What does this mean regarding their claims that data is encrypted at rest and in transit? https://slack.com/resources/why-use-slack/slacks-enterprise-security-features
TechTakes
Big brain tech dude got yet another clueless take over at HackerNews etc? Here's the place to vent. Orange site, VC foolishness, all welcome.
This is not debate club. Unless it’s amusing debate.
For actually-good tech, you want our NotAwfulTech community
- ‘at rest’ → we're using filesystem encryption
- ‘in transit’ → we're using TLS
neither is end-to-end encryption, the data is not private to the service provider.
That's just a fancy way of saying they use tls, like the rest of the world.
They decrypt it once it hits their servers and do whatever they want with it.
ah ok, so if it's not at rest and it's not in transit, what else is it?
In their database lol. I'm sure whatever file storage they use is encrypted but doesn't matter when you have the keys and can view all the data unencrypted.
vibing
you see, your data can never be at rest if they’re constantly using it to train LLM models and exploiting it for other marketing purposes
…god this is stupid enough that I’m very sure I’m going to hear it in earnest from some AI shithead next time one of our threads hits all
at rest, in transit, in plunder
Has anyone used Mattermost? Has anyone switched to Mattermost? How's hosted Mattermost?
It passes the tickboxes of "actually open source" and "you can just buy hosting", but I don't know how it goes corporateishly