So we know the UK, France, Sweden and Australia all have “pondered out loud” about getting platforms like Signal to allow backdoors into encrypted calls and messages.
This creates a sense of safety about these platforms being secure, because governments want to come after them.
Here’s a tinfoil hat take: Five Eyes is significantly reducing inter cooperation. The non-fascist parts of the alliance don’t want to share with the obvious authoritarian, but the authoritarian one used to share the fruits of their established backdoors with them, and now they don’t.
Note that the US isn’t asking signal for a backdoor. Why? Back in 2015-2016 (last years of Obama), Apple had a loud and visible feud with the FBI. Since the authoritarian came to power, this all disappeared from the media. Interestingly, 10 years have gone by since that moment, every single aspect of our lives has become more surveilled, and somehow the US govt has stopped trying to get into phones? *While the CEO is making hand deliveries of 24 karat gold bars to the Oval Office?
TLDR; I think a safe assumption that they are in our devices by now. Fundamentally people misunderstand encryption. Encryption is only as strong as the weakest link. If your signal chats are unencrypted for consumption on your device, then that’s when the unencrypted content can be captured.
For the longest time, Apple stored your iCloud backups encrypted. Looked good in marketing materials, until they casually admitted the decryption key is stored in the same cloud.
Combine this with ICE capturing citizens without due process. If you have a vanilla smart device, you’re doing the surveillance for them. /tinfoilhat
~this is OG content created by me, a Lemmy user. Please don’t go too .ml on me in the comments.~
On linux you can access your Signal messages in db.sqlite.
once you delete a message from signal, either through disappearing messages or manually, all those messages are deleted from the db.sqlite.
They are stored in an encrypted db.sqlite here:
/home/user/.config/Signal/sql/db.sqlite
you can also extract it from you phone:
only the messages that you can see when you open the Signal app are visible there.
to access the messages:
install:
signal-bakcup-tools-git
https://github.com/bepaald/signalbackup-tools
and
DB browser for sqlite
https://sqlitebrowser.org/
++++++++++++++++++++++++++++++
The most straight forward way is to create an output file to html.
copy the db.sqlite to a new directory
open a terminal and run
signalbackup-tools --exportdesktophtml signal.html
this will create folders of all your contacts and messages and media.
easily acessible. open the signal.html files in your browser
=+++++++++++++++++++++++++++++++++++++++
To open db.sqlite as a Sqlite database;
first you need to get the key:
copy the db.sqlite to a new directory
then run in terminal:
signalbackup-tools db.sqlite --showdesktopkey
OpenSSL 3.3.2 3 Sep 2024)
Signal Desktop key (hex):
58bfa167bb66b2b13b2ca6eadc33f4bf7275c254006d17ae5e3de5356c60f0b7
copy the key to a text editor
===========================
you must now add 0x to the beginning of that line:
0x58bfa167bb66b2b13b2ca6eadc33f4bf7275c254006d17ae5e3de5356c60f0b7
then open db.sqlite with the sqlitebrowser
right click db.sqlite, select open with DB Browser for sqlite
select RAW from the dropdown menu
input the passphrase from above. make sure you added the 0x to the beginning.
The entire database opens.
you can view all the information that signal collects. phone numbers, messages, images, media etc
+++++++++++++++++++++++++++++++++++++++
this is the difference between Molly and signal.
In Molly you can password protect db.sqlite, Signal removed this a while ago
Very interesting, thanks for sharing. I beginning to see why tariffs are being slapped on aluminium now!