aguinet
commented
2 years ago The per-channel encryption toggle has proven being a good tradeoff for us so far.
About the fact that it's a security risk to let everyone the power of changing that status, it is mitigated by two things:
- a message is written in the channel log stating that messages aren't encrypted anymore
- if you are writing a message in a clear channel, and the last message you wrote in this channel was encrypted, you got a warning message asking you to confirm you want to send a clear text message
That being said, we could add an option to only let administrators the ability to change encryption status, but it's not in our priorities yet.
We would though be happy to review any PR that would implement it.
In channels it could be problematic to force every participant into using e2ee. Also anybody being able to disable encryption at will, could pose a security risks. So it would be nice to have the ability to toggle e2ee in channels configurable. Ideally on a per channel base.