<!DOCTYPE html>
<html>
<head>
<title></title>
</head>
<body><div>Thanks, Lincoln. We're using Prosody, as well. And those are the exact configurations that I have configured, too.<br></div>
<div><br></div>
<div>I would need a bit of time to see what encryption options / protocols Prosody supports and uses. I know that we're only allowing secure connections from clients, and only secure connections to other servers, though, and the key is updated regularly via a letsencrypt script.<br></div>
<div><br></div>
<div>As a side note, I saw this tidbit on the CopperheadOS usage guide ( <a href="https://copperhead.co/android/docs/usage_guide">https://copperhead.co/android/docs/usage_guide</a> ) <br></div>
<div><br></div>
<div>"The recommended messaging client is Conversations. It’s an XMPP client interoperable with other XMPP clients and servers. It supports end-to-end encryption via robust cryptography (OMEMO) based on the Signal protocol along with OTR and PGP for backwards compatibility with lesser clients. It’s one of very few apps with efficient push messaging without needing Google Cloud Messaging (GCM).<br></div>
<div>Conversations has an official XMPP server with all of the necessary extensions for full functionality. It costs 8 EUR / year after the 6 month free trial. Using the official server to support the project is recommended, but there are other options without a subscription fee. We don’t currently have a recommendation about which ones to prefer, beyond sticking to those with support for every XEP other than XEP-0357 (which is for GCM, rather than the standard push mechanism)."<br></div>
<div><br></div>
<div>Jim</div>
<div><br></div>
<div><br></div>
<div>On Thu, Nov 24, 2016, at 11:35 AM, Lincoln Bryant wrote:<br></div>
<blockquote type="cite"><div><div>Hi Freddy, all,<br></div>
<div><br></div>
<div>I'm not sure what the LUG is using, but I've had a good experience
with Prosody. <br></div>
<div><br></div>
<div>In my config, I use SSL/TLS with:<br></div>
<div> authentication = "internal_hashed" <br></div>
<div> legacy auth *disabled*<br></div>
<div> c2s_require_encryption = true<br></div>
<div> s2s_require_encryption = true<br></div>
<div><br></div>
<div>Personally I generate & self-sign certs yearly and send the
updated fingerprint to the tiny community (about 10 users) that I
serve.<br></div>
<div><br></div>
<div>--Lincoln<br></div>
<div><br></div>
<div>On 11/24/2016 12:26 PM, Jim Campbell wrote:<br></div>
</div>
<blockquote type="cite" cite="mid:1480008374.1473599.798253585.3C9F8876@webmail.messagingengine.com"><pre>Hi Freddy,
You could ask me about that. I'd have to look into the configuration,
but could do so. Let me know what you'd like to know.
Jim
On Thu, Nov 24, 2016, at 11:23 AM, Freddy Martinez wrote:
<br></pre><blockquote type="cite"><pre>Who can I ask questions about the lug implementation? Stuff like log
retention policy and stuff like that?
_________________________________________________
<br></pre></blockquote><pre><br></pre><blockquote type="cite"><pre>discuss mailing list
<br></pre></blockquote><pre><br></pre><blockquote type="cite"><pre><a href="mailto:discuss@lists.chicagolug.org">discuss@lists.chicagolug.org</a>
<br></pre></blockquote><pre><br></pre><blockquote type="cite"><pre><a href="https://lists.chicagolug.org/mailman/listinfo/discuss">https://lists.chicagolug.org/mailman/listinfo/discuss</a>
<br></pre></blockquote><pre><br></pre><div><br></div>
<div><br></div>
<pre>_______________________________________________
discuss mailing list
<a href="mailto:discuss@lists.chicagolug.org">discuss@lists.chicagolug.org</a>
<a href="https://lists.chicagolug.org/mailman/listinfo/discuss">https://lists.chicagolug.org/mailman/listinfo/discuss</a>
<br></pre></blockquote><p><br></p><div><u>_______________________________________________</u><br></div>
<div>discuss mailing list<br></div>
<div><a href="mailto:discuss@lists.chicagolug.org">discuss@lists.chicagolug.org</a><br></div>
<div><a href="https://lists.chicagolug.org/mailman/listinfo/discuss">https://lists.chicagolug.org/mailman/listinfo/discuss</a><br></div>
</blockquote><div><br></div>
</body>
</html>