I don't trust Signal

A critical analysis of Signal's security and trustworthiness, arguing that despite its reputation, Signal makes self-serving design decisions that undermine genuine security. Key concerns include: long-standing dependency on Google Play Services (a 'rootkit'), refusal to distribute via F-Droid despite weak justifications, an insecure direct APK download mechanism, centralized server architecture requiring users to trust Signal's operators, no federation support, and hostile treatment of forks via trademark enforcement. The author argues these decisions serve Signal's founder Moxie's interests in maintaining control rather than maximizing user security, and that truly secure systems should not require trusting the service provider.