cmeerw

P1967R11 #embed - a scannable, tooling-friendly binary resource inclusion mechanism might make it into C++26

I use them as IMAP storage for a few mailing lists I am subscribed to (but not for my main emails), but they do reject legitimate emails from time to time (not often, but it does happen - and those emails don't show up in "Spam" or any logs).

similar thing with requires requires { ...

and you can nest it even further: requires requires { requires ...

I have had pretty good experience with hosting an email server on AlphaVPS, InceptionHosting and just now GreenCloudVPS.

GreenCloudVPS currently have a promotion until Sunday, and there are usually promotions around Black Friday on LowEndSpirit and LowEndTalk

Only public keys get exchanged via Meta's servers, those keys don't help you with trying to decrypt any messages (you need the corresponding private key to decrypt - and that private key stays on the device).

Sure, they could just do a man in the middle, but that can be detected by verifying the keys (once, via another channel).

Maybe so, but in this case the point was that the protocol used by WhatsApp hasn't changed in that time and it's still what they describe in their security whitepaper. If you want to use that software as is or maybe reimplement it based on that is up to you.

Governments, if they want, can decrypt any chat

Any source for that claim?

In a subpoena case in India, that turned out to be not true.

Source please.

WhatsApp admins hold keys to being able to do that under law pressure.

How do they get the keys?

They only guarantee it for 1-1 messages and statuses, and against “generic” actors for group chats…

Who is "they"?

Group chats are also end-to-end encrypted in WhatsApp (so any monitoring would need to be done in cooperation with one of the participants' devices before encryption or after decryption)

declassified internal FBI document I just linked

don't see any such link

It still works (with a few minor updates).

yowsup is an Open Source implementation of the WhatsApp protocol. So there is proper end-to-end encryption on the protocol level - that would only leave the possibility of having a backdoor in the "official" WhatsApp client, but none has been found so far. BTW, people do actually (try to) decompile the WhatsApp client (or the WhatsApp Web client which implements the same protocol and functionality) and look what it is doing.

For anyone really curious, it's not too difficult to hook into the WhatsApp Web client with your web browsers Javascript debugger and see what messages are sent.