Comment by maqp
1 year ago
This is such a misrepresentation. Telegram could at-will feed the cloud-2FA password to password hashing function like Argon2 to derive a client-side encryption key. Everything could be backed up to the cloud in encrypted state only you can access. Do they do that? No.
So it's not as much as trade-off, as it is half-assed security design.
Telegram currently has very intuitive and snappy search, even in very active groups with years of content. That's because the heavy lifting is done by the server. Think that'd still be possible if there was no way for the server to process the data?
PCs and phones been fast enough to have snappy search on text data for years now.
Is "grep" not snappy enough for you?
Grep is inefficient search engine, because it needs to scan through whole content (and Telegram uses search indexes). Also, grep cannot deal with words forms and inflections (you type "foot" and you also want to find "feet"). Inflections are not very important in English, but you need to deal with them in other languages where the word can have many forms.
1 reply →
Not at all. Try searching 500/1000 sources (maximum number of conversations any free/premium user can be part of), each with potentially millions of messages, and providing the results in under a second.
4 replies →
Yeah, try searching anything older than a year, the amazing snappy search grinds to halt. Meanwhile I'm storing years worth of stuff on Signal with no issues, and it searches ridiculously fast offline with no seconds long pause for buffering.
So interesting. I just did a search for mentions of someone I know in multiple Telegram groups and channels, and got all the results, going back 5 years, instantly. And these groups and channels have millions of messages. All media is also perpetually available (unless deliberately deleted), and take a couple seconds to load. I don't see any other platform having that kind of convenience.
Yeah Telegram search is not in a state where anyone should be proud of it.
Apple could also use E2E for their cloud backups by default, but they don't (and if you enable E2E, it doesn't apply to contact list and calendar backup anyway). Why do you demand more from Telegram than from Apple or Google?
I'll have you know they had maths PhDs design their security, sir. Eight of them!
Yeah, it's a bit of a joke.
Yeah, put a geometrician* to do the job of a cryptographer. This is what you get.
* I'm being serious, Nikolai Durov's PhD dissertation title was "New Approach to Arakelov Geometry"
https://bonndoc.ulb.uni-bonn.de/xmlui/handle/20.500.11811/31...
https://arxiv.org/pdf/0704.2030
Advanced math is actually more difficult (in my opinion) than programming languages.
2 replies →