Bonum Certa Men Certa

Modern spyware and the problems of "Discord newspeak"

posted by Roy Schestowitz on Sep 09, 2024,
updated Sep 09, 2024

Evil Earth Discord GIF

Article by Sami Tikkanen (IRC nickname: Sompi), original in Finnish or English.


The history of modern instant messaging

 

Remote messaging has taken many forms during the known history of humanity. Before electricity was invented, messages were transmitted using smoke signals and carrier pigeons. With electricity the telegraph was invented, and human voice was turned into an electric signal and transmitted through long wires - the latter is still in use today and is known as "a telephone". The significance of a telegraph in communication has practically been lost after digital computers that route messages automatically became common.

 

First digital messaging applications used very simple protocols and often no other client program than just a telnet client was needed. The SMTP protocol, which is still actively used in transferring e-mails between servers, was developed in 1982. The IRC protocol, which was developed in Finland by Jarkko Oikarinen in 1988, became the first broadly used instant messaging protocol.

 

 

Definitions of technical terms used in this writing

 

Client: A program that the user installs to their computer to use the service.

 

Server: A program that is installed to the server computer, which relays the messages between different users.

 

Protocol: A set of rules that the client and server programs use to exchange information between each other.

 

Payload: The "useful" data that is transferred from a client to an another client via the protocol - in the case of communicator applications this is usually a message from a user to an another user.

 

End-to-end encryption: The payload is encrypted by the client that sends it, and it is decrypted by the client that receives it, so that the server that relays the message cannot see the decrypted contents of the payload.

 

Instant messenger: A synonym to the word "chat".

 

Bridge bot: A bot that relays messages between two or more conversation channels. Different conversation channels can use different protocols - for example, the bot can relay messages between an IRC channel and a Matrix channel.

 

Free: Free as in freedom. Has nothing to do with the price. May or may not be gratis.

 

Differences between closed and free instant messengers

 

Probably the most important difference between closed and free instant messengers is how their name is used. The name of a closed instant messenger program is usually associated to their client program, but when we are speaking about a free instant messenger, we are speaking about the protocol and not any particular computer program. In fact a free instant messenger IS the protocol - there may or may not exist a client program of the same name, and "THE client program" certainly doesn't exist. Good examples of this are two well known instant messengers IRC and Mumble: Both of them have many existing client programs and the first of them doesn't even have a client program that would be named after the protocol. A free instant messenger is a protocol that is implemented in the context of the server or client program.

 

The protocol of a closed instant messenger is usually completely undocumented, and because of that creating an alternative client program is very hard and laborious work. Using an alternative client program may also be completely forbidden in their terms of service, which is the case with Discord. A closed and undocumented protocol creates a situation where the instant messenger in question works only on those devices that the official client program has been made for. In contrast to this free instant messengers have an open and documented protocol, which makes it easy to write a client program. The most commonly used free instant messengers have client programs for practically every type of computing device.

 

An undocumented protocol also makes it difficult to create bridge bots, and often the terms of service completely forbids using bridge bots. Usually the main business idea of a closed instant messenger is to keep its users trapped inside its walled garden. Apart from some exceptions closed instant messengers don't usually have a publicly available server program and thus creating an own server is impossible, which makes them more vulnerable to denial-of-service attacks and censorship by totalitarian governments.

 

 

How marketing changes the meaning of words

 

Most proprietary closed-source computer programs are produced by profit-seeking companies. Often their marketing is not exactly honest - especially when the workings of the product in question is not completely understood by its average user. The same phenomena can also be seen with computer software, and one of the most used means of untruthful marketing is to change the meaning of words to better match the agenda of the company. The worst case scenario is that the new way of using the words becames established as the new normal, which is at an especially high risk of happening within the contexts of technical literature, where the target group of the marketing often initially learns about the new word from the purposely untruthful marketing material. The establishment of the newspeak definitions of the words into the normal usage of language makes technical things even harder to understand.

 

Often it seems that the misleading use of words has caused almost irrepairable damage, and this can even be seen happening to university students of information technology, the very people who should learn these things properly or else in the near future no-one is able maintain the digital systems that our society increasingly relies on. After one has initially learned a misleading definition for a technical term, it becomes very hard to adjust the inner paradigms to understand the real technically correct meaning of the word.

 

Usually the purpose of using words misleadingly is to "flatten" the meanings of words that are considered positive things. For example, the word "secure" may be used for an instant messenger program that does not even have end-to-end encryption and all messages are saved to the server in plaintext form - in that case what they actually mean is that only the connection between the client and the server is encrypted. Discord calls the groups inside their service "servers" to create a misconception that everyone can create their own servers for Discord. Of course, in reality, it has nothing to do with actual servers - the word "server" means and has always meant, in the hardware level the computer that runs the server software, and in software level a program that listens to connection requests from clients, and neither of those can be created via clicking some links in some Electron app.

 

 

Conceptual problems when speaking about information security

 

During the recent years the security of closed source computer programs has often been in the headlines around the world. Spying features have been found, among the others, from the operating systems of Microsoft and Apple. The fact that Facebook makes money by selling information about its users has raised conserns. Many countries have been boycotting Huawei when building 5G networks because of the possibility of China using their network devices for spying purposes.

 

Often the discussion about security gets derailed or becomes completely impossible, because the definitions of words are unclear. Already long before the era of the modern "Discord newspeak" security companies have had the habit of marketing their products like security was something that could be bought from a store, which has already made it difficult to educate people about the subject.

 

Understanding the security of instant messengers is not possible, if the concept of a server is unclear. Essential things are the encryption and the question of whether the server is trusted or not, and if not, does it see the messaging between the clients. Because of the "Discord newspeak" a typical conversation about security goes like this:

 

1: To be actually secure, the messenger program has to encrypt the messages between the users.

 

2: Discord uses an encrypted connection. Therefore Discord is secure.

 

1: Discord is not secure, because its encryption is not done between the users. Its encryption only exists between the client and the server, and the messages are saved to the server in a plain-text format. They probably also sell all your messages to advertisers.

 

2: I created my own Discord server that I trust, because it is my own server and I can always trust my own server! In addition to that, creating a server to Discord is very easy, because it only requires clicking couple of links from the client program! Only with outdated legacy messenger apps you need to install some server program and leave the computer powered on 24/7 just to have a server!

 

What went wrong? The conversationalist no. 2 knows that encryption between the client and the server is sufficient for security, if the server is trusted. However, they thinks that the Discord group they created is a "server" and therefore concludes that the messages cannot end up in the hands of any untrusted parties. Discord erroneously calls the social media groups within their service "servers".

 

 

Other examples of "Discord newspeak" and untruthful marketing

 

Other Recent Techrights' Posts

Links 11/10/2024: Discord Still Blocked in Turkey, Google Might be Split
Links for the day
LinuxSecurity (Guardian Digital, Inc) Sloppy With Its 'Linux' Slop
This kind of stuff is killing the World Wide Web and ruins human knowledge
Loss of Technical Merit(ocracy)
"buzzword diplomas"
 
Going Almost 4.5 Decades Back to Find 'Dirt' on a Person
That incident was 42.5 years ago. Is that how far some people would go in an effort to discredit a person?
XBox is Dead. This is Just the Beginning.
the main reason Microsoft bought Activision/Blizzard was to hide the growing losses and failure of XBox
The Risk to the "Linux" Brand
Brands that are not guarded from misuse/abuse will inevitably lose their original meaning and their value
Gemini Links 11/10/2024: Deploying Common Lisp Programs and Examining FreeBSD
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, October 10, 2024
IRC logs for Thursday, October 10, 2024
[Meme] Chin-dropping and Jaw-dropping (Considerable Drop in Patent Validity and Quality)
This drop is very much intentional
Gemini Links 10/10/2024: Untruth, SSH, Gopher, and More
Links for the day
Geminispace Beyond 4,100 Capsules
4,000 was less than 8 weeks ago
Links 10/10/2024: TikTok's Legal Problems, WeblogPoMo Challenges
Links for the day
[Meme] European Patent Convention and Vienna Convention Became Only Fictions (Laws and Constitutions Are Now Works of Fiction in Europe)
A political crisis and blunder
Almost a Thousand EPO Staff Protesting to EPO Member States That the Office Illegally Grants Software Patents and Other Invalid European Patents
"The outcome confirms that the concerns about the EPO’s ability to grant legally sound patents remain"
Junk Science
science is being compromised for business purposes
[Meme] Dismantling .io (Stick a Fork, the Hype is Done)
NVIDIA is an excellent new example of hype driving up fictional "value"
UNIX is 55 This Year, It is 6 Years Older Than Microsoft
It should be noted that the surviving co-creator of UNIX, Ken Thompson, 'moved' to GNU/Linux (Debian) in recent years
This Year, for the First Time Since August 2019 (Bill Gates MIT Scandal, Jeffrey Epstein Bribes), libreplanet-discuss Was Inactive an Entire Month
The MIT injustice remains and recent "libreplanet" events were held in a venue that's not MIT and far less prestigious than MIT (the "Wentworth" imitation)
[Meme] Different Ending for Jurassic Park
UNIX in old movies
Evolution of Hype
Passing fads and rebranding
Groklaw Will Hopefully Come Back
Sites should be able to run for decades with hardly any human role/interaction, but that's not where we are...
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, October 09, 2024
IRC logs for Wednesday, October 09, 2024
World Wide Web: Only Criminals Would Want Real Security and Vouch for Themselves When They Use Encryption
In "modern" browsers, the podlock icon probably does not mean what users might think it means
[Meme] OSI Digging Its Very Own Grave (With Microsoft)
The very latest blog post from OSI is a hoot
Gemini Links 09/10/2024: YouTube Woes, Post-Truth Slop
Links for the day
Geminispace is More Trustworthy (and Private) Than the World Wide Web
Unlike the Web, Geminispace does not route the lion's share of traffic through a collective of spying companies
Nothing Will Be Secure and Robust to Failure Until Microsoft Windows is Eradicated and/or Disconnected From the Internet
Every system has limited capacity, Windows botnets push things to their limits
GNU/Linux Took Off at the BSDs' Expense (Amid Telecom Lawsuit) and the Rivalry Persists Because Microsoft is Negligible in the Server Space
UNIX or POSIX is the future
Links 09/10/2024: Samsung's Fall, Tensions Growing Near China
Links for the day
Gemini Links 09/10/2024: Retroware and gmlgcd 2.0
Links for the day
Links 09/10/2024: Microsoft's Surface Duo 2 Officially Dead, X/Twitter Shutdown in Brazil, and "OpenAI Is A Bad Business"
Links for the day
Technology: rights or responsibilities? - Part III
By Dr. Andy Farnell
[Meme] Bill Gates With a Side of "Linux"
Linux Foundation is trolling us with Bill Gates
Once Again Linux Foundation Makes It Clear It's Being 'Absorbed' by Bill Gates
Linux Foundation devotes about 2% of its budget to Linux
Links 08/10/2024: Australian Fines for Twitter (X), Fake Patent Courts Still Not Scuttled
Links for the day
World Wide Slop
If it quacks like a duck...
IBM is a Boys' Club
If IBM collapsed, the Red Hat engineers who work on GNU and Linux would simply work elsewhere (on the same projects)
The Miserable State of GAFAM
Looking for government handouts
Microsoft is Acting Like a Company That's Running Out of Money (But Still Pretends to be Wealthy in Order to Attract or Retain Shareholders)
Azure has had mass layoffs every year since 2020, yet Microsoft keeps telling shareholders that "clown computing" is growing
Dr. Andy Farnell's Article on Societal Disorganised Attachment and the Role of Social Control Media
The article is quite long and typos were still being fixed as recently as last night
Smear Alert: Linus Torvalds Asking for Better Commit Messages Makes Linus a (Grammar) Nazi
Maybe the "mainstream media" is looking for clickbait or maybe it's actively looking to make a scandal - a phony controversy with which to make the job of coordinating Linux unpleasant
Gemini Links 09/10/2024: Climate Doom and Clagrange
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, October 08, 2024
IRC logs for Tuesday, October 08, 2024