i believe that devs are very much aware of the backup issue and it's
importance but they dedicate all their resources to tasks with even
higher priorities. i expect that now that we have a unified Signal app
working on Android and iOS and the release of a Signal browser add-on is
only days away, a full featured backup would become one of the top
priorities.


- jure
(Helium) that can do the running of adb commands for you if you
don't know how to do it.
Bottom line: of course it would be wonderful to bring the backup
back. But there has been no visible effort from OWS over the last
year or so, even though the topic reappears on this mailinglist
every few months. So I wouldn't bet on it.
And in that context those adb backups are the only way we have
(had) right now :/
--Lenz
run adb commands either. The right solution is a full export
feature from within the app.
average user which can hardly be expected to root a
device. Therefore, the only working backup solution is
basically gone now.
requires wiping the complete phone? Even if it is in my case
actually possible and I am planning to do it, it is not a
possibility for everyone.

Also, rooted systems are not more secure per se, quite the contrary.
Rooting always requires third-party binary code on the system - which
generally can be far less trusted than something from the play store. It
virutally screams "here, take my rootkit which also gives you root as a
side effect".

Of course, a security-enthusiastic user can (in the case that the root
does not contain malware) use all those privacy options. But most normal
users have no benefit of rooting whatsoever. Times have changed, Android
is pretty good unrooted as it is.
from her old (unrooted) phone to her new phone in the near future :/
privacy options you have after rooting - firewalls, adblockers and
permission control - I consider working on a not-rooted phone as a
security and privacy problem. Of course, a good root-access tool like
SuperSU is required to regulate what gets access to root rights.

BTW, if you're rooted you can also install Lucky Patcher. This program
has an XPosed module that can disable signature verification, so you
can install a self-built version with a different signatre over an
official one.
| @konklone[1]



Links:

1. https://twitter.com/konklone

That may be true, but moving Signal messages to a new phone is something
that happens more often I think. But nowhere I say the unencrypted
export option should be removed or not expanded. Sorry if I didn't make
that clear. I just say the export of everything else (including identity
keys, something the standard sms app will never use) is important.
Making the unencrypted export better is another discussion.
and can
What is wrong with my approach? As I see it the old encrypted backup has
2 problems: exporting the lib (easily corrected) and exporting the
session keys so they might be out of sync when you restore. So resetting
all secure sessions after restore might solve that. I tested with it and
restored manually, that works but can easily be done in code (perhaps
even easier). Issues like the user has unregistered before restoring
might complicate things, but you'll always have that. Re-registerig
would solve that.

Hi,

I am making progress with the backup function. However, I wonder which i=
s =

the _preferred_ way to insert messages into the databases.

1) The current PlaintextImporter inserts SMS by modifying the statement =
=

returned from SmsDatabase::createInsertStatement. Additionally, it handl=
es =

the encryption by itself. Is this the intended abstraction level?
2) There appear to be no similar methods for the MmsDatabase and =

PushDatabase.

I'd appreciate any advise.

Best, Steffen.
e =
=
=
=
ore
y
.