linux-nerds.org

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

An analysis of X(Twitter)'s new XChat features shows that X can probably decrypt users' messages, as it holds users' private keys on its servers

Technology

48 Beiträge 32 Kommentatoren 692 Aufrufe

P This user is from outside of this forum
P This user is from outside of this forum
pro@programming.dev

schrieb am 10. Juni 2025, 10:16 zuletzt editiert von

#1

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
S V Q U D 15 Antworten Letzte Antwort 10. Juni 2025, 10:49

456
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
S This user is from outside of this forum
S This user is from outside of this forum
sciaphobia@sh.itjust.works

schrieb am 10. Juni 2025, 10:49 zuletzt editiert von

#2

Which effectively means the messages aren't encrypted. Cool.
A E 2 Antworten Letzte Antwort 10. Juni 2025, 13:51

69
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
V This user is from outside of this forum
V This user is from outside of this forum
venus_ziegenfalle@feddit.org

schrieb am 10. Juni 2025, 11:20 zuletzt editiert von

#3

That's not "probably". If they have the key they straight up have access. The key to my house can't just probably unlock the door.
H 1 Antwort Letzte Antwort 10. Juni 2025, 13:43

116
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
Q This user is from outside of this forum
Q This user is from outside of this forum
quazatron@lemmy.world

schrieb am 10. Juni 2025, 11:44 zuletzt editiert von

#4

I'm surprised nobody posted the surprised_pikachu.gif yet.
S 1 Antwort Letzte Antwort 10. Juni 2025, 15:52

21
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
U This user is from outside of this forum
U This user is from outside of this forum
unexposedhazard@discuss.tchncs.de

schrieb am 10. Juni 2025, 13:14 zuletzt editiert von

#5

They control all the endpoints/clients so even if they didnt, they could change it at any moment as the code isnt open...
1 Antwort Letzte Antwort

18
V venus_ziegenfalle@feddit.org
10. Juni 2025, 11:20

That's not "probably". If they have the key they straight up have access. The key to my house can't just probably unlock the door.
H This user is from outside of this forum
H This user is from outside of this forum
homesweethomemrl@lemmy.world

schrieb am 10. Juni 2025, 13:43 zuletzt editiert von

#6

seriously, that's the most convoluted wording possible for a simple statement. If they have the private keys they have the private keys and there's no need for analysis.
W 1 Antwort Letzte Antwort 10. Juni 2025, 14:50

35
S sciaphobia@sh.itjust.works
10. Juni 2025, 10:49

Which effectively means the messages aren't encrypted. Cool.
A This user is from outside of this forum
A This user is from outside of this forum
athairmor@lemmy.world

schrieb am 10. Juni 2025, 13:51 zuletzt editiert von

#7

It also effectively means they are reading those messages.
1 Antwort Letzte Antwort

25
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
D This user is from outside of this forum
D This user is from outside of this forum
dubyakay@lemmy.ca

schrieb am 10. Juni 2025, 14:01 zuletzt editiert von

#8

Xchat is an irc client though.
S I 2 Antworten Letzte Antwort 10. Juni 2025, 14:34

27
D dubyakay@lemmy.ca
10. Juni 2025, 14:01

Xchat is an irc client though.
S This user is from outside of this forum
S This user is from outside of this forum
sem@lemmy.blahaj.zone

schrieb am 10. Juni 2025, 14:34 zuletzt editiert von

#9

The one true XChat
D 1 Antwort Letzte Antwort 10. Juni 2025, 16:59

10
H homesweethomemrl@lemmy.world
10. Juni 2025, 13:43

seriously, that's the most convoluted wording possible for a simple statement. If they have the private keys they have the private keys and there's no need for analysis.
W This user is from outside of this forum
W This user is from outside of this forum
whostosay@lemmy.world

schrieb am 10. Juni 2025, 14:50 zuletzt editiert von

#10

Weird, I didn't see 'probably' once in your reply.
1 Antwort Letzte Antwort

5
S sciaphobia@sh.itjust.works
10. Juni 2025, 10:49

Which effectively means the messages aren't encrypted. Cool.
E This user is from outside of this forum
E This user is from outside of this forum
encryptkeeper@lemmy.world

schrieb am 10. Juni 2025, 15:05 zuletzt editiert von

#11

I mean they’re encrypted in transit. They’re just not end to end encrypted.
E 1 Antwort Letzte Antwort 10. Juni 2025, 16:56

2
Q quazatron@lemmy.world
10. Juni 2025, 11:44

I'm surprised nobody posted the surprised_pikachu.gif yet.
S This user is from outside of this forum
S This user is from outside of this forum
stopspazzing@lemmy.world

schrieb am 10. Juni 2025, 15:52 zuletzt editiert von

#12
1 Antwort Letzte Antwort

6
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
L This user is from outside of this forum
L This user is from outside of this forum
lemmydividebyzero@reddthat.com

schrieb am 10. Juni 2025, 15:54 zuletzt editiert von

#13

Enshittification continues
1 Antwort Letzte Antwort

1
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
T This user is from outside of this forum
T This user is from outside of this forum
trihilis@ani.social

schrieb am 10. Juni 2025, 15:57 zuletzt editiert von

#14

Yes and? Do people who use X really care about privacy. Everyone who even remotely cared already jumped ship and moved on to matrix, signal, Simplex etc.

And im not even mentioning the fact X is owned by a psychopath. But hey let's pretend they care about your privacy.
1 Antwort Letzte Antwort

6
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
T This user is from outside of this forum
T This user is from outside of this forum
termaxima@programming.dev

schrieb am 10. Juni 2025, 15:59 zuletzt editiert von termaxima@programming.dev 6. Dez. 2025, 18:47

#15

Deleted
1 Antwort Letzte Antwort

4
P pro@programming.dev
10. Juni 2025, 10:16

This post did not contain any content.
https://blog.cryptographyengineering.com/2025/06/09/a-bit-more-on-twitter-xs-new-encrypted-messaging/
C This user is from outside of this forum
C This user is from outside of this forum
cubitoom@infosec.pub

schrieb am 10. Juni 2025, 16:18 zuletzt editiert von

#16

Stop using fascist things.

Stores, websites, apps, cars, hosting, operating systems, and all other providers of goods/services should be audited by you. You should then ask yourself if you want to give them your money and/or your trust.
S 1 Antwort Letzte Antwort 10. Juni 2025, 16:29

29
C cubitoom@infosec.pub
10. Juni 2025, 16:18

Stop using fascist things.

Stores, websites, apps, cars, hosting, operating systems, and all other providers of goods/services should be audited by you. You should then ask yourself if you want to give them your money and/or your trust.
S This user is from outside of this forum
S This user is from outside of this forum
spankmonkey@lemmy.world

schrieb am 10. Juni 2025, 16:29 zuletzt editiert von spankmonkey@lemmy.world 6. Okt. 2025, 18:30

#17

I'm trying, but they keep forcing it into devices I already own and even with turning it off in the settings sometimes it gets turned back on during updates. At least avoiding the X/shitter bot is easy enough, but the rest are just as invasive.
A 1 Antwort Letzte Antwort 10. Juni 2025, 16:58

5
E encryptkeeper@lemmy.world
10. Juni 2025, 15:05

I mean they’re encrypted in transit. They’re just not end to end encrypted.
E This user is from outside of this forum
E This user is from outside of this forum
elvith@feddit.org

schrieb am 10. Juni 2025, 16:56 zuletzt editiert von

#18

Do not look at all those (proprietary) E2EE definitions to closely - you might find several that define TLS as end to end...
E 1 Antwort Letzte Antwort 10. Juni 2025, 18:21

6
S spankmonkey@lemmy.world
10. Juni 2025, 16:29

I'm trying, but they keep forcing it into devices I already own and even with turning it off in the settings sometimes it gets turned back on during updates. At least avoiding the X/shitter bot is easy enough, but the rest are just as invasive.
A This user is from outside of this forum
A This user is from outside of this forum
attacker94@lemmy.world

schrieb am 10. Juni 2025, 16:58 zuletzt editiert von

#19

Out of curiosity what devices are giving you these issues? I may know of some alternatives depending.
S 1 Antwort Letzte Antwort 10. Juni 2025, 17:04

1
S sem@lemmy.blahaj.zone
10. Juni 2025, 14:34

The one true XChat
D This user is from outside of this forum
D This user is from outside of this forum
drspod@lemmy.ml

schrieb am 10. Juni 2025, 16:59 zuletzt editiert von

#20

inb4 the logo looks like this:
B 1 Antwort Letzte Antwort 11. Juni 2025, 06:04

8

Anmelden zum Antworten

6/48

10. Juni 2025, 13:43

42 ungelesen

E

EU says it will continue rolling out AI legislation on schedule
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
48 vor 27 Tagen
vor 27 Tagen
1

92 Stimmen

4 Beiträge

55 Aufrufe

A vor 27 Tagen

I just can't get over how little we hear from academics RE: AI. It shows a clear disinterest and I feel like if they did bother to say anything it would be, "Proceed with caution while we study this further." Instead it's always the giant corporations with vested interest in this technology succeeding. It's just so painfully transparent.
N

In a First, America Dropped 30,000-Pound Bunker-Busters—But Iran’s Concrete May Be Unbreakable, Scientists Say
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
48 30. Juni 2025, 19:19
25. Juni 2025, 20:30
1

420 Stimmen

113 Beiträge

978 Aufrufe

D 30. Juni 2025, 19:19

deleted by creator
A

America’s drone 9/11 is coming — and just like on 9/11, we aren’t ready
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
48 19. Juni 2025, 04:57
19. Juni 2025, 03:18

77 Stimmen

21 Beiträge

211 Aufrufe

G 19. Juni 2025, 04:57

Because the trillions is the point.. Not security.
B

Half of companies planning to replace customer service with AI are reversing course
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
48 16. Juni 2025, 16:09
13. Juni 2025, 21:07
1

904 Stimmen

179 Beiträge

5k Aufrufe

K 16. Juni 2025, 16:09

Most jokes need to be recognizable as funny? Like if you say the word cucked, ever, I'm going to assume you're serious and an imbecile and I would be right to do that, no?!
M

This Month in Redox - May 2025
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
48 5. Juni 2025, 01:34
5. Juni 2025, 01:34

21 Stimmen

1 Beiträge

14 Aufrufe

Niemand hat geantwortet
A

My AI Skeptic Friends Are All Nuts
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
48 10. Juni 2025, 20:21
3. Juni 2025, 12:16
1

13 Stimmen

31 Beiträge

271 Aufrufe

J 10. Juni 2025, 20:21

I did read it, and my comment is exactly referencing the attitude of the author which is "It's good enough, so you should use it". I disagree, and say it's another dumbass shortcut to cash grab on a less than stellar ecosystem and product. It's training wheels for failure.
D

The Document Foundation is proud to release LibreOffice 25.2.3
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
48 9. Mai 2025, 10:44
8. Mai 2025, 16:11
1

265 Stimmen

7 Beiträge

80 Aufrufe

S 9. Mai 2025, 10:44

View -> User Interface -> Tabs It already exists but is nowhere near as good as MS Office (like everything with LO).
D

X.com blocks access to Ekrem Imamoglu, leader of Turkey political opposition
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
48 9. Mai 2025, 22:39
8. Mai 2025, 12:02
1

587 Stimmen

77 Beiträge

567 Aufrufe

F 9. Mai 2025, 22:39

When a Lemmy instance owner gets a legal request from a foreign countries government to take down content, after they’re done shitting themselves they’ll take the content down or they’ll have to implement a country wide block on that country, along with not allowing any citizens of that country to use their instance no matter where they are located. Block me, I don’t care. You’re just proving that you can’t handle the truth and being challenged with it.