this post was submitted on 19 Aug 2023
129 points (96.4% liked)

Memes

45725 readers
890 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
 

use GPG and PGP

top 10 comments
sorted by: hot top controversial new old
[–] anti_antidote@lemmy.zip 33 points 1 year ago (1 children)

My brain always reads PGP and GPG as "Pretty Good Protection and Gretty Pood Grotection"

[–] NightAuthor@beehaw.org 8 points 1 year ago (2 children)

What’s it actually supposed to be?

[–] drbluefall@toast.ooo 15 points 1 year ago

PGP - Pretty Good Privacy, although when most people talk about "PGP", they really mean the standard, OpenPGP.

GPG - GNU Privacy Guard, an implementation of OpenPGP by the GNU Project.

[–] rgarciag@lemmy.ml 4 points 1 year ago

PGP Pretty Good Privacy and GPG GNU Privacy Guard iirc

[–] XpeeN@sopuli.xyz 29 points 1 year ago* (last edited 1 year ago)

Says they don't trust 3rd party e2ee, refuse to elaborate further, leaves.

[–] Deestan@beehaw.org 18 points 1 year ago (1 children)

It shouldn't be allowed to call it E2E otherwise. If a third party is involved in the communication, it's just a middleman attack that pinky promise to not read your messages.

[–] ruination@discuss.tchncs.de 7 points 1 year ago (2 children)

That depends for me. Is it open source? If so, check the source code, you can see for yourself whether that third party is doing anything shady? Anything closed source like WhatsApp, however, and I 100% agree with you.

[–] alcasa@lemmy.sdf.org 7 points 1 year ago (1 children)

Open source is not sufficient, you also need to be sure that the version you install is the version you inspected. In Appstore or Playstore for mobile this is not straightforward. Hell, even linux packages sometimes contain tons of maintainer patches that are not upstreamed

[–] ruination@discuss.tchncs.de 2 points 1 year ago

True, that's part of the reason I switched to Gentoo

[–] utopify_org@lemmy.ml 6 points 1 year ago

The first time I saw the message "Your messages are now encrypted" on WhatsApp my reaction was "Yes, but it's worthless if you keep a copy of the key".

If the end user isn't able to create the key by themselves, it's most likely useless.

Imagine you rent a flat and the owner is Facebook, who keeps a copy of the key and let everyone in who pays some money.