It's terrible, and the reason I don't use matrix. While behind ds-lite, the only option I'd have is to run my node on an untrusted location (eg: a rented server).
> "its end-to-end encryption is optional": I don't really see this as a problem. If you want it, you have it. If you don't, you don't. Sometimes end-to-end encryption isn't desirable, in a business environment where you need communications to be auditable for example.
Sure, but in a post-snowden climate, I can't recommend a solution where end-to-end is optional to anybody. The problem is that when it is optional, people will readily downgrade to point-per-point encryption when they experience any issues. It's terrible to give less tech-literate people the option of insecure communication.
It's terrible, and the reason I don't use matrix. While behind ds-lite, the only option I'd have is to run my node on an untrusted location (eg: a rented server).
> "its end-to-end encryption is optional": I don't really see this as a problem. If you want it, you have it. If you don't, you don't. Sometimes end-to-end encryption isn't desirable, in a business environment where you need communications to be auditable for example.
Sure, but in a post-snowden climate, I can't recommend a solution where end-to-end is optional to anybody. The problem is that when it is optional, people will readily downgrade to point-per-point encryption when they experience any issues. It's terrible to give less tech-literate people the option of insecure communication.