In iOS you can use Delta Chat (https://delta.chat/) ArcaneChat is a Delta Chat client

thanks for the help! (btw, it is not only mastodon.social, ex. see this post https://social.wake.st/@liaizon/114200292372832736)

thanks, I think I know that one, but yeah as you said it is not a real security audit and the person itself said so

thanks!

could you provide some source/link to the SimpleX security audits? I would like to look into it, thanks in advance!

does Briar has security audits you could point to? thanks in advance

does that one has security audits? thanks in advance

and the thing is: Telegram having a proprietary server feels more opensource and open to 3rd party clients and developers (ex. bots, mini-apps etc) than Signal, Signal’s issue tracker has a bot auto-closing stale issues and several people are completely ignored, never receive a reply

I highly recommend you to give a try to https://arcanechat.me/ (I am the developer) it is heavily inspired by Telegram, if you want to test it you can join this community group: https://i.delta.chat/#6CBFF8FFD505C0FDEA20A66674F2916EA8FBEE99=&a=invitebot%40nine.testrun.org&g=ArcaneChat+Community&x=3KvvQZfzU4t-9u5s0PF3USGp&i=AQKH9_8x0R0&s=dbGW9xOhRQX

I like SIP and XMPP, but in practice I don’t have any contacts to use it and the apps are lacking a bit compared to ArcaneChat/DeltaChat, besides the problem of losing groups because the XMPP server went down etc. there are some downsides but yes, if I was not satisfied with ArcaneChat I would use XMPP and SIP, or anything that is open source, decentralized and doesn’t require a phone number

Nice! 🤩

1. if they leaked something you wouldn’t know because US government law doesn’t allow them to disclose if they requested data.
2. uses AWS servers that also the gov could ask for access to Amazon directly without even talking to Signal, being centralized and depending on AWS infra is also a weakness.
3. needing phone numbers to register, often tied to passport and it is super easy to get your whole network when compromising 1 device
4. all centralized services start nice, attracting users, once they have you, and money starts being a problem… meet: enshitification

I moved my whole family since years to Delta Chat, eventually started contributing to the project and even created my own fork that is what my family is using, see: https://lemmy.ml/post/26007254

Or the classic “guys I am leaving WhatsApp, moved my whole family to Signal, another centralized US-based silo that requires phone numbers and runs on AWS, CloudFlare, etc.”

#DeltaChat a privacy-focused messenger would benefit a lot of a designer, take a look at https://delta.chat/ and contribute if you can! ❤️

I feel so seen, users often directly drop a lot of new feature requests just when I am announcing a new upcoming feature. And no one is donating to me while I even pay servers for them.

ArcaneChat is a Delta Chat client and uses the Delta Chat core (which contains all the crypto and logic and any app can use to implement e2ee IM) and it is based in the Delta Chat client, which has been audited around 6 times over the years: https://delta.chat/en/help#security-audits

For iOS you can use Delta Chat: https://apps.apple.com/us/app/delta-chat/id1459523234

It is compatible with ArcaneChat

For sure!! The app is decentralized/federated. You can host your own server: https://github.com/ArcaneChat/chatmail

And some 3rd party servers are discoverable inside the app at registration time.

The app can also be used with classic email servers so if you have an email server you can use it as well with ArcaneChat

If what you want is private/secure encrypted email that the provider itself can not even read, I recommend you arcanechat.me

no, there is no important metadata leaked via headers, the only obvious data the server knows is the same as on Matrix and XMPP, when you tell the server to deliver the message to a given user, the server hence knows that X sent a message to Y, but since accounts are randomly generated email addresses without any personal data tied, this is more secure than Signal where phone numbers are collected by a central server and if they wanted to they can match your IP to your phone number even if you use sealed sender to send it is obvious who you are by your IP and timing since you also connect to the server non-anonymously to receive messages