What advantage does Signal protocol have over basic public key encryption?

David Barrett dbarrett at expensify.com
Sun Jan 24 13:17:00 PST 2021

Hm, can you clarify what makes you think this to be true?  I'm not doubting
you, but I'd love your help reproducing your findings so I can fix it.  Can
you give me a command that shows this?  Curl seems happy with the cert:

$ curl -I https://Expensify.cash
HTTP/2 200
date: Sun, 24 Jan 2021 21:15:07 GMT
content-type: text/html
set-cookie: __cfduid=d7b9d388659eddf76d49a3180052be5851611522907;
expires=Tue, 23-Feb-21 21:15:07 GMT; path=/; domain=.expensify.cash;
HttpOnly; SameSite=Lax; Secure
last-modified: Fri, 22 Jan 2021 19:48:30 GMT
x-amz-version-id: gDUIKS4512FilAV451eNAB1GKNTXSwxR
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront)
x-amz-cf-pop: HIO50-C1
x-amz-cf-id: eUX6h4RJEibwWOZlO9fRhI8qqXnOL-cCXKuV-NOcx87ifCjPYNWLGQ==
cf-cache-status: DYNAMIC
cf-request-id: 07d7d93449000039a2a6278000000001
expect-ct: max-age=604800, report-uri="
server: cloudflare
cf-ray: 616cc49a0c4839a2-SEA

Also, can you answer any of my questions about Signal?  Thanks for your
help and the fast response!


On Sun, Jan 24, 2021 at 1:14 PM professor rat <pro2rat at yahoo.com.au> wrote:

> This site can’t provide a secure connection
> expensify.cash. uses an unsupported protocol.
> Unsupported protocol
> The client and server don't support a common SSL protocol version or
> cipher suite.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: text/html
Size: 2088 bytes
Desc: not available
URL: <https://lists.cpunks.org/pipermail/cypherpunks/attachments/20210124/90f9e9ba/attachment.txt>

More information about the cypherpunks mailing list