 |
Post AtMfS1xurM68hkRYJs by [email protected] |
 |
More posts by [email protected] |
|
Post #AtLbDhVlW5T8ErEBDE by [email protected] |
|
0 likes, 3 repeats |
|
|
|
Let's talk about xPal, which purports to be an encrypted messaging app. htt… |
|
|
|
Post #AtLbDhcr5j8kaqXqGO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
So, right off the bat: "Military-Grade AES-256 Encryption" is a red f… |
|
|
|
Post #AtLbDhkIe35wxw1mro by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Earlier, when I thought I had enough motivation to blog about it, I decided to … |
|
|
|
Post #AtLbDhrODglZJvLRuy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Since it's all React.JS, I did the lazy thing: Looked in the assets directo… |
|
|
|
Post #AtLbDhyTnKRBfuf6y8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
None of this is particularly interesting. Lots of people ship god awful cryptog… |
|
|
|
Post #AtLbDi5ZMy6o1tym1I by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Their vaunted "cyber security audit" from Dekra is just a checklist e… |
|
|
|
Post #AtLbDiCewbmQNtIR4S by [email protected] |
|
0 likes, 0 repeats |
|
|
|
I'm not going to bother digging further to see how keys are managed. For al… |
|
|
|
Post #AtLbDiKSTc1Cm4wfE8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@soatok > this thing is either a textbook example of developer hubris or it… |
|
|
|
Post #AtLbDjsAjka3Yvj6Po by [email protected] |
|
0 likes, 0 repeats |
|
|
|
One last thing, which is kind of funny: They also claim to be "patented&qu… |
|
|
|
Post #AtLbDl9DzpobW6iEdM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Bonus: When I was originally going to blog about this (before I decided it just… |
|
|
|
Post #AtM5Km02E13koJfsdE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dascandy If I were a betting dhole, I'd put my money on "law enforcem… |
|
|
|
Post #AtM5Km6PqIAD86eyZs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok I'd be willing to put down a tenner, but I don't think I can fi… |
|
|
|
Post #AtM5KmCRTsz5QnTmyG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dascandy Another prospect that was raised: "developed by AI" |
|
|
|
Post #AtM5KmHlA7EnhHy2G8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@soatok I had that typed up but deleted it. I don't want to think about tha… |
|
|
|
Post #AtM9hOZbtAi6dHMCS8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok ah, new soatok write-up dropped, time to a few more concepts to the rea… |
|
|
|
Post #AtM9hOh3RUfJ0Mq93Y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok also: another write-up has hit the messengers, sir.https://chaos.social… |
|
|
|
Post #AtM9i7z13YlrT6acng by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok The name of the app sounding like a merger of x.com and PayPal is the f… |
|
|
|
Post #AtM9kKt43CPg4JrJ2m by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok patent security in the sense of patent medicine |
|
|
|
Post #AtM9kZ0JZ2WzqrMIHw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok @dascandy oh no, are the dark days of vibe cryptography now upon us? |
|
|
|
Post #AtM9kZ8762lmF30WRc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@crypticcelery @soatok @dascandy "vibe cryptography" should only ever… |
|
|
|
Post #AtM9kZE8jdaeXjpKq0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@KayOhtie @soatok @dascandy like vibe coding before it was cool? https://buttpl… |
|
|
|
Post #AtM9lKjI7dR1rxlNQ0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok They actually use GCM? I had my hopes pinned on ECB! |
|
|
|
Post #AtM9lsC9hL8Df2WOUS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok and that's all the analysis I need to hear 😅 |
|
|
|
Post #AtM9nLw2buuGBhgp96 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok You missed a prime opportunity for "Turd-Party Security Audited&qu… |
|
|
|
Post #AtM9nPCSTKoyJUOTeS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@lothaekor @soatok To be fair, it IS third party security audited - Soatok look… |
|
|
|
Post #AtM9q7kzmUGp5FqQoC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok Honestly from the most cursory ever skim of their trademark history poi… |
|
|
|
Post #AtM9qDpTClPlurz5cG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok something about shoes or leather?Edit: patent leather is shiny, so they… |
|
|
|
Post #AtM9qYYW8zKeCNDLbk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok once I saw "military encryption" my 'this is defo either … |
|
|
|
Post #AtM9qZxiul5YYq0zXE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok In a past life I worked on browserify. That shim predates the WebCrypto… |
|
|
|
Post #AtM9qxzJaUcd4iwbLc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok Anyone using something with "X" in the name now... well lets … |
|
|
|
Post #AtM9qy63BS0fPc5yqW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@angelthorns @soatok Eh, X is fine (although if math teachers want to know so b… |
|
|
|
Post #AtM9vnUs1KWXzB0WXo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@terinjokes @soatok it can’t be directly replaced with webcrypto because that… |
|
|
|
Post #AtM9vnbbcHuaK49u2i by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@easrng @soatok A true, I forgot about the function coloring. Thanks for the co… |
|
|
|
Post #AtM9wZwVtr9mEoJHIO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@angelthorns @soatok ... Hold on. Should I be concerned about my usage of Simpl… |
|
|
|
Post #AtM9zLBJErb5KDY0bA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@terinjokes Yeah, I'd love to kick that hornet's nest. |
|
|
|
Post #AtMA217qGLSRzXCaEy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] this stink like a sting operation fr |
|
|
|
Post #AtMA3RM4EB7nd8XBdA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatokOld family recipe for encrypted hams! |
|
|
|
Post #AtMA4DgGYNnpVgLzmK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok Honestly I don't think most people do. Someone I worked with absolu… |
|
|
|
Post #AtMA9kpKkBrPl8Ea24 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] @[email protected] any math that uses… |
|
|
|
Post #AtMA9kwQJpX277YF5E by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Natsura @soatok @angelthorns always has been |
|
|
|
Post #AtMACXWWf6brMtlVEe by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok "Military grade" means "Built by the lowest bidder" |
|
|
|
Post #AtMAD6TugoJfmvoPWS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@finalstaticfox @soatok That's really a common misconception. it's real… |
|
|
|
Post #AtMAD6biDoYSB7Sdg8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tekhedd @finalstaticfox @soatok First rule of government spending: Why build o… |
|
|
|
Post #AtMADVOS4Fnn3ERtyq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tekhedd There's an SMBC about this, but I can't find it. |
|
|
|
Post #AtMAEvwWqHLfgP4MJU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok @dascandy 🤡 🍿 |
|
|
|
Post #AtMAEzUfdnRQhA4ARk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok "military grade encryption" is just a corpo meme. It means &q… |
|
|
|
Post #AtMAGo7ssNMC1DH47M by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] Seems I have seen many military-grade RGB Software Solut… |
|
|
|
Post #AtMAIrdUnV6XU22bWS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok ok but what happens if you set a PIN that's a palindrome? |
|
|
|
Post #AtMAJZncbDLeSB7JPk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@crypticcelery @gsuberland oops |
|
|
|
Post #AtMAJje3zbe0zQiou8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok If they're really patented, I'd like to see their patent number… |
|
|
|
Post #AtMAJyXAdW2lAOc1k8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@quantumsys @angelthorns https://soatok.blog/2025/01/20/session-round-2/#tranqu… |
|
|
|
Post #AtMALRI5Cn2sdxFlMO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok hey if you violate someone else their patent you can still claim your t… |
|
|
|
Post #AtMANfhMbnGTuK8tvM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dascandy @soatok If they attack Soatok in multiple forum posts and comments, a… |
|
|
|
Post #AtMANvLyP5f4ScG2nw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@finalstaticfox @soatok thats why its called Military, not Megatary |
|
|
|
Post #AtMARI7KE181vi0nUO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
"Military grade" means "a journalist at The Atlantic can see you… |
|
|
|
Post #AtMARIGBh4DYNC9sIq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
my poor notifications #text #image #politics |
|
|
|
Post #AtMARmoG6xIT7YKVZg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@leafygreens I actually tested this. It lets you set it at first, but you canno… |
|
|
|
Post #AtMAUBvVhKd9bBru40 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok This is yet another reason to never use them. Software patents are comp… |
|
|
|
Post #AtMB7lb90QSnWfDI1I by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@soatok It's advertised as Ultra, so I'm sure it's fine. |
|
|
|
Post #AtMCuCuiqjUY6A26dc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@xoagray @soatok At this point its more and more like typical scams.Ultra secur… |
|
|
|
Post #AtMFfrsaYefYfZtBQm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok if only there were some peer-reviewed, decentralized, open source techn… |
|
|
|
Post #AtMFlC3exhbahTbgVE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok lol, dekra is one of the places in Germany where they check your car an… |
|
|
|
Post #AtMe7f6s1hlq4cM5kO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok From the contents of the decompiled index.android.bundle it looks like … |
|
|
|
Post #AtMe7fEJa1j2Rhq2Lo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@naph Yeah it looks like RSA + AES |
|
|
|
Post #AtMenvpSFuBy5bMgzI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@xoagray @soatok Security is habits.I personally recommend everyone uses encryp… |
|
|
|
Post #AtMfS1xurM68hkRYJs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok Their patent is from Canada, you probably haven't met them. |
|
|
|
Post #AtNFDEOByz0ZF5yaLA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok exactly.It's very dishonest marketing bs. |
|
|
|
Post #AtWDUAUrFz6GbigL7g by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok So that’s a no to palindrome PINs huh? 😅 |
|
|
|
Post #AtefAXryzz93HqbpWy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@soatok @catsalad The name xPal sounds like 'former friend'. |
