mstdn.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A general-purpose Mastodon server with a 500 character limit. All languages are welcome.

Administered by:

Server stats:

13K
active users

#CashByMail

1 post1 participant1 post today
Replied in thread

@derekmorr

Let it go, already. No one uses MobileCoin. You can’t even find an exchange to buy it.

Then why does @signalapp still have that shit in it? @Mer__edith could've pulled that #Shitcoin yet refuses to do do!

The Cloud Act is a non-issue. Signal doesn’t have data on users, so they can’t be forced to disclose it.

That's literally wrong!

  • #Signal not only collects #PII in the form of a #PhoneNumher but explicitly is able and willing to use that to dsicriminate against users and restrict app functionality based off their presumed juristiction. There is no "legitimate interest" for.doing so nor any legal mandate to do so (unless we excuse the ehole #MobileCoin-#Scam!)

It’s been 30 years, and no one uses xmpp. Let it go.

Wrong again. Otherwise there wouldn't be thriving ecosystems and Apps to this day. It's just that corporate shills refuse to acknowledge that Signal - like all centralized, proprietary, #SingleVendor and/or #SingleProvider kessengers before and after - will inevitably die as their business model is not sustainable. Sake with #ICQ really. The only exceptions are those that abolish #privacy for #profit, integrate actually working payments or sellout to a #cyberfacist #government (all those apply to #WeChat!)

It’s shocking that people who claim to care about security and privacy push niche apps with terrible UX and no PFS like Delta or XMPP instead of the only private messenger with any real market share, Signal.

You know what's shocking to me: People who are unable or rather unwilling.to acknowledge that Signal is garbage and it's requirement for a #PhoneNumber kills any #privacy benefits it may have on paper by virtue of being at best pseudonymous (assuming the userd don't live in a juristiction that demands "#KYC" for even prepaid #SIM cards (ime. #Germany) or god forbid even #IMEI|s (i.e. #Turkey has a literal allowlist that'll kick any device off it's MNOs after 90 days within 365 days.

  • The #UScentric approach to #privacy and #threats makes Signal absolutely useless in many cases, and I do speak here from experience.

I'd rather help people onboard #XMPP+#OMEMO like @monocles and/or @gajim or #PGP/MIME like @delta & @thunderbird (incl. setting them up with #Orbot / #TorBrowserBundle / @tails_live so their traffic gets through @torproject and doesn't provide any useable IP addresses.

  • I've literally been there and done that!

As for #Sustainability, providers like monocles.eu finance themselves by subscriptions (starting at €2 p.m.) which people can pay fully anonymous using #CashByMail and #Monero on top of common payment methods (i.e. SEPA wire transfer)...

  • So even if you think "#monocles is a #honeypot" that is mitigateable ciz unlike with Signal you can choose your own client, choose a different provider & exervise self-custody of all tue keys!
monocles.eumonocles searchmonocles search, powered by searx
Replied in thread

@Linux for @monocles it's about their mail & messaging solutions which are subscription-financed and in return just work on any devices as well as their nextcloud.

The ither two I can understand fully...

docs.monocles.eumonocles mail - monocles Documentation
Replied in thread

@debby @monocles @Stuxhost well, @delta / #deltaChat is not using #XMPP+#OMEMO (unlike #monoclesChat & #gajim) but #PGP/MIME on regular #eMail, which makes it way easier to setup in organizations as not "yet another server needed" and also easier to comply with mandatory #archival laws in #business use-cases.

docs.monocles.euOverview - monocles Documentation
Replied in thread

@linuxer @stormii @karl_ist_super ja, sowas wie @monocles / #monoclesChat, @gajim / #gajim & @delta / #deltaChat...

  • Nur weil etwas alle/die meisten machen wird's nicht weniger falsch!

Natürlich kannste #Signal nutzen, nur dann musste halt auch drauf klarkommen dass so zentralisierter shice durch eine christofaschistische Regierung (#USA) irgendwann eingestampft wird.

  • Davon dass es eine bescheuerte Idee ist aus gründen von #Datenschutz, einen Anbieter zu nutzen der ne #Telefonnummer verlangt mal abgesehen.

#Monocles verlangt hingegen garkeine Daten und erlaubt anonymes Bezahlen per #Monero & #CashByMail !

Replied in thread

@froge @fj I'm not replacing @signalapp with "random tools" but good options.

Like @delta & @thunderbird as well as @monocles / #monoclesChat & @gajim which work flawlessly over @torproject / #Tor using @tails / @tails_live / #Tails and @guardianproject / #Orbot respectably.

Considering the costs of even acquiring and upkeeping an #anonymous #SIM, I'd rather pay €2 p.m. for #XMPP+#OMEMO and #PGP/MIME-supported #eMail with the option of self-custody than $2,50+ p.m. just to keep a phone number.

Or is anyone here expecting @Mer__edith to risk jail for life amd not comply with #CloudAct?

It stenches like #ANØM, because NOTHING IS FOR FREE and running a #VCmoneyBurningParty is expensive...

Infosec.SpaceKevin Karhan :verified: (@kkarhan@infosec.space)@osman@hachyderm.io If your #OpSec, #InfoSec, #ComSec and/or #ITsec relies on @signalapp@mastodon.world and/or @Mer__edith@mastodon.world [risking jail *or worse*](https://web.archive.org/web/20210908180219/https://twitter.com/thegrugq/status/1085614812581715968), you fucked up! - If #Signal was secure, it would've been shutdown like #EncroChat & #SkyECC. Seriously, to me #Signal stenches #Honeypot like #ANØM & #CryptoAG. - All Signal fans do is #FUD #PGP/MIME and#XMPP+#OMEMO which are truly #decentralized and allow real #SelfHosting as well as #SelfCustody for complete control of all the data and keys... That's why I get people setup with it!
Replied in thread

@ckrypto if@signalapp@mastodon.world wasn't complying with #CloudAct, @Mer__edith would be in jail.

Not to mention even if Signal keeps their "#OpenSource" code updated - which is doubtful, NOONE can actually #verify that it's the code you actually use - regardless if #backend / #Server or #client / #App!

  • #Signal is as secure as #ANØM, otherwise it would've been shutdown ages ago.

Also if Signal was designed for #security, it would've been #decentralized as #XMPP+#OMEMO and not demand #PII like #PhoneNumbers which oftentimes cannot be obtained anonymously in many juristictions at all!

By comparison, @delta doesn't require any PII, only an #eMail account, and @monocles isn't a #VCmoneyBurningParty but sustainable due to #subscription and they don't even require any personal details for #payment: #CashByMail and #Monero are accepted.

Again: It's Signal alone who have to evidence they are trustworthy, and all I get are "#TrustMeBro!" replies, which means they are not to be trusted.

  • Not to mention, it's just not sustainable to run a #service without #revenue, even if it's run entirely by unpaid volunteers and gets all it's #hosting and #costs donated, someone has to pay for expenses due to #abuse of a service (which is an inevitability come mass adoption)...

Whereas with #XMPP I can completely setup my own server and client, even build my own if I don't trust anyone else and pay someone to audit the code.

Whereas with XMPP & PGP/MIME #eMail I can layer @torproject / #Tor over it, make it an #OnionService and keep that thing under my bed with a literal killswitch...

Replied in thread

@truls46 Ein gutes Gegenbeispiel zu @signalapp ist @monocles / #monoclesChat:

Ich denke mal das sollte hinreichend meine Argumebte darlegen.

  • Kernpunkt ist und bleibt: Signal ist bestenfalls gemeingefährlich-inkompetent oder ein #Honeypot!
docs.monocles.eumonocles chat - monocles Documentation
Replied in thread

@Beggarmidas @Em0nM4stodon

For comparison monocles / @monocles doesn't collect any #PII whatsoever and one can get their #Apps not only for free (or choose one's own #clients because unlike #Signal they only use open & standardized protocols!) but also pay using #CashByMail and #Monero for maximum #privacy.

So it's not a #VCmoneyBurningParty but actually #sustainable!

monocles.eumonocles - an ecofriendly and secure way of using the internetmonocles, search, engine, meta-search, cloud, ocean, chat, mail, e-mail, environment
Replied in thread

@Chiquidrakula @COSAntiFascists @iris @Em0nM4stodon @cryptoparty@mastodon.earth @cryptoparty@chaos.social @thunderbird

#FACT: It's not real #E2EE unless you have100% #SelfCustody of all the keys!

Thus the correct way as #monoclesMail says is to use your own client and keep your keys to yourself.

Now OFC, monocles charge €2 p.m. for their starter account but they also accept #SEPA #WireTransfer, #Monero, #CashByMail, #Stripe and #PayPal for #payments, so it's pretty flexible and affordable given they don't put #ads in your #inbox or invade user privacy!

docs.monocles.eumonocles mail - monocles Documentation

@lucasmz @Avitus @david_chisnall the benefit of #XMPP+#OMEMO is that there are several providers, including free options...

All #PII incl. #PhoneNumbers can and will be abused by existing governments and if users don't pay, then they are the product and their data is the one to be sold.

After all, you have the same cost problem with phone numbers. Even if one doesn't pay per line/number and never pay for calls and texts, they still have to top it up to extent validity.

  • And again: It's way easier for a government to demand an ID for a #SIM that works in networks around their country (i.e. #Turkey demands registration on a per-#IMEI - basis *with #ID) than to tunnel XMPP+OMEMO through @torproject over #EDGEland-speed #2G networks.

Plus you relying an unfixably insecure #Telephony makes a system inherently unsafer than it needs to be...

  • This is how people get caught!

Also #Signal is able and willing to use said PII to restrict and ban users and if I were some dissident in Cuba or North Korea or even just Eritrea or Yemen I'd not rely on non-enforcement of #OFAC / #USML / #ITAR since Signal can obviously distinguish & identify accounts by virgue if their #PhoneNumber!

  • Always think "How can this be weaponized against someone?" when it comes to #privacy!
List of useful things. Contribute to greyhat-academy/lists.d development by creating an account on GitHub.
GitHublists.d/xmpp.servers.list.tsv at main · greyhat-academy/lists.dList of useful things. Contribute to greyhat-academy/lists.d development by creating an account on GitHub.
Replied in thread

@Sustainable2050 not much, given that @signalapp is also incorporated in the #USA ,thus falls under #CloudAct and that is inherently incompatible with #GDPR!

Providers like @monocles may charge like €2 p.m. for that, but in return they don't demand any #PII like #PhoneNumbers, allow for #anonymous accounts and payments via #CashByMail and #Monero and that's a small price to pay for #SelfCustody of all the keys and having noone look into messages...

monocles.eu/more/#payment-sect

monocles.eumonocles - an ecofriendly and secure way of using the internetmonocles, search, engine, meta-search, cloud, ocean, chat, mail, e-mail, environment
Replied in thread

@zdl @evacide that any the fact that @signalapp is incorportated in the #USA, making them susceptible to #GDPR & #BDSG-incompatible #cyberfacist bs like #CloudAct.

Remember: #KYC IS THE ILLICIT ACTIVITY when it comes to #Communication!

Compare that to @monocles / #monoclesChat which don't demand any PII or KYC and allow people to pay for their services with #Monero and #CashByMail besides #SEPA #WireTransfer, #Stripe & #PayPal whilst supporting both decentralization (#XMPP is not a #SingleVendor / #SingleProvider solution!), implementing real #SelfCustody (#OMEMO, #OTR & #PGP is supported out of the box) for all the keys, and proper #Anonymitiy (using @torproject / #Tor & @guardianproject #Orbot for #privacy), so in case they ever get a duely sumitted warrant by a court they'd have to comply with, they'll most likely have no data whatsoever on clients that could allow identification.

  • And that is a good thing, because whilst very unlikely, one cannot exclude the non-zero chance of i.e. #MLAT|s being filed with knowingly false information by 3rd countries.

Also having no PII is a matter of reducing #liability in the sense of #DataProtection: All data requested and by #monocles is the bare minimum mandated for #accounting (i.e. only linking a payment like a #TxID / Transaction-ID to an account and then adding up validity/activation period).

@doerk @xyhhx

I disagree since @signalapp to this day collects #PII in the form of #PhoneNumbers which are not "technically necessary"!

Whereas with like @monocles / #monoclesChat, I can anonymously register and use an account over @torproject / #Tor and even pay for it with #Monero or #CashByMail.

I think it's worth the €24 p.a. for #eMail and #Chat...