this post was submitted on 05 Dec 2023
79 points (100.0% liked)

Technology

37604 readers
540 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
79
There’s a new iMessage for Android app — and it actually works (www.theverge.com)
submitted 9 months ago by [email protected] to c/[email protected]
45 comments fedilink hide all child comments
all 46 comments
sorted by: hot top controversial new old
[–] [email protected] 83 points 9 months ago (2 children)

Beeper Mini avoids some of those problems because it’s operating in a fundamentally different way. Its developers figured out how to register a phone number with iMessage, send messages directly to Apple’s servers, and have messages sent back to your phone natively inside the app. It was a tricky process that involved deconstructing Apple’s messaging pipeline from start to finish. Beeper’s team had to figure out where to send the messages, what the messages needed to look like, and how to pull them back down from the cloud. The hardest part, Migicovsky said, was cracking what is essentially Apple’s padlock on the whole system: a check to see whether the connected device is a genuine Apple product.

yeah, I give it until Thursday.

[–] [email protected] 8 points 9 months ago* (last edited 9 months ago) (1 children)

It’s been out for a long time with limited access and nothing yet. Maybe Apple will change their mind toward it when it’s being used by a large group of people finally. Hopefully not.

Edit: I was wrong. See below.

[–] [email protected] 15 points 9 months ago (1 children)

It’s been out for a long time with limited access and nothing yet.

you're thinking of regular Beeper, wthich used Macs hosted by the company to relay iMessage messages.

[–] [email protected] 3 points 9 months ago (1 children)

That sounds exactly like what what Nothing Chats was shamed for a couple weeks ago, how has Beeper been fairing so well?

[–] [email protected] 17 points 9 months ago (1 children)

Beeper's entire premise is based on decrypting your messages on their servers, re-encrypting them and sending them to you, and pinky promising that they're not reading them.

[–] [email protected] 2 points 9 months ago (3 children)

So it really is the exact same thing as Nothing Chats then? I don't think I trust them any more than Sunbird...

[–] [email protected] 22 points 9 months ago
  • Beeper can be self-hosted if you have a Mac, so you don't have to trust their servers
  • Sunbird's app (Nothing Chat) was riddled with its own security vulnerabilities that allowed users to read other users messages, which were all stored as unencrypted plaintext, all discovered by the community within 24 hours of launch
  • Beeper is actually open about how their technology works and what it's limitations are, while Sunbird/Nothing basically lied about their product and never provided any meaningful documentation
[–] [email protected] 10 points 9 months ago (2 children)

The difference, as I understand it, is Beeper hasn't claimed to not be doing that. Sunbird/Nothing touted E2EE and that was a lie.

[–] [email protected] 8 points 9 months ago (2 children)

That makes sense I suppose. A company that doesn't outright lie about how their service works would have more goodwill behind it, wouldn't it.

[–] [email protected] 5 points 9 months ago

Beeper's backend is also fully open-source, there's nothing stopping you from hosting your own iMessage bridge and accessing it via any matrix client.

[–] [email protected] 6 points 9 months ago* (last edited 9 months ago)

It wasn't just that E2EE was a lie, their own server software was full of its own bugs that allowed third party access to user messages, which were stored unencrypted in their database.

[–] [email protected] 4 points 9 months ago

Not even close. Sunbird was not open source and was storing plaintext messages on their servers.

[–] [email protected] 1 points 9 months ago

Aged like wine!

[–] [email protected] 23 points 9 months ago (5 children)

Okay I'm out of the loop, why is iMessage on Android such a big deal? I know that images get compressed but it sounds like Google and Apple are finally working together to draw up a spec there. Besides that it's... A color difference?

[–] [email protected] 21 points 9 months ago (3 children)

There's a massive cultural thing in the US about the iPhone being the preferred phone and if you don't have one it must be because you're too poor to afford one. Obviously this is a result of marketing and isn't universal but it is a surprisingly widely held view.

Given that, showing up in a group chat as a lone blue bubble marks you out as the inferior group member (in some people's eyes). It doesn't matter so much 1:1 but if there are 10 people the odd one out stands out.

[–] [email protected] 17 points 9 months ago

Given that, showing up in a group chat as a lone blue bubble marks you out as the inferior group member

Not really how it works though. If there are 74 iMessage users and 1 Android user, ALL chats become green. Ergo Android users are often simply omitted from chats.

[–] [email protected] 4 points 9 months ago

The real issue here is that people in the US are tied to using SMS for real-time chat groups when so many better (and private, and well known) alternatives exist. Thankfully, in Europe, nobody so far as I know ever really uses SMS anymore – whether for single or group chats.

[–] [email protected] 2 points 9 months ago

Not really a thing. Google is trying to make it seem like there is, but I’ve never met a single person that has ever cared.

[–] [email protected] 13 points 9 months ago

why is iMessage on Android such a big deal?

Being able to use rich chat features.

it sounds like Google and Apple are finally working together

Not at all. Apple was forced to support RCS by the digital markets act. While Google uses RCS, there's a ton of functionality they build on top of it. Apple will likely implement the absolute bare minimum that they're required to, which likely won't include E2EE.

[–] [email protected] 12 points 9 months ago (1 children)

Google and Apple are finally working together

I think this is the primary reason. Apple only announced working on RCS support very recently. Once that’s out, I don’t really see a place in the market for this.

And it isn’t just compressed images. MMS doesn’t support reactions, replies, typing indicators, or read receipts because it’s ancient. A proper, standardized replacement has been long overdue.

Granted, I’ve heard that RCS is currently heavily reliant on Google’s own servers, so it could be argued as to how “open” this really is.

[–] [email protected] 3 points 9 months ago (1 children)

RCS protocol is open. The apps... not so much.

[–] [email protected] 3 points 9 months ago

I think the currently available apps not being free software is less important than the protocol being open, which is good. It allows for the possibility of FOSS clients in the future. My bigger concern at the moment is if most/all of the actual backend infrastructure is controlled by a single stakeholder.

[–] [email protected] 8 points 9 months ago

It's not as big of a deal as people like to pretend it is

[–] [email protected] 2 points 9 months ago (1 children)

The messages app also supports forwarding text messages to other devices.

We can even ignore the other features of iMessage. This adds a layer of convenience to those who use both iOS and Android.

[–] [email protected] 4 points 9 months ago (1 children)

Eh still, Android offers this, Windows you can do this with an android or an iphone I think, not a game changer personally

[–] [email protected] 2 points 9 months ago* (last edited 9 months ago)

Yes, but it works better for those whose main SIMs are on iPhones. I personally use BlueBubbles at the moment.

[–] [email protected] 8 points 9 months ago* (last edited 9 months ago) (3 children)

It requires a google account though so I can't use it :(

I don't really understand why they insist on that as it doesn't seem to use google otherwise. I do have google play services, just no account logged in (which is not necessary for things like push to work!)

[–] [email protected] 8 points 9 months ago

Because they get your profile picture, name, and email address when you click accept. I went through with it just to test, but definitely getting some data from its users.

[–] [email protected] 8 points 9 months ago

Yeah it annoyed me that you have to use google contacts

[–] [email protected] 3 points 9 months ago (1 children)

I was told "Beeper Mini relies on Google for some features: for example, notifications. - Abdullah"

Weird, I have a thousand other apps where my notifications work just fine without being signed into Google. Makes no sense to me.

[–] [email protected] 4 points 9 months ago* (last edited 9 months ago) (1 children)

Yep notifications require google play services installed. They do not require a google account or being signed in to one. It's based on the device ID alone. I don't have a google ID on my phone and push messages work just fine.

[–] [email protected] 1 points 9 months ago* (last edited 9 months ago) (2 children)

Yep notifications require google play services installed.

No they don't. But that's not what we're talking about anyway.

They do not require a google account or being signed in to one.

The app does.

[–] [email protected] 7 points 9 months ago* (last edited 9 months ago) (1 children)

If you use on android apps from the playstore, most apps are built to relay their notifications through Google's Firebase Cloud Messaging (FCM), so they don't have to have a background notification listeners running 24/7. It also means less overhead from multiple notification listeners from every app having its own. So yes, if an app is built on top of google play services, it requires "google play services"

https://en.wikipedia.org/wiki/Firebase_Cloud_Messaging

If an app says it doesn't rely on google play services, it uses an alternative notification listener or websockets, which might not be as effective, because Google is inbuilt and won't kill its own apps, the scale of its infrastructure, and its habit of listening on people's activity.

Add in Androids habit of killing background services, and you don't always get your notification when the app isn't in the foreground.

Even Signal from Playstore uses Google Play Services for notifications.

https://old.reddit.com/r/signal/comments/g217a6/what_can_google_glean_from_signal_using_fcmgcm/

[–] [email protected] 2 points 9 months ago

There is also an alternative push protocol called UnifiedPush, but not many of the popular privacy focused messengers care to implement it.

[–] [email protected] 3 points 9 months ago

Well, Google firebase notifications do. Either Google play or something comparable like MicroG. It's possible to run them another way too but not many app backends support that.

But yes my complaint is exactly that this app requires google.

[–] [email protected] 5 points 9 months ago (1 children)

Beeper was pretty dang hyped for its universal chat, I kept seeing it mentioned a while ago while it was in a closed beta.

[–] [email protected] 4 points 9 months ago (1 children)

Because I participated in the closed beta I get Beeper free for life. I've been using Beeper now for almost 3.5 years and I love it.

[–] [email protected] 5 points 9 months ago* (last edited 9 months ago)

What is your stance on being able to give encryption keys to a third party without the other participants of a chat consenting, let alone knowing about it?

If someone in my contacts used bridges, effectively breaking e2ee, I'd want to know about it.

Ideally, people should not be allowed to do that without informing their contacts, at the very least.

[–] [email protected] 4 points 9 months ago

🤖 I'm a bot that provides automatic summaries for articles:

Click here to see the summaryEarlier this year, a developer slid into Eric Migicovsky’s DMs with a spectacular claim: that he had reverse engineered Apple’s iMessage, allowing any device — Android, Windows, whatever — to send messages as a blue bubble.

The result, according to Migicovsky, is a third-party implementation of iMessage that is actually secure: Beeper doesn’t see your messages, your contacts, or your Apple ID password.

Beeper’s CTO, Brad Murray, also spent some time trying to break open the system as if he were an attacker and is publishing his findings.

At the very least, Beeper has been operating the less secure kind of iMessage relay for nearly three years, and Migicovsky says he hasn’t heard a word from Apple yet.

The 16-year-old developer who reverse engineered iMessage is now working for Beeper as a contractor; Migicovsky declined to share further details about the student, citing privacy concerns.

My biggest complaint at the moment is that Beeper Mini doesn’t support SMS and RCS, so this one-day all-in-one app is currently dividing my texting experience in two.

Saved 85% of original text.

[–] [email protected] 4 points 9 months ago (1 children)

why is iMessage on Android such a big deal?

Being able to use rich chat features.

Like what? I know there is a difference in how group chats are handled, but thats a compatibility issue, not a rich chat feature. The only thing I can think of is Apples stupid push for more emojis and even worse Memojis. Otherwise, pics, gifs, emojis work between Apple and Android. Seems like its the green v blue and group chat edits that are the differences.

But maybe I dont know.

[–] [email protected] 7 points 9 months ago (3 children)

Being able to send videos that don't look godawful would be nice

[–] [email protected] 9 points 9 months ago

That's just apple refusing to use rcs, so it changes to sms, which uses the phone connection, not the data connection.

[–] [email protected] 5 points 9 months ago

I can send them fine on Verizon SMS, from Android to Apple. Apple decided that sending via SMS, regardless of carrier limit, they get wrecked. When I send the same video back to Android from my iPhone, the video is shit.

I've tested this repeatedly across carriers. Since Verizon doesn't seem to have an MMS size limit, it makes it pretty clear what's going on.

Blame carriers for limiting MMS sizes.

[–] [email protected] 3 points 9 months ago* (last edited 9 months ago)

They look just fine over RCS. Which everyone else supports and apple could even integrate support for into iMessage.

Even straight up MMS on most carriers has no limit or a generous enough one that a short clip comes through just fine.

[–] [email protected] 2 points 9 months ago

Not long: https://techcrunch.com/2023/12/08/apple-cuts-off-beeper-minis-access-after-launch-of-service-that-brought-imessage-to-android/

It'd be nice if apple wasn't so petty.