Sitzung: Jeden Freitag in der Vorlesungszeit ab 16 Uhr c. t. im MAR 0.005. In der vorlesungsfreien Zeit unregelmäßig (Jemensch da?). Macht mit!

XMPP

Die Freitagsrunde bietet jetzt ein Jabber (a.k.a. XMPP) service für alle Mitglieder die einen Rechnerkonto auf Freitagsrunde.org haben. Jabber ist eine offene, sichere, verteilte IM Protocol die alle verwenden können um mit einander einfach zu kommunizieren. Wir brauchen deine hilfe um das zu testen, vor wir das Service ins regulare Betrieb bringen. Achtung: unser Jabber service lauft noch im testing und wird eventuell (früh April) zu dem domain user@freitagsrunde.org

Connection Details

Using your favorite jabber client:

  • Username: Your freitagsrunde username
  • Server: stan.freitagsrunde.org
  • Port: 5222 (ssl is enabled and required by the server. Server will NOT allow non-ssl authenticated sessions)

FAQ

  • Warrum soll ich Jabber laufen?

Because it's a great way to communicate securely with other people while protecting your privacy. It's easy to use, free and open source and it's decentralized which means that no central authority is watching over what you say, when you say it, and to whom you say it. It's widely adopted and users can communicate with other jabber users on any other jabber server, for example, gtalk, jabber.ccc.de, jabber.org and thousands of others. AOL IM may allegedly be moving its platform to xmpp/jabber soon.

  • Which clients exist?

Many open source, high quality clients exist for jabber. Many of them even support multiple IM protocols so you can continue to use your existing im service at the same time. Some clients which work the best for us include: Pidgin, Adium and Mirandaim. At the moment, some other clients appear to be having difficulties with our CACert ssl certificate. We are working to resolve this problem.

  • How do I communicate securely?

Although all traffic between users at freitagsrunde.org is encrypted between the client and server, it is still recommended to use end-to-end encryption to protect your privacy! Freitagsrunde recommends OTR off the record messaging encryption. We actually recommend that users do NOT use any other forms of IM encryption due to fundamental flaws in their Security Aims (Sicherheitzziele) which place your security at risk. The details of why we recommend this are provided at the OTR site.

There are implementations of OTR which can be installed as a plug-in for many of the most popular jabber clients. To use the encryption correctly, both parties must perform two steps: 1) Both users must have the plug-in installed and enabled. 2) When one user sends the very first encrypted message to the other user, a key exchange will take place and both users must verify the newly exchanged key fingerprints with the other user over an EXTERNAL communication medium like telephone, secure email, and specifically, not over the im conversation. This step is performed only once, when the very first encrypted conversation takes place and it is crucial in order to prevent man-in-the-middle attacks.

Weitere Fragen

talk to dlevin@cs.tu-berlin.de or xmpp://dlevin@stan.freitagsrunde.org

Testing Results and Problems

  • Dan - Adium - Klappt
  • Rbu - Pidgin - Klappt
  • Bjlohrmann - Kopete - SSL Error (CaCert problem)
  • Bastla - Centericq, Centerim - SSL Error (CaCert Problem)