• jarfil@beehaw.org
    link
    fedilink
    arrow-up
    0
    ·
    7 months ago

    What is this “closed source experience”

    I can answer that: it’s the “I don’t care about security as long as I can send memes and inappropriate messages to most people” experience.

    From the looks of it, it’s as secure as having WhatsApp/Signal/Telegram/ProtonMail doing “E2EE” through each app’s servers, and never knowing whether the client did the encryption right, or if it sent the keys to the server for messages to get intercepted… well, except you do know that the bridges are decrypting all messages anyway.

    • shrugal@lemm.ee
      link
      fedilink
      arrow-up
      0
      ·
      7 months ago

      I can answer that: it’s the “I don’t care about security as long as I can send memes and inappropriate messages to most people” experience.

      Closed source doesn’t help with that though, you don’t have to care about privacy in open source.

      except you do know that the bridges are decrypting all messages anyway

      They are working on on-device bridges that preserve e2ee, but making the client closed source kind of defeats the purpose here.

      • jarfil@beehaw.org
        link
        fedilink
        arrow-up
        0
        ·
        7 months ago

        Closed source helps with the second part, the connecting with a majority of people using the same closed source platform (then different people use different platforms, which is where we are now… but the DMA might solve that).

        On-device bridges could be nice if they included that in the OpenSource part.

        • shrugal@lemm.ee
          link
          fedilink
          arrow-up
          0
          ·
          7 months ago

          the connecting with a majority of people using the same closed source platform

          The platform is open, including the part that connects to other closed source platforms. It’s just Matrix and open source bridges after all. And making the client app closed souce doesn’t help with any of that.

          I’m sorry if I’m a bit pedantic about this, but it seems like you’re describing an upside to closed source software that’s just not there.

          • jarfil@beehaw.org
            link
            fedilink
            arrow-up
            0
            ·
            7 months ago

            Too pedantic 😉

            I was trying to explain that people on closed source platforms, right now, get:

            • Good network effect
            • Simple configuration
            • Enough security theatre to keep them happy
            • Different extra features

            That’s the experience I understand Beeper is trying to compete with… and make money in the process.

            Closing the client, could help them differentiate above the competition by better integrating into their own infrastructure, still keeping a simple configuration, and charging for it, while people who buy into the security theatre, woldn’t notice a difference in that respect. Expanding to selling some user metadata, or sniffing the bridges, would be an extra.