Comment by londons_explore

Comment by londons_explore 4 days ago

3 replies

View on Hacker News

I don't trust un-auditable client applications...

If you want to assure me your e2e is secure, there must be at least two clients implemented by different people, with at least one of them opensource.

Whatsapp used to have this, but lately they have cracked down on third party clients.

mschuster91 4 days ago

> Whatsapp used to have this, but lately they have cracked down on third party clients.

Blame spammers on that. The amount of scammers and spammers on Whatsapp is unreal.

Reply View 0 replies
rvnx 4 days ago

Even if they have, this doesn't prevent from turning on a feature flag, or push an experimental build to some users.

Reply View 1 reply
  • londons_explore 4 days ago

    If there is a 2nd opensource client written by someone else, you would hope they would raise the alarm when asked to implement "feature flag 437 means send all the crypto keys to the server".

    Reply View 0 replies