• 𝕸𝖔𝖘𝖘@infosec.pub
    link
    fedilink
    English
    arrow-up
    20
    ·
    1 year ago

    I don’t understand. What makes Molly more trustworthy than Signal, if they both use the same central sever? The website doesn’t really provide much data.

    • Possibly linux@lemmy.zipOP
      link
      fedilink
      English
      arrow-up
      11
      arrow-down
      1
      ·
      1 year ago

      It has a completely Foss option and reenables pin codes

      It also has a F-droid repo which makes it much easier for me to use

      • 𝕸𝖔𝖘𝖘@infosec.pub
        link
        fedilink
        English
        arrow-up
        5
        ·
        1 year ago

        How does that work, though? It’s the same servers and protocols, right? So it would verify with an sms. Or is Molly not compatible with Signal (Molly users talking with Signal users), and I’m just completely misunderstanding the statement of being a hardened Signal?

        • couragethebravedog@lemmy.ml
          link
          fedilink
          arrow-up
          5
          ·
          1 year ago

          I had mistaken molly for a different signal fork. Molly just uses an encrypted local db that doesn’t rely solely on the OS encryption method.

          • 𝕸𝖔𝖘𝖘@infosec.pub
            link
            fedilink
            English
            arrow-up
            7
            ·
            1 year ago

            Ok, so besides being mostly FOSS (Molly) or all FOSS (Molly-FOSS), the only difference, is that Molly encrypts your db on top of the laughably easy to decrypt Signal db encryption and OS encryption? Wouldn’t that make push notifications impossible, though?