That's not saying anything of substance unless you offer your own interpretation. "You're wrong" is not a discussion, it's a kick in the gut.
> The lady doth protest too much, methinks.
Solid criticism with well laid-out arguments from you, no doubt.
> Besides, look at Pavel Durovs flagkilled reply here.
Since when do upvote / downvote count mean anything at all about somebody's opinion or statements? (I haven't read the comment though.)
Look, it's obvious you have a beef with Telegram / Durov. But you are not giving any arguments, only snark. That's breaking HN's guidelines last I checked.
The author is saying "maybe things that look A WHOLE LOT like malice are actually incompetence". It's pretty clear that he thinks it's a backdoor, even though he basically says "maybe in actually wrong, but I really don't think so".
Sure, sadly that's how human languages betray us. Plus, him emphasising "a whole lot" doesn't make it a fact.
I am no cryptography expert. I judge by all the times I've seen programmers imagine they could do professional cryptography by themselves. Literally every time they fail. Thus, in my eyes it is more likely that Telegram's coders fell victim to the same illusion.
But I am not denying that it's possible it's the [beginnings of a] backdoor. The whole sub-thread is (a) my opinion on what's more likely and (b) calling out people who act snarky, offer no facts and demonstrate general negative bias.
It looks a whole lot more likely to me that this is a backdoor, as they added their own thing to a very standard algorithm (the easy and better thing to do would have been to not add anything), and all that thing did was mess with the key exchange.
But is it really that unlikely that it's a misguided attempt to increase entropy?
The fact that a cryptographer might scoff and laugh at the proposition doesn't mean that a normal programmer couldn't fall victim to that illusion?
In any case -- yes. Both things are likely and you made a strong point for the "malice" side.
Still, it makes me wonder why would Durov run from Russia if he was willing to backdoor Telegram? Why not remain in Russia and backdoor it while being there? Why the extra trouble? Or maybe he didn't want to backdoor it for Russia but for other nation(s)?
I don't think "people who design a cryptosystem" and "people who send randomness from the server" overlaps a lot, yeah. I don't see how anyone remotely familiar with cryptography would think that sending randomness from an untrusted party is a good idea. It's this bad.
Well, a bug I filed to Telegram eventually got closed on petty bureaucratic grounds (wrong repo but nobody moved the issue [I did copy it to the right repo], then X months without action etc.) so this might say something about the average competence and motivation of their technical staff. :)
Thanks for being one of the few to discuss constructively in this sub-thread. It's much appreciated.
Besides, look at Pavel Durovs flagkilled reply here. The lady doth protest too much, methinks.