Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Encryption Security Social Networks

Egypt Has Blocked Encrypted Messaging App Signal (engadget.com) 44

An anonymous reader writes: Egypt has blocked its residents from accessing encrypted messaging app Signal, according to the application's developer. Mada Masr, an Egypt-based media organization, reported yesterday that several users took to Twitter over the weekend to report that they could no longer send or receive messages while on Egyptian IP addresses. Open Whisper Systems, the team behind the app, told a user asking about a situation that everything was working just as intended on their end. Now that the company has confirmed that the country is blocking access to Edward Snowden's preferred messaging app, it has begun working on a way to circumvent the ban. They intend to deploy their solution over the next few weeks.
This discussion has been archived. No new comments can be posted.

Egypt Has Blocked Encrypted Messaging App Signal

Comments Filter:
  • Huh (Score:4, Funny)

    by wanderung ( 221424 ) on Tuesday December 20, 2016 @02:01PM (#53524417)

    Apparently you can stop the signal.

  • But I was told by Slashdotters that government people didn't understand the Internet and therefore such attempts would be useless. What is next, saying that DRM actually has an effect on casual piracy?
    • by bigpat ( 158134 )

      But I was told by Slashdotters that government people didn't understand the Internet and therefore such attempts would be useless. What is next, saying that DRM actually has an effect on casual piracy?

      That was true... until governments hired us all. Now we are the Man.

    • > But I was told by Slashdotters that government people didn't understand the Internet and therefore such attempts would be useless.

      Short term: yes.
      Long term: no.

      Only cowards censor.

      --
      A society doesn't remain a free and open when it censors free speech by mis-labeling it hate speech.


  • Should read: "In a landmark decision Egypt will undertake the visionary and foolproof step to block encrypted messaging app 'Signal'."

    To those that are entrusted to implement this intelligent measure I say, good luck.
  • Sounds like this secure chat application's traffic is unique enough to be identified and blocked by firewall rules, perhaps by an identifiable header or a unique port number. I call that fucking up.

    • Any applications traffic can be identified and blocked. Applications don't communicate by magic. They need to know the endpoints to communicate on.
      • If those endpoints are everywhere and change frequently enough, blocking by IP becomes impractical.

        I suppose this chat application has central servers with IPs (or maybe domain names) that never change...if VPN providers can change endpoint IPs quickly enough to thwart blocklists, the Signal servers should do the same if they don't want to be trivially blocked by IP. Of course this requires some mechanism for distributing new IPs but that's been done before.

    • by johanw ( 1001493 )

      They just have to block the server, that's sufficient. No deep package inspection needed.

  • by Anonymous Coward

    So they blocked encrypted 'Signal', but not encrypted 'WhatsApp' ? Oh, they have access to these messages, even though the vendor *claims* it's 'encrypted'. Got it. Thanks

  • As in: Signal didn't see this coming and wasn't prepared?
    Thanks, that's a big fuck-up indeed.
  • by corychristison ( 951993 ) on Tuesday December 20, 2016 @03:23PM (#53525229)

    If Marlinspike would stop being such a prick, and embrace Federation, this issue would be solved so easily.

    It is possible for anyone to use the Signal Server and set one up for themselves. Unfortunately, Marlinspike is refusing to Federate and proclaims the centralized approach is much, much better for everyone..

    I'm seriously considering forking it and removing the dependence of a telephone number and moving to an e-mail address instead. Having to set up a Twilio account (though I already have one) to send authentication codes via SMS is cumbersome (and gets expensive) and I have no idea how this trend caught on. People looking to use IM don't always want to use their phone number as their account identifier. Not to mention Signal piggybacks incoming message signalling over Google's Cloud Messaging platform.... there are other ways to do this without Google.

    • by grcumb ( 781340 )

      If Marlinspike would stop being such a prick, and embrace Federation, this issue would be solved so easily.

      Here's a good discussion of his rationale for not federating. I'm not particularly sold on his stance, though I agree that the experience of trying to design by committee is generally only for the masochistic.

      But while I was reading his excuses—er, argument—I realised that his entire point boiled down to 'It's hard!' That perfectly fine, as far as it goes. And because I'm not willing to say, 'Fuck you Moxie, I'm going to show you how it's done!' I don't really have a lot of weight to put against

  • She should have remained an Austrian empress, rather than becoming Egypt's latest strongman.
  • by johanw ( 1001493 ) on Tuesday December 20, 2016 @05:25PM (#53526313)

    Apparently Egypt (and the UAE) were just blocking the server. Moxie just released 3.25.2 in the beta channel to circumvent this. These changes in build.gradle show it's quite easy to circumvent such a block:

                      buildConfigField "String", "TEXTSECURE_URL", "\"https://textsecure-service.whispersystems.org\""
    + buildConfigField "String[]", "CENSORED_COUNTRIES", "{\"+20\", \"+971\"}"
    + buildConfigField "String", "UNCENSORED_FRONTING_HOST", "\"https://www.google.com\""
    + buildConfigField "String", "CENSORED_REFLECTOR", "\"signal-reflector-meek.appspot.com\""

    In case those countries banned Signal from Google Play I just uploaded 3.25.2 to apkmirror.com (I don't know when they'll publish it though).

    If all else fails, you can still use the fork Silence, which uses tghesms/mms encryption that Signal dropped in 2.7.0. Blocking sms will fuck off all kinds of industrial controllers so that's not really an option.

  • Making internet censorship unenforceable and messaging untraceable is music to my ears. A worthy goal if there ever was one.

  • So much for Firefly fans.

Your password is pitifully obvious.

Working...