this post was submitted on 17 Jul 2023
1182 points (96.5% liked)

Technology

69491 readers
5788 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
1182
TIL there is an fediverse alternative to Discord (matrix.org)
submitted 2 years ago by PopBobert@lemmy.world to c/technology@lemmy.world
365 comments fedilink hide all child comments
 

About Matrix Matrix is an open protocol for decentralised, secure communications.

Matrix Manifesto We believe:

People should have full control over their own communication. People should not be locked into centralised communication silos, but instead be free to pick who they choose to host their communication without limiting who they can reach. The ability to converse securely and privately is a basic human right. Communication should be available to everyone as a free and open, unencumbered, standard and global network.

you are viewing a single comment's thread
view the rest of the comments
[–] SevereLow@lemmy.world 0 points 2 years ago (2 children)

Matrix is a security nightmare. Everyone should stay clear from it till possible solutions are found for the ongoing concerns.

[–] quent1500@lemmy.world 7 points 2 years ago (1 children)

What are the ongoing concerns ?

[–] SevereLow@lemmy.world 4 points 2 years ago (3 children)

Here's a great and beginner-friendly article on the topic of secure (and private) messaging and why Matrix currently doesn't fit there: https://proton.me/blog/whatsapp-alternatives

[–] ninchuka@lemmy.one 3 points 2 years ago (1 children)

That doesn't go into detail on the "server network reliability" and it's used by multiple government agencies around the world and they likely paid for private audits before they picked it

[–] PutangInaMo@lemmy.world 3 points 2 years ago (1 children)

Which government agencies? You'd be surprised...

[–] ninchuka@lemmy.one 2 points 2 years ago (1 children)

germanys armed forced, their health sector, france seems to use it for their entire government as well and some others Icant remember off the top of my head

[–] PutangInaMo@lemmy.world 1 points 2 years ago (1 children)

Use it for public message distribution or internal comms?

[–] ninchuka@lemmy.one 1 points 2 years ago

internal comms I think

[–] steltek@lemm.ee 2 points 2 years ago

That link says nothing of the sort! It actually says that Matrix is a strong choice for privacy and the underlying protocol follows best practices for security.

What are these security concerns you're talking about?

[–] quent1500@lemmy.world 1 points 2 years ago

Thanks !

[–] dragonfly4933@lemmy.dbzer0.com 2 points 2 years ago (1 children)

Tbh, I don't think encryption matters that much for are usually public chat channels.

The private communication should be safe since i think the users will usually pin the keys for each other.

[–] SevereLow@lemmy.world 2 points 2 years ago (2 children)

The problem comes from federation. You never know where your messages are synced to + what will happen if instances are defederated. Matrix might become something really cool, if it spends 1-2 years solely on security. Otherwise... it's just nothing more than an epic (and misleading) name + some IRC legacy vibes.

[–] ninchuka@lemmy.one 1 points 2 years ago

Rooms are stored on every server that's in the room and if a server goes offline even the one that created the room it keeps working just fine and no one notices

[–] caffeine@lemmy.ml 1 points 2 years ago (1 children)

But you do know where your messages are synced don't you? You can check your chat partner's homeserver. Or am I mistaken?

[–] ninchuka@lemmy.one 1 points 2 years ago (1 children)

yeah, messages are only sent to servers that are in a room, so its very easy to see and know what servers are storing the messages/metadata

[–] caffeine@lemmy.ml 1 points 2 years ago (1 children)

And even IF a server is storing your messages — doesn't E2EE make that irrelevant? It doesn't matter if they store it as long as they cannot decrypt it. I don't quite understand @SevereLow's concerns.

[–] ninchuka@lemmy.one 2 points 2 years ago

yeah thats another point as well, not all rooms on matrix are encrypted, it for example makes it pointless to encrypt public rooms that anyone can join