this post was submitted on 16 Nov 2023
622 points (97.6% liked)

Technology

58303 readers
10 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 50 points 1 year ago (3 children)

The cost of these registration services for verifying phone numbers when people first install Signal, or when they re-register on a new device, currently averages around $6 million dollars per year.

That's pretty crazy. Wonder which third party providers they are using. Maybe the identity verification methods we have today is due for some significant changes?

[–] [email protected] 43 points 1 year ago (2 children)

Yeah, I wasn't expecting that to be the bulk of their spending. Maybe they should remove the need for phone numbers now they removed SMS.

[–] [email protected] 16 points 1 year ago (1 children)

SMS is dead, so they will need to move on eventually. Most carriers are moving towards high data plans now. I mainly use it for verification, although I'd rather use more secure methods.

[–] u_tamtam 8 points 1 year ago (1 children)

Well, if SMS is dead then RCS is what we get instead, and there's no difference to us (and probably higher costs for Signal & al.)

And there are wayyyy too many things that depend on SMS for it to be dead any time soon, too :)

[–] [email protected] 3 points 1 year ago

Also Signal cannot add RCS support, because Google Jibe servers won't allow other app than Google Messages... And you must use them because native RCS support for Android is halted for years... And you cannot install some module with RCS support yourself because of anti-Unix monolitic Android userspace architecture...

Man, there are so many things done wrong.

[–] [email protected] 0 points 1 year ago (1 children)
[–] u_tamtam 5 points 1 year ago (1 children)

No, I think they are merely working on user ids no longer mandating to be your phone number (so that it can be pseudonymous, e.g. tja@signal instead of +xx0123456@signal), I don't believe they hope to drop SMS verification at this point because of the spam issue getting worse otherwise

[–] [email protected] 2 points 1 year ago

Ah yes, good point! 👍

[–] u_tamtam 9 points 1 year ago

Without SMS verification, spam would be so much worse that they've been kind of obliged to keep it, even though it defeats/undoes most of the privacy features they like to advertise about

[–] [email protected] 3 points 1 year ago (1 children)

identity verification is trash anyways, we don't need it

[–] [email protected] 12 points 1 year ago (5 children)

The article says it's to limit spam. I don't feel platforms like Lemmy (or the other platform) are particularly spammy though. On the other hand I get a lot more spam on Whatsapp, even though it's phone number bound.

Signal is pretty good in terms of limited spam, but I'm curious about the impact if they A/B test the removal and see how much spam would arise. Obviously that could only be implemented after they remove the need to add contact via phone number.

[–] [email protected] 22 points 1 year ago

If more people joined Lemmy you’d see the amount of spam this place would get. Now it’s only a bunch of nerds who will quickly report any spammy activity. It’s a small “friendly” community for now.

[–] [email protected] 14 points 1 year ago

Niche communities don't deal with spam.

But the moment it's big enough Lemmy will be rife with spammers and you'll need full time moderation tools.

[–] [email protected] 1 points 1 year ago

plenty of instances have email verification and or captcha, and those that don't get defederated (sometimes) (this already happened)