Telegram is no longer safe for piracy.

I bet they will start kicking out piracy channels in few weeks.

I am going to delete my account now as it will become useless soon anyway.

    • adr1an@programming.dev
      link
      fedilink
      English
      arrow-up
      3
      ·
      2 months ago

      But terrible handling of metadata. Which is the case for all chat apps AFAIK. Like, even with OMEMO, who talks with whom, and when, can be exposed. Which sometimes is enough to get legal issues (e.g. Ola Bini’s case)

      • u_tamtam@programming.dev
        link
        fedilink
        English
        arrow-up
        4
        ·
        2 months ago

        Speaking about XMPP, compared to centralized services, at least the “who talks to whom” and metadata concerns in general are partially mitigated by not having all the metadata converge towards a single host, being able to selfhost, and being able to host behind tor/i2p/…

      • haui@lemmy.giftedmc.com
        link
        fedilink
        English
        arrow-up
        6
        ·
        2 months ago

        Matrix is great and works great.

        Element is a semi abandoned client that happened to come from some of the makers of matrix.

        Use literally anything else. Fluffychat works for me. Element is okay for debugging sometimes so I keep it handy.

        But the commenters point stands. In matrix, you can send whatever you like, as illegal or morally corrupt as you wish because its nobody‘s fucking business AND e2ee.

        If someone on my server sends csam, I would never know unless someone reported it to me. Because thats how privacy works.

          • haui@lemmy.giftedmc.com
            link
            fedilink
            English
            arrow-up
            1
            ·
            2 months ago

            It is pretty good but pretty reduced in functionality imo. Thats why I generally suggest fluffychat. Its nowhere perfect either but it works better on a daily basis for me.

        • ReversalHatchery@beehaw.org
          link
          fedilink
          English
          arrow-up
          3
          ·
          2 months ago

          it wasn’t abandoned, they are developing an overhaul with a more efficient sync API that required them to rethink how it works internally

          • haui@lemmy.giftedmc.com
            link
            fedilink
            English
            arrow-up
            2
            ·
            2 months ago

            I know. I said semi abandoned because element x is their focus, which is the reason they are not adding features to element and are hesitant to put in fixes for things that would require massive changes.

            This is still not ideal because the flagship app isnt advancing in a good speed. Thats why I dont recommend it.

          • u_tamtam@programming.dev
            link
            fedilink
            English
            arrow-up
            1
            ·
            2 months ago

            How it works (to simplify) is them giving up on matrix clients ever becoming performant and well behaving on handheld devices (because of the absurd complexity of the protocol), and, instead of doing something about that, just decided to shift the client logic onto the server and castrating the clients (esp. for offline features). It’s also good short-term business because it makes hosting Matrix even more cumbersome and expensive, giving a compelling reason for the type of midscale/corporate deployments previously on the fence about their self-hosting costs (due to poor design and scalability) to just pay Element for that (while probably contemplating an alternative future).

        • Venia Silente@lemm.ee
          link
          fedilink
          English
          arrow-up
          2
          ·
          2 months ago

          I’ve never said Telegram is better. I’m just saying Matrix is also bad.

          XMPP is the future.

      • Hawk@lemmynsfw.com
        link
        fedilink
        English
        arrow-up
        1
        ·
        2 months ago

        I wasn’t aware of that. I’ve even seen vendors using it.

        I know it’s E2EE and open source but there is a lot of Metadata.

        What other limitations does it have?

        • u_tamtam@programming.dev
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          2 months ago

          Matrix has the tendency to require all participants’s servers to replicate all of the room state (who joined when, who said what when, whose avatar changed to what when, …) practically forever, and is sucking a ton of bandwidth and CPU for the privilege. It’s pretty bad, unfixable, and, if you ask me, over hyped.

    • DoucheBagMcSwag@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      2 months ago

      I tried a Piracy group in Matrix and there was less than 100 users…and the only active poster was a bot (or honeypot) advertising explicit CSAM related telegram groups for purchase… just looking at the words made a pit in my stomach

      That’s the double edged sword with no moderation abilities

      • ReversalHatchery@beehaw.org
        link
        fedilink
        English
        arrow-up
        3
        ·
        2 months ago

        there are moderation abilities, but instead of all-seeing global moderators it must be done by the little poor room owner, and the mods they have granted permission.

        if the existing owner/mods don’t do that, and disgusting content starts appearing in the room, that means they probably aren’t active anymore, and that it’s time to make a new room with the still active members before something even more damaging happens, like an uncontrollable high volume spammer, at which point you won’t be able to tell the others that you have made a new room.

        • LarmyOfLone@lemm.ee
          link
          fedilink
          English
          arrow-up
          2
          ·
          2 months ago

          There is Tox which is P2P and encrypted and basically does this, but it’s not that popular.

          Basically with P2P things get complicated still having fixed rooms that you can find in a list or send offline messages, presumably using other nodes as temporary relays.

          • onlinepersona@programming.dev
            link
            fedilink
            English
            arrow-up
            2
            arrow-down
            1
            ·
            2 months ago

            I imagine it comes with the problem most P2P chats come with: both sender and receiver have to be online at the same time, otherwise the message cannot be delivered.

            Although, if people were serious about anonymity, they’d be using such a service (or similar).

            Anti Commercial-AI license

            • LarmyOfLone@lemm.ee
              link
              fedilink
              English
              arrow-up
              2
              ·
              2 months ago

              Yeah. I mean theoretically you could use all the other nodes, similar to Tor or I2P to relay and temporarily store chat messages and room states. I mean that is basically those networks except maybe you route a package multiple ways and mark them for late delivery. And you measure the speed and latency of nodes so better connected nodes get more workload and act as temporary floating servers. All via DHT.

              Then theoretically there should be no performance difference between server based and P2P chats. But it’s even more complicated. I don’t even need a chat like that, really not at all. But I think it should exist already.

              • onlinepersona@programming.dev
                link
                fedilink
                English
                arrow-up
                2
                ·
                edit-2
                2 months ago

                It’s maybe difficult to maintain privacy. The destination needs to be known and has to somehow notify other nodes that it’s waiting for messages. I don’t know if that can lead to traffic profiling to along the path (if enough nodes are owned) to deanonimise.

                The sender can probably sealed like signal does though.

                Anti Commercial-AI license