People who think telegram is doing dubious things with encryption and security: are there any good write-ups of the critiques that respond to https://core.telegram.org/techfaq ?
-
-
I haven't seen the 2nd round before, but yes, experts *absolutely* believed the contest was a fraud. It's a setup that sounds good to non cryptographers but is meaningless in actuality.
-
Is there a post somewhere where an expert offers suggestions to change the contest to be more acceptable?
-
This is a pretty good explanation of why the original contest was meaningless https://moxie.org/blog/telegram-crypto-challenge/ …
-
It sounds like they updated the challenge in response to criticism. Have people described their concerns with the new contest?
-
Why? If someone tries to straight up *CON* people, why is that not enough to run screaming in the opposite direction? Life's too short to do free work, and being subjected to a torrent of abuse and attacks on your reputation by the CEO is the only reward for analysing telegram
-
This article claims they're conning people but maybe the first contest was just naively flawed. The assumption that they're crooks is certainly driving a lot of people to make these claims with minimal details but I don't think that's correct.
End of conversation
New conversation -
-
-
1. Except that "breaking" is very vague and often not trusted by bug founders, see recently bug-bounty drama by Uber
-
2. The working prototype that was getting live messages in a local network that I mentioned before was considered "an exception" by the team, and expected behavior.
-
I'm having trouble finding the POC. Halp?
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.