←back to thread

Signal Secure Backups

(signal.org)
988 points keyboardJones | 5 comments | 08 Sep 25 16:43 UTC | HN request time: 1.014s | source
Show context
poisonborz ◴[08 Sep 25 17:34 UTC] No.45171210[source]
Backing up Signal on Android for free and offline was ~always possible. The app creates a multi GB backup file on the phone memory under the Signal folder that you can just copy out and back on a new phone.

The file is encrypted with the passcode and the database can be extracted.

https://github.com/bepaald/signalbackup-tools

replies(5): >>45171340 #>>45171393 #>>45172937 #>>45174136 #>>45177800 #
1. tjoff ◴[08 Sep 25 19:41 UTC] No.45172937[source]
Yeah, didn't see it mentioned, I trust it will still be available?
replies(1): >>45174147 #
2. halyconWays ◴[08 Sep 25 21:19 UTC] No.45174147[source]
I bet they'll phase it out and try to force their worse service, wherein your data is stored on their servers, like they tried to do with PINs. It took enormous pushback to get them to stop mandatory PINs, and even then they made it nagware for a year or two.

I didn't trust their rationale about PINs and remote attestation somehow meaning your data is secured by a small passphrase, just like I won't trust them to not remove a useful and existing feature I already rely on for backups.

Also not mentioned, they designed their existing backup solution to require reverse-engineered community solutions to actually access your data; I have to use a Github project to unencrypt the backup and export my chats, which is something I've never had to do with any other messenger.

replies(1): >>45175219 #
3. codethief ◴[08 Sep 25 22:59 UTC] No.45175219[source]
While I understand (and share) your criticism, it does sound like they'll continue to support local backups:

https://news.ycombinator.com/item?id=45171576

https://news.ycombinator.com/item?id=45172188

replies(1): >>45175907 #
4. halyconWays ◴[09 Sep 25 00:25 UTC] No.45175907{3}[source]
From your link, I wish they would answer this, and they've been asked numerous times, and to my knowledge have avoided the question (which is very concerning to me):

>This is excellent news! Will there also be official documentation on the backup format, potentially even official tooling like signalbackup-tools[0] to access/parse backups offline? I'm asking because, having used Signal/TextSecure for 10 years now, my backups are worth a lot to me (obviously) and there have been times when I would have liked to mine & process my backed-up data. (Extract media from conversations in an automated manner, build a more elaborate search, …)

I'm like that poster and backup all my chats obsessively, since way back in the day, and experienced a period with Signal where it was impossible for me to access my own data because of their position.

replies(1): >>45182864 #
5. codethief ◴[09 Sep 25 15:01 UTC] No.45182864{4}[source]
> I'm like that poster

So you're like me :)

Greyson answered my question btw.