• Fake4000@lemmy.world
    link
    fedilink
    English
    arrow-up
    109
    arrow-down
    2
    ·
    edit-2
    10 months ago

    Finally, been ages.

    A number is still needed to register I believe.

      • shortwavesurfer@monero.town
        link
        fedilink
        English
        arrow-up
        42
        arrow-down
        13
        ·
        edit-2
        10 months ago

        A PoW could limit bots too. Require say 30 seconds of work before your registration submits. For regular users that isnt to bad. For bots its a PITA to get tons of accounts

        Edit: tor uses PoW as DDOS protection and its helped massively

          • Gork@lemm.ee
            link
            fedilink
            arrow-up
            48
            arrow-down
            1
            ·
            10 months ago

            That will also keep away bots.

            You can only sign up if you’ve taken at least one Prisoner of War. Bots can’t take prisoners of war for obvious reasons.

            Kinda like how Aztec boys came into age in their society.

              • RobotToaster@mander.xyz
                link
                fedilink
                arrow-up
                32
                arrow-down
                4
                ·
                edit-2
                10 months ago

                It was the original purpose of the bitcoin algorithm to limit spam.

                If you have to do a lot of maths that takes your computer (for example) 30 seconds, that means it costs 30 seconds of compute to create an account. Nothing to an average user, for a spammer that wants thousands of accounts it gets expensive.

                Several captcha[0] libraries already use this and it’s great for accessibility (normal captchas are terrible for it)

                [0] I know, it’s not technically a captcha.

              • shortwavesurfer@monero.town
                link
                fedilink
                English
                arrow-up
                14
                arrow-down
                1
                ·
                10 months ago

                For each account you register, you have to do 30 seconds worth of work. So to register one account, you do 30 seconds worth of work. To register 100 accounts, you do 100*30 or 3000 seconds (50 minutes) worth of work. Registering tens of thousands of accounts then becomes unfeasible.

    • mox@lemmy.sdf.org
      link
      fedilink
      arrow-up
      29
      arrow-down
      14
      ·
      edit-2
      10 months ago

      A number is still needed to register I believe.

      Indeed, which makes their headline a bit misleading. Giving Signal your phone number is not keeping it private.

      • PersonalDevKit@aussie.zone
        link
        fedilink
        arrow-up
        36
        arrow-down
        1
        ·
        10 months ago

        I thought peoples big problem with it was not wanting to give others their number to use signal? Like I meet Joe Blog online and don’t want to give him my real number to chat.

        Less people worried that signal had their number?

        • fuzzzerd@programming.dev
          link
          fedilink
          arrow-up
          17
          ·
          10 months ago

          Seems the second group is a vocal minority. This feature helps the first group, but doesn’t help the second group.

          According to Signal, the first group is the larger group and this helps the most users of Signal.

          Could it be better? Sure. This is still a good step in terms of privacy, even though it doesn’t really improve anonymity.

          • preasket@lemy.lol
            link
            fedilink
            arrow-up
            6
            ·
            10 months ago

            Personally, I care about the phone number requirement not because I don’t want to reveal it to Signal servers, but because it limits access to Signal for people in countries that block their SMS service - registration messages just don’t arrive

            • XTornado@lemmy.ml
              link
              fedilink
              arrow-up
              2
              ·
              10 months ago

              It’s specific to signal? Like they want to block people registering or what’s up with that SMS block?

              • EngineerGaming@feddit.nl
                link
                fedilink
                arrow-up
                3
                ·
                10 months ago

                Not specific to Signal. I believe he was referring to places where Twilio doesn’t serve, for example because of sanctions.

        • delirious_owl@discuss.online
          link
          fedilink
          arrow-up
          2
          ·
          10 months ago

          Putting a SIM card in a phone exposes it to enormous surface area of attack. People have been asking to register with anonymous emails instead of a phone number, like Wire has had for years

        • mox@lemmy.sdf.org
          link
          fedilink
          arrow-up
          3
          arrow-down
          8
          ·
          10 months ago

          I thought peoples big problem with it was not wanting to give others their number to use signal?

          The issue is that giving your phone number to Signal Messenger LLC is giving it to others, and therefore not keeping it private in the usual sense of the word.

          Some people may be unconcerned about a corporation knowing their number vs. their contacts knowing their number, but that doesn’t diminish the misleading aspect of this headline.

      • RayJW@sh.itjust.works
        link
        fedilink
        arrow-up
        10
        arrow-down
        2
        ·
        10 months ago

        Wrong, it still keeps it private but not anonymous. It’s not the same concept and for most thread models knowing that you use Signal is not really an issue, especially since with this feature no one can check if you have one if you don’t give them your username unless they have access to Signal servers in which case they still have nothing except the knowledge that you have an account.

      • 9tr6gyp3@lemmy.world
        link
        fedilink
        arrow-up
        9
        arrow-down
        3
        ·
        10 months ago

        They do a lot of work to keep your phone number private, or at least any data that is tied to it. This username upgrade is solely for someone to communicate over Signal without needing to hand over your phone number.

        For example, you can now be in group chats with internet strangers by just giving them your username.

        On top of that, once MLS is adopted, you can communicate with other messengers as well.

    • arin@lemmy.world
      link
      fedilink
      English
      arrow-up
      13
      arrow-down
      1
      ·
      10 months ago

      Kinda stupid for privacy to hand over your phone number… Very counter intuitive

  • Stewbs@lemmy.world
    link
    fedilink
    arrow-up
    39
    arrow-down
    1
    ·
    10 months ago

    About time!! Been waiting for this for so long. This will definitely make the usability of Signal better and it’ll also be more accessible to people who wanted a Telegram like way to talk to other folks. Requiring a number to still register isn’t a bad thing in my eyes though sometimes it can be frustrating so I hope that there’s an option to create an account without a number. Maybe the account will have finite time before it’s auto-deleted if you don’t input a number some time later to ensure that this option isn’t abused to all hell by bots and malicious actors alike.

    • leanleft@lemmy.ml
      link
      fedilink
      English
      arrow-up
      3
      ·
      10 months ago

      its a sensible choice because many potential implementers hae been dissuaded by the anxiety attached to risks of giving out phone number. (harrassment, stalker, spammer, scammer) . the telephone system has paralyzed itself in fear. yet we all keep buying their shit.

      • Stewbs@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        10 months ago

        That sucks and is quite unfortunate, would’ve been cool to have another option other than signing up with your phone number but I suppose it’s alright

  • BentiGorlich@gehirneimer.de
    link
    fedilink
    arrow-up
    36
    ·
    10 months ago

    I think its great. Its for people who simply don’t want to share their phone number with other people which is a huge privacy concern, as you can find out a lot about a person by looking up info connected to their phone number.

  • LWD@lemm.ee
    link
    fedilink
    arrow-up
    32
    arrow-down
    1
    ·
    10 months ago

    Just yesterday, somebody commented that Signal might be adding the feature in a few weeks. I was incredulous, assuming it would be months.

    Nope. As soon as I saw this, I went looking for an app update, installed it, and made a username.

  • psychothumbs@lemmy.world
    link
    fedilink
    English
    arrow-up
    15
    arrow-down
    5
    ·
    10 months ago

    I’m still just so furious at Signal management for removing compatibility with other text apps. I used to be constantly growing my Signal network, now it’s a slowly shrinking rump that I never add anyone to.

      • psychothumbs@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        10 months ago

        Right, the idea was that you could use Signal as your SMS app, and so whenever there was someone else doing the same you’d automatically upgrade to Signal. Whereas now I never have those auto-upgrades, any new contact I am just stuck on SMS with.

          • psychothumbs@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            ·
            10 months ago

            In my opinion, relying on upgrading users automagically to an encrypted and secure protocol isn’t good practice. If someone wants to use an encrypted chat, they should do so consciously. It will only cause confusion otherwise.

            This is my theory for why they ditched this feature - the ultra-concerned about privacy superusers don’t approve of its messiness, even though in practice it’s the main engine for user growth.

            Do people still use SMS these days though anyway?

            I would have thought iMessage, RCS and separate chat apps like Whatsapp, Signal and WeChat would have largely replaced SMS by now.

            SMS, MMS, iMessage and RCS are all compatible with each other and mostly used interchangeably and are the main way people text each other (in the US anyway). You just have a phone number, and when people text it with any of those formats you receive the message and respond the same way.

      • xcjs@programming.dev
        link
        fedilink
        arrow-up
        1
        ·
        edit-2
        10 months ago

        On Android, it moved SMS messages from the shared SMS store upon receipt and to Signal’s own database, which was more secure.

  • brbposting@sh.itjust.works
    link
    fedilink
    arrow-up
    7
    arrow-down
    1
    ·
    10 months ago

    Updated on iOS via US App Store - feature not available just yet. Looking forward to it in a few days perhaps!

  • kksgandhi@lemmy.ml
    link
    fedilink
    arrow-up
    4
    ·
    10 months ago

    Great feature, but if I’m reading it correctly, you won’t be able to chat with someone anonymously (because your profile will still be shared). Are there good apps for that?

  • guts@lemmy.ml
    link
    fedilink
    arrow-up
    7
    arrow-down
    7
    ·
    10 months ago

    Still register with a phone number is a red flag. I prefer SimpleX.

      • Possibly linux@lemmy.zip
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        11
        ·
        10 months ago

        I just got a unknown sender sending me unsolicited junk and that’s never happened before

        • American_Jesus@lemm.ee
          link
          fedilink
          arrow-up
          4
          ·
          10 months ago

          Telegram have this in a long time, and I never got any spam messages.

          Try to read the article instead.

          • Atemu@lemmy.ml
            link
            fedilink
            arrow-up
            2
            ·
            10 months ago

            Don’t bother with this person. All I’ve seen them do is read the post’s title and produce an (often inappropriate) reaction to said title. Peak Redditor.