Does anyone outside Signal Foundation know how's their architecture? There are a lot of references to AWS, GCP, and Azure in the source code hosted in GitHub so they probably use them all in one way or another. It would be super interesting know more details about the infrastructure.

interesting but doesn't really explain much. Is it really a single Signal server or can you spin many? What is stored on redis and postgresql? Maybe redis is used as cache, or as a queue, or as a store for sessions, and postgresql is used for accounts. Are these components distributed as well?

https://web.archive.org/web/20210110152154/https://old.reddi... They appear to be using IBM Cloud services too, for certain things

If they use any of it at all, Signal needs to get any/all remaining infrastructure off AWS as soon as possible.

Why?

I'm guessing this person is thinking about the risk that their cloud-provider(s) could shut them down due to political pressure, etc.

What if Amazon finds out they aren’t moderating users’ messages and Signal gets used in some future attack.

It’s not a far leap for Amazon to “take a strong stance against serious threats to our democracy” by kicking off signal.

Despite recent events, I don’t see this happening. Signal has a strong reputation as a privacy-supporting app without any weird fringe Internet subculture attached to it. And I’m unaware of any public groups like you find on Facebook or WhatsApp.

De-platforming a private messenger like Signal would be a strong signal against an open, unmonitored Internet and raise too many eyebrows. Amazon would be seen as complicit with government for not allowing citizens to communicate freely and privately with each-other.

If Signal adds features to let users post extremist views publicly, that’s a whole different ballgame and the cards are off the table.

Seems to be gaining popularity all around the world. https://twitter.com/signalapp/status/1347699781326438404

> Like every other service

False? E.g. not Wire or Matrix.

> False

After people kept bugging them (Moxie initially told me to get lost when I first opened a ticket about it), they implemented some form of fallback for GCM, and I happily tried it but it doesn't work for me. My guess is that it uses Google services when they're installed, and I didn't uninstall them because that would break a lot of other apps, but I did firewall it off. So this means that it doesn't work without Google Services on my phone and that it leaks some metadata to Google for almost everyone. I wouldn't say it's false to say that it still wants me to unfirewall GOOGLE. The apk I can get through Aurora store, that's not necessarily the issue (though the alternative distribution method of the official website is definitely a plus!).

Sorry about not knowing that they have video calls now, that's nice to hear. Does it also do group calls like Wire? The article doesn't say and while I'd love to try...

Unfortunately no group calls yet.

For example eavesdroppers know who is speaking at the moment among other nasty issues.

If they actually cared about offering a secure product that would be enough all on its own.

Compare over in the SSH discussion IdentitiesOnly a feature that avoids the relatively smaller leak of potentially allowing an adversary to correlate your identity if you voluntarily connect to their server.

Firefox and uBlock Origin is the only way I'm willing to use a mobile browser.

That's the only big complaint I've got about Signal.