@eapl.me This is one of my concerns too. The moment you post publicly ciphertext, you open yourself up for future attacks on the ciphertext, which you really want to avoid if you can. If you have a read of the Salty.im Spec you'll note we went to great lengths to protect the user's privacy as well as their identity and make it incredibly hard to guess at inboxes. It's still a WIP, but I'd love to see it progressed even further -- I truly feel strongly about a purely decentralised messaging ecosystem 👌