see, if they didn't carefully make sure linux desktop version of signal used a proper random cryptographic nonce for the sqlite conversation database, one has to wonder if they have any crypto chops at all.
if you want to verify what i'm saying, get claude or other robot to investigate your desktop signal database, with what i said, and see if it's still that. the nonce is visible, plaintext. it can detect that just by reading the file, the robots can understand binary
Login to reply
Replies (1)
Will definitely check it out and see but in and of itself it's very concerning that this app which has become the "gold standard" of privacy has these major vulnerabilities