On 1/1
/2o25, an active duty Green Beret blew up a Tesla Cybertruck in
front of Trump Tower in Las Vegas - below is an email that was leaked
today, I've linked to a podcast if interested... the text of the email is pasted below.https://youtu.be/xglaXVtQcis?si=nLck8z6NI1gzvqT V----------Forwarded message----------From:
dabergmlb <doberglmb@protonmail.com>Date: On Tue, Dec 31, 202
4 at 10:42 AMSubject: Fw: Initial ContactTo: [REDACT
ED]Cc:In case I do not make it to my decision
point or on to the Mexico border Iam sending this now. Pleas
e do not release this until 1JAN and keep my identity priva
te until then.First off I am not under duress or hos
tile influence or control. My firstcar was a 2006 Black Ford
Mustang V6 for verification.What we have been seein
g with "drones" is the operational use of gravitic propulsi
on systems powered aircraft by most recently China in the east
coast, but throughout history, the US. Only we and China have this capability. Our OPCEN location for this activity in the box is below.
China has been launching them from the Atlantic from submarines for
years,but this activity recently has picked up. As of now, i
t is just a show offorce and they are using it similar to ho
w they used the balloon for sigint and jsr, which are also
part of the integrated comms system. Thereare dozens of thos
e balloons in the air at any given time.The so what
is because of the speed and stealth of these unmanned AC, they
are the most dangerous threat to national security that has ever existed.
They basically have an unlimited payload capacity and can park it over the
WH if they wanted. It's checkmate.USG needs to give the hist
ory of this, how we are employing it and weaponizing it, ho
w China is employing them and what the way forward is. Chin
a is poised to attack anywhere in the east coast.I've
been followed for over a week now from likely homeland of FBI, and
they are looking to move on me and are unlikely going to let me cross into Mexico, but won't because they know I am armed and I have a massive VBIED.
I've been trying to maintain a very visible profile and have kept my phone
and they are definitely digitally tracking me.I have knowled
ge of this program and also war crimes that were covered upd
uring airstrikes in Nimruz province Afghanistan in 2019 by the admin,
DoD, DEA and CIA. I conducted targeting for these strikes
of over 125 buildings (65 were struck because of CIVCAS) th
at killed hundreds of civilians in a single day. USFORA con
tinued strikes after after spotting civilians on initial IS
R, it was supposed to take 6 minutes and scramble all aircr
aft in the CENTCOM. The UN basically called these war crimes, but
the administration made them disappear. I was part of that cover-up with USFORA and Agent [REDACTED] of the DEA. So I don't know if my abduction attempt is related to either. I worked with GEN Millers IO staff on this
as well as the response to Bala Murghab. AOB-S Commander at the time [REDACTED] can validate this.You need to elevate this to the
media so we avoid a world war because thisis a mutually ass
ured destruction situation.For vetting my LinkedIn i
s Matt Berg or Matthew Livelsberger, an active duty 18Z out
of 1-10 my profile is public. I have an active TSSCI with UAP
USAP access.Sent from Proton Mail for Android.
On Sun, Dec 29, 2024 at 14:22, dobergmlb <dobergmlb@protonma
il.com> wrote:Sending with a vpn active on wifi only.
Do not message me. I will send out updates via both signal and email but tru
st me you're going to want to be involved
pAULIE42o.........


|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

Do not message me. I will send out updates via both signal and email but t

me you're going to want to be involved

Is signal something secure?? I'm not sure. I used it for less than an hour and found myself falling deep into an endless -unspeakable- type of content hole....

Islas Malvinas, siempre Argentinas!

... Islas Malvinas, siempre Argentinas.

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/64)
* Origin: The Vault BBS (21:4/167)

Do not message me. I will send out updates via both signal and email me you're going to want to be involved

Is signal something secure?? I'm not sure. I used it for less than an
hour and found myself falling deep into an endless -unspeakable- type of content hole....

Yes, Signal is an encryption secured messaging platform. You can send text, photos and even videos that are protected by your 'signal secret' - a public and private encryption key...

You can have messages auto-delete, or not. You might have been using it more like Telegram is meant to be used; to find groups or rooms that discuss topics you're interested in. Signal is meant to be a private text messaging/chat application.

It replaces your non-secure text messaging, not your Discord... its a bit tough to get family and friends on board, but if they are its a fully secure way to send messages w/o the govt, fed or China listening.



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

It replaces your non-secure text messaging, not your Discord... its a

I tried it because, specifically Telegram I see in the recent times past by it started to "feel" less secure. I wouldn't mean to bring my family, relatives or friends to a secure instant messaging network, because we don't need a secure connection for the family, the government can go into our messages all they want, there's nothing amusing about them.
But I happen to have a political role in a workers union and I'm in charge of the communictation of the group that maganes the union currently, so I'm always on the lookout for any "bleeding edge" options, especially about security and encryption, and freedom of speech and association (BluSky...), and such.
Thank you for the valuable info you shared with me, Paulie.

Malvinas.

Islas Malvinas, siempre Argentinas!

... Islas Malvinas, siempre Argentinas.

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/64)
* Origin: The Vault BBS (21:4/167)

But I happen to have a political role in a workers union and I'm in
charge of the communictation of the group that maganes the union currently, so I'm always on the lookout for any "bleeding edge" options, especially about security and encryption, and freedom of speech and association (BluSky...), and such. Thank you for the valuable info you shared with me, Paulie.

Understood. Signal is really great for conversations that do need that security... theres another one, Simple-X that looks pretty cool. I *think* its more like a Matrix/Element w/ group chats/rooms and whatnot. Like you, I don't have a threat model that requires all these things, but with China looking at our cross-branded text messaging, Signal can play an important role.

Android to Android and iOS to iOS comms are still pretty secure, but cross platform text messaging is wide open at the moment.



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

paulie420 wrote to Malvinas <=-

Understood. Signal is really great for conversations that do need that security... theres another one, Simple-X that looks pretty cool. I
*think* its more like a Matrix/Element w/ group chats/rooms and
whatnot. Like you, I don't have a threat model that requires all these things, but with China looking at our cross-branded text messaging,
Signal can play an important role.

Android to Android and iOS to iOS comms are still pretty secure, but
cross platform text messaging is wide open at the moment.

I wondered why Signal dropped its SMS support - being able to easily
send a Signal link to an SMS recipient seemed like a great way to spread support for Signal - and it meant one less app on my phone.




--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

I wondered why Signal dropped its SMS support - being able to easily
send a Signal link to an SMS recipient seemed like a great way to spread support for Signal - and it meant one less app on my phone.

I don't use it much, but didn't notice that. I can still send text, images and video on Signal, right???



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

paulie420 wrote to poindexter FORTRAN <=-

I don't use it much, but didn't notice that. I can still send text,
images and video on Signal, right???

Yes - just not to SMS/MMS recipients. I got a couple of people to use
Signal by sending them a link through the app in an SMS message
conversation.



--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

I don't use it much, but didn't notice that. I can still send text, images and video on Signal, right???

Yes - just not to SMS/MMS recipients. I got a couple of people to use Signal by sending them a link through the app in an SMS message conversation.

Ahhhh, got it. I didn't realize that Signal even allowed SMS/MMS in the past - I thought users HAD to have Signal to recieve Signal msgs.



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

Hello paulie420!

** On Sunday 05.01.25 - 09:37, paulie420 wrote to Malvinas:

Yes, Signal is an encryption secured messaging platform.
You can send text, photos and even videos that are
protected by your 'signal secret' -a public and private
encryption key...

[...]

It replaces your non-secure text messaging, not your
Discord... its a bit tough to get family and friends on
board, but if they are its a fully secure way to send
messages w/o the govt, fed or China listening.

And, although there is a desktop for Signal, it still needs to
be initially installed on one's phone and a phone number.
That's an open vector for ID tracking.

I'd recommend Session for privacy. One con, it doesn't offer
re-editing sent messages.

I'm also utilizing Simplex (allows re-edit), and still on
occasion, Briar.

--- OpenXP 5.0.58
* Origin: (} Pointy McPointFace (21:4/106.21)

Ogg wrote to paulie420 <=-

I'd recommend Session for privacy. One con, it doesn't offer
re-editing sent messages.

I'm also utilizing Simplex (allows re-edit), and still on
occasion, Briar.

The issue remains of needing someone on the other end. Signal does have limitations, although I think you could register with a burner number
and then connect to others via username?

But, it's getting close to critical mass for users - if a user isn't on
Signal, they've heard of it.

That being said, for an internal application, I like using a more secure platform like Session or Briar, if I can define the platform.



--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

I'd recommend Session for privacy. One con, it doesn't offer
re-editing sent messages.

I'm also utilizing Simplex (allows re-edit), and still on
occasion, Briar.

Nice - I haven't used Session, but I'll have to take a look at it. Kinda amazing that there ISN'T a fully open-sourced, fully private and fully encrypted application yet.

Well, that I know of anyway...



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

Re: w/o the govt, fed or China listening
By: Ogg to paulie420 on Sun Jan 12 2025 10:37 am

And, although there is a desktop for Signal, it still needs to
be initially installed on one's phone and a phone number.
That's an open vector for ID tracking.

Signal actually tries to mitigate against that because they use phone numbers in hashed form.

The desktop application used to suck. I don't know if it has improved as of late. I doubt it.

Signal is actually great because tin foil hat paranoid nerds like me can use it to chat with regular smartphone wielding sheep without compromising too much. It is far from awesome but it is the only privacy and security centric messaging application that is close to mainstream, is about as easy to use as mainstream messengers, and does not require the smartphone wielding sheep to manage their own credentials.


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.23-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Re: Re: w/o the govt, fed or China listening
By: paulie420 to Ogg on Sun Jan 12 2025 02:08 pm

Nice - I haven't used Session, but I'll have to take a look at it. Kinda amazing that there ISN'T a fully open-sourced, fully private and fully encrypted application yet.

Set an XMPP server (like prosody) and convince your friends to use an XMPP client (Like Conversation). There are some encription schemes. OTR is a popular one.

That requires users to manage their credentials (which is a bad drawback because people is no longer cabale of using username/password combinations) but is way more interoperable than the crap most people is using.

They used to have that in the i2p darknet. It worked quite well.

There is free, encrypted private stuff out there, people just doesn't want to use it because they don't care.


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.23-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Arelor wrote to paulie420 <=-

Set an XMPP server (like prosody) and convince your friends to use an
XMPP client (Like Conversation). There are some encription schemes. OTR
is a popular one.

I loved OTR, played with it and Trillian for some time. If memory
serves, OTR was a per-client thing and not a per-protocol thing - I
thought you could run OTR on any protocol that Trillian used?

My webhost used to offer XMPP servers on your domain, but they've gone
from hiding the admin page and not allowing new users to the admin page
getting a 404. Time to start my own...

That requires users to manage their credentials (which is a bad
drawback because people is no longer cabale of using username/password combinations) but is way more interoperable than the crap most people
is using.

Can't you just use Facebook Auth? :)



--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

Re: Re: w/o the govt, fed or China listening
By: poindexter FORTRAN to Arelor on Wed Jan 15 2025 06:46 am

I loved OTR, played with it and Trillian for some time. If memory
serves, OTR was a per-client thing and not a per-protocol thing - I
thought you could run OTR on any protocol that Trillian used?

OTR is a client-side protocol, but in practice only XMPP people uses it. Well, XMPP people and a smaller number of IRC people.

That requires users to manage their credentials (which is a bad drawback because people is no longer cabale of using username/password combinations) but is way more interoperable than the crap most people is using.

Can't you just use Facebook Auth? :)

I can use Facebook auth, but it has two issues. Issue one is that users still need to manage their credentials. Issue two is we were talking about privacy conscious services.


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.23-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Nice - I haven't used Session, but I'll have to take a look at it. Kind amazing that there ISN'T a fully open-sourced, fully private and fully encrypted application yet.

I quickly took a look at session after reading this thread. I have been interested in looking for a good decentralized option for instant messaging.

One of the best ideas I have seen in private, decentralized instant messaging applications is Delta Chat. Unfortunately I don't use it, well because no one else does. Its a very simple concept. Delta Chat uses your existing IMAP based email server, even something like gmail, to store and send your IM. The chats are stored in an encrypted folder in your email server in which only the Delta Chat app can read. It seems to me would be a great way to decentralize instant messaging without re-inventing the wheel, as email servers are a dime a dozen.
Has anyone here ever taken a look at Delta Chat, any thoughts?

Lloyd (neoshock) sysop @ Vintage Pi BBS
vintagepi.asuscomm.com

--- Mystic BBS v1.12 A48 (Linux/64)
* Origin: Vintage Pi BBS vintagepi.asuscomm.com (21:1/150)

Hello neoshock!

** On Wednesday 15.01.25 - 17:49, neoshock wrote to Arelor:

One of the best ideas I have seen in private, decentralized instant messaging applications is Delta Chat. Unfortunately I don't use it, well because no one else does. Its a very simple concept. Delta Chat uses your

[..]

Has anyone here ever taken a look at Delta Chat, any
thoughts?

Yep.. It was a discovery of mine about 2 yrs ago. I think it's
very cool how it can use your own email server for messaging!

But I eventually settled with using its own free servers to
separate its traffic from my usual email content and
notifications.

I started using it from the Desktop app that they provided for
Win7 (since then, they have depricated support for Win7, but it
still works fine) ..and I have installed the DeltaChat app on
one of my phones. I currently have one contact with whom I am
testing its performance and sharing experiences.

Netmail me your invite link and I'll add you to my system.


--- OpenXP 5.0.58
* Origin: (} Pointy McPointFace (21:4/106.21)

Set an XMPP server (like prosody) and convince your friends to use an
XMPP client (Like Conversation). There are some encription schemes. OTR
is a popular one.

That requires users to manage their credentials (which is a bad drawback because people is no longer cabale of using username/password combinations) but is way more interoperable than the crap most people is using.

They used to have that in the i2p darknet. It worked quite well.

I used to use XMPP earlier. :P

From what I've checked out from the suggestions here, Sessions is perfect for me. While it has a username [#WhiteRabbit], theres no other logging; don't need a cell phone and I created on an anonymous network...

SimpleX seems to have even MORE security if needed - but I don't need that much. For threat model stuff, I think Sessions is perfect... Signal ALMOST, but no w/ the phone number needed.



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

neoshock wrote to Arelor <=-

messaging applications is Delta Chat. Unfortunately I don't use it,
well because no one else does. Its a very simple concept. Delta Chat
uses your existing IMAP based email server, even something like gmail,
to store and send your IM. The chats are stored in an encrypted folder
in your email server in which only the Delta Chat app can read. It
seems to me would be a great way to decentralize instant messaging
without re-inventing the wheel, as email servers are a dime a dozen.
Has anyone here ever taken a look at Delta Chat, any thoughts?

Delta was the first thing I thought of when I saw this message thread. I
loved the idea of using existing TLS-enabled transport and encryption at
rest that already exists, as well as mature routing mechanisms, since
it's all email. And, you can own your own server easily, with your
content sitting on your box.

Interesting that there are chatmail servers available as well (with
privacy policies clearly stated) for those who don't have a server
available.

I'm on delta chat as poindexter@kataan.org if anyone wants to test. Not
sure if email is sufficient to start a chat? It looks like there's a
link (and a caveat that manually creating a contact doesn't guarantee end-to-end encryption...)



... AVOID GIMBLE LOCK.
--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

Netmail me your invite link and I'll add you to my system.

I actually have no issues with sharing it publicly, or at least with this friendly group, as I also created a special email account for it.
its chatwith@lloydalexandre.com

Lloyd (neoshock) sysop @ Vintage Pi BBS
vintagepi.asuscomm.com

--- Mystic BBS v1.12 A48 (Linux/64)
* Origin: Vintage Pi BBS vintagepi.asuscomm.com (21:1/150)

Hello poindexter FORTRAN!

Delta was the first thing I thought of when I saw this
message thread. I loved the idea of using existing TLS-
enabled transport and encryption at rest that already
exists, as well as mature routing mechanisms, since it's
all email. And, you can own your own server easily, with
your content sitting on your box.

Yes.. using an existing transport mechanism is interesting and
efficient.

I'm on delta chat as poindexter@kataan.org if anyone wants to test.

Test sent.


--

--- OpenXP 5.0.58
* Origin: (} Pointy McPointFace (21:4/106.21)

Hello neoshock!

...as I also created a special email account for it. its chatwith@lloydalexandre.com

I wasn't sure if my DT deltachat could deliver to an email
address. But I think it worked. I think it went out under my
usual email address - not sure if I want to continue that way.
I might like to create a deltachat-specific email address
instead.



--- OpenXP 5.0.58
* Origin: (} Pointy McPointFace (21:4/106.21)

I wasn't sure if my DT deltachat could deliver to an email
address. But I think it worked. I think it went out under my
usual email address - not sure if I want to continue that way.
I might like to create a deltachat-specific email address
instead.

Hi, I did get your message, but for some reason your email server rejected my replies. However, it seems to be working today, as I tried both desktop and mobile apps.

Lloyd (neoshock) sysop @ Vintage Pi BBS
vintagepi.asuscomm.com

--- Mystic BBS v1.12 A48 (Linux/64)
* Origin: Vintage Pi BBS vintagepi.asuscomm.com (21:1/150)

Hello neoshock!

** On Friday 17.01.25 - 07:11, neoshock wrote to Ogg:

Hi, I did get your message, but for some reason your email
server rejected my replies. However, it seems to be working
today, as I tried both desktop and mobile apps.

I got a total of 5 messages from you. The last one is a
screenshot.

I replied with two messages.

Seems to be working ok now.



--- OpenXP 5.0.58
* Origin: (} Pointy McPointFace (21:4/106.21)

Hello Arelor!

** On Wednesday 15.01.25 - 04:48, Arelor wrote to Ogg:

Signal is actually great because tin foil hat paranoid
nerds like me can use it to chat with regular smartphone
wielding sheep without compromising too much. It is far
from awesome but it is the only privacy and security
centric messaging application that is close to mainstream,
is about as easy to use as mainstream messengers, and does
not require the smartphone wielding sheep to manage their
own credentials.

BUT.. is it not true that when you create a Signal account,
they will [by default anyway] blast every user in your contact
list that also has Signal with a notice they you're newly
joined?


--- OpenXP 5.0.58
* Origin: fsxnet/2 (21:3/110.10)

Ogg wrote to Arelor <=-

BUT.. is it not true that when you create a Signal account,
they will [by default anyway] blast every user in your contact
list that also has Signal with a notice they you're newly
joined?

If you tell it to, yes.


--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

BUT.. is it not true that when you create a Signal account,
they will [by default anyway] blast every user in your contact
list that also has Signal with a notice they you're newly
joined?

So I tried out the new encrypted messaging apps and found Sessions to be the best;

Signal - still requires a phone#

Sesions - no phone#, can be anonymous

SimpleX - no account even; completely anonymous

... SimpleX is TOO much for me - Sessions is perfect IMO.



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

Re: w/o the govt, fed or China listening
By: Ogg to Arelor on Sun Jan 26 2025 11:23 am

BUT.. is it not true that when you create a Signal account,
they will [by default anyway] blast every user in your contact
list that also has Signal with a notice they you're newly
joined?

It is the only way around. People who has you in their contact list gets notified that you have joined.

It is not like you are broadcasting the existence of your account.

It is also a service that can be disabled on your end.

You can check how contact discovery works here:

https://signal.org/blog/private-contact-discovery/

"The client calculates the truncated SHA256 hash of each phone number in the [yours] device’s address book.

The client transmits those truncated hashes to the [contact discovery] service.

The service does a lookup from a set of hashed registered users.

The service returns the intersection of registered users."

It is far from great but it is not nearly as bad as people makes it out to be.


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.23-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

paulie420 wrote to Ogg <=-

So I tried out the new encrypted messaging apps and found Sessions to
be the best;

Signal - still requires a phone#

Sesions - no phone#, can be anonymous

SimpleX - no account even; completely anonymous

... SimpleX is TOO much for me - Sessions is perfect IMO.

I just don't know how you get a group of people to use anything except
Signal, unless something goes seriously sideways and people look to an alternative.

Session looks nice, I wish there was a unc convention for usernames so
you could share your contacts more easily than with a QR code.

There are some interesting concerns about AI features on phones being
able to read encrypted messages once they're on the phone and being a
weak link. Physical access to the device usually means game over
anyways, though - unless there's a backdoor in AI assistants we don't
know about.

Reminds me of an XKCD comic - two panels. One shows a bunch of law
enforcement types describing an expensive means to break into a laptop.

The second panel shows one character instructing the other to drug the
owner and hit him with a $5 wrench until he gives up the password:

https://xkcd.com/538/

The moral of the story: Mind the Weakest Link.





--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

Hello paulie420!

** On Sunday 26.01.25 - 12:05, paulie420 wrote to Ogg:

So I tried out the new encrypted messaging apps and found
Sessions to be the best;

It's seems to be pretty reliable and accurate wrt real/original
local "sending" time of messages too (unlike Telegram where the
timestamp is based on when the message is distributed from the
central server.) Session still is operational on Win7
machines too. And.. an account "syncs" very conveniently
between devices - that is, across a desktop, two laptops and
two mobile phones.

Too bad Session doesn't have a re-edit though.

Signal - still requires a phone#

I'm still leary to bother with Signal. Does it facilitate
sync'ing between devices?

Sesions - no phone#, can be anonymous

Exchanging the initial invite links kinda exposes the parties
though if regular email is used.

SimpleX - no account even; completely anonymous

... SimpleX is TOO much for me - Sessions is perfect IMO.

I think Simplex is quite nice. It has re-edit! :D ..but I
don't think it supports sync between devices.

Have you tried Briar? It's has a slightly different look/flow.
It facilitates a kind of "broadcast" channel where a message
there will be sent to all contacts, and a "forum" channel that
facilitates topical discussion if desired. Briar can also be
anonymous. It can also be configured to use BT or wifi and
avoid cellular, but contacts can still intercommunicate using
whatever radio is available.

--- OpenXP 5.0.58
* Origin: (} Pointy McPointFace (21:4/106.21)

Hello poindexter FORTRAN!

I just don't know how you get a group of people to use
anything except Signal, unless something goes seriously
sideways and people look to an alternative.

Perhaps Signal seems to have had a headstart in the market, and
thus attained the necessary momentum to attract users. More
people learned about it faster than any of the others.

Session looks nice, I wish there was a unc convention for
usernames so you could share your contacts more easily
than with a QR code.

People can exchange the "Your Session ID" string.

Session also supports "ONS" (Oxen Network System) name/alias,
but I think that requires a payment.

There are some interesting concerns about AI features on
phones being able to read encrypted messages once they're
on the phone and being a weak link. Physical access to the
device usually means game over anyways, though - unless
there's a backdoor in AI assistants we don't know about.

Can anyone confirm if the locally received messages are stored
encrypted? If stored decrypted, barring a session app access
password, that would seem to be a concern.

The session faq https://getsession.org/faq ..says about local
messages:

"All of your messages are encrypted, and can only be decrypted
using the private key which is stored locally on your device.


--- OpenXP 5.0.58
* Origin: (} Pointy McPointFace (21:4/106.21)

Re: w/o the govt, fed or China listening
By: Ogg to poindexter FORTRAN on Mon Jan 27 2025 12:11 pm

Perhaps Signal seems to have had a headstart in the market, and
thus attained the necessary momentum to attract users. More
people learned about it faster than any of the others.

There is that, but there is also the fact that, as far as the end user is concerned, it works exactly as other mobile messengers they are most likely to be familiar with.

Stuff like WhatsApp is popular here because people does not need to manage credentials. You just feed it your phone number after downloading the App and you are set. You don't even need to exchange contacts because your friends already have your phone number. End users expect that sort of thing and Signal just provides that thing.

If a different solution needs you to generate an ID and exchange the ID with your peers, that solution is going to be less popular because lambs are not expecting that from a mobile messenger.


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.23-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Hello poindexter FORTRAN!

Session looks nice, I wish there was a unc convention for
usernames so you could share your contacts more easily
than with a QR code.

People can exchange the "Your Session ID" string.

BTW.. I sent you my Session ID via deltachat. Is that ID
string not simple to add your Session?


--- OpenXP 5.0.58
* Origin: fsxnet/2 (21:3/110.10)

Hello Arelor!

Stuff like WhatsApp is popular here because people does not
need to manage credentials. You just feed it your phone
number after downloading the App and you are set. You don't
even need to exchange contacts because your friends already
have your phone number. End users expect that sort of thing
and Signal just provides that thing.

If the point was just to exchange private messages, deltachat
on its server system could fill that gap. people can exchange
QR codes and/or simply enter the deltachat-specific email
address provided.

But if people need the phone-calling options that Whatsapp and
Signal offer, then that is a different need/application.

I have a friend who was set up quite fine with Telegram (Tg).
Then she replaced her phone and needed to reestablish Tg
contacts since she was using a new number. Dunno why, but she
said that my telegram.me/aabolins link wasn't finding me. (Can
anyone else here confirm?) As far as I know, it still "finds"
me and the user has the option to add me to their Tg - but she
claims it is not working. I am not sure if she succeeded in
re-establishing her other Tg contacts.

Meanwhile, she wants me to use Signal! :LOL:

But.. for now, protonmail seems like a simple solution.

If a different solution needs you to generate an ID and
exchange the ID with your peers, that solution is going to
be less popular because lambs are not expecting that from a
mobile messenger.

Yup.. must be the lamb senario with my friend. But I didn't
expect someone could fail sending me a message via Tg!

--- OpenXP 5.0.58
* Origin: (} Pointy McPointFace (21:4/106.21)

Signal - still requires a phone#

I'm still leary to bother with Signal. Does it facilitate
sync'ing between devices?

Not too sure; since it links with an actual [Or alternative] phone# I didn't look much further.

Sesions - no phone#, can be anonymous

Exchanging the initial invite links kinda exposes the parties
though if regular email is used.

Right; can't we just exchange usernames?? And if needed, an anonymous email can be used... this was the perfect mix for me; I support if on a cell phone the QR code can be moved around fairly easily...

Session still is operational on Win7 machines too.

I didn't realize that - super cool!!! :P

SimpleX - no account even; completely anonymous
... SimpleX is TOO much for me - Sessions is perfect IMO.

I think Simplex is quite nice. It has re-edit! :D ..but I
don't think it supports sync between devices.

Its just SOOO anonymous... you can switch around to ANY device so long as you have the keys - I like to have an account, just want it anonymous... this one was overkill, but is powerful if a threat model needed it.

Have you tried Briar? It's has a slightly different look/flow.

I haven't... will take a gander - your next point had me think of a Briar similarity to...

It facilitates a kind of "broadcast" channel where a message
there will be sent to all contacts, and a "forum" channel that facilitates topical discussion if desired.

Kind of like Meshtastic - you can broadcast on a public channel, create an open channel or even create a fully encrypted, private, channel.

Dunno if you've heard of Mesh - its really cool too. Small devices, nodes, operate over a LoRa wireless chip. Nodes can text between other nodes up to 2Km away - think covering your entire property, campsite, ski area - or city... with enough nodes you can create a community of fully off-grid Meshtastic nodes.

:P Nice chat.



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A49 2024/05/29 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

Ogg wrote to poindexter FORTRAN <=-

device usually means game over anyways, though - unless
there's a backdoor in AI assistants we don't know about.

Can anyone confirm if the locally received messages are stored
encrypted? If stored decrypted, barring a session app access
password, that would seem to be a concern.

I think the issue is that AI tools can read data on the phone as it's
written to the phone, before it's encrypted at rest - I don't recall the specifics, unfortunately.

I think it was focused around Apple Intelligence and it's ability to
summarize messages - even encrypted ones. People are also concerned
about Apple potentially offloading encryption tasks (and payloads) off
of the phone.



--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

Ogg wrote to poindexter FORTRAN <=-

BTW.. I sent you my Session ID via deltachat. Is that ID
string not simple to add your Session?

Oh, that's what that was? Will try adding it this morning.



--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

Arelor wrote to Ogg <=-

If a different solution needs you to generate an ID and exchange the ID with your peers, that solution is going to be less popular because
lambs are not expecting that from a mobile messenger.

If I were in an organization and looking for encrypted comms within
teams, I'd certainly consider something like Session.



--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

Re: Re: w/o the govt, fed or China listening
By: poindexter FORTRAN to Arelor on Tue Jan 28 2025 07:07 am

If I were in an organization and looking for encrypted comms within
teams, I'd certainly consider something like Session.

IMO organizations are more interested in having the comms stay within the bounds of the organization than having them end-to-end encrypted.

We use Signal for account reset codes and the like. For actual "payload" we have a plain good old email server which resides in premises, and which is full disk encrypted. This makes it possible to fish into the backup drives when inevitably somebody deletes an email and wants the administrator to pick it back up XD


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.23-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Hello poindexter FORTRAN!

** On Tuesday 28.01.25 - 07:07, poindexter FORTRAN wrote to Ogg:

Ogg wrote to poindexter FORTRAN <=-

BTW.. I sent you my Session ID via deltachat. Is that ID
string not simple to add your Session?

Oh, that's what that was? Will try adding it this morning.

Nothing here yet.


--- OpenXP 5.0.58
* Origin: fsxnet/2 (21:3/110.10)

Arelor wrote to poindexter FORTRAN <=-

IMO organizations are more interested in having the comms stay within
the bounds of the organization than having them end-to-end encrypted.

A perfect use case for Delta - use your internal mail server and lock it
down.



--- MultiMail/Win v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)