this post was submitted on 08 Dec 2023
107 points (95.7% liked)

Technology

59299 readers
4599 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
all 38 comments
sorted by: hot top controversial new old
[–] [email protected] 71 points 11 months ago* (last edited 11 months ago) (2 children)
[–] [email protected] 32 points 11 months ago (2 children)

To be fair, I would totally believe Apple changed something small for the sole purpose of breaking iMessage interoperability with Android.

[–] [email protected] 21 points 11 months ago (1 children)

I would be surprised if they didn't have it ready to go and flipped the switch once they felt it would hurt the apps reputation the most.

[–] [email protected] 9 points 11 months ago* (last edited 11 months ago)
[–] [email protected] 4 points 11 months ago* (last edited 11 months ago)
[–] [email protected] 11 points 11 months ago (1 children)

The tech is pretty interesting but the business is sus...It's kind of like selling fake admissions to a club and calling that a startup.

[–] [email protected] 7 points 11 months ago* (last edited 11 months ago) (2 children)
[–] [email protected] 7 points 11 months ago

The product Beeper is selling is essentially access to "blue bubbles" and iMessage without having to pay the price of admission (i.e., owning an iDevice and working with Apple). That's the part that's shady and sus. What they are paying or saving on infrastructure cost is irrelevant - they are basically still running a counterfeit operation, doesn't matter what their costs are.

[–] [email protected] 2 points 11 months ago (1 children)

The push servers are required for beeper Mini, because it acts as a gateway between GCM and ANP.

Beeper Cloud uses Mac Minis, and Beeper posted the software on github so you can self host it.

The two apps work very differently.

[–] [email protected] 1 points 11 months ago* (last edited 11 months ago)
[–] [email protected] 25 points 11 months ago

Lol no shit it was gonna stop working. Dunno why anybody thought otherwise.

[–] [email protected] 19 points 11 months ago (2 children)

Why is this a thing? I like iMessage but is there a reason people are trying to force their way into the protocol or whatever? Just to show blue or is there something unique to iMessage that no one else has?

[–] [email protected] 18 points 11 months ago (3 children)

iMessage chats are supposedly horribly broken for people participating over SMS. It got so bad in the US that teenagers treat it as a status symbol too.

[–] [email protected] 20 points 11 months ago* (last edited 11 months ago)

As an android user, I treat it as an early red flag, if someone treats it as a status symbol.

[–] [email protected] 11 points 11 months ago (4 children)

Adding to this, people in the US in general treat the blue message bubbles as a status symbol.

We’re also apparently the largest userbase of iMessage, whereas the rest of the world has more sense to use third-party apps to talk to family and friends from around the world.

[–] [email protected] 5 points 11 months ago

~~people~~ Some/many iPhone users in the US in general treat the blue message bubbles as a status symbol.

Ftfy.

Plus, the iMessage approach is the right answer. A single messaging app that will use a modern network-based comm channel with anyone who has the capability, with a fallback to SMS/MMS for those who don't.

Which Signal was doing until this year, unfortunately.

[–] [email protected] 3 points 11 months ago (3 children)

I use textra. My message bubbles are blue. I am cool.

[–] [email protected] 1 points 11 months ago

Hahahaha, have an upvote.

[–] [email protected] 1 points 11 months ago

I switched from Textra recently to get the benefits of RCS in Google Messages. I really wish more apps would(/could?) implement it than Google's own.

[–] [email protected] 0 points 11 months ago

Hahahaha, have an upvote.

[–] [email protected] 1 points 11 months ago

Never heard of this being a status symbol in the US.. what a dumb notion.

[–] [email protected] 1 points 11 months ago

people in the US in general treat the blue message bubbles as a status symbol.

Children. Children do that.

[–] [email protected] 5 points 11 months ago (1 children)

You know, people mention the status thing, and I keep thinking "I've never once ever heard or read someone even remotely implying that (except super obvious trolling). Who the hell is actually saying this? Sounds like something people just say about 'fanboys'".

But being a thing with kids makes sense. Especially how little I care about what they think.

[–] [email protected] 7 points 11 months ago (1 children)

I've heard it, I have Millenial and much younger family members, and it's a real thing.

Kids/young adults are horribly status conscious, and since SMS really breaks iMessage conversations, they'll sometimes leave out people who don't have iMessage rather than deal with the downgrade.

It's crappy, it's juvenile, but it happens plenty... Just like the dumb, juvenile stuff we did when we were... juveniles

[–] [email protected] 1 points 11 months ago

Am millennial. Wtf people are dumb.

[–] [email protected] 17 points 11 months ago (1 children)

We need a sticky for this.

When a group chat on iPhone includes an SMS-only participant, it downgrades the conversation for everyone to SMS. So everyone gets crappy images, and certain iMessage group features don't work.

[–] [email protected] 17 points 11 months ago (1 children)

Well it’s the first few days, let’s give it some more time before screaming sinking ship

[–] [email protected] 29 points 11 months ago (2 children)

...Beeper CEO Eric Migicovsky responded to TechCrunch’s inquiry about Beeper Mini’s status by pointing us to the X post acknowledging the outage, and providing more detail. Asked if possibly Apple found a way to cut off Beeper Mini’s ability to function, he replied, “Yes, all data indicates that.”

Emphasis mine. Source: Techcrunch.

[–] [email protected] 16 points 11 months ago

I am shocked. Shocked, I tell you.

[–] [email protected] 9 points 11 months ago

Full points for transparency, I guess?

[–] [email protected] 2 points 11 months ago (3 children)

I've been using it for a few days and was going to put it on my wife's phone tonight. Maybe the next one won't be so well publicized.

[–] [email protected] 8 points 11 months ago (1 children)

Whoa. That is way too short of a trial for migrating something new to the wifephone.

Don't forget to cancel your subscription!

[–] [email protected] 1 points 11 months ago

Yeah, she's grown used to, but not fond of, me installing buggy alpha or beta software on her phone. The promise of non potato quality pictures from her family was going to be the selling point :/

[–] [email protected] 4 points 11 months ago* (last edited 11 months ago)

I tried it yesterday, it still has some growing pains (had some trouble getting it to connect).

Going to keep watching though, for a new app it looks pretty good, fluid, well designed from a UI standpoint.

Given the dev was able to reverse-engineer Apple's ANP (equivalent to Google's GCM), build an app, backend, etc, it should be fun to watch.

It's also generating a conversation around the misperception of iMessage being perfectly secure, and how SMS downgrades iMessage to not secure at all.

Hacker News story about the lack of Forward Secrecy and other concerns: https://news.ycombinator.com/item?id=38537444

A summary of what I think is the primary issue with iMessage security that most people can easily understand (I've quoted this from another commenter, this is in the article):

  1. iMessage uses RSA instead of Diffie-Hellman. This means there is no forward secrecy. If the endpoint is compromised at any point, it allows the adversary who has

a) been collecting messages in transit from the backbone,

or

b) in cases where clients talk to server over forward secret connection, who has been collecting messages from the IM server

to retroactively decrypt all messages encrypted with the corresponding RSA private key. With iMessage the RSA key lasts practically forever, so one key can decrypt years worth of communication.

I've often heard people say "you're wrong, iMessage uses unique per-message key and AES which is unbreakable!" Both of these are true, but the unique AES-key is delivered right next to the message, encrypted with the public RSA-key. It's like transport of safe where the key to that safe sits in a glass box that's strapped against the safe.

**BearOfATime Comment: **This lack of Forward Secrecy alone is enough to say iMessage is nowhere as secure as we've been lead to believe. The delivery of the AES key with the AES-encrypted message but the package encrypted with RSA that virtually never changes is so blindingly flawed. This setup makes the AES encryption pointless, if you're going to package the key with it. Because once the RSA is broken/acquired, they have the AES key for the message (and ALL messages)!

The concern over the RSA key length is a bit premature, I'd say it's more of a future concern that Apple is probably working on.

The other issues (unchanging identifiers, for example) are a valid concern. Something I've seen other apps take into consideration (Signal, Briar, SimpleX Chat).

[–] [email protected] 2 points 11 months ago (2 children)

If they don’t publicize, they won’t make any money.

[–] [email protected] 2 points 11 months ago

The dev has always been pretty open. The published a self-hostable version of Beeper Cloud on github, and the dev published some docs on how iMessage works, how their implementation of ANP works, etc. Like detailed docs that are frankly above my pay grade.

[–] [email protected] 1 points 11 months ago

The iptv guys seem to do alright and they stay out of the limelight.