To Jitsi admins:
– Be aware of Google STUN servers in your configuration (see also https://github.com/jitsi/jitsi-meet/pull/5433).
– Change the default text of the landing page since it may incorrectly state that Jitsi is fully encrypted.
– Try to deploy HTTP security headers, like a strict Content Security Policy.
– Keep your server software up-to-date (see also https://infosec-handbook.eu/as-wss/).
– Be nice to each other.
#zoom is the tech industry’s newest problem child
Zoom meetings aren’t actually end-to-end encrypted, despite misleading marketing on their website, in their security white paper, and in the user interface in their app https://theintercept.com/2020/03/31/zoom-meeting-encryption/ by @yaelwrites and myself
MOSS launches COVID-19 Solutions Fund – The Mozilla Blog
Mozilla is announcing today the creation of a COVID-19 Solutions Fund as part of the Mozilla Open Source Support Program (MOSS).
Thanks, Boris! Same Zoom Meeting ID tomorrow?
New Linux User Declares Self Safe From Coronavirus
The sooner that people who are thinking about replacing Zoom realize that the problem isn't one of software but of infrastructure, the better.
The reason Zoom works so well on a technical level is that they have a lot of infrastrutcture to support the downmixing of streams- including a ton of processing power, as well as very good bandwidth between their data centers.
You could build an equilvient program, but without the hardware and connectivity behind it, it won't be as good.
Before I'm misunderstood- I'm *not* suggesting that we throw up our hands and use Zoom.
Instead, I'm suggesting that we need to start realizing that simply building software isn't enough. Projects like Wikipedia, OpenStreetMap and Signal work because they're backed with hardware and bandwidth.
If we want a Zoom replacement, we'll need to ensure there is money to pay for the necessary components to pay for its infrasturcture and ongoing maintence.
Privacy and protecting data is usually not much of a concern for SAAS providers - Zoom here shares your data on Facebook, even if you don't have a facebook account...
Well Telegram is not great, I admit. But #Signal also has the same centralised surveillance system. SMS is the worst. There is no kind of encryption in SMS, and those unencrypted texts can stay in your cellular connection providers servers for years.
Btw if you want use #Telegram, use the F-droid version which is compiled from source.
Calling all teachers! LibreOffice is a great choice for schools and education – it's free and open source, compatible with Microsoft Office, and you don't have to worry about license fees, subscriptions or software audits. Learn more: https://blog.documentfoundation.org/blog/2020/03/24/libreoffice-a-great-choice-for-schools-and-education/
We're slowly making progress towards our first product. It's a standard 65% PCB with hotswap sockets. It's powered by the open source software QMK and it features a standard ISO-layout to fit as much people as possible.
Our goal is to make custom keyboards easy and available for everyone.
Regarding Jitsi Meet servers:
There could be additional legal requirements if you want to use third-party Jitsi servers for school or work.
Whatever your Android app for accessing the Fediverse, you can use #NitterizeMe for sharing links. It will help you to transform Twitter, YouTube or Instagram links into a URL of a front-end instance (Nitter, Invidious, Bibliogram) that respects the user's privacy.
As a bonus, it will resolve redirects without visiting the site.
Available on F-Droid: https://f-droid.org/packages/app.fedilab.nitterizeme/