> Why not fuzz it on the device, before sending to the server?
Because you can change your fuzz algo instantly vs. waiting for users to download updates. Your not allowed to push code without review with iOS apps, so you couldn't send an updated lua script for example like you could with android.
For screw ups although they could of just fuzzed it further when they received it from the user on the server.
These apps are curtain-level privacy, mostly meant to keep you private from your social circle. Expecting any more without it being a pain in the ass would be a UX revolution.
> These apps are curtain-level privacy, mostly meant to keep you private from your social circle. Expecting any more without it being a pain in the ass would be a UX revolution.
True. I guess somehow saying "If you want real security, use PGP and only talk to people you know and trust" just isn't as good for their bottom line, or as fun/useful for their users. I would still consider it worthwhile for us to point this stuff out, so that people who care about it can inform themselves from somewhere other than a CEO whose company depends on making money off of them.
Because you can change your fuzz algo instantly vs. waiting for users to download updates. Your not allowed to push code without review with iOS apps, so you couldn't send an updated lua script for example like you could with android.
For screw ups although they could of just fuzzed it further when they received it from the user on the server.
These apps are curtain-level privacy, mostly meant to keep you private from your social circle. Expecting any more without it being a pain in the ass would be a UX revolution.