re: signal app
While I'm at it, can we note that Outcry Driven Development is a huge resource drain on a user community? We shouldn't have to be constantly on the alert for a policy, code or legal, change that will become permanent if we don't scream loudly enough, fast enough.
That's tiring, emotionally painful, and a form of labor I'd rather not consent to doing. There are other ways to figure out whether users will find a feature troublesome -- like presenting its effects clearly, thinking through user scenarios, and asking enough of them in advance.
So Moxie backtracked and says they'll push a fix to make pins optional. Meanwhile if you don't add a pin (which the app still doesn't say will /upload your signal contact list into the signal servers/) you can't get back in to coordinate a platform switch with your secure contacts. Unless you were already using the desktop app which isn't pin locked, or somehow manage to downgrade the phone app.
Suddenly being held data-hostage -- turn over this data or you can't talk to the people, not even to arrange a different means of contact -- without any forewarning is unacceptable and a perfect example of why centralized infrastructure and single-client rather than interoperable systems are a major failure.
Most common and incredibly avoidable security fuck-ups:
- no phones in the room when you plan the thing, but phones in the room when you celebrate its success
- phone is encrypted, but 1312 is the password
- anonymous on FB and twitter but 5 dating apps have your full name, face, location and radical politics
- ... (feel free to add more)
i break computers and my bones
x41.social is one server in the network