[liberationtech] What I've learned from Cryptocat
Jacob Appelbaum
jacob at appelbaum.net
Mon Aug 6 18:42:12 PDT 2012
Eleanor Saitta:
> On 2012.08.06 18.06, Jacob Appelbaum wrote:
>> Eleanor Saitta:
>>> On 2012.08.06 17.54, xmux wrote:
>>>> On 08/06/2012 08:50 PM, Nadim Kobeissi wrote:
>>>>> Suggestions welcome!!
>>>>
>>>> Don't provide the insecure version at all? How many people use the
>>>> Chrome plugin vs. the website version currently?
>>>
>>> The "insecure" version is currently the only thing which is interesting
>>> about cryptocat. (And, to be clear, the secure version does not yet
>>> exist; when it does, it will be marginally interesting at best when
>>> compared with the less secure version which fills a much needed position
>>> within an ecosystem of tools.)
>>
>> Huh? The "more secure" version is the current chrome plugin.
>
> Sorry, I didn't realize that there was already a shipping chrome plugin
> version -- I'd assumed that threat modeling and the like were happening
> before development on the next version started.
>
Right - that is why there is so much heated discussions - there is a TON
of stuff done before full discussions have happened in public. This is
something I've been pushing Nadim to do in public because his views are
worth considering but lots of other reasonable people are left out.
All the best,
Jake
More information about the liberationtech
mailing list