[liberationtech] Could you help our lonely 98-year-old WW2 vet neighbor regain access to his Yahoo email?

bo0od bo0od at riseup.net
Thu Apr 30 20:44:51 CEST 2020 

 > Also, the most popular XMPP clients (such as Conversations and 
ChatSecure) have OMEMO built-in and use it by default.  So I think for 
most users, privacy is indeed the default with XMPP.

These are mobile OS only based clients Conversations for Android only , 
Chatsecure for IOS only , what about Desktop? nothing active available 
with builtin encryption.

So lets say secure chatting over insecure operating systems (insecure 
endings)

 > We are of course happy to receive merge requests if you believe the 
wording could be clarified.  I'm not sure exactly what wording you would 
find suitable, which is why I suggest submitting a merge request, so I 
know what would be satisfactory.  You can do so here if you like (or by 
email to me if you prefer)

sure i will look into what i can improve and email it to you

 > If you have any particular tips for the easiest/fastest ways to do 
that, let me know.

Tips are not easy since we are dealing with sysadmin stuff, this is 
depend on your server side what are you using and how are you connecting 
things...etc.

If you want sysadmin (in case needed) which i recommend check this one:

https://mig5.net/

 > Also, if there are more than just .onion and .i2p that you think we 
should add, please send those too.

No only those are recommended for privacy/anonymity protocols. others like:

GNUnet: worth it but far in the future currently not for users or normal 
usage.

Freenet: Very low userspace and questionable security due to the fact 
its distributed storage (like downloading jmp website into my local 
machine in order to view it..).

Zeronet: not anonymous by itself and relies on Tor for its anonymity


ThX again :)


Denver Gingerich:
> On Fri, Apr 24, 2020 at 10:28:03AM +0000, bo0od wrote:
>> nice idea but on the same has some issues/questions:
> 
> Happy to answer them, including others' as well.
> 
>> - JMP mention "Jabber is long-standing, widely-used, and privacy-focused."
>> WHAAA!! , xmpp/jabber doesnt has any privacy within it. Thats why we use
>> either OTR,OMEMO,PGP to encrypt messages and all of the clients available
>> today dont use these encryption as built-in but instead as plug-in (except
>> CoyIM which is dead project atm) and thats bring all of the problems of
>> plug-ins issues like not functioning or disabled due to client upgrade
>> ...etc (i can give examples if you like). why xmpp not secure? because xmpp
>> made in a time of no security in mind times similar to IRC and other
>> protocols.
> 
> The specific line you mentioned was offered by a community member as part of their merge request:
> 
> https://gitlab.com/ossguy/jmp-register/merge_requests/1/diffs
> 
> I agree that XMPP on its own does not have E2EE built in.  However, XMPP clients and servers today all do encryption between client and server, and between servers.  So it is at least better than IRC and many other chat protocols in that regard.
> 
> Also, the most popular XMPP clients (such as Conversations and ChatSecure) have OMEMO built-in and use it by default.  So I think for most users, privacy is indeed the default with XMPP.
> 
> We are of course happy to receive merge requests if you believe the wording could be clarified.  I'm not sure exactly what wording you would find suitable, which is why I suggest submitting a merge request, so I know what would be satisfactory.  You can do so here if you like (or by email to me if you prefer):
> 
> https://gitlab.com/ossguy/jmp-register/merge_requests
> 
>> - It needs a phone application? well i want to use a virtual phone number
>> because i dont wanna have a cell phone or phone number at the first place.
>> Why would i use another phone number while i own one? So better support
>> Desktop application for GNU/Linux and BSD ...
> 
> While we do provide familiar buttons to people on https://jmp.chat/ for installing mobile applications, the text above the buttons says "Get a Jabber client" with a link to https://jmp.chat/#jabber where other clients (including desktop clients such as Gajim) are described.  Again, we are happy to receive merge requests for this if you think it's unclear.
> 
>> - Mirror your website to Onion Hidden Services or I2P Eepsite (as you wish)
>> for better privacy/security connection
> 
> Thanks very much for the suggestion.  We have been looking at adding a .onion address for our site and hope to do so in the future.  If you have any particular tips for the easiest/fastest ways to do that, let me know.  Also, if there are more than just .onion and .i2p that you think we should add, please send those too.
> 
>> - I assume your service available worldwide regardless from where the user
>> is living, but he will get one of two countries numbers either US or Canada
>> right? or he should be living in those countries as well?
> 
> Yes, the service is available worldwide.  You don't need to live in any particular country in order to use JMP (we don't know or care where JMP users live, and never ask for this info).
> 
> All JMP numbers can send and receive text messages with any other number in the world (i.e. international texting is fully supported).
> 
>> - JMP twitter not active since 2 years https://nitter.net/JMP_chat (just
>> saying...)
> 
> We have a pretty small team so we aren't always able to keep our secondary communication methods updated at all times.  Our email notification list at https://soprani.ca/cgi-bin/mailman/listinfo/jmp-news receives updates more regularly.
> 
>> - (unrelated to product JMP but) your own website blocking Tor users: (just
>> worries me..)
> 
> Indeed, I am aware of this issue with https://ossguy.com/ and hope to fix it soon.  The change that caused Tor users to be blocked was implemented about 13 years ago, when I installed the Bad Behavior plugin to cut down on comment spam.  I intend to turn off comments and then remove this plugin, though I'm happy to hear about other potential solutions as well.
> 
>> ThX!
> 
> Thanks for your comments and suggestions!
> 
> Denver
> https://jmp.chat/
>

More information about the LT mailing list