You should read about EU's proposed law DMA. It aims to solve this problem of not being able to contact friends if you uninstall WhatsApp (or any other app). The link explains it better lol
iamak
joined 1 year ago
I checked network logs. Apparently my bank encrypts both uid and password before sending. I put 8 chars and it gave error so I'm assuming no
Banks make the worst possible UI and justify it by saying "security" xD
Wtf lmao. How to I check if mine does it💀
This is one of the dumbest shit ngl. My bank also does this. However they go one step further. They force a maximum 12 letter password and 1 character of each type (capital, small, number, symbol) is necessary. This actively reduces password security smh
Yeah now that you put it this way I realised my mistake. Thanks
Okay. I am pretty new to this stuff so I'll go and check out SSL/TLS. Thanks :)
Oh. Okay. I'll check it out once. I'm pretty new to all this so I didn't know this is how SSL works.
First of all thanks for the very detailed response. I have a few questions.
-
Like you said, why not use public key cryptography? Why is it not well supported for web-apps?
-
Why not use something like Diffie-Hellman algorithm to share the password? Signal protocol uses ECDHE so I am assuming that it's safe against mitm which the base Diffie-Hellman is vulnerable to (I might be wrong. I couldn't find if it waa vulnerable or not).
this measure of security would have been completely void...
Why not hash it server side too? I'm asking because I'm curious
Now that would be interesting :p
Running de-googled Lineage OS (Android 10 equivalent version). Biggest drawback for me is maps. I make do with OSMAnd+ but I have to search on Google Maps, get the coordinates and paste into OSMAnd+. Other than that no issues