- cross-posted to:
- foss@beehaw.org
- cross-posted to:
- foss@beehaw.org
Just a hint for people searching a tiny selfhosted messenger with encryption and apps for iOS and android.
You must log in or # to comment.
End-to-End encryption (the hosting admin cannot view sealed topics, default unsealed)
oh no
Could anybody ELI5 this one?
Sounds like end-to-end encryption is opt-in. Thus, a default configuration leaves communications unencrypted and vulnerable to eavesdropping.
Bingo
It says it’s federated. When you are your own provider, e2ee doesn’t matter nearly as much (you probably have a bunch of personal files, backups, services running on the same box anyway).
Edit: I would gladly take constructive comments with the downvotes. For a moment I thought we were on “selfhosted”, where “you are your own provider” should resonate in with most
The point of federation means your content doesn’t only stay on your server. The person you’re talking too can be on a different one and their admin can see them too. Also, I wouldn’t want to be able to access content from any user - it’s a “no trust needed” thing.
Why not just use XMPP?
Dumbest answer: I didn’t find a one click solution on casaOS.
No idea what the heck casaOS, but here you get your turnkey XMPP servers (if you really don’t want to use a distro that packages prosody/ejabberd, which are all the ones worthy to be used anyways?):
casaOS is a docker-compose simplified one click solution, like unraid or heimdall.
Sure I tried to add xmpp to my apps, but finding the right one on xmpp is like the first experience with Linux … too many alternatives. I tried openfire because it sounds good with a compose file and proxy all to my caddy server. But I am stuck actually (the last 10 min), and I am unable to decide if ejabberd is better.
If your system is based on docker, couldn’t you just use the official docker image I linked? Besides, I wouldn’t recommend openfire, not because it’s not a capable server (it’s been to long since I tried it to have a meaningful opinion), but because it has less widespread usage than ejabberd/prosody, and by extent, probably less resources to help you configure it to your needs.
I know it’s not the topic of this thread, but you are not making a convincing case (to me!) for a “docker-compose simplified one click solution” that pulls you away from the most popular and well maintained alternatives :)
And you will also likely encounter things down the road pertaining to firewall configuration, domain name resolution and port multiplexing that containerization will turn into a configuration and troubleshooting nightmare, so… enjoy! (or not)
How does this compare with matrix?
I call it d-bag for short.
how so?
