee 2 points 11 months ago* (last edited 11 months ago)

Yes, but it works better for those whose main SIMs are on iPhones. I personally use BlueBubbles at the moment.

[-] Zworf@beehaw.org 8 points 11 months ago* (last edited 11 months ago)

It requires a google account though so I can't use it :(

I don't really understand why they insist on that as it doesn't seem to use google otherwise. I do have google play services, just no account logged in (which is not necessary for things like push to work!)

[-] fraydabson@sopuli.xyz 8 points 11 months ago

Yeah it annoyed me that you have to use google contacts

[-] KLISHDFSDF@lemmy.ml 8 points 11 months ago

Because they get your profile picture, name, and email address when you click accept. I went through with it just to test, but definitely getting some data from its users.

[-] SmoochyPit@beehaw.org 5 points 11 months ago

Beeper was pretty dang hyped for its universal chat, I kept seeing it mentioned a while ago while it was in a closed beta.

[-] admin@beehaw.org 4 points 11 months ago

Because I participated in the closed beta I get Beeper free for life. I've been using Beeper now for almost 3.5 years and I love it.

[-] miss_brainfart@lemmy.ml 5 points 11 months ago* (last edited 11 months ago)

What is your stance on being able to give encryption keys to a third party without the other participants of a chat consenting, let alone knowing about it?

If someone in my contacts used bridges, effectively breaking e2ee, I'd want to know about it.

Ideally, people should not be allowed to do that without informing their contacts, at the very least.

[-] westyvw@lemm.ee 4 points 11 months ago

why is iMessage on Android such a big deal?

Being able to use rich chat features.

Like what? I know there is a difference in how group chats are handled, but thats a compatibility issue, not a rich chat feature. The only thing I can think of is Apples stupid push for more emojis and even worse Memojis. Otherwise, pics, gifs, emojis work between Apple and Android. Seems like its the green v blue and group chat edits that are the differences.

But maybe I dont know.

[-] averyminya@beehaw.org 7 points 11 months ago

Being able to send videos that don't look godawful would be nice

[-] feminalpanda@lemmings.world 9 points 11 months ago

That's just apple refusing to use rcs, so it changes to sms, which uses the phone connection, not the data connection.

[-] BearOfaTime@lemm.ee 5 points 11 months ago

I can send them fine on Verizon SMS, from Android to Apple. Apple decided that sending via SMS, regardless of carrier limit, they get wrecked. When I send the same video back to Android from my iPhone, the video is shit.

I've tested this repeatedly across carriers. Since Verizon doesn't seem to have an MMS size limit, it makes it pretty clear what's going on.

Blame carriers for limiting MMS sizes.

[-] SenorBolsa@beehaw.org 3 points 11 months ago* (last edited 11 months ago)

They look just fine over RCS. Which everyone else supports and apple could even integrate support for into iMessage.

Even straight up MMS on most carriers has no limit or a generous enough one that a short clip comes through just fine.

[-] autotldr@lemmings.world 4 points 11 months ago

🤖 I'm a bot that provides automatic summaries for articles:

Click here to see the summaryEarlier this year, a developer slid into Eric Migicovsky’s DMs with a spectacular claim: that he had reverse engineered Apple’s iMessage, allowing any device — Android, Windows, whatever — to send messages as a blue bubble.

The result, according to Migicovsky, is a third-party implementation of iMessage that is actually secure: Beeper doesn’t see your messages, your contacts, or your Apple ID password.

Beeper’s CTO, Brad Murray, also spent some time trying to break open the system as if he were an attacker and is publishing his findings.

At the very least, Beeper has been operating the less secure kind of iMessage relay for nearly three years, and Migicovsky says he hasn’t heard a word from Apple yet.

The 16-year-old developer who reverse engineered iMessage is now working for Beeper as a contractor; Migicovsky declined to share further details about the student, citing privacy concerns.

My biggest complaint at the moment is that Beeper Mini doesn’t support SMS and RCS, so this one-day all-in-one app is currently dividing my texting experience in two.


Saved 85% of original text.

[-] Quexotic@beehaw.org 2 points 11 months ago
this post was submitted on 05 Dec 2023
79 points (100.0% liked)

Technology

37750 readers
290 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS