Episode 207 - Signal responded and it's ugly
Added 2024-07-12 14:13:49 +0000 UTCSignal is in a hot water for insecurely storing messages of desktop users. Their responses makes things even worse.
https://stackdiary.com/signal-under-fire-for-storing-encryption-keys-in-plaintext/
Comments
Oh, I forgot, of course everything with virtual machine or containers.
Lougavulin
2024-07-12 18:42:33 +0000 UTCHello, It is not perfect at all but on desktop, create an dedicated user to Signal. Other users can not read its files, expect admin user. On Linux, use your main user, and launch Signal from dedicated user with sudo. Or still on Linux, use QubeOS, clearly not for everyone. Not sure what is possible on Windows. On iOS that should be possible too. As said, this is not perfect at all, but that adds a layer of protection. 2 cents to help a bit. Have a nice one.
Lougavulin
2024-07-12 18:40:38 +0000 UTC
