In my opinion, Session is by far the best architecturally designed encrypted messaging app. It’s very new, and probably has some RCE’s hidden in there, but every other active messaging app I’ve come across has critical OPSEC flaws that make it inherently inferior. Just ignore the cryptocurrency stuff if you want, though I think it could help with a lot of problems traditional anonymizing networks have; the important part is that it allows for anonymized, *decentralized* communication, and isn’t coded in C.
C is a very old programming language that, while very close to the hardware and good for programming something that needs to run very very quickly, has very few guardrails to prevent really nasty memory corruption exploits. There are lots of footguns when programming in C that basically ensure that a program with enough code, no matter how simple, has some ungodly race condition or heap overflow that allows remote attackers to take control of your entire computer. Almost everything that doesn’t run on a toaster should be programmed in something else, but people still make the decision to use this language.
What is Session?
In my opinion, Session is by far the best architecturally designed encrypted messaging app. It’s very new, and probably has some RCE’s hidden in there, but every other active messaging app I’ve come across has critical OPSEC flaws that make it inherently inferior. Just ignore the cryptocurrency stuff if you want, though I think it could help with a lot of problems traditional anonymizing networks have; the important part is that it allows for anonymized, *decentralized* communication, and isn’t coded in C.
Thanks.
Is C insecure, or just hard to read?
C is a very old programming language that, while very close to the hardware and good for programming something that needs to run very very quickly, has very few guardrails to prevent really nasty memory corruption exploits. There are lots of footguns when programming in C that basically ensure that a program with enough code, no matter how simple, has some ungodly race condition or heap overflow that allows remote attackers to take control of your entire computer. Almost everything that doesn’t run on a toaster should be programmed in something else, but people still make the decision to use this language.