Molly is a hardened version of the official Signal for Android app. It claims the following features,
- Protects database with passphrase encryption
- Locks down the app automatically after you go a certain time without unlocking your device
- Securely shreds sensitive data from RAM
- Allows you to delete contacts and stop sharing your profile
- Clears call notifications together with expiring messages
- Disables debug logs
- No SMS integration
There are two flavors of it,
- Molly - Similar to the official Signal app, plus the additional features
- Molly-FOSS - Doesn’t rely on any Google components for location, push notifications & face blurring, plus all the additional features
Download it from here.
I’ve been using it for a couple of days & it is pretty decent so far.
Anyone here already tried or are using it? How’s the experience so far?
What’s the difference between Molly and LibreSignal, for Signal as a company? Shouldn’t Moxie ask them to stop using their infrastructure like they did with LibreSignal? Maybe Signal is not aware of its existence?
Anyway, looks promising. A really nice fork
I’m also interested on understanding if Moxie and company would eventually request molly to cease connecting to signal servers. Same thing as with signal-gcm-less. I don’t understand why they can still connect to signal servers, since Moxie clearly wants no other clients, than the binaries provided by signal connecting. I don’t know if this would last only until Moxie or signal guys realize, or only while these clients don’t reach certain popularity… Who knows… Moxie’s decisions make signal look like not open source, but who knows, maybe those 2 clients, molly and signal-gcm-less got some approval from signal?
If i recall correctly, Moxie was primarily frustrated by libre-signal because it was using signal name. He was also frustrated with custom clients, but he should see this as an improvement if he was being genuine.
As someone who has been using Signal, and previously TextSecure for almost 10 years, Moxie’s attitude is abhorrent and counter-intuitive. I wasn’t aware of how bad Signal’s privacy model was as it was worlds better than any other option back in 2015(in terms of security, not functionality) and I have not heard cries for an alternative until recently. I just downloaded Session and will promote it moving forward. Does anyone know an alternative to Signal for encrypted local storage of traditional SMS messages?
I had the same query as well. I don’t know if it has any direct relation to LibreSignal, since it was abandoned sometime back. But, both aims to remove dependency on Google components.
https://github.com/mollyim/mollyim-android#disclaimer
This project is NOT sponsored by Signal Messenger LLC or Signal Foundation.
deleted by creator
am interested aswell, really want my messenger to be named molly tbh
I use Molly-FOSS. It’s pretty cool. Definitely better than the official client.
i’m confused by this statement in the readme:
Back in 2018…But this option was removed with the introduction of full-disk encryption on Android.
android doesn’t use FDE - it uses file-based encryption (FBE). it used to use FDE but hasn’t since android 9. my point being that FDE existed first and has been phased out so it already existed in 2018 and was introduced waaaay earlier. so is this a typo in the readme or am i totally missing something?
Yeah, that’s a bit bugging. Checking Signal commits could give a clear idea about this.
deleted by creator
I prefer Session because it routes traffic through
TOR.Edit: I stand corrected.
It doesn’t route traffic through Tor, but through their own similar network called LokiNet.