this post was submitted on 02 Feb 2025
72 points (90.9% liked)

Privacy

33496 readers
272 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz
72
Is using an Matrix account from matrix.org private and secure enough to talk with my family members and people in general? (lemmy.ml)
submitted 6 days ago by Confidant6198@lemmy.ml to c/privacy@lemmy.ml
73 comments fedilink hide all child comments
 

So, I was told to not use Signal, so all that is left is Matrix. And I am not techy enough to have my own server and neither are my relatives, so Matrix.org is the only option

top 50 comments
sorted by: hot top controversial new old
[–] comfy@lemmy.ml 18 points 4 days ago

Private against who?

Privacy communities need to really drill in the idea of threat models instead of pretending privacy is some linear scale and the ultimate goal is to bury your phone and computer in a lead-lined concrete block underground. Privacy and security are meaningless concepts unless you know who your are protecting it from and what their capabilities might be. I don't need to hide from NSA Tailored Access Operations because I'm not trying to x the y of the USA. I do need to protect myself from basic scam attackers, copyright trolls and neo-nazi stalkers. And Matrix, along with certain basic opsec guidelines, does that and more for me.

[–] Emberleaf@lemmy.ml 59 points 6 days ago (6 children)

Signal is perfectly fine to use.

[–] refalo@programming.dev 22 points 6 days ago* (last edited 6 days ago) (2 children)

Most packages/installs of Signal contain proprietary code. I suggest Molly-FOSS instead.

[–] EngineerGaming@feddit.nl 9 points 6 days ago* (last edited 6 days ago) (1 children)

Molly also has some quality-of-life improvements - such as allowing to enter a device pairing link manually instead of scanning a QR code (thus allowing use in a VM for registration without a smartphone), or being able to use a generic Socks proxy instead of Signal's own solution. Not only does that allow running Signal over Tor without using Orbot as a "VPN", but is also more versatile (I wouldn't want to set up a separate proxy just for Signal, and also their implementation is apparently inferior to some advanced obfuscation solutions).

P.S. Also idk if this has been fixed, but Signal's app bugged out during registration and got stuck on "no google services" warning on my Graphene device, yet Molly went through flawlessly.

[–] mac@lemm.ee 9 points 6 days ago

You can also set up MollySockets for notifications via unified push!

load more comments (1 replies)
load more comments (5 replies)
[–] devfuuu@lemmy.world 33 points 6 days ago (1 children)

For normal end user average usage signal is the best option available, specially for family since they may already be used to the flow and UX of it. Simple and straight forward. All the "bad" things you read are about nerds being annoying and not liking a very particular specific thing and thinking that specific thing should be the only focus.

So just make people use signal. It's the best and simplest way with the most common features for individuals and small groups. A simple download, in a common known place on a store without confusing people with differences between a protocol and a client and with and onboarding experience most are already familiar and ok using.

Even so you still need to make sure that the app does not have battery optimizations turned on, but that applies to all apps used for communication that are not blessed in specific phones (like facebook and whatsapp already having that setting by default because vendors make it so).

[–] lambda@programming.dev 18 points 6 days ago (1 children)

I have made so many people use Signal now. I sell it as, "I'm on Android. Signal gives us all of the features of iMessage and facetime" no need to mention the privacy concerns unless they are the kind of person who cares.

load more comments (1 replies)
[–] nutbutter@discuss.tchncs.de 27 points 6 days ago (6 children)

Who told you to not use Signal, and what reasons did they give? I'm very curious.

[–] bruhsoulz@lemmy.ml 16 points 5 days ago (1 children)

It uses phone numbers and is centralized. I personally dont use it cus of those reasons. Also wouldnt switch cus my folk already use matrix so im nt making a bunch of people get another app lol

[–] toastal@lemmy.ml 4 points 4 days ago (1 children)

Matrix is centralized too in practice … & syncs even more metadata than Signal so I wouldn’t call that an upgrade—especially when you see how slow the clients & servers are.

[–] index@sh.itjust.works 4 points 4 days ago (1 children)

Matrix is centralized too in practice

There are plenty of different available homeservers and you can host yours.

[–] toastal@lemmy.ml 2 points 4 days ago* (last edited 4 days ago) (1 children)

It takes 2 to tango. It’s like trying to send an email from a self-hosted email server without following all of Google’s rules/guidelines… which means you won’t be able to send a message to most (sadly). Most folks are either on Matrix.org or a server they host in practice… you alone self-hosting will only help if you only communicate to folks also doing similar… to which if just one user from Matrix.org (or a server they host) joins your chatroom, then literally everything that is being & has been said in that room will now be synced to Matrix.org by its protocol design. With the expense it takes to self-host Matrix for a community, almost all medium-sized communities had to drop it on RAM & storage costs alone which caused most of those users to move to Matrix.org. You can run a single-user host with some efficiency, but most users are not technical enough for this. The only option to use Matrix & keep costs down is to unfederate… at least with Matrix.org (& servers they host), but that now defeats a huge part of the argument those saying Matrix is federated/decentralized.

It isn’t decentralized in clients or servers either. Almost all servers must run Synapse which is resource intensive but actually has the features folks expect as the de facto reference server & Element is the only viable client considering most users will be using Element-exclusive features like threading, polls, etc. where protocol hasn’t done a great job of providing a progressive enhancement approach to its features & so folks on alternative clients straight-up just don’t see / can’t interact with this stuff.

The accessibility to small–medium-sized communities matters if you want a healthy federated/decentralized network …but luckily there are alternatives.

[–] index@sh.itjust.works 2 points 4 days ago (1 children)

It takes 2 to tango. It’s like trying to send an email from a self-hosted email server without following all of Google’s rules/guidelines…

Don't say bullshit, a chat is not mails, matrix federation works similarly to lemmy

load more comments (1 replies)
load more comments (5 replies)
[–] Zerush@lemmy.ml 6 points 4 days ago

Matrix/Element is pretty private, but not wide spreaded. For the use with friends and Family is more realisticto use Signal or any other decentralized Chat.

[–] kekmacska@lemmy.zip 6 points 4 days ago (5 children)

both are good, even Signal. For private conversations, you only need to avoid Telegram and other obvious ones

load more comments (5 replies)
[–] activist@lemm.ee 2 points 3 days ago

why did they told you not to use signal

[–] wreckingball4good@lemm.ee 13 points 5 days ago (1 children)

In signal, You can turn off phone number visibility and make it so that you are only searchable by username or qr code. Yes, it's centralized, but signal is a nonprofit project with generally good guiding ideals. I use matrix for some things and signal for everything else.

load more comments (1 replies)
[–] communism@lemmy.ml 9 points 5 days ago

If it's low privacy needs (ie you don't have a state threat model), Signal is completely fine. I use it to talk to my friends. I also use Matrix, though federated Matrix isn't the best for privacy either due to the amount of metadata that leaks through federation. But federated Matrix is also fine for the kinds of things you would use eg Discord or IRC for.

If you do have a state threat model, I personally think SimpleX is ideal for that, but it doesn't have as much of a userbase so you probably need people who care enough (eg people actively under threat) to switch to a new platform. Whereas most people I know are already on either Signal or Matrix, and I'm not having particularly sensitive conversations with them either so both work fine.

[–] badcodecat@lemux.minnix.dev 16 points 6 days ago (2 children)

simplex is good as an alternative

[–] mox@lemmy.sdf.org 12 points 6 days ago* (last edited 5 days ago)

SimpleX has some interesting ideas, but also some shortcomings for people who want a practical messaging service. For example:

  • It is funded by venture capital, which calls into question its longevity, and even if it does manage to stick around, suggests that it will be leveraged to exploit people once the user base is large enough.
  • Its queue servers delete messages if they are not delivered within a certain time frame (21 days by default). Good luck if you take a vacation off-grid for a few weeks.
  • No multi-device support. (This means a single account accessed concurrently from multiple independent devices.) The closest it comes is locally tethering a mobile device to a computer.
  • Establishing new contacts requires sharing a large link or QR code, which is not always convenient.
  • No support for group calls.

I would not recommend it for talking to family members and people in general, which is what OP requested.

[–] toastal@lemmy.ml 3 points 4 days ago

It’s worth following the project but it’s a bit too new & the funding aspect leads me to question how it will work in the long run (& being written in Haskell is neat, but boy does it have a lot of churn & maintenance issues in its ecosystem).

[–] jaypatelani@lemmy.ml 4 points 4 days ago

Matrix and Simplex is fine but I would recommend Signal for family and friends. Threema is also option but not user friendly for friends and family who wants easy user discovery than sharing userIDs.

[–] toastal@lemmy.ml 3 points 4 days ago

Matrix.org is centralized like Signal (you can say Matrix is not centralized on paper, but in practice this isn’t remotely true). Both are stockpiling metadata in the West… what’s worse is Matrix’s eventual consistency model means syncing metadata to all servers is a by-design requirement (& also why all servers & clients are slow). There are options like Snikket to take all the hard parts of self-hosting out of the equation, but finding someone you can trust to host a server might be worthwhile. I would be wary of anything centralized.

[–] EngineerGaming@feddit.nl 9 points 6 days ago

I am really concerned about the dominance of the central instance on Matrix. It has visibility into pretty much every groupchat - if not in content because of encryption, then in all the metadata. I'd rather use another public homeserver.

[–] mathias@friendica.hellquist.eu 3 points 4 days ago

@Confidant6198

Signal is fine to use. These days I mostly recommend Delta Chat though. Delta Chat is free, encrypted, open source, audited, decentralised & federated in the same way as email is as it literally is email, it just looks like a chat, and it will work almost out of the box for anyone who has an email address (which is most people). This includes gmail/icloud/outlook etc. There are also chatmail servers you can sign up on if you'd prefer that.

It is no more complicated to configure than it is to configure any other email client. It has group chats, you can even share applications in the chat such as playing games or collaborate etc, all within the security of knowing your email provider can not read your conversations, whilst you still get the benefit of using the existing infrastructure of email.

Check it out: delta.chat/en/

PS. I'm not affiliated with them in any way. In fact, I have no idea if/how they make money. The service "just works" though.

PPS. They are also present in the Fediverse at @delta

[–] kevincox@lemmy.ml 11 points 6 days ago (10 children)

Probably yes, it depends on your threat model.

If you are using E2EE on a matrix.org account then your message content, attachments (images) and most other traffic isn't accessible to anyone but the people in the chat. However Matrix isn't the most private option, it has a number of leaks such as reactions and chat topics (these are being worked on but aren't close to happening).

For most people Matrix is a very private and secure option and the fact that it is federated is a huge plus. If you want something more secure you are probably looking at Signal (which you don't want to use and isn't federated) or Simplex Chat (which doesn't have multi-device support).

load more comments (10 replies)
[–] ReversalHatchery@beehaw.org 6 points 5 days ago (1 children)

you don't need to use matrix.org. there are several open homeservers, like chat.mozilla.org, but also there are people who host services for others to use. you may have a look at current lemmy hosts, and their other services if they have them.

[–] toastal@lemmy.ml 2 points 4 days ago

AFAIK, chat.mozilla.org was set up on modular.im, now element.io, which if it still using the same host, is owned by Matrix.org. So even using a different host means Matrix.org might still have your metadata.

[–] poVoq@slrpnk.net 8 points 6 days ago (1 children)

Why would Matrix be the only option? XMPP is significantly better. You can either sign up on a public server or pay a small sum to have your own private server for you and your family for example on https://snikket.org/ or I think https://jmp.chat/ also includes optionally a small server in the subscription.

[–] fxomt@lemm.ee 5 points 6 days ago (3 children)

I've always been curious with the differences between XMPP and matrix but i can't ever find anything explaining it. Why is it in your opinion better?

[–] poVoq@slrpnk.net 5 points 5 days ago (2 children)

Basically Matrix is to Xmpp, what Bluesky is to ActivityPub. Which all the various issues both technically and related to VC and crypto-currency funding.

In addition Matrix uses a federation model that is extremely inefficient, making it hard to run your own server once you have a few users that join larger rooms. And as a side effect of this inefficient federation model that replicates the database onto all participating servers, it tends to centralize all the metadata on the servers (run on AWS under UK jurisdiction) hosted by the for-profit company that is behind Matrix.

And last but not least they rugpulled everyone very recently and made the only fully functional server implementation open-core to upsell larger servers to their proprietary hosted offering.

load more comments (2 replies)
[–] EngineerGaming@feddit.nl 6 points 6 days ago (1 children)

I know I am just a normie who doesn't really know internal workings of them... But in my experience, XMPP is just easier to host, the servers are lighter, they don't store everything they touch forever like Matrix does, and OMEMO doesn't break like Matrix's encryption. Synapse would be probably impossible to run on my VPS, while Conduit and Dendrite are not as full-featured.

[–] toastal@lemmy.ml 2 points 4 days ago (2 children)

OMEMO is a mixed bag. Some clients are still preferring older versions that aren’t the best for security & almost every client does a bad job explaining that new keys are being used need to be verified… Gajim only recently gave a decent in-client pop-up for it, but it’s doesn’t work all the time. That said, this is basically the same issue Matrix has in the space. Both are based on libsignal if not outright using it, except Signal gets a point of privilege in basically having just one client …one that must be on Android/iOS according to their statements… so they can do a ‘better’ job managing who, what, & how many keys are being used. Many XMPP clients will recommend blind trust by default just because it can be a real hassle to deal with multiple clients & users coming back to less-often-used devices. There have been proposals to fix it, but I haven’t seen anything really take off (meanwhile considering just using the PGP encryption option as less flaky).

load more comments (2 replies)
[–] 0x0@programming.dev 4 points 5 days ago* (last edited 5 days ago) (1 children)

Why is it in your opinion better?

It's an open protocol, unlike 99% of chat protocols. It's self-hostable and federated.
It's IRC's successor and been around a long time, first popularized by Jabber. Snikket made it even easier to use.
It was also EEEed by Meta and Google to lure users at a given point, with leads some to say "it's dead" — far from it.
Edit: you may need to ensure OMEO versions are the same across all clients.

[–] fxomt@lemm.ee 3 points 5 days ago (1 children)

Right, but how does that make it better than matrix? it is also an open protocol, and most spaces that i use are on matrix anyway.

attempted to be EEEed is a good sign i guess, since it implies it's a threat to meta and google though.

[–] 0x0@programming.dev 3 points 5 days ago (1 children)

They succeded in a way, XMPP lost a lot of users back then in the era when communications where migrating from group-focussed IRC to individual-focused Whatsapp (or their respective walled-gardened messengers).
Better than matrix in the ways 2poVoq@slrpnk.net listed above.

load more comments (1 replies)
[–] asudox@lemmy.asudox.dev 8 points 6 days ago* (last edited 6 days ago)

Yeah, sure. But Matrix is decentralized and federated. So you can pretty much join any instance and be able to talk with anyone on any instance. So why not select another instance ~~or maybe even self host one yourself?~~

edit: didn't read the text till the end

load more comments
view more: next ›