search

johanw666 / Signal-Android

Fork from a private messenger for Android with extra options added: full backup and (partial, ony text) xml backup of messages. Restore can happen at any time, not only after a fresh install. Import SMS database. Import of (unencrypted) WhatsApp databases. Removed apk expire. Choose between passphrase protection and the Android screenlock. Choice for the backup location (internal or removable storage on Android < 11 (on 11 and higher this is already possible)). Set the maptype in the place picker. Option to treat view-once media as normal media. Option to ignore remote deletion. Choose between FCM or websocket notification delivery.
https://johanw.home.xs4all.nl/Signal/signal-jw.html
GNU Affero General Public License v3.0
250 stars 16 forks source link

Feature Request: Remove mandatory PIN creation on first launch #9

Closed derMart closed 4 years ago

derMart commented 4 years ago

Sadly the Signal folks are very stubborn about the mandatory online storage. Also on this fork yet we have to create a PIN and as such expose private data unsecurely to the signal servers. Do you think it is possible and feasible to remove this on first launch?

johanw666 commented 4 years ago

Not without redesigning a lot of stuff, which is

In the mean time I suggest using a long alphanumeric pin to protect your data.

derMart commented 4 years ago

Hey, I've had a look at the code and at least currently, it seems very little is needed to disable the forced creation of PINs. Have a look at #10 :-) For me, this worked in the following scenario: Have device A with Signal without PIN setup and moved to device B importing the backup of device A. Probably it will also work for new registrations.

KarmusDK commented 4 years ago

If you want to avoid the dialog box nagging and blocking access to your inbox, just leave an SMS message unread. (Doesn't work anymore if you swap SIM cards.)