web2 security people have spent the last 10 years arguing about how E2EE in a browser is impossible instead of actually doing anything about it

prefigurative politics means building privacy, not just critiquing surveillance

it's maddening to see people laugh at the idea of not keeping everyone's plaintext chat history on subpoenable servers forever, because there's _obviously_ no way to get hard guarantees about supply chain security

I just realized that they are two different problems. As a company, you can totally lock yourself out of your users' DMs. The users may not trust that it works as E2EE, but what matters is that when one day the subpoena comes you really cannot decrypt them.