undefined | Better HN

0 pointssitkack11y ago0 comments

I just did an analysis of the people involved in this project. Tox even more than cryptocat, is a very dangerous product to use. Even Tor has flaws while having many very capable cryptographers behind it. Tox appears to be swiss cheese both in code and protocol.

Rather than ricers with -Ofast kernels and overclocked CPUs it would be nice if a mature team focused on security and correctness first.

0 comments

soyiuz11y ago

What was your "analysis" and how is it "very dangerous"?

sitkackOP11y ago

This is a start, http://www.tox-chat.com/

Like cryptocat, tox claims things that are not proven to be true by developers that aren't qualified to be writing or designing the protocols for a secure encrypted chat.

Having the intent to do something isn't the same thing as actually being able to do it. People will use tox and get p3wnd with very dire consequences.

j / k navigate · click thread line to collapse