Is it about the geopolitics or did SaveSocial's marketing campaign "digital independence day" last weekend (look for #DIday and #DIDit) also contribute? I'm not sure how visible that was internationally or if it was just a German campaign.
this post was submitted on 09 Jan 2026
441 points (99.1% liked)
Europe
8383 readers
2007 users here now
News and information from Europe πͺπΊ
(Current banner: La Mancha, Spain. Feel free to post submissions for banner images.)
Rules (2024-08-30)
- This is an English-language community. Comments should be in English. Posts can link to non-English news sources when providing a full-text translation in the post description. Automated translations are fine, as long as they don't overly distort the content.
- No links to misinformation or commercial advertising. When you post outdated/historic articles, add the year of publication to the post title. Infographics must include a source and a year of creation; if possible, also provide a link to the source.
- Be kind to each other, and argue in good faith. Don't post direct insults nor disrespectful and condescending comments. Don't troll nor incite hatred. Don't look for novel argumentation strategies at Wikipedia's List of fallacies.
- No bigotry, sexism, racism, antisemitism, islamophobia, dehumanization of minorities, or glorification of National Socialism. We follow German law; don't question the statehood of Israel.
- Be the signal, not the noise: Strive to post insightful comments. Add "/s" when you're being sarcastic (and don't use it to break rule no. 3).
- If you link to paywalled information, please provide also a link to a freely available archived version. Alternatively, try to find a different source.
- Light-hearted content, memes, and posts about your European everyday belong in other communities.
- Don't evade bans. If we notice ban evasion, that will result in a permanent ban for all the accounts we can associate with you.
- No posts linking to speculative reporting about ongoing events with unclear backgrounds. Please wait at least 12 hours. (E.g., do not post breathless reporting on an ongoing terror attack.)
- Always provide context with posts: Don't post uncontextualized images or videos, and don't start discussions without giving some context first.
(This list may get expanded as necessary.)
Posts that link to the following sources will be removed
- on any topic: Al Mayadeen, brusselssignal:eu, citjourno:com, europesays:com, Breitbart, Daily Caller, Fox, GB News, geo-trends:eu, news-pravda:com, OAN, RT, sociable:co, any AI slop sites (when in doubt please look for a credible imprint/about page), change:org (for privacy reasons)
- on Middle-East topics: Al Jazeera
- on Hungary: Euronews
Unless they're the only sources, please also avoid The Sun, Daily Mail, any "thinktank" type organization, and non-Lemmy social media (incl. Substack). Don't link to Twitter directly, instead use xcancel.com. For Reddit, use old:reddit:com
(Lists may get expanded as necessary.)
Ban lengths, etc.
We will use some leeway to decide whether to remove a comment.
If need be, there are also bans: 3 days for lighter offenses, 7 or 14 days for bigger offenses, and permanent bans for people who don't show any willingness to participate productively. If we think the ban reason is obvious, we may not specifically write to you.
If you want to protest a removal or ban, feel free to write privately to the primary mod account @EuroMod@feddit.org
founded 2 years ago
MODERATORS
DID stemms from a Talk AG the CCC this year. It is a month old and was held in german. I think this isnt DIDs work here
If only the threat didn't (also) come from inside the house when it comes to privacy. I don't want my national police to have full access to my chats at all times any more than I want the USians to have that access, possibly even less. FBI or CIA isn't going to personally bust down my front door, arrest me and seize all my computing devices because I called a local politician a dick.
Unfortunately Threema the European alternative thatβs at least as secure as Signal costs money - and that one time fee is enough to send everyone to Signal.
As much as I praise Threemaβ¦ it frankly sucks compared to the alternatives. Delayed message delivery, sometimes no notifications, somehow dated looking Uiβ¦
load more comments
(1 replies)
Welcome to the club!
Like one of the main things Signal is really terrible at given that it is based in the US and hosted on AWS servers π€¦
I believe the fact that Signal is hosted on Apple or Google clients is worse than its server host. (I still use and recommend it though)
Convincing people to use an open Android build is much harder than installing another messenger.
It's e2e encrypted. Although, as I noticed, the key is just a short pin, unless you use password, but the recipient might not use it and your messages are just as secure as your recipient.
The PIN isn't actually the encryption key, it's just a display lock for the local client. But if whoever wants to read your messages has physical access to your phone and already bypassed the normal android lockscreen, you're fucked anyway.
The other party is always the weakest link.
But also signal's pins are a little more complicated than that, but you're right, switch to a passphrase.
Plus side, even if signal themselves edited the secure enclave, the world would need a new client pushed and probably notice something was off.
The way signal's encryption works is really an art in paranoia.
the world would need a new client pushed and probably notice something was off.
Not if the US have the support of Google.
Totally not how the APK teardown community works, but ok.
How does APK teardown help if Google can replace the app unnoticed?
Because there will always people running Signal from a different source, and only one of them is sufficient to notice the server has been tampered with.
(And I'm not sure if they have reproducible builds yet, but if they do, people can also verify that even the Google Play-provided APK does or doesn't match the published source code.)
notice the server has been tampered with.
Which server?
doesnβt match the published source code
People don't control their phone. There is no way of knowing if the installed app is the one that is running.
And? That doesn't help at all if the US government decides to force Signal to stop servicing Denmark.
It helps in that they still can't read your messages. The EU is likely to make e2e messaging illegal before the USA cuts access.
You can't really make e2ee messaging illegal, at least it is impossible to enforce with decentralized open-source messengers.
It is much more likely that the US will mess with Signal, than that you will stop being able to use an e2ee messenger like XMPP, which is just as secure as Signal regarding the e2e encryption.
The issue is that it's already pretty hard to convince people to use something easy like Signal, most people just don't care enough for something "complicated" like XMPP-based messengers, especially if mainstream app stores had to stop letting EU-based users install messengers with these features.
Well, yes. But when it comes to digital independence Signal isn't better than WhatsApp. At least recommend something like Threema if you think the much better alternatives are too hard.
Except Meta fully owns the WhatsApp metadata, and frankly Signal is a lot more trustworthy about its e2e implementation being actually, in practice, secure.
at least it is impossible to enforce with decentralized open-source messengers.
All you need is a central registry where licensed messengers register their e2ee connections. Then network providers only have to report all ip addresses with connections that are not on that list.
Impossible with VPNs, but politicians have already announced their desire to make them illegal.
What? You are not making much sense. What is a "e2ee connection"?
An encrypted connection between two endpoints.That's required for "decentralized open-source messengers".
Currently it's impossible to prevent because of all the encrypted video calls of the Meta messengers and similar connections between endpoints.
If those video streams are marked then it is known which endpoints use software that evades surveillance.
I am not sure you understand what you are talking about. There is no easy way to distingish between different connections and pretty much all internet traffic is encrypted these days.
My argument is that a central registry, where all controlled software registers their connections, is all that is needed to identify the connections that are outside the control of the surveillance state.
load more comments
(17 replies)
Oh that's another consideration indeed.
load more comments
(1 replies)
load more comments
(9 replies)