• sumguyonline@lemmy.world
    link
    fedilink
    arrow-up
    15
    arrow-down
    8
    ·
    3 months ago

    Signal is compleletly compromised through spell check on 99% of OEM smart devices. Spell check can see what your typing word by word, and signal uses it. Feds are 100% using spell check to view your private messages. And by feds I mean every government on earth with a computer.

    • Dessalines@lemmy.ml
      link
      fedilink
      arrow-up
      23
      ·
      3 months ago

      Spell check? If you mean smartphone keyboards, then yes, the non-foss ones are keyloggers. One of my side-projects is a privacy-oriented keyboard, but there are many out there that don’t require network calls to google or apple.

    • sunstoned@lemmus.org
      link
      fedilink
      English
      arrow-up
      17
      ·
      3 months ago

      Is this some Network Allowed problem that I’m too Network Not Allowed to understand?

      • kureta@lemmy.ml
        link
        fedilink
        arrow-up
        6
        arrow-down
        1
        ·
        3 months ago

        Are you using a custom rom? I don’t have this option on my oneplus 9 pro. but I have something else.

    • x00za@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      10
      ·
      3 months ago

      Where’s my alu hat?

      You’re saying that hunspell is compromised??? :O

      Hunspell is a free spell checker and morphological analyzer library and command-line tool, licensed under LGPL/GPL/MPL tri-license. Hunspell is used by LibreOffice office suite, free browsers, like Mozilla Firefox and Google Chrome, and other tools and OSes, like Linux distributions and macOS. It is also a command-line tool for Linux, Unix-like and other OSes.

    • EngineerGaming@feddit.nl
      link
      fedilink
      arrow-up
      2
      ·
      3 months ago

      The problem is actually further - it’s that they push people to use Signal on mobile.

      In the official desktop client, there is no option to register (even though it would likely be not that hard to add a box accepting a verification code), they tell you to use it in the mobile app instead. All while far from all phones can have privacy-respecting OSes installed on them at all.

      Yes, there are ways around (Signal-cli or an Android VM - and even then you have to use Molly since the official client requires you to scan a QR rather than following a link). But arbitrarily directing people to a platform that is harder to make private is nonetheless weird.