I'm a new Jitsi user and I think it's a really great project. I had a
few suggestions with the hope of improving Jitsi - specifically
improving integration with Tor and other various things such as secure
A few things stand out that I think could use some help - the first is
that I'd like the default download link to be over SSL/TLS.
This has been on our to do list for a while now but it somehow always
got pushed down by other stuff. I've just had a talk with the people
maintaining the machines at the University of Strasbourg and there
shouldn't be any issues with it. Just give us a few days to sort out the
certs and it should be on.
stands, I'm not clear how anyone can securely download Jitsi - it's not
really integrated in Gnu/Linux distros
Oh ... well ... unfortunately this would be quite harder to fix than
just adding https to our current download location.
that I use nor does it appear to
be available through any secure mechanism such as HTTPS. I mean, I
admit, I think SSL/TLS isn't great for security but it's certainly an
improvement on HTTP.
I'd also like to perform an audit to see what works with Tor and what
doesn't work with Tor - is anyone up for pairing up for testing with me?
I'd like a mode where a Jitsi user will be able to use Tor and it will
not ever deanonymize them. This is pretty non-trivial and only the very
newest versions of Pidgin support a "Tor/Privacy proxy" - it's basically
SOCKS5 and tries to ensure that the client won't leak DNS.
We'd need to think about this. Jitsi uses its own DNS resolver so we
have control over where the queries go. We'd just need to experiment a
bit with Tor. As it is, I don't know that much about how it works.
I was wondering if the persons who implemented OTR can talk about how
they ensure that it's to spec?
The original implementor, George Politis (CCed), has moved to other
things. Recently Ingo Bauersachs (on the list) has committed a few fixes
Is there any interest in mpOTR for group
There's definitely interest. I've heard various people asking for this
during the last year. The thing is that I am not aware of anyone
currently planning to work on it.
I've just written up a spec with a few other people that might be
an alright mpOTR:
Thanks for the ref!
(quoting your other mail)
That's part of why I think integrating Jitsi with Tor will
help those people - obviously unless the VoIP calls will happen over
TCP, it's not going to work for VoIP but it will work for xmpp/OTR chats
- which is a good start.
We currently support TCP only with Google Talk ... but we may be having
a few issues with it that we need to investigate. We also had plans on
adding TCP for Jingle Nodes but we haven't started yet.
On 06.05.12 22:28, Jacob Appelbaum wrote:
All the best,
Emil Ivov, Ph.D. 67000 Strasbourg,
Project Lead France
email@example.com PHONE: +220.127.116.11.43.30
http://jitsi.org FAX: +18.104.22.168.47.31