Re: Threema. / don't trust closed source software
Am 10.11.2013 02:46, schrieb Robert J. Hansen: Looking over their site briefly I was unable to find a link for source code. As a result, I think very little of it. I don't think it's wise to trust unknown third-party binaries that don't provide source. It is commercial iOS and Androif application without source code and evenn such important details like the used encryption. Don't trust closed source software products! regards, Mark -- m...@it-infrastrukturen.org http://rsync.it-infrastrukturen.org http://git.it-infrastrukturen.org ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Threema. / don't trust closed source software
Hello, On 10.11.2013 12:02, Mark Schneider wrote: (...) It is commercial iOS and Androif application without source code and evenn such important details like the used encryption. (...) Actually such information are available here: https://threema.ch/en/faq.html. They are stating that they are using NaCl (http://nacl.cr.yp.to/) for ECC and NSFileProtectionComplete (iOS) or/and self-implemented AES256 (Android) for stored messages encryption. Cheers, Filip ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Threema.
Charly Avital wrote: kendrick eastes wrote on 11/10/13, 3:17 AM: might be better received at a cryptography based mailing list, also, do you plan on releasing source? apologies if this double sends, I've been having network issues recently. The source belongs to the company whose web site figures in the link I sent. No source = Don't use. Companies have their own commercial interests, can die be bought, can be leaned on by their home nation state, plus states can spy, emit trojans, want to weaken cryptography/ security. I have no connection whatsoever with that company, I was just asking the GnuPG-users list for an opinion. Sorry for the misunderstanding. Charly Cheers, Julian -- Julian Stacey, BSD Unix Linux C Sys Eng Consultant, Munich http://berklix.com Interleave replies below like a play script. Indent old text with . Send plain text, not quoted-printable, HTML, base64, or multipart/alternative. Extradite NSA spy chief Alexander. http://berklix.eu/jhs/blog/2013_10_30 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Threema.
On 09-11-2013 23:48, Charly Avital wrote: https://threema.ch/en/ What do you think of it? As others have mentioned, it seems to be closed source (and since it's payware I doubt they'll release the code). Further the Android version strongly suggests to use it with a Google account for push notifications and updates, which in itself is of course a security risk. Although they do offer a version without having to use Google stuff. -- ir. J.C.A. Wevers PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Threema.
Hi, https://threema.ch/en/ in German: https://threema.ch/de/ What do you think of it? Charly ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Threema.
Hi, https://threema.ch/en/ in German: https://threema.ch/de/ What do you think of it? Charly ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Threema.
Looking over their site briefly I was unable to find a link for source code. As a result, I think very little of it. I don't think it's wise to trust unknown third-party binaries that don't provide source. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Threema.
kendrick eastes wrote on 11/10/13, 3:17 AM: might be better received at a cryptography based mailing list, also, do you plan on releasing source? apologies if this double sends, I've been having network issues recently. The source belongs to the company whose web site figures in the link I sent. I have no connection whatsoever with that company, I was just asking the GnuPG-users list for an opinion. Sorry for the misunderstanding. Charly 0x15E4F2EA Mac OS X 10.9 13A603 MacBook Intel C2Duo 2GHz 13-inch, Aluminum, Late 2008 . (GnuPG/MacGPG2) 2.0.20 - gpg (GnuPG) 1.4.15 TB 24.0.1 Enigmail version 1.6 (20131006-1849) ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Threema.
might be better received at a cryptography based mailing list, also, do you plan on releasing source? apologies if this double sends, I've been having network issues recently. On Sat, Nov 9, 2013 at 3:49 PM, Charly Avital shavi...@mac.com wrote: Hi, https://threema.ch/en/ in German: https://threema.ch/de/ What do you think of it? Charly ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users