I got a new job. whatsapp group (20 people) is migrating to signal because I don't use it.
https://lemmy.ml/post/19346970
=> More informations about this toot | More toots from GravitySpoiled@lemmy.ml
Surprised that happened. Very rare to see that these days.
=> More informations about this toot | More toots from Asudox@lemmy.world
Maybe OP works on infosec and the team was like yeah, makes sense?
=> More informations about this toot | More toots from driving_crooner@lemmy.eco.br
Let’s say I work in an IT area (but not infosec)
=> More informations about this toot | More toots from GravitySpoiled@lemmy.ml
Should have used Matrix
=> More informations about this toot | More toots from LazaroFilm@lemmy.world
For a team of 20 people matrix is way overkill imo
=> More informations about this toot | More toots from independantiste@sh.itjust.works
XMPP on the other hand…
=> More informations about this toot | More toots from Quill7513@slrpnk.net
Then what about an irc?
=> More informations about this toot | More toots from LazaroFilm@lemmy.world
There would be room for expansion. What about an IRC then?
=> More informations about this toot | More toots from LazaroFilm@lemmy.world
Depends. Since this is seen as an out-of-band coms option for work, there is a good chance you will want encryption for only folks in the room either for accidental company secrets leaked or to shit talk folks outside the room. IRC, the best you get is TLS.
=> More informations about this toot | More toots from toastal@lemmy.ml
I once setup a entire matrix server for my school club that comprised of 4 people because one of our members couldn’t use discord lol
=> More informations about this toot | More toots from mizuki@lemmy.blahaj.zone
No, Matrix isn’t the best in terms of privacy. It is a metadata disaster and most other platform are a lot more performant.
Matrix’s E2EE does not, however, encrypt everything. The following information is not encrypted: Message senders, Session/device IDs, Message timestamps, Room members (join/leave/invite events), Message edit events, Message reactions, Read receipts, Nicknames, Profile pictures
Matrix is developed by a for profit entity, a group of venture capitalists and having a spec doesn’t mean everything. The way Matrix is designed is to force into jumping through hoops and kind of draw all attention to Matrix itself instead of the end result.
XMPP is the true and the OG federated and truly open solution that is very extensible. XMPP is tested, reliable, secure and above all a truly open standard and decentralized it just lacks some investment in better mobile clients.
What most fail to see is that XMPP is the only solution that treats messaging and video like email: just provide an address and the servers and clients will cooperate with each other in order to maintain a conversation. Everything else is just an attempt at yet another vendor lock-in.
People need to get this through their heads, XMPP is the only solution for their problems.
=> More informations about this toot | More toots from TCB13@lemmy.world
XMPP is great but it’s dead.
=> More informations about this toot | More toots from AsudoxDev@programming.dev
It is as dead as we want. There’s no reason to reinvent the wheel, probably the only thing that XMPP lacks is a bunch of money into a very good, cross-platform (but native) client like Telegram has that actually works 100% of the time and a bunch of large scale public servers to handle regular users who don’t want to host their own. Also… easy registrations and setup on said client.
=> More informations about this toot | More toots from TCB13@lemmy.world
I’m pretty sure an encrypted chat platform is possible with ActivityPub.
=> More informations about this toot | More toots from AsudoxDev@programming.dev
Why reinvent the wheel, tweak a protocol, implement a ton of software when you can just use the tested, tried and true XMPP?
=> More informations about this toot | More toots from TCB13@lemmy.world
Does XMPP support voice/video calls?
=> More informations about this toot | More toots from Churbleyimyam@lemm.ee
Yes, Jingle.
=> More informations about this toot | More toots from curbstickle@lemmy.dbzer0.com
Yes, very well.
=> More informations about this toot | More toots from SLfgb@feddit.nl
Yes…
=> More informations about this toot | More toots from TCB13@lemmy.world
XMPP isn’t any better in terms of metadata. OMEMO is an afterthought that slaps on to XMPP. Many metadata are still attached to the message. The threat model only protects the content and doesn’t guard aginst metadata and traffic analysis. Even OMEMO extension is still in experimental status. Not to mention, users still need to signup an account using their email.
Honestly, I think SimpleX is better in everyway. No account required, minimal metadata (at least from the technical whitepaper and other sources I read), fully open source (AGPLv3), and audited. The register friction is almost non existance. You just need to install, set a name, and off you go. The only worry I have with them is they took VC funds.
=> More informations about this toot | More toots from umami_wasbi@lemmy.ml
I think SimpleX is better in everyway.
A few SimpleX shortcomings beyond what you noted, in no particular order:
It does have some neat design ideas. I don’t consider it ready for general use, but I look forward to seeing how it develops.
=> More informations about this toot | More toots from mox@lemmy.sdf.org
agree with your general sentiment. I’ve actually been using it and its very rough around the edges, in addition to being “slow” feeling overall, and I’m just testing it out between one other person and myself on other devices. it’s not something I can recommend to anyone yet, but definitely keeping my eye on it.
=> More informations about this toot | More toots from KLISHDFSDF@lemmy.ml
XMPP is way more open and interoperable than all the solutions available, it works like email any user can can talk to any other and doesn’t depend on a some proprietary / closed service centrally owned by anyone. That’s a good selling point.
XMPP doesn’t really force users to sign up with email address, it just happens that XMPP addresses use the same format, many public servers will give you an address like username@server.example.org that is never mapped to a real email address and only works for XMPP. The decision to actually ask people for their real addresses is up to who owns the server and won’t be directly exposed on the XMPP network.
=> More informations about this toot | More toots from TCB13@lemmy.world
Omemo sucks
=> More informations about this toot | More toots from krolden@lemmy.ml
People need to get this through their heads, XMPP is the only solution for their problems.
On the contrary, you need to understand that your own needs and priorities do not match everyone else’s, and that XMPP is not a good fit for every use case.
(Your rant was amusing, though. I hadn’t seen one like that in a couple weeks.)
=> More informations about this toot | More toots from mox@lemmy.sdf.org
While I agree with your point just tell me what Matrix does better? It’s better at being overly complicated? Or at being more propriety?
=> More informations about this toot | More toots from TCB13@lemmy.world
Nobody owes you their time or their patience. If you want help understanding something, I suggest you tone down the fearmongering, manipulative, adversarial comments. If you’re just looking for a fight, kindly go elsewhere.
=> More informations about this toot | More toots from mox@lemmy.sdf.org
Not great
=> More informations about this toot | More toots from possiblylinux127@lemmy.zip
I’m going to join OP’s company next and say I can’t use signal because phone companies. Then they’ll upgrade to Wire or Matrix
=> More informations about this toot | More toots from delirious_owl@discuss.online
They only realized that when he asked? What a weird infosec team.
=> More informations about this toot | More toots from Asudox@lemmy.world
I think you’re over estimating people who works in infosec. All the people I know that work in infosec in corporations are just regular windows support people assigned to keep the security updates on day.
=> More informations about this toot | More toots from driving_crooner@lemmy.eco.br This content has been proxied by September (ba2dc).Proxy Information
text/gemini