• sumguyonline@lemmy.world
    link
    fedilink
    arrow-up
    15
    arrow-down
    8
    ·
    3 months ago

    Signal is compleletly compromised through spell check on 99% of OEM smart devices. Spell check can see what your typing word by word, and signal uses it. Feds are 100% using spell check to view your private messages. And by feds I mean every government on earth with a computer.

    • Dessalines@lemmy.ml
      link
      fedilink
      arrow-up
      23
      ·
      3 months ago

      Spell check? If you mean smartphone keyboards, then yes, the non-foss ones are keyloggers. One of my side-projects is a privacy-oriented keyboard, but there are many out there that don’t require network calls to google or apple.

    • sunstoned
      link
      fedilink
      English
      arrow-up
      17
      ·
      3 months ago

      Is this some Network Allowed problem that I’m too Network Not Allowed to understand?

      • kureta@lemmy.ml
        link
        fedilink
        arrow-up
        6
        arrow-down
        1
        ·
        3 months ago

        Are you using a custom rom? I don’t have this option on my oneplus 9 pro. but I have something else.

        • sunstoned
          link
          fedilink
          English
          arrow-up
          10
          ·
          3 months ago

          GrapheneOS! I’ve been using it for a few years. Never going back.

    • EngineerGaming@feddit.nl
      link
      fedilink
      arrow-up
      2
      ·
      3 months ago

      The problem is actually further - it’s that they push people to use Signal on mobile.

      In the official desktop client, there is no option to register (even though it would likely be not that hard to add a box accepting a verification code), they tell you to use it in the mobile app instead. All while far from all phones can have privacy-respecting OSes installed on them at all.

      Yes, there are ways around (Signal-cli or an Android VM - and even then you have to use Molly since the official client requires you to scan a QR rather than following a link). But arbitrarily directing people to a platform that is harder to make private is nonetheless weird.