6 comments

[ 0.29 ms ] story [ 29.7 ms ] thread
All of these are features a rouge client simply can ignore.
Rouge clients doesn't have access to private chats.

1. On one hand it takes away a nive selling point.

2. On the other hand it feels safer.

3. But then again - as a sw engineer who cares about security - I expect it to fall flat if someone decides to reverse engineer the official client and patch it to store everything to a database.

4. But then again, if they store it to an external db, what is to prevent them from storing random info, i.e. making things up?

5. Finally. If someone really wants to leak your data, what prevents a dedicated attacker from photographing every snap, confidential gmail message etc?

Why don’t “rogue” clients have access to chats?

You don’t need to reverse engineer because the protocol is documented and the clients open source: https://github.com/peter-iakovlev/Telegram-iOS

If telegram was serious about privacy they’d make end-to-end encrypted chats default instead of a hard to use option and storing your unencrypted chats in their cloud by default.

And unlike Signal, Telegram does not force you to use the official client.
Why do they think deleting another one's chat log is the right to privacy?

I will export and backup telegram data routinely from now on.

Perhaps it has something to do with the thinking Europe’s so-called “right to be forgotten”?

You’ve hit the nail on the head here as to why such things doesn’t make sense. It infringes on other users’ rights to property and control over their devices.

Deleting someone’s chat is as much an exercise of your right to privacy as is breaking into their house to retrieve the love letter you sent so you can put it in the shredder or using alien mind control techniques to erase your colleagues’ memories of that time you got too drunk at a holiday party and made a fool of yourself.