[chiglug] Xmpp server

Jim Campbell jcampbell at gnome.org
Thu Nov 24 17:57:49 UTC 2016 

Thanks, Lincoln.  We're using Prosody, as well. And those are the exact
configurations that I have configured, too.


I would need a bit of time to see what encryption options / protocols
Prosody supports and uses.  I know that we're only allowing secure
connections from clients, and only secure connections to other servers,
though, and the key is updated regularly via a letsencrypt script.


As a side note, I saw this tidbit on the CopperheadOS usage guide (
https://copperhead.co/android/docs/usage_guide )


"The recommended messaging client is Conversations. It’s an XMPP client
interoperable with other XMPP clients and servers. It supports end-to-
end encryption via robust cryptography (OMEMO) based on the Signal
protocol along with OTR and PGP for backwards compatibility with lesser
clients. It’s one of very few apps with efficient push messaging without
needing Google Cloud Messaging (GCM).
Conversations has an official XMPP server with all of the necessary
extensions for full functionality. It costs 8 EUR / year after the 6
month free trial. Using the official server to support the project is
recommended, but there are other options without a subscription fee. We
don’t currently have a recommendation about which ones to prefer, beyond
sticking to those with support for every XEP other than XEP-0357 (which
is for GCM, rather than the standard push mechanism)."


Jim





On Thu, Nov 24, 2016, at 11:35 AM, Lincoln Bryant wrote:

> Hi Freddy, all,

> 

> I'm not sure what the LUG is using, but I've had a good experience
> with Prosody.
> 

> In my config, I use SSL/TLS with:

>     authentication = "internal_hashed" 

>     legacy auth *disabled*

>     c2s_require_encryption = true

>     s2s_require_encryption = true

> 

> Personally I generate & self-sign certs yearly and send the updated
> fingerprint to the tiny community (about 10 users) that I serve.
> 

> --Lincoln

> 

> On 11/24/2016 12:26 PM, Jim Campbell wrote:
>> Hi Freddy,    You could ask me about that.  I'd have to look into the
>> configuration, but could do so.  Let me know what you'd like to know.
>> Jim    On Thu, Nov 24, 2016, at 11:23 AM, Freddy Martinez wrote:

>>
>>> Who can I ask questions about the lug implementation? Stuff like log
>>> retention policy and stuff like that?
>>> _________________________________________________
>>>
>>
>>> discuss mailing list
>>>
>>
>>> discuss at lists.chicagolug.org
>>>
>>
>>> https://lists.chicagolug.org/mailman/listinfo/discuss
>>>
>>
>> 

>>
>> _______________________________________________ discuss mailing list
>> discuss at lists.chicagolug.org
>> https://lists.chicagolug.org/mailman/listinfo/discuss
>>
> 



> _________________________________________________

> discuss mailing list

> discuss at lists.chicagolug.org

> https://lists.chicagolug.org/mailman/listinfo/discuss


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.chicagolug.org/pipermail/discuss/attachments/20161124/3c8b7d20/attachment-0002.html>

More information about the discuss mailing list