I dont know what that means. Do the oauth creds get shared with a third party or no?

The point is that most of these solutions require me letting an app post on my behalf. I don’t want that.

Please log in to prove you’re not a bot

How does auth work?

Do I have to grant a third party permission to post to my account? Or do I have it auth with my credentials locally?

Just whisper gentoo in his ear

It helps to download content (like YouTube videos for PeerTube instances) when you’re rate limited

It helps with spam campaigns.

Sounds like they don’t know how to do security, then

Are the rest of their engineers so incompetent, or only their security department?

Thanks. Unfortunately that site doesn’t load.

Maybe you can email the CEO asking them to check their site on tor browser in strict mode?

Still doesn’t load. Try in tor browser

Site doesn’t load :(

Got a link to Ms VoIP?

Googling it just gives info on Skype shutting down

Does that let you have a voicemail?

I’ve long wanted a cheap way to setup a phone, when rung, picks up and plays a message telling the caller to email me. But everything I found for this is wayy more expensive than $12/yr

So basically you’re repeating mistakes made by matrix

Agreed. Also Discord users complain matrix isnt really a replacement because voice UX

How quickly does it load when you’re connected to 1,000 chats, each with 100,000 messages?

Does it use double ratchet?

Can I tick a box in settings to force it to only connect to Tor Onion Services for enhanced privacy?

Oof, you are infected

I usually just look for CVEs. The biggest red flag is if there’s 0 CVEs. The yellow flag is if the CVEs exist, but they don’t have a prominent notice on their site about it.

Best case is they have a lot of CVEs, they have detailed notices on their sites that were published very shortly after the CVE was published, and they have an bug bounty program setup.

I rely on Debian repo maintainers to do this for me