social.gl-como.it

Cerca

Elementi taggati con: xmpp

Reliability, the open source weakness



Beem in installed, so tried to use it. Ignoring some of the ludicous server names(!), 4 servers were chosen at random (in terms of the personally best server names) to create an account. All failed. Meanwhile, whatapp sits there...

#beem #xmpp #jabber
 

FREEMIND - LANCEMENT DU SITE WEB ###



Et oui enfin ! L'équipe Freemind est heureuse et fier de vous annoncer la mise en ligne de son site web ! :D ####



Voici l'adresse dont vos favoris ne pourront bientôt plus se passer :

https://www.freemind.ovh ####



Vous y trouverez des informations concernant nos différents services déjà fonctionnels (IRC & XMPP), le reste étant soit en test, soit en projet en cours d'étude (Diaspora, ownCloud, Mail, serveur Minecraft pour ne citer qu'eux...).

Des tutoriels complets et en français sont également disponible sur le site !
Allez voir dans la section "Logiciels libres" et vous y trouverez des informations, des solutions alternatives, ET des tutos, notemment sur :
* Tox : l'alternative libre, sécurisée et totalement décentralisée de Skype
* XMPP : protocole libre (le même que google/facebook mais "pas en prison"...) donc alternative à Hangouts/fb messenger
* IRC : tuto complet sur les notions de bases et l'installation d'un client irc
* ANDROID : une section complète avec plein d'alternative libre et respectueuses de la vie privée (on y retrouve des clients pour Tox, XMPP et IRC aussi)

Certains sont en cours de rédaction, d'autres sont prévus et pas encore commencé.

Vous souhaitez contribuer ou vous avez besoin d'aide ?? Contactez-nous ! Toutes les informations de contact figurent maintenant sur notre site web, l'équipe Freemind vous invite à le visiter :)

À très bientôt qui que vous soyez ! une excellente fin de journée de la part du Staff Freemind !

#freemind-fr #freemind #freemind-fr-news #web #site #news #acteurdulibre #libre #solidarité #communauté #linux #respectdelavieprivée #securité #nginx #cmsimple #wiki #tox #irc #xmpp #jappix #promotiondulibre #entraide #support #supportfr #supportfrancophone #aidefrancophone #minecraft
 



You broke the Internet



Now let's build a GNU one



Details: Yellow is for projects in development while green is for those that are available. Red illustrates brands that lose their monopoly condition once the respective layers are fully operational whereas light red indicates faulty technologies that we must replace.

Strongly recommend checking out the source website: http://youbroketheinternet.org/

Some related tags: #internet #surveillance #freesoftware #gnu #linux #security #netsec #crypto #ipfs #gpg #pgp #encryption #cryptocat #mumble #GNS #guix #nix #bittorrent #faceboogle #tor #I2P #otr #librecmc #libreboot #fsf #eff #ccc #pirateparty #pirates #ricochet #gnunet #freenet #android #replicant #grothoff #signal #libresignal #taler #gnutaler #youbroketheinternet #selfhosting #decentralization #selfhosted #tox #xmpp #jitsi #pond #PSYC #Tahoe-LAFS #retroshare #cjdns #onionshare #cryptocat #briar #maidsafe #coreboot #tribler #axolotl #zeroqm #bitmessage #cloud #skype #twitter #microsoft #rhizome #rina #netsukuku #tails #debian #freedombox #freedombone #ethos #qubes #whonix #guixSD #gentoo #zyre #reproduciblebuilds #openwrt #BMX7 #net2o #ethereum #copperheadOS #federation #dns #smtp #dane #blackadder #globaleaks #redphone #2020 #mesh #pulse #heartbeat

#youbroketheinternet

#youbroketheinternet
 
| Translate | Gitter

Why we don't publish at the Play Store



We got some requests recently, asking, why we do not publish #dandelion at the #GooglePlay.So here are our main reasons, why we don't plan to uploadthe app there currently.

First of all, we do not comply with Googles terms of service. Having to pay ~25€ to Google who did not write the app and does not respect your freedom nor your privacy on its platforms (Youtube, GMail...) just doesn't feel right. We believe, that our userbase is well aware of the privacy concerns that come with using Google's Services, so many diaspora* users actually get their apps through F-Droid (which is great). Second, if a user that does not know about F-Droid yet wants to use dandelion* and searches for it, they'll hopefully find out about the F-Droid project and may get in touch with free software that way. So by not publishing to Google Play, we hope to get more people to understand, use and appreciate free and open source software.

If you find dandelion* on the Play Store, please be aware, that you likely just found a version built by someone else. We can not guarantee that such a version has not been tampered with in terms of #malware, so we highly discourage you to use it. It should be clear, that we'll never charge you any money for using, downloading, sharing or modifying the app. Note also, that we won't support those versions.

If you want to dontate to the project to support the developers, and keep them motivated, please feel free to contact us :D As always, you can help us by submitting bug reports, code and/or translations on github and crowdin.
PS: We maintainers (@gsantner and @vanitasvitae) will soon have more time again to actively work on the app. The last weeks we were distracted with educational work, so here is some background information:

@gsantner was working on another FLOSS app called Froody, which lets you share (naturally growing) food and other things with others. He hopes to enable people to live a more sustainable life. The main idea is to share to and help other people by e.g. sharing pears, which would rot anyway if unused.Everything is built with international use in mind. The app is available at https://github.com/froodyapp/froody-android, and is currently available in #English, #German and #Japanese. Also translatable on Crowdin. He also writes his bachlor thesis about Open Source and Android, which will be completed in summer and likely to be released in an appropiate free license.

@vanitasvitae is writing his bachelor thesis about an #OMEMO module for #Smack, a #XMPP library used by many free messengers like #Jitsi or #Kontalk.
He hopes to enable those messengers to #encrypt your communication end-to-end using the OMEMO protocol introduced by #conversations.
He'll also attend #FOSDEM in #brussels by the way, so if you are there you might meet him and chat a little ;)

Sharing welcome!



Immagine/foto

Tags: #dandelion #dandeliondev #diaspora #diasporaforandroid #diasporaandroid #diasporaapp #app #fdroid #freesoftware #opensource #google #play #store #app #android-dev #foss #freie-software #freesoftware #opensource #translation #translator #release #mobile #froody #froodyapp #omemo #security #sustainability #sustainable #thesis

Diaspora-for-Android/dandelion

dandelion* - unofficial diaspora* android client
 
Immagine/foto

mancho / libpurple-omemo-plugin · GitLab



This is a prototype plug-in for Jabber/XMPP accounts to support 1:1 end-to-end encryption with OMEMO (XEP-0384) in Pidgin and other compatible clients using libpurple. It doesn't have graphical trust management yet. See Usage on how to activate and configure it "by hand".

It allows Pidgin to be OMEMO-compatible with Conversations (Android), Gajim (desktop - with OMEMO plug-in) and riba's Pidgin OMEMO plug-in (aka Lurch)1.

DISCLAIMER: This plug-in is a prototype with academic purposes only. It is in experimental state and in constant development. It is not intended to be used on production environments. Do not rely on this plug-in to protect sensitive information. If you use it you are on your own and I take no resposibility for any damage, harm or loss you, your system, your data or your cat might suffer.

https://git.imp.fu-berlin.de/mancho/libpurple-omemo-plugin

via: https://quitter.se/notice/9543063

#omemo #xmpp #pidgin #jabber
 

Mi pequeño aporte para Diaspora



Cómo habilitar el chat en la red social Diaspora, un vídeo simple para los que recién llegan. Compártanlo





#diaspora #red-social #chat #xmpp #gnu #linux #android #gnu-linux #android #chat-xmpp #chatxmpp
 

Cómo crear una cuenta en Diaspora



En este vídeo explico como crear una cuenta en la red social Diaspora, ideal para personas principiantes o para los que no conocen sobre esta red social. Compártelo.

https://archive.org/details/CrearCuentaRedSocialDiaspora



#diaspora #red-social #chat #xmpp #gnu #linux #android #gnu-linux #android #chat-xmpp #chatxmpp

Crear cuenta en Diaspora : Diego Ariel Capeletti : Free Download & Streaming : Internet Archive

En este vídeo se explica como crear una cuenta en la red social Diaspora. También se explica como realizar algunas configuraciones del perfil del usuario.
 

Cómo crear una cuenta en Diaspora



En este vídeo explico como crear una cuenta en la red social Diaspora, ideal para personas principiantes o para los que no conocen sobre esta red social. Compártelo.

https://archive.org/details/CrearCuentaRedSocialDiaspora



#diaspora #red-social #chat #xmpp #gnu #linux #android #gnu-linux #android #chat-xmpp #chatxmpp

Crear cuenta en Diaspora : Diego Ariel Capeletti : Free Download & Streaming : Internet Archive

En este vídeo se explica como crear una cuenta en la red social Diaspora. También se explica como realizar algunas configuraciones del perfil del usuario.
 

Mi pequeño aporte para Diaspora



Cómo habilitar el chat en la red social Diaspora, un vídeo simple para los que recién llegan. Compártanlo





#diaspora #red-social #chat #xmpp #gnu #linux #android #gnu-linux #android #chat-xmpp #chatxmpp
 
Immagine/foto
#jabber #xmpp #profanity #IM #chat #cli #otr

A very good jabber client. Recommended!



http://www.profanity.im/

 
Immagine/foto
#jabber #xmpp #profanity #IM #chat #cli #otr

A very good jabber client. Recommended!



http://www.profanity.im/

 

Salas de Chat en XMPP de diaspora.com.ar



No sé si sabían, pero pueden hacer #salas de chat (en #XMPP se llaman #MUC).

Funcionan en Conversations, Pidgin y cualquier cliente que soporte MUC.

#DAr #diasporaargentina
 

todxs@salas.diaspora.com.ar



¡Una sala para todos los usuarios XMPP!



#XMPP #salas de chat #MUC #DAr #diasporaargentina
 

Salas de Chat en XMPP de diaspora.com.ar



No sé si sabían, pero pueden hacer #salas de chat (en #XMPP se llaman #MUC).

Funcionan en Conversations, Pidgin y cualquier cliente que soporte MUC.

#DAr #diasporaargentina
 

OMEMO « vanitasvitae's blog

I also read a lot of articles suggesting alternatives to WhatsApp. [...]
Every now and then the news mention another alternative, the XMPP network.
Nice to see that OMEMO support is spreading among XMPP clients

#xmpp

@debacle is the tag working on D*?
 

Welche Messenger unterstützen schon OMEMO?



#messenger #it-sicherheit #xmpp #omemo #olm #xep0384

OMEMO ist seit Dezember 2016 offiziell XEP-0384 und seit Kurzem für ChatSecure verfügbar.

Wer wissen will, wie es mit anderen Messengern aussieht, kann einen Blick auf die Übersicht „Are we OMEMO yet?“ werfen.

ChatSecure für iOS nun offiziell mit OMEMO

ChatSecure für iOS nun offiziell mit OMEMO
#chatsecure #omemo #ios #it-sicherheit #privacy #datenschutz
Ab sofort liegt ChatSecure in der vierten Hauptversion (https://chatsecure.org/blog/chatsecure-v4-released/) vor und unterstützt jetzt nativ OMEMO. Weiterhin wurden knapp 300 Änderungen seit 3.2 (https://github.com/chatsecure/chatsecure-ios/compare/v3.2.3...v4.0) vorgenommen.
Für die kommenden Versionen sind u. a. OMEMO für MUCs, XEP-0313 MAM sowie XEP-0333 Chat Markers geplant.
 

Welche Messenger unterstützen schon OMEMO?



#messenger #it-sicherheit #xmpp #omemo #olm #xep0384

OMEMO ist seit Dezember 2016 offiziell XEP-0384 und seit Kurzem für ChatSecure verfügbar.

Wer wissen will, wie es mit anderen Messengern aussieht, kann einen Blick auf die Übersicht „Are we OMEMO yet?“ werfen.

ChatSecure für iOS nun offiziell mit OMEMO

ChatSecure für iOS nun offiziell mit OMEMO
#chatsecure #omemo #ios #it-sicherheit #privacy #datenschutz
Ab sofort liegt ChatSecure in der vierten Hauptversion (https://chatsecure.org/blog/chatsecure-v4-released/) vor und unterstützt jetzt nativ OMEMO. Weiterhin wurden knapp 300 Änderungen seit 3.2 (https://github.com/chatsecure/chatsecure-ios/compare/v3.2.3...v4.0) vorgenommen.
Für die kommenden Versionen sind u. a. OMEMO für MUCs, XEP-0313 MAM sowie XEP-0333 Chat Markers geplant.
 

FREEMIND - LANCEMENT DU SITE WEB ###



Et oui enfin ! L'équipe Freemind est heureuse et fier de vous annoncer la mise en ligne de son site web ! :D ###">#[url=http://social.gl-como.it/search?tag=%23%23]##



Voici l'adresse dont vos favoris ne pourront bientôt plus se passer :

https://www.freemind.ovh ###">#[url=http://social.gl-como.it/search?tag=%23%23]##



Vous y trouverez des informations concernant nos différents services déjà fonctionnels (IRC & XMPP), le reste étant soit en test, soit en projet en cours d'étude (Diaspora, ownCloud, Mail, serveur Minecraft pour ne citer qu'eux...).

Des tutoriels complets et en français sont également disponible sur le site !
Allez voir dans la section "Logiciels libres" et vous y trouverez des informations, des solutions alternatives, ET des tutos, notemment sur :
* Tox : l'alternative libre, sécurisée et totalement décentralisée de Skype
* XMPP : protocole libre (le même que google/facebook mais "pas en prison"...) donc alternative à Hangouts/fb messenger
* IRC : tuto complet sur les notions de bases et l'installation d'un client irc
* ANDROID : une section complète avec plein d'alternative libre et respectueuses de la vie privée (on y retrouve des clients pour Tox, XMPP et IRC aussi)

Certains sont en cours de rédaction, d'autres sont prévus et pas encore commencé.

Vous souhaitez contribuer ou vous avez besoin d'aide ?? Contactez-nous ! Toutes les informations de contact figurent maintenant sur notre site web, l'équipe Freemind vous invite à le visiter :)

À très bientôt qui que vous soyez ! une excellente fin de journée de la part du Staff Freemind !

#freemind-fr #freemind #freemind-fr-news #web #site #news #acteurdulibre #libre #solidarité #communauté #linux #respectdelavieprivée #securité #nginx #cmsimple #wiki #tox #irc #xmpp #jappix #promotiondulibre #entraide #support #supportfr #supportfrancophone #aidefrancophone #minecraft
 
| Translate | Gitter

Why we don't publish at the Play Store



We got some requests recently, asking, why we do not publish #dandelion at the #GooglePlay.So here are our main reasons, why we don't plan to uploadthe app there currently.

First of all, we do not comply with Googles terms of service. Having to pay ~25€ to Google who did not write the app and does not respect your freedom nor your privacy on its platforms (Youtube, GMail...) just doesn't feel right. We believe, that our userbase is well aware of the privacy concerns that come with using Google's Services, so many diaspora* users actually get their apps through F-Droid (which is great). Second, if a user that does not know about F-Droid yet wants to use dandelion* and searches for it, they'll hopefully find out about the F-Droid project and may get in touch with free software that way. So by not publishing to Google Play, we hope to get more people to understand, use and appreciate free and open source software.

If you find dandelion* on the Play Store, please be aware, that you likely just found a version built by someone else. We can not guarantee that such a version has not been tampered with in terms of #malware, so we highly discourage you to use it. It should be clear, that we'll never charge you any money for using, downloading, sharing or modifying the app. Note also, that we won't support those versions.

If you want to dontate to the project to support the developers, and keep them motivated, please feel free to contact us :D As always, you can help us by submitting bug reports, code and/or translations on github and crowdin.
PS: We maintainers (@gsantner and @vanitasvitae) will soon have more time again to actively work on the app. The last weeks we were distracted with educational work, so here is some background information:

@gsantner was working on another FLOSS app called Froody, which lets you share (naturally growing) food and other things with others. He hopes to enable people to live a more sustainable life. The main idea is to share to and help other people by e.g. sharing pears, which would rot anyway if unused.Everything is built with international use in mind. The app is available at https://github.com/froodyapp/froody-android, and is currently available in #English, #German and #Japanese. Also translatable on Crowdin. He also writes his bachlor thesis about Open Source and Android, which will be completed in summer and likely to be released in an appropiate free license.

@vanitasvitae is writing his bachelor thesis about an #OMEMO module for #Smack, a #XMPP library used by many free messengers like #Jitsi or #Kontalk.
He hopes to enable those messengers to #encrypt your communication end-to-end using the OMEMO protocol introduced by #conversations.
He'll also attend #FOSDEM in #brussels by the way, so if you are there you might meet him and chat a little ;)

Sharing welcome!



Immagine/foto

Tags: #dandelion #dandeliondev #diaspora #diasporaforandroid #diasporaandroid #diasporaapp #app #fdroid #freesoftware #opensource #google #play #store #app #android-dev #foss #freie-software #freesoftware #opensource #translation #translator #release #mobile #froody #froodyapp #omemo #security #sustainability #sustainable #thesis

Diaspora-for-Android/dandelion

dandelion* - unofficial diaspora* android client
 
| Translate | Gitter

Why we don't publish at the Play Store



We got some requests recently, asking, why we do not publish #dandelion at the #GooglePlay.So here are our main reasons, why we don't plan to uploadthe app there currently.

First of all, we do not comply with Googles terms of service. Having to pay ~25€ to Google who did not write the app and does not respect your freedom nor your privacy on its platforms (Youtube, GMail...) just doesn't feel right. We believe, that our userbase is well aware of the privacy concerns that come with using Google's Services, so many diaspora* users actually get their apps through F-Droid (which is great). Second, if a user that does not know about F-Droid yet wants to use dandelion* and searches for it, they'll hopefully find out about the F-Droid project and may get in touch with free software that way. So by not publishing to Google Play, we hope to get more people to understand, use and appreciate free and open source software.

If you find dandelion* on the Play Store, please be aware, that you likely just found a version built by someone else. We can not guarantee that such a version has not been tampered with in terms of #malware, so we highly discourage you to use it. It should be clear, that we'll never charge you any money for using, downloading, sharing or modifying the app. Note also, that we won't support those versions.

If you want to dontate to the project to support the developers, and keep them motivated, please feel free to contact us :D As always, you can help us by submitting bug reports, code and/or translations on github and crowdin.
PS: We maintainers (@gsantner and @vanitasvitae) will soon have more time again to actively work on the app. The last weeks we were distracted with educational work, so here is some background information:

@gsantner was working on another FLOSS app called Froody, which lets you share (naturally growing) food and other things with others. He hopes to enable people to live a more sustainable life. The main idea is to share to and help other people by e.g. sharing pears, which would rot anyway if unused.Everything is built with international use in mind. The app is available at https://github.com/froodyapp/froody-android, and is currently available in #English, #German and #Japanese. Also translatable on Crowdin. He also writes his bachlor thesis about Open Source and Android, which will be completed in summer and likely to be released in an appropiate free license.

@vanitasvitae is writing his bachelor thesis about an #OMEMO module for #Smack, a #XMPP library used by many free messengers like #Jitsi or #Kontalk.
He hopes to enable those messengers to #encrypt your communication end-to-end using the OMEMO protocol introduced by #conversations.
He'll also attend #FOSDEM in #brussels by the way, so if you are there you might meet him and chat a little ;)

Sharing welcome!



Immagine/foto

Tags: #dandelion #dandeliondev #diaspora #diasporaforandroid #diasporaandroid #diasporaapp #app #fdroid #freesoftware #opensource #google #play #store #app #android-dev #foss #freie-software #freesoftware #opensource #translation #translator #release #mobile #froody #froodyapp #omemo #security #sustainability #sustainable #thesis

Diaspora-for-Android/dandelion

dandelion* - unofficial diaspora* android client
 

Modern XMPP Server



by Elena ``of Valhalla''



reposted here to get the tags right


I've published a new HOWTO on my website:

Enrico already wrote about the Why (and the What, Who and When), so I'll just quote his conclusion and move on to the How.
I now have an XMPP setup which has all the features of the recent fancy chat systems, and on top of that it runs, client and server, on Free Software, which can be audited, it is federated and I can self-host my own server in my own VPS if I want to, with packages supported in Debian.

How



I've decided to install prosody, mostly because it was recommended by the RTC QuickStart Guide; I've heard that similar results can be reached with ejabberd and other servers.

I'm also targeting Debian stable (+ backports); as I write this is jessie; if there are significant differences I will update this article when I will upgrade my server to stretch. Right now, this means that I'm using prosody 0.9 (and that's probably also the version that will be available in stretch).

Installation and prerequisites



You will need to enable the backports repository and then install the packages prosody and prosody-modules.

You also need to setup some TLS certificates (I used Let's Encrypt); and make them readable by the prosody user; you can see Chapter 12 of the RTC QuickStart Guide for more details.

On your firewall, you'll need to open the following TCP ports:
  • 5222 (client2server)
  • 5269 (server2server)
  • 5280 (default http port for prosody)
  • 5281 (default https port for prosody)
The latter two are needed to enable some services provided via http(s), including rich media transfers.

With just a handful of users, I didn't bother to configure LDAP or anything else, but just created users manually via:
prosodyctl adduser alice@example.org
In-band registration is disabled by default (and I've left it that way, to prevent my server from being used to send spim).

prosody configuration



You can then start configuring prosody by editing /etc/prosody/prosody.cfg.lua and changing a few values from the distribution defaults.

First of all, enforce the use of encryption and certificate checking both for client2server and server2server communications with:
c2s_require_encryption = true<br></br>s2s_secure_auth = true
and then, sadly, add to the whitelist any server that you want to talk to and doesn't support the above:
s2s_insecure_domains = { "gmail.com" }

virtualhosts



For each virtualhost you want to configure, create a file /etc/prosody/conf.avail/chat.example.org.cfg.lua with contents like the following:
VirtualHost "chat.example.org"
enabled = true
ssl = {
key = "/etc/ssl/private/example.org-key.pem";
certificate = "/etc/ssl/public/example.org.pem";
}

For the domains where you also want to enable MUCs, add the follwing lines:
Component "conference.chat.example.org" "muc"
restrict_room_creation = "local"

the "local" configures prosody so that only local users are allowed to create new rooms (but then everybody can join them, if the room administrator allows it): this may help reduce unwanted usages of your server by random people.

You can also add the following line to enable rich media transfers via http uploads (XEP-0363):
Component "upload.chat.trueelena.org" "http_upload"
The defaults are pretty sane, but see https://modules.prosody.im/mod_http_upload.html for details on what knobs you can configure for this module

Don't forget to enable the virtualhost by linking the file inside /etc/prosody/conf.d/.

additional modules



Most of the other interesting XEPs are enabled by loading additional modules inside /etc/prosody/prosody.cfg.lua (under modules_enabled); to enable mod_something just add a line like:
"something";
Most of these come from the prosody-modules package (and thus from https://modules.prosody.im/ ) and some may require changing when prosody 0.10 will be available; when this is the case it is mentioned below.
  • mod_carbons (XEP-0280) To keep conversations syncronized while using multiple devices at the same time.

    This will be included by default in prosody 0.10.
  • mod_privacy + mod_blocking (XEP-0191) To allow user-controlled blocking of users, including as an anti-spim measure.

    In prosody 0.10 these two modules will be replaced by mod_privacy.
  • mod_smacks (XEP-0198) Allow clients to resume a disconnected session before a customizable timeout and prevent message loss.
  • mod_mam (XEP-0313) Archive messages on the server for a limited period of time (default 1 week) and allow clients to retrieve them; this is required to syncronize message history between multiple clients.

    With prosody 0.9 only an in-memory storage backend is available, which may make this module problematic on servers with many users. prosody 0.10 will fix this by adding support for an SQL backed storage with archiving capabilities.
  • mod_throttle_presence + mod_filter_chatstates (XEP-0352) Filter out presence updates and chat states when the client announces (via Client State Indication) that the user isn't looking. This is useful to reduce power and bandwidth usage for "useless" traffic.
#xmpp #prosody #debian #jabber

Modern XMPP Server

I've published a new HOWTO on my website:

Enrico already wrote about the Why (and the What, Who and When), so I'll just quote his conclusion and move on to the How.

»I now have an XMPP setup which has all the features of the recent fancy chat systems, and on top of that it runs, client and server, on Free Software, which can be audited, it is federated and I can self-host my own server in my own VPS if I want to, with packages supported in Debian.«

*How*

I've decided to install prosody, mostly because it was recommended by the RTC QuickStart Guide; I've heard that similar results can be reached with ejabberd and other servers.

I'm also targeting Debian stable (+ backports); as I write this is jessie; if there are significant differences I will update this article when I will upgrade my server to stretch. Right now, this means that I'm using prosody 0.9 (and that's probably also the version that will be available in stretch).

*Installation and prerequisites*

You will need to enable the backports repository and then install the packages prosody and prosody-modules.

You also need to setup some TLS certificates (I used Let's Encrypt); and make them readable by the prosody user; you can see Chapter 12 of the RTC QuickStart Guide for more details.

On your firewall, you'll need to open the following TCP ports:

* 5222 (client2server)

* 5269 (server2server)

* 5280 (default http port for prosody)

* 5281 (default https port for prosody)

The latter two are needed to enable some services provided via http(s), including rich media transfers.

With just a handful of users, I didn't bother to configure LDAP or anything else, but just created users manually via:

prosodyctl adduser alice@example.org

In-band registration is disabled by default (and I've left it that way, to prevent my server from being used to send spim).

*prosody configuration*

You can then start configuring prosody by editing /etc/prosody/prosody.cfg.lua and changing a few values from the distribution defaults.

First of all, enforce the use of encryption and certificate checking both for client2server and server2server communications with:

c2s_require_encryption = true
s2s_secure_auth = true

and then, sadly, add to the whitelist any server that you want to talk to and doesn't support the above:

s2s_insecure_domains = { "gmail.com" }

*virtualhosts*

For each virtualhost you want to configure, create a file /etc/prosody/conf.avail/chat.example.org.cfg.lua with contents like the following:

VirtualHost "chat.example.org"
enabled = true
ssl = {
key = "/etc/ssl/private/example.org-key.pem";
certificate = "/etc/ssl/public/example.org.pem";
}

For the domains where you also want to enable MUCs, add the follwing lines:

Component "conference.chat.example.org" "muc"
restrict_room_creation = "local"

the "local" configures prosody so that only local users are allowed to create new rooms (but then everybody can join them, if the room administrator allows it): this may help reduce unwanted usages of your server by random people.

You can also add the following line to enable rich media transfers via http uploads (XEP-0363):

Component "upload.chat.trueelena.org" "http_upload"

The defaults are pretty sane, but see https://modules.prosody.im/mod_http_upload.html for details on what knobs you can configure for this module

Don't forget to enable the virtualhost by linking the file inside /etc/prosody/conf.d/.

*additional modules*

Most of the other interesting XEPs are enabled by loading additional modules inside /etc/prosody/prosody.cfg.lua (under modules_enabled); to enable mod_something just add a line like:

"something";

Most of these come from the prosody-modules package (and thus from https://modules.prosody.im/ ) and some may require changing when prosody 0.10 will be available; when this is the case it is mentioned below.

* mod_carbons (XEP-0280)
To keep conversations syncronized while using multiple devices at the same time.

This will be included by default in prosody 0.10.

* mod_privacy + mod_blocking (XEP-0191)
To allow user-controlled blocking of users, including as an anti-spim measure.

In prosody 0.10 these two modules will be replaced by mod_privacy.

* mod_smacks (XEP-0198)
Allow clients to resume a disconnected session before a customizable timeout and prevent message loss.

* mod_mam (XEP-0313)
Archive messages on the server for a limited period of time (default 1 week) and allow clients to retrieve them; this is required to syncronize message history between multiple clients.

With prosody 0.9 only an in-memory storage backend is available, which may make this module problematic on servers with many users. prosody 0.10 will fix this by adding support for an SQL backed storage with archiving capabilities.

* mod_throttle_presence + mod_filter_chatstates (XEP-0352)
Filter out presence updates and chat states when the client announces (via Client State Indication) that the user isn't looking. This is useful to reduce power and bandwidth usage for "useless" traffic.

@Gruppo Linux Como @LIFO
 
Conversations.im + OMEMO #XMPP
#xmpp
 
Using XMPP authentication with Django : https://blog.agayon.be/xmpp_auth_django.html

This authentication mechanism works by requesting permission on your XMPP client (desktop, mobile, web, whatever), without the need to remember yet another password.

#xmpp #authentication #django #standard #no-password #freesoftware #free software

Authentication without password using XMPP on a Django website

 

Attention all Freedom Fighters!



The #LibreNetSA #Diaspora* pod has been offline for the last few days. Yes, we noticed it as well.

The problem was caused during a routine upgrade of the pod. It turns out that #Trisquel 7 did not have the new version of #OpenSSL that the new version of #Ruby required. After the upgrade failed, we were unable to rollback the changes, leaving no other option than to reimage the server.

That has been done now, and the D* pod is back online!

Notable changes: - The server is running #Debian 8.6 - We are now running the very latest version of Diaspora: Version 0.6.2.0 - We have decided to abandon the #XMPP server, and adopt #Matrix / #Riot as the primary chat system. You can find it HERE
  • IF you are actively using the XMPP for chatting and find yourself dismayed at this change, please feel free to PM: /u/falgn0n
  • If enough people rely on and use the XMPP for #chat, we will certainly restore it
Any other questions, as always, please don't hesitate to get in touch.

Riot Webchat -> join the room 'LibreNetSA' (as a guest if you like, or sign up)



Your friendly neighbourhood Podmins:
DeviantAndFalgn0n

#Podmin
 

Attention all Freedom Fighters!



The #LibreNetSA #Diaspora* pod has been offline for the last few days. Yes, we noticed it as well.

The problem was caused during a routine upgrade of the pod. It turns out that #Trisquel 7 did not have the new version of #OpenSSL that the new version of #Ruby required. After the upgrade failed, we were unable to rollback the changes, leaving no other option than to reimage the server.

That has been done now, and the D* pod is back online!

Notable changes: - The server is running #Debian 8.6 - We are now running the very latest version of Diaspora: Version 0.6.2.0 - We have decided to abandon the #XMPP server, and adopt #Matrix / #Riot as the primary chat system. You can find it HERE
  • IF you are actively using the XMPP for chatting and find yourself dismayed at this change, please feel free to PM: /u/falgn0n
  • If enough people rely on and use the XMPP for #chat, we will certainly restore it
Any other questions, as always, please don't hesitate to get in touch.

Riot Webchat -> join the room 'LibreNetSA' (as a guest if you like, or sign up)



Your friendly neighbourhood Podmins:
DeviantAndFalgn0n

#Podmin
 

Federated XMPP chat (and more) with Movim: A success story



Some fundamental information about the XMPP based movim social network.

#xmpp #jabber #movim #federation #freesoftware #socialnetwork #php

Federated XMPP chat (and more) with Movim: A success story

There are many reasons to be unhappy with current social media sites and chat applications. For a long time, there was no viable alternative, especially not, if you wanted usability and integration. Now there is hope, with Movim.
The downsides of OSNs
Online Social Networks, such as Facebook or Go
 

Federated XMPP chat (and more) with Movim: A success story



Some fundamental information about the XMPP based movim social network.

#xmpp #jabber #movim #federation #freesoftware #socialnetwork #php

Federated XMPP chat (and more) with Movim: A success story

There are many reasons to be unhappy with current social media sites and chat applications. For a long time, there was no viable alternative, especially not, if you wanted usability and integration. Now there is hope, with Movim.
The downsides of OSNs
Online Social Networks, such as Facebook or Go
 

Blind Trust Before Verification



Very interesting article on how hard it is to get encryption and trust right. There is no silver bullet it seems, we can only strive hard.
WhatsApp - and pretty soon Signal as well - are the prime example of an industry turning End-to-End Encryption into a hollow marketing phrase that doesn’t mean anything.

#xmpp #omemo #conversations #signal #whatsapp

Blind Trust Before Verification

An introduction to the concept of Blind Trust Before Verification which means to automatically trust all new devices of contacts that haven’t been verified before, and prompt for manual confirmation each time a verified contact adds a new device.
 

End-to-End Encrypted group chats via XMPP



Jamie McClelland writes, that it is still difficult to have a secure group chat. But it's possible.
Use either Conversations for Android (f-droid or Play) or Gajim for Windows or Linux [...]

Ensure that everyone in your group has added everyone else in the group to their roster [...]

Create the group in the android Conversations app, not in Gajim [...]

#xmpp #muc #conversations #gajim #omemo #encryption

End-to-End Encrypted group chats via XMPP

 

Are decentralized services unable to innovate?



Talk by freelance journalist Hanno Böck (Golem, Süddeutsche, Zeit, taz) about the ongoing feature race between closed services, such as Signal, and federated ones, like XMPP.
While Signal technically is free software it doesn't feel like free software.

You can change it, but then you're no longer welcome in the Signal ecosystem and can't send messages to other Signal users.

#xmpp #jabber #signal #33c3 #freesoftware #federation

Are decentralized services unable to innovate?

 

Fighting SPIM (Spam over XMPP, Spam + IM)



Announcing Providence: A Spam Filter For XMPP by Valerian Saliou
This post announces the inception of an open-source project that aims to solve the problem of spam on the XMPP network. The following post will go through explaining what is considered as spam in the XMPP world, what are the odds if we do nothing to fix it and how other protocols cope (successfully) with spam. I will then suggest a set of solutions that may allow to prevent spam at the server-level, that can be plugged to existing XMPP servers on the market. Then, I will set a timeline for the project. This post is subject to change, as I collect more data and ideas from the community.

#xmpp #jabber #spam #spim #providence

Announcing Providence: A Spam Filter For XMPP

Fighting spam on decentralized & federated messaging networks (ie. XMPP) is "essentially war with a multi-headed hydra, when 3 new heads are instantly grown up when you cut off just one." — A. on the XSF mailing lists. After going through an extensive search on the available ways to fight XMPP
 

Profanity for diaspora?



How possible is there to be a diaspora client like profanity for xmpp? Don't forget, we have xmpp rooms (see: https://wiki.diasporafoundation.org/How_we_communicate#Jabber.2FXMPP)

www.profanity.im

#profanity #im #xmpp #diasporar #question #feature #bug

How we communicate - diaspora* project wiki

 

Available Debian package updates via XMPP



Long time ago, I needed an XMPP bot informing the admin chat room about Debian package updates on different machines. I didn't found one, so I hacked a small script, called Pain in the APT.

What does it do?

  • updates the APT cache and checks for updates
  • sends list of available updates to Jabber contacts or a conference room immediately
  • sends list of available updates and relevant changelogs (slow) to email recipients
  • downloads packages, but does not install them
Maybe it is useful for one or the other. It's in Debian unstable and testing (9/stretch), and via backports in stable (8/jessie) and oldstable (7/wheezy) as painintheapt.

#xmpp #bot #muc #debian #apt #jabber

Pain in the APT

 

MIX Is Coming to Town



Mediated Information eXchange (MIX) is the proposed successor of the well-known Multi-User Chat (MUC). Ralph Meijer, chair of XSF and director of XMPP Council, writes about the not-so-far future of this XMPP extension:
MIX takes the good parts of the Multi User Chat (MUC) protocol, that has been the basis of group chat in XMPP for quite a while, redesigned on top of XMPP Publish-Subscribe. Modern commercial messaging systems, for business use (e.g. Slack and HipChat), as well as for general use (e.g. WhatsApp, WeChat, Google's offerings), have tried various approaches on the ancient model of multi-part text exchange, adding multi-media and other information sources, e.g. using integrations, bots, and cards.

MIX is the community's attempt to provide a building block that goes beyond the tradional approach of a single stream of information (presence and messages) to a collection of orthogonal information streams in the same context. ... All-in-all MIX allows for much richer, multi-modal, and more scalable interactions. ... I expect the discussions at the XMPP Summit to tie the loose ends as a prelude to initial implementations.

I am sure that FOSDEM and the XMPP Summit will have many more exciting topics, so I hope to see you there. Until then, Jabber on!

#xmpp #jabber #muc #mix #fosdem #xsf

ralphm's blog

 

Señal errónea



(Título original del artículo "Wrong Signal" que creemos interesante para activistas y por lo que traducimos completo a continuación.)

The IT group of the CGT translated this into Spanish.

Die Informatikgruppe der CGT hat eine spanische Übersetzung des Signal-Artikels angefertigt.

#signal #xmpp #Español #omemo #activismo

Señal errónea* | Coordinadora de Informática

 

#Federation, #Privacy, and User Experience – Medium



#signal #XMPP #decentralization

https://medium.com/@dwdbah/federation-privacy-and-user-experience-c158547f07f5#.jo1wmapbm

Medium

Welcome to Medium, a place to read, write, and interact with the stories that matter most to you. Every day thousands of new voices share…
 

#Federation, #Privacy, and User Experience – Medium



#signal #XMPP #decentralization

https://medium.com/@dwdbah/federation-privacy-and-user-experience-c158547f07f5#.jo1wmapbm

Medium

Welcome to Medium, a place to read, write, and interact with the stories that matter most to you. Every day thousands of new voices share…
 
Daniel Gultsch's (developer of Conversations, a very usable messenger that uses a decentralized protocol) reply to Moxie Marlinspike's (main developer of Signal, a very usable messenger that uses a centralized protocol):

https://gultsch.de/objection.html

#xmpp #jabber #conversations #signal

Conversations: the very last word in instant messaging

A free and open source Jabber/XMPP client for Android. Easy to use, reliable, battery friendly. With built-in support for images, group chats and e2e encryption.
 

Señal errónea



(Título original del artículo "Wrong Signal" que creemos interesante para activistas y por lo que traducimos completo a continuación.)

The IT group of the CGT translated this into Spanish.

Die Informatikgruppe der CGT hat eine spanische Übersetzung des Signal-Artikels angefertigt.

#signal #xmpp #Español #omemo #activismo

Señal errónea* | Coordinadora de Informática

 
Daniel Gultsch's (developer of Conversations, a very usable messenger that uses a decentralized protocol) reply to Moxie Marlinspike's (main developer of Signal, a very usable messenger that uses a centralized protocol):

https://gultsch.de/objection.html

#xmpp #jabber #conversations #signal

Conversations: the very last word in instant messaging

A free and open source Jabber/XMPP client for Android. Easy to use, reliable, battery friendly. With built-in support for images, group chats and e2e encryption.
 
Just a hint: Your post would probably reach more knowing people, if you tag it with #xmpp. Furthermore, you should mention the software packages you already considered, so that people don't pester you with them :~) You are surely aware of JSXC and Strophe, but actively maintained, both in Debian, but not the latest versions.
#xmpp
 

YAXT: Yet another XMPP tutorial


Well, this is going to be another tutorial, but I'm going to try to make it a little bit different. This is an XMPP tutorial from an iOS developer's perspective.

While iOS is not my cup of tea, I find this tutorial interesting and well-written. Worth a read for everyone curious about XMPP!

#xmpp #tutorial #ios

Erlang Solutions

 
nuovi vecchi