“Signal is being blocked in Venezuela and Russia. The app is a popular choice for encrypted messaging and people trying to avoid government censorship, and the blocks appear to be part of a crackdown on internal dissent in both countries…”
It’s like a medal of honor for a privacy preserving app 😄
Indeed. If whatsapp isn’t on the list, then I have all the confirmation I need.
The Russian government has also allegedly begun preparations to block the WhatsApp messaging app.
https://kyivindependent.com/messenger-signal-blocked-in-russia-media-says/
Maduro uninstalled whatsapp live on television a few days ago
could matrix.org be as easily blocked, since it’s decentralized I’m wondering?
At least it means that Signal is working as intended if they are blocking it, I guess that they don’t have back doors.
Being decentralized prevents DNS or IP blocks but not blocks through DPI.
Signal has an option to masquerade it’s traffic as regular HTTPS, I don’t know if Matrix can do such a thing.
I can answer this! All matrix calls are over https APIs. Ports and addresses are stored in a text file on the base domain or in DNS txt entry.
Thanks, nice to have someone knowledgeable.
Would you say matrix is censorship resistant? I’ve very limited knowledge of it but given what you said I imagine that if I was trying to block matrix I would just need to query the url of the text file and check the DNS text entry, if either exist just add the domain to the blocklist.
Matrix is in fact decentralized but in reality it is not so much, I don’t know the number exactly but the majority of users use the matrix.org server
could matrix.org be as easily blocked, since it’s decentralized I’m wondering?>
Or SimpleX?
To be devils advocate in a sense, this may mean that it doesn’t have any backdoors that Russia or Venezuela can use, but the NSA or something still could have one of their own.
Matrix doesn’t have encryption as the default
Also Signal doesn’t have any backdoors. I can say that with high certainty as it has been audited more than any other messager.
It doesn’t matter if it is a business entity operating under a government then you can never really know because gag orders. Centralized servers can be blocked. Telegram and Signal apps could have a back door. This is why open stack is important. And not just the code. Also encryption is default for p2p one on one conversations. It’s not in channels by default because it can complicate public use.
blocks appear to be part of a crackdown on internal dissent in both countries.
Or… you know… at least for Venezuela, the USA constantly fucking around with their elections and politics and local assets using Signal or something. Maybe, I dunno?
Yeah. Telegram, should be next, there’s a huge risk with it too. And email! Social networks too, just in case. And postal mail, we can’t forget that. We should crack down any form of uncensored communication.
All for the benefit of the people, of course. \s
I mean signal was funded in part by the US intelligence community up until last year.
Unrelated to what the previous person is saying (banned because it was used by dissidents), but still, we have the source code. If you’re arguing they are somehow accessing the data, what’s encrypted and what isn’t is known.
In UK don’t ban them, but jail you if they don’t like your posts, more democratic.
I’m not aware of the kingdom of whataboutistan. Is it related to this post somehow?
While I don’t live in the UK I do believe they have protections on free speech.
If you are concerned you can always hide your identity.
Self defense is self defense, would we expect some different behavior from a country being attacked from outside interests with publicly accessible end to end encryption services?
Publicly accessible: reviewed and audited by hundreds of teams that confirmed there’s no backdoor. Venezuelan, Russian and Chinese governments didn’t find the holes, even having access to the code. If they did, they would be exploiting it to… reeducate.
Yeah, I would expect to trust that. Still, you said yourself, the problem is that is used by dissidents. And we can’t have that, right?
We can’t have individual thinkers running around can we. We need a shared vision that is dictated from the top down.
I’m pretty sure Venezuela was unstable before the US started getting involved.
Anyway Signal is secure so that shouldn’t be the problem. It has more to do with the government working to crush civil liberties and independent thought.
Same story in all authoritarian countries
First no Venezuela was stable before US medeling.
Second, “is secure” is quite a leap, it is funded to a sickening extent by the United States government, has gone about a year before opening up its source code, and is in the US where there is a law that says if the US government says show us everything and keep quiet, they have to do that. There are real concerns
Or you can uncriticaly say “Athoritarian Country” with no defineing term there, or real understanding of Athoritarianism and disreguard all concerns from these countries.
Signal honored!
Would peer to peer apps be resistant to this sort of thing?
Yes, but you’ll have to install them from sources other than what governments deem official. Like F-droid.
Now, if they block p2p traffic that’s a different story
It depends. Somehow it has to discover the peers. Other than that, they could block traffic between residential IP addresses and there goes large part of the P2P network
Peer to peer apps do not work without a centralized relay to get you around the CG-Nat that cellphones live behind. So they’re not really peer to peer. You would be playing whack-a-mole with the relays, having to spin them up as they get blocked. Many ISPs implement CG-NAT as well. Its really dependent on how the network providers structure things. Someone from the country with local knowledge would have to test it.
IPv6 doesn’t need CGNAT. So as long as it’s capable of doing IPv6, it can directly communicate peer to peer using globally unique addresses. How do I know this? Simple because my ISP on IPv4 is completely CGNAT and I cannot get anything past it. So I am completely forced to use IPv6 for any service I want to run and access from outside my network.
Sure, but ipv6 is not widely adopted. I’m behind a CG-NAT but can’t get an ipv6 so I have to operate a vps bridge to host my services. Some cell networks have ipv6 support but a few implement a NAT for it as well. AT&T only allows port 80 and 443.
Its not consistent enough to be useful without a centralized relay.
IPv6 doesn’t need CGnet. So as long as it’s capable of doing IPv6, it can directly communicate peer to peer using globally unique addresses. How do I know this? Simple because my ISP on IPv4 is completely CG NAT and I cannot get anything past it. So I am completely forced to use IPv6 for any service I want to run and access from outside my network.
