Could deltachat be vulnerable to marvin attack? #5947
Comments
|
RustCrypto/RSA#19 is an open issue in the RSA implementation used by Delta Chat. WIP fix is at RustCrypto/RSA#394 Here is a previous discussion: #5054 |
|
@vinniec2 with respect to the inconveniences you mentioned, in fact that depends in the email server you use, the one you mentioned is likely unpractical to use it for chatting actively, so better use it for email-speed relaxed conversations and add another account to your Delta Chat using one of the many available chatmail servers that don't have such rate limits in the number of messages sent per hour/day, check https://delta.chat/chatmail |
This is partially addressed by reordering unseen messages based on the sender timestamp on the receiver. As long as control messages such as member additions and removal to the chat are not reordered, this should not be the problem. |
Yes I have tried them and those servers work very well (also I have seen that they support double check marks for successful receipt).
but when this reordering is done is there a notification? because then you might not see the messages if they are put back in the history. |
Double checkmark for read receipts works even outside chatmail, this feature existed even before the first chatmail setup.
If you want to set the subject, you can create a new chat. Chat name goes into subject, so you essentially start a new email thread this way.
New messages are always added below the most recent read message so you will not miss messages because they are mixed in the chat history. |
Strange because I am using a normal email (precisely from “libero.it”) with people who use instead a quick email provided by Deltachat and there is no double check mark. (The messages are encrypted, there is also the little lock icon).
great, I will try as soon as possible
And then at what time are they reordered in the history? |
Do you have "Read Receipts" enabled in your non-chatmail profile? If yes, could you try to disable and re-enable it, maybe there's some bug with the setting display?
Once a message is displayed in the chat, it preserves its order forever. Reordering happens only when a message is added -- if the message is not yet seen, even if it's old as per its "Date", it is sorted down so that the user sees it when they open the chat next time. So, messages aren't always sorted chronologically, but i have no better idea here. |
|
On Sat, Sep 28, 2024 at 01:57 -0700, vinniec2 wrote:
I don't think the ability to insert the subject works well with how deltachat style (it aggregates all the emails exchanged with an address into one single conversation) and not having folders to separate the emails makes the contact list too confusing, however the simplicity with which I can have an email client with the ability to incorporate an encrypted chat client makes me a Deltachat enthusiast!
great to hear :)
Please be aware that there are more deficiencies when using it as a regular e-mail client,
and the "real" fix for that would probably be an extra "classic compose-mail" UI interface,
with subject lines, To/CC recipients, multiple attachments etc.
We are generally careful to not complicate the "classic chatting experience"
with the "classic e-mail experience" as much as we can.
Moreover, the focus is currently on new "chatmail" onboarding folks
who don't really care that it's e-mail under the hood
but appreciate its "no-private-data decentralized secure messaging solution".
|
I have been trying deltachat for a few days now, and apart from some *little annoyances due to using mail servers, I really like the idea.
However, I was wondering if deltachat was in any way vulnerable to marvin-type attacks.
*For the record I want to mention them but I don't think they deserve the "bug" qualification:
The text was updated successfully, but these errors were encountered: