this post was submitted on 27 Nov 2025
51 points (98.1% liked)

Privacy

3016 readers
297 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 2 years ago
MODERATORS
Ategon@programming.dev
danielintempesta@programming.dev
51
Following the "voluntary" scanning added in the latest EU Council Chat Control vote, what is a realistic option for a family/friends chat? Is self hosting your own Matrix/DeltaChat server the only opt (piefed.zip)
submitted 1 week ago by Blaze@piefed.zip to c/privacy@programming.dev
30 comments fedilink hide all child comments
 

https://www.patrick-breyer.de/en/reality-check-eu-council-chat-control-vote-is-not-a-retreat-but-a-green-light-for-indiscriminate-mass-surveillance-and-the-end-of-right-to-communicate-anonymously/

By "shared" servers I mean hosters like https://tchncs.de/en/ who offer a bunch of services (they do a great job at it by the way) including Matrix and Lemmy.

I'm thinking of moving my close family to a Matrix chat over there, but I guess long term they might have to implement the ChatControl scanning.

This whole thing is just stupid.

you are viewing a single comment's thread
view the rest of the comments
[–] Blaze@piefed.zip 7 points 1 week ago (1 children)

I want to avoid messaging apps that will be scanned. Seems likely that Signal will be part of it.

In the risk analysis, providers must check whether their services can be misused for the dissemination of abuse material or for contacting children. There are to be three categories for this: high, medium, and low risk. Providers in the highest category could be obliged to participate in the development of risk mitigation technologies.

We can anticipate Signal and co. will be part of the high risk category and assume the risk mitigation tech will be aimed towards breaking encryption. Especially since this new agency will be interfacing with Europol. I don’t see this as a win or even a draw.

https://feddit.org/comment/10169945

you’re a pair of trustworthy cryptography experts using secure devices at both ends.

As a lot of people here, I'm usually the IT/tech reference person in my family, so if I suggest to move to DeltaChat or Matrix, I'll just take their devices, set it up and we'll use that from now.

I have been looking at a real WhatsApp alternative, this was the last push I needed.

[–] iloveDigit@piefed.social -2 points 1 week ago (2 children)

Moving away from WhatsApp might reduce how many people can access your messages, but you can still assume your messages will be scanned and indexed no matter what app you use

[–] Blaze@piefed.zip 5 points 1 week ago (3 children)

I'm actively looking at used Pixels with GrapheneOS installed, they aren't that pricy these days, but even without those already getting rid of the app-level scanning would be an improvement.

[–] noxypaws@pawb.social 4 points 1 week ago (1 children)

If you get a Pixel with GrapheneOS preinstalled, please please PLEASE do your own fresh installation of GrapheneOS anyways. You can't trust what some third party may have done with it before you get it.

[–] Blaze@piefed.zip 4 points 1 week ago

Of course, that's the plan. Having it preinstalled is just to make sure the device was able to run it before I reinstall myself.

[–] Sunshine@piefed.ca 2 points 1 week ago

I beat you to the punch there 😉

[–] iloveDigit@piefed.social 1 points 1 week ago* (last edited 1 week ago) (1 children)

GrapheneOS probably a big step for reducing the number of people with access, I think

[–] Blaze@piefed.zip 4 points 1 week ago

It's definitely going to be context-based:

  • I don't mind getting used Pixels for my parents and my sister
  • DeltaChat allows to create several profiles, so I can at least have one profile dedicated to chats with my family where everyone uses a secure device
  • for other stuff, I accept that it will be scanned, but it's less critical
[–] onlinepersona@programming.dev 1 points 1 week ago (1 children)

Wy do you assume opensource apps will scan your messages?

[–] iloveDigit@piefed.social 1 points 1 week ago

I don't, but I assume closed source components and/or human error will leak all my messages