• 0 Posts
  • 23 Comments
Joined 2 years ago
cake
Cake day: June 12th, 2023

help-circle



  • Sorry for not replying in some time.

    You may be happy to know that you convinced me to at least give Matrix a try. So, you won? lol

    I stood it up on one of my public servers via Docker with Traefik, and I am able to connect with a client. I cannot, however, for the life of me figure out how to get the federation side of things working in Traefik, so if you know anything about that I would sincerely appreciate the help. At least with it running and accepting client connections, I can have chats with the people I allow to set up an account on my server. It also gives me a chance to play with the bridges.

    I still REALLY don’t like all the data Element (and Element X) collect on iOS, and I refuse to use it. FluffyChat sems ok, though…


  • My turn for a wall of text, sorry!

    I do appreciate your preface, and I can certainly empathize with your frustration. Like you, I think that secure, private communications is generally a good thing and I am happy that there are awesome FOSS devs and groups devoting their time and skill to try and bring stuff like that to life. It is inspiring and I really do appreciate it. I, too, have had many a similar conversation :)

    That said, I cannot disagree with your “it’s not that hard” statement. At best it’s well meaning but wrong, and at worst it is dismissive and counterproductive. Every change of any kind has a cost, as you pointed out (correctly): there is always some friction. When it comes to something that most non-tech enthusiast users view as pretty insignificant as messaging platform’s privacy policies, any entrant is going to need to have a lot going for it to overcome the existing market inertia of the current players.

    Honestly speaking, most people settled on their chat platforms of choice out of convenience a long time ago. Their friends used WhatsApp, so they hopped on. Meta bought them, but did that drive anyone away? Not really. They changed their privacy policy in ways that raised all sorts of alarm bells, but did it really change anything with their general user base? The fact that they still have somewhere between 2 and 3 billion people on the platform would seem to suggest it didn’t have much, if any, effect either.

    And it is important to highlight that that sort of inertia - a single platform being used by somewhere between a quarter and a third of every human being on this planet - is what needs to be overcome. Even Signal, arguably the current most mainstream FOSS app designed for private (though not anonymous) communication, which has been operating for around half a decade and has millions of dollars behind its development, has only managed to capture a measly 50 million or so users.

    Then there’s the reality that these standards keep changing which leads to new apps and protocols coming out. Again, I don’t view this as a bad thing as a techie, but it could lead a reasonable user to ask: “why bother switching to this platform when I just switched to that other platform a year or two ago?”.

    I don’t think the argument you are trying to make is that the overwhelming majority of people should be onboard with chasing after a new, more secure/private/anonymous/whatever platform every few years, but that’s what it honestly amounts to at this point. No platform has everything, and even if something were written today that does have the everything of today, there’s nothing to stop someone else from developing something new to entice people away yet again especially when you factor in profit motive to do stuff like that (case in point could be Meta’s entering, and planned expansion within, the fediverse).

    None of the above should be seen as arguments to accept the status quo or that people shouldn’t be looking to move to something better. I wrote the above only to illustrate that moving platforms, especially for non-technical users, really is hard. It’s frustrating for me because I, like you, would love to see users move to privacy-respecting and secure platforms. The reality, though, is that most people genuinely just don’t care; nothing can make that more clear to me than WhatsApp. That is why having bridges (that wouldn’t break native security and privacy features and wouldn’t potentially get your account banned) would have been a gigantic feature that maybe could have enticed the average user. Unfortunately, that is not what the Matrix bridges do so I am left without a strong reason for even me, as a technical individual, to move off my current platforms.

    Matrix doesn’t provide better encryption than Signal (or even WhatsApp, ignoring the privacy side), it still requires trust someone just like Signal (your own paid, or someone else’s, server vs Signal’s servers), and even if I do adopt it I don’t know that I would feel comfortable trying to convince the few members of my social groups to move as well given they are entrenched in their platforms and don’t value the few additional benefits Matrix would seem to bring over something like Signal (which most of them didn’t switch to, either).

    I would love something like Matrix to “win” if it is as good as you say it is, but if its biggest (maybe only) selling point is privacy and security then I really don’t think most users will move. Given Signal’s security and seeming lack of a profit motive to sell my metadata, I am also ok (though not necessarily screaming with joy) with what they offer as well.

    If you feel I missed or got anything wrong, I am open to hearing it! I feel we agree on way, way more than we do not.



  • Same to you regarding the politeness, I’m appreciating the conversation!

    I’m with you regarding Facebook Messenger and even (to a more limited extent) WhatsApp Messenger. Their motivation is to provide the cheapest ways possible to keep you engaged with their platform so they can collect as much data about you as possible to sell. That is their reason for existence, essentially. Whether that trade off is worth it to the individual user is up to them, and I have decided it is not worth it for me.

    Where I’m getting confused is with your characterization of Signal. It is neither closed source, nor is it a for-profit company. It is a non-profit organization whose mission is “to develop open-source privacy technology that protects free expression and enables secure global communication.”. The app they built leverages end-to-end encryption, and you can find their source code here.

    I will be honest, I feel Signal is the closest I’ve found to a FOSS, E2EE messaging solution that has a chance at some adoption by people who aren’t technology enthusiasts. It makes some compromises to achieve that - the fact that your account must be associated with a valid phone number is a point of frustration for privacy advocates, and it isn’t perfect when it comes to anonymity in some ways - but it is encrypted. It seems to favor security over anonymity, which is something with which I have seen the average user be able to get onboard.

    Given the ease of use and security of Signal, it leaves me even more confused as to where some of the competitors differentiate themselves in ways that would make most people are likely to adopt them.


  • Thanks for replying!

    There are lots of services using E2EE, so I’m really not sure this is a unique benefit of Matrix and would not convince me to use Matrix by itself. It is a fair point in favor of Matrix, though!

    I already use enough platforms as it is given what the individuals with whom I speak are already using. I’ve convinced some to standardize on platforms using E2EE, but the overwhelming majority of people who are not technology enthusiasts cannot be bothered to mess with something more complicated than what comes with their phone or the services that they’re already using (and fair enough, this isn’t a knock on them).

    For that reason, the bridges Matrix offers are the only feature I’ve heard of so far that might make me switch. Unifying the services I already have to use due to what is used by my friends, family, and colleagues would be killer, but if they don’t at least leverage the E2EE supported by those services’ native apps, it negates pretty much all benefits for me. Yes, using stuff that isn’t encrypted in the first place isn’t ideal, but the answer to that for me is not “well, it’s already visible to some people so trusting the admins for this other third party service isn’t a big deal”. Additionally, integrating with services that do natively support E2EE in a way that breaks that E2EE is a huge step backward. I don’t blame Matrix for this, but it also doesn’t win any points for it in my mind.

    Thank you for dispelling my misconception about the data replication!

    To gain widespread adoption, any protocol will have to have friction-free sign up and usage, which is a tough nut to crack given how sharded chat already is and has always been. Email, which Matrix strives to emulate, was an established standard that predated most users’ access to the internet by a decade and a half or more. Conversely, chat has basically always been fragmented and siloed.

    Unification would be a killer feature that would even have a chance of convincing non tech enthusiasts to switch, which could then lead them to start switching more of their communications over to native Matrix traffic as more of their friends also switch (relying less on the bridges over time). Given doing what I’ve described above requires compromises on security, though, I can’t see a path to wide adoption for this protocol (which really makes me sad). Since I don’t see a path for it pulling in non tech enthusiasts, and the bridges can break other platforms’ existing security, I don’t see myself adopting another platform for chat.

    Please let me know if I’m still getting anything wrong!


  • Hey, thanks for taking the time to reply!

    I’m still not sure that moving our trust from a megacorp (as you put it) to some random person or organization running a Matrix server is an improvement. Even assuming the Matrix server admins aren’t selling your data out the back door, there’s no guarantee their admin accounts, or the server itself, isn’t compromised by those same corporations or others, allowing them to harvest all your data (and potentially more of your data than would be possible if you were using at least some of these services natively).

    I respect that you have your opinion, but I’m not sure it makes sense to move trust from one organization/corporation to another is guaranteed to be an improvement.

    From a security perspective, Signal seems to be brought up the most in these conversations, so I am surprised that you called it out between WhatsApp and Discord. Do you have any evidence that the Signal foundation is spying on its users, selling their data, or that the E2EE they natively employ is compromised?


  • I’m a fairly technical guy, but I genuinely cannot figure out why I’d want to use Matrix at this point.

    My understanding, which may be wrong, is that it can communicate on its own encrypted standard, and that there are bridges that allow it to communicate with other services like Signal and WhatsApp. You have to register for a home server, which essentially means trusting the individual(s) running that home server not to abuse that privilege, especially considering that not all features are supported by the bridges to other protocols at this point (including end-to-end encryption in some cases), so they may have access to your unencrypted content. Not only that, but your data is then replicated on other servers where the other participants in your conversations are registered, which means you essentially need to trust all those other admins as well.

    Then there are the clients, which (at least on iOS) seem to be few and far between. The (seemingly) most popular, Element, appears to collect a crap-ton of personal information - including user content!

    I was a big fan of Trillian back in the day, which sought to unify AIM/MSN/ICQ/etc. into one place; am I correct in thinking Matrix seeks to do something similar today?

    Given the seemingly large amount of trust you need to put in potentially numerous individuals and organizations, is the convenience of a unifying protocol that may or may not bring your various chat and calling services under one roof with varying levels of compatibility and security (not to mention the apps, some of which appear to collect everything under the sun about you) worth it?




  • Have any sources to back up your claims?

    According to KBB, the average American drives around 37 miles per day. That means that the overwhelming amount of driving could be accomplished by a plug-in hybrid, let alone a fully electric vehicle. When it comes to the occasional long road trip (what, once a year or less for the average person?), is it worth burning - and paying for - gas for the thousands of miles that could be easily covered by even the most pathetic of electric vehicles’ range without issue just so you can save a bit of time pumping fuel and hitting the convenience store rather than stopping a bit longer to charge up? In those cases, it may even be cheaper to rent a gas vehicle for the occasional road trip if if is that big of a concern for you.

    Your use case may be different than mine, but I can’t think of too many trips where I couldn’t stop for a half hour here and there to charge up a bit. Most people, especially people with kids, have to stop periodically anyway, so use that time to charge up and you won’t even notice. It’s true that, especially in the particularly sparsely-populated western United States (speaking from a US perspective), some route planning may still be required, but that will get better as more people buy EVs.

    Why are battery swaps even entering the conversation? Are engine swaps a concern for most people purchasing a new car? According to J. D. Power, every EV in the US comes with at least an 8 year or 100k mile warranty on the battery. Some manufacturers, like Hyundai, have a lifetime warranty on the battery. Most batteries are expected to last somewhere between 100k - 200k miles, which is often longer than the rest of the car will hold up and certainly competitive with combustion vehicles.

    If you want a serious argument detailing a real struggle with which EV manufacturers and the market/government must contend, then here you go: apartment dwellers. From a US perspective, you pretty much have to own your home or work somewhere that provides charging parking spots to be able to fully take advantage of the benefits of an EV. While using a public charger is a viable option, it is more expensive than charging at home (though, in my research, it is still cheaper than gas).

    EVs make sense for a super-majority of the driving that takes place today by normal people in North America. If you don’t own your home, want to tow a boat, or travel hundreds of miles a day on a regular basis, then EVs will serve your needs somewhere between “fairly well” to “not at all”.

    If “range anxiety” is the only thing keeping people from pulling the trigger on an EV, I strongly suggest they consider the possibility of renting a car for the rare cross-country trip if finding a DC fast charger every once and a while and spending a little extra time at each stop isn’t a viable option for them.


  • mreiner@beehaw.orgtoMemes@lemmy.mlFreedom units 💯
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    1 year ago

    Ah, I guess I misread (in my own research) or somehow missed that a degree change in Celsius was directly pegged the same degree change in Kelvin (shifted by 273.15 ) when the Kelvin scale was updated to be pegged to the Boltzmann constant. Thank you for helping me understand where my understanding was flawed!

    I guess I still don’t understand the utility of Celsius, though. If it’s really just an alias, shifted by 273.15, for Kelvin, what utility does Celsius offer? Why not just use Kelvin?


  • mreiner@beehaw.orgtoMemes@lemmy.mlFreedom units 💯
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Apologies, but I have no idea what you’re talking about.

    Both Celsius and Fahrenheit are based off the exact same thing: the freezing and boiling points of water. Fahrenheit just gives you more resolution between the two (180 degrees for Fahrenheit vs 100 degrees for Celsius), but otherwise they operate in the same way.

    I agree that the underpinnings of the weight and distance measurements used in the Imperial system are silly, but they are still just as accurate as the weight and distance measurements in the metric system. The metric system’s units for weight and distance are more logical and easier to use, but that doesn’t make them more accurate given modern measurement methods.

    I think the US should adopt the metric system in general, but I honestly don’t see the point in bringing Celsius along with the rest of the measurement standards.

    I honestly see zero benefit to Celsius over Fahrenheit: they are both pegged to the boiling and freezing points of water, Celsius was just unnecessarily limited in the number of degrees between those two points. Beyond that limitation of Celsius, there’s basically zero difference between it and Fahrenheit.


  • mreiner@beehaw.orgtoMemes@lemmy.mlFreedom units 💯
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Respectfully, I don’t think you are completely correct.

    While you are right that Kelvin is tied to absolute zero, it is also defined in such a way that a change in 1K corresponds to a change of thermal energy kT by 1.380649×10−23 J (the Boltzmann constant).

    It is the difference in what 0K describes, along with the fact that a change in temperature equals a specific change in thermal energy (the measured value to which I previously referred), that separate it from Celsius. In Celsius, zero is the freezing point of (mostly pure) water (at sea level), and a change in temperature has no relationship to a specific/prescribed change in thermal energy.

    https://en.m.wikipedia.org/wiki/Kelvin


  • mreiner@beehaw.orgtoMemes@lemmy.mlFreedom units 💯
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    1 year ago

    Honest question: other than the number of people using Celsius, what benefits does Celsius bring over Fahrenheit?

    Even the scientific community felt the need to hollow out the Celsius scale, leaving the numerical values of Celsius in tact but otherwise completely decoupling the scale from the properties of water when it created kelvin. It instead moved to measured values, like basically all other SI/metric units.

    Celsius is there to describe water. Well, it’s used to describe a mostly pure form of water. Well, it’s used to describe a mostly pure form of water at around sea level. So, why does that make Celsius more relevant or useful for temperatures than Fahrenheit?

    Frankly, it feels like Celsius is, to the rest of the world, what the Imperial system is to the US: a vestige of times past that has been supplanted by a better, measurement-based standard, but has yet to be abandoned because it is so entrenched in popular culture.


  • mreiner@beehaw.orgtoMemes@lemmy.mlFreedom units 💯
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    I’m sorry, but Fahrenheit has nothing to do with the errors you cited. Hell, even the overall Imperial system, silly an (mostly) antiquated as it is, has nothing to do with the examples you cited.

    The expensive failures you listed were caused by a lack of standardization. Those failures wouldn’t have taken place if every international agency had standardized on the Imperial system or the metric system.

    Your point is not only a nonsensical non sequitur, it is also wrong.