techhub.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A hub primarily for passionate technologists, but everyone is welcome

Administered by:

Server stats:

4.6K
active users

#conversations_im

0 posts0 participants0 posts today
Daniel Gultsch<p>The <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> release that was rejected yesterday is now live on the Google Play beta channel.</p><p>A late addition to the 2.19.0-beta release is message moderation for public channels, giving moderators the ability to delete spam messages.</p><p><a href="https://gultsch.social/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> <a href="https://gultsch.social/tags/Jabber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Jabber</span></a></p>
Daniel Gultsch<p><span class="h-card" translate="no"><a href="https://mastodon.de/@empathicqubit" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>empathicqubit</span></a></span> using 357 is unlikely to have a positive impact on battery life. (due to the way <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> and forks work). If anything it can - in some circumstances - increase reliability.</p><p>That aside the privacy impacts are probably fine. The worst that can happen is linking your Jabber ID to your Google account.</p>
Daniel Gultsch<p>A couple of versions ago I introduced a setting in <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> to hide the avatars next to message bubbles.</p><p>I'm personally not a big fan of the look, but it does bring it closer to what Signal and Google Messages are doing.</p><p>The next version will split that out into two settings: One that controls the avatar on received messages and one on sent messages. (Indicating what account is being used.) Hiding only the latter is a decent compromise for those who use the app with a single account.</p>
Daniel Gultsch<p>Looks like the Jabber/XMPP community will have a booth at <span class="h-card" translate="no"><a href="https://bonn.social/@FrOSCon" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>FrOSCon</span></a></span> this year.</p><p>August 16th and 17th. Save the date. See you there.</p><p>I promise we will bring stickers!</p><p><a href="https://froscon.org/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">froscon.org/</span><span class="invisible"></span></a></p><p><a href="https://gultsch.social/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> <a href="https://gultsch.social/tags/Jabber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Jabber</span></a> <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a></p>
Daniel Gultsch<p>For the next release of <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> I’m switching the default for showing all messages, including sent ones, left aligned, to 'on' for all tablets.</p><p>Combine this with disabling 'Colorful chat bubbles' and this looks pretty clean and almost like a regular desktop app.</p><p>This post is also a reminder to existing tablet users that those two settings exist. Too bad there aren’t that many of you.</p><p><a href="https://gultsch.social/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> <a href="https://gultsch.social/tags/Android" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Android</span></a></p>
Federico<p><span class="h-card" translate="no"><a href="https://mastodon.uy/@gabriel" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gabriel</span></a></span> lo acabo de comprobar y sí, es así. No encontré una opción global.<br><a href="https://mastodon.uy/tags/xmpp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xmpp</span></a> <a href="https://mastodon.uy/tags/conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>conversations_im</span></a> <a href="https://mastodon.uy/tags/monocleschat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monocleschat</span></a></p>
Daniel Gultsch<p><span class="h-card" translate="no"><a href="https://mastodon.social/@charlesstna" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>charlesstna</span></a></span> private group chats are encrypted while public conferences (anything you might be able to find through the build in search in <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a>) are not. There is no point in encrypting a chat that anyone can join.</p><p>But the private group chat you start with your friends can and will be encrypted.</p>
kundu 🌱🔻🐧<p>Sobre Signal... En ingles y muy extenso pero valioso.</p><p>Puntos clave:<br>🍐El organismo OTF de EEUU financio con 5 millones en sus origenes a Signal. La genesis de OTF tiene a la CIA detras.<br>🥔 Signal no es transparente con su financiacion<br>🌽 Signal tiene dependencias millonarias con las Big Tech<br>🌶️ Sigue siendo una empresa estadounidense, con todo lo que eso implica<br>🥒 hay gente muy turbia deshaciendose en elogios hacia su presidenta.<br>🌰 La superpresi esa tan molona que tienen se subio el sueldo casi 600.000 dolares el año pasado. Ojo con el non profit que va a ser rentable.</p><p>Y sobre todo no caigamos en el culto a la personalidad. Ya hemos visto muchas veces donde nos lleva eso. Miremos mas lo que hace la tal Meredith y su junta que lo que dicen.<br>El capitalismo es inteligente y sabe que la estetica y la pose nos ganan mucho mas que los datos.</p><p>Yo mismo he llevado gente a Signal, pero estoy empezando a pensar que hay alternativas con menos riesgo de descarrilarse.</p><p><a href="https://www.counterpunch.org/2025/03/07/the-revolution-will-not-be-signaled/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">counterpunch.org/2025/03/07/th</span><span class="invisible">e-revolution-will-not-be-signaled/</span></a></p><p><a href="https://masto.es/tags/signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>signal</span></a> <br><a href="https://masto.es/tags/signalapp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>signalapp</span></a> <br><a href="https://masto.es/tags/xmpp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xmpp</span></a> <br><a href="https://masto.es/tags/matrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>matrix</span></a> <br><a href="https://masto.es/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> <br><a href="https://masto.es/tags/cibervigilancia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cibervigilancia</span></a></p>
Benjamin<p><span class="h-card" translate="no"><a href="https://fedifreu.de/@cryptgoat" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptgoat</span></a></span> Spannenderweise dokumentiere ich gerade die Services, die ich fuer meine Familie hoste, darunter einen XMPP Server. Natuerlich dokumentiere ich nicht den Server, sondern <a href="https://toot.berlin/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> und <a href="https://toot.berlin/tags/Quicksy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Quicksy</span></a><br>Wuenschte ich mir, mit allen Leuten darueber kommunizieren zu koennen? Klar.<br>Bin ich schon froh, dass unsere Schule und Einzelfallhilfe ueber Signal statt WA erreichbar ist? Auf jeden Fall.<br>Geh ich den Leute unnoetig auf den Sack? Fsck no. (Kein Vorwurf, falls es so klingen sollte)</p>
Daniel Gultsch<p>Signal famously doesn't allow third party clients. Molly currently flies under the radar but their official stance is: fuck off.<br>If <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> were to introduce ads tomorrow you just switch to a fork and move on with your life. With Signal you do what exactly?</p>
Xuan<p><a href="https://todon.eu/tags/PingOff" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PingOff</span></a>, una app que te pone el teléfono en modo "No interrumpir" de manera automática en momentos específicos, lo cual está genial. 🤓</p><p>* Para grabar audios y que los ringtones no se cuelen durante la grabación. :blobcataww: </p><p>* Para que no te distraigan las notificaciones mientras estás haciendo algo particular en ciertas apps (filmando, navegando, etc.). :blobcatbongo: </p><p>Básicamente, elegís con qué aplicaciones el teléfono estará en modo "No interrumpir". Cada vez que abras alguna de ellas, se activará ese modo. Al cambiar a una app no listada o al suspender el dispositivo, se desactivará. Así de sencillo. :blobcatcoffee: </p><p>Disponible en F-Droid. Útil para <a href="https://todon.eu/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a>, <a href="https://todon.eu/tags/DeltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DeltaChat</span></a> o cualquier otra app de mensajería.</p>
Daniel Gultsch<p><span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>delta</span></a></span> For <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> I literally developed the UI first. I had a somewhat working UI before I was able to put a single <a href="https://gultsch.social/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> message on the wire.</p><p>A shared library between different platforms is a good thing. People are trying to do this in XMPP (Snikket SDK, Macaw, Prose) and if I were to start something new for Conversations I'd use something like Kotlin Multiplatform too.</p><p>However there is also value in diversity of implementations and the good ideas will prevail concept of XMPP.</p>
Daniel Gultsch<p>I'm on my way back from the Berlin XMPP Sprint and had a fantastic time. Thank you so much <span class="h-card" translate="no"><a href="https://framapiaf.org/@debacle" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>debacle</span></a></span> for organizing it, and thank you to everyone who participated. It was especially cool to see some new faces; it's pretty amazing that the <a href="https://gultsch.social/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> developer community is still able to attract new talent.</p><p>I made good progress on finally being able to show full-size avatars (profile pictures) in <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a>. Stay tuned to learn more about that towards the end of this week.</p>
F-Droid<p>This week in <a href="https://floss.social/tags/FDroid" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FDroid</span></a> (TWIF) is live, a bit late:</p><p>* <a href="https://floss.social/tags/reproducible" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>reproducible</span></a> status in website app details<br>* <a href="https://floss.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> &amp; <a href="https://floss.social/tags/Quicksy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Quicksy</span></a> fix bugs<br>* Linwood Butterfly Adonis Blue<br>* <a href="https://floss.social/tags/OSUOSL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OSUOSL</span></a> news<br>* <a href="https://floss.social/tags/SECUSO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SECUSO</span></a> updates many <a href="https://floss.social/tags/PrivacyFriendlyApps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrivacyFriendlyApps</span></a><br>+ 1 new app<br>+ 112 updates</p><p>Check <a href="https://f-droid.org/2025/05/01/twif.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">f-droid.org/2025/05/01/twif.ht</span><span class="invisible">ml</span></a></p>
Daniel Gultsch<p>Conversations 2.18.2 is available on Google Play and has client side mitigations for a server side security issue that was recently discovered and fixed in <a href="https://gultsch.social/tags/ejabberd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ejabberd</span></a>¹ and <a href="https://gultsch.social/tags/OpenFire" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenFire</span></a>²</p><p>Go update your server. But just in case that takes a minute Conversations has your back too!</p><p>This release also fixes an issue with restoring (importing) backups on recent Android versions.</p><p>¹: <a href="https://www.process-one.net/blog/ejabberd-25-04/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">process-one.net/blog/ejabberd-</span><span class="invisible">25-04/</span></a><br>²: <a href="https://github.com/igniterealtime/Openfire/pull/2761" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/igniterealtime/Open</span><span class="invisible">fire/pull/2761</span></a></p><p><a href="https://gultsch.social/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a></p>
Daniel Gultsch<p><a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> has the ability to fetch outage status information from an independent server and display that in case the regular <a href="https://gultsch.social/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> server can not be reached.</p><p>This is powered by XEP-0455 (<a href="https://xmpp.org/extensions/xep-0455.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">xmpp.org/extensions/xep-0455.h</span><span class="invisible">tml</span></a>). <br>TLDR: Server gives client a URL to a JSON file during normal connects, client will hold on to that URL and fetch the JSON file in case server is unreachable.</p>
Benedikt Wi<p><span class="h-card" translate="no"><a href="https://social.tchncs.de/@benni" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>benni</span></a></span> Ja, läuft problemlos. Benutze <a href="https://ruhr.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> von <span class="h-card" translate="no"><a href="https://gultsch.social/@daniel" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>daniel</span></a></span> als <a href="https://ruhr.social/tags/UnifiedPush" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UnifiedPush</span></a> provider</p>
Daniel Gultsch<p>Security audits are a funny thing. We lack the (financial) resources for regular, thorough penetration tests. However I’m aware that some of the higher profile users of <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> occasionally perform audits without my direct involvement and without publishing it afterwards. Those audits aren’t adversarial as indicated by them wanting me to fix what they find.</p><p>The funniest instances are when they want to be credited for finding an issue but refuse to make the audit public.</p>
Daniel Gultsch<p>A big thank you to Radically Open Security for performing the audit and to <span class="h-card" translate="no"><a href="https://social.nlnet.nl/@nlnet" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nlnet</span></a></span> for funding it.</p><p>Radically Open Security has been a long term partner of <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a> ever since they did the first <a href="https://gultsch.social/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> audit back in 2016!</p><p>Recent audit: <a href="https://conversations.im/2025_audit_conversations.pdf" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">conversations.im/2025_audit_co</span><span class="invisible">nversations.pdf</span></a><br>OMEMO audit: <a href="https://conversations.im/omemo/audit.pdf" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">conversations.im/omemo/audit.p</span><span class="invisible">df</span></a></p>
Daniel Gultsch<p>A recent security audit of <a href="https://gultsch.social/tags/Conversations_im" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Conversations_im</span></a>¹ found that wildcard certificate handling didn’t fully comply with the spec.</p><p>Conversations was accepting *.a.example for c.b.a.example, even though wildcards are only meant to match a single label.</p><p>This issue has been fixed in version 2.18.0, now live on Google Play.</p><p>¹: <a href="https://conversations.im/2025_audit_conversations.pdf" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">conversations.im/2025_audit_co</span><span class="invisible">nversations.pdf</span></a></p><p><a href="https://gultsch.social/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> <a href="https://gultsch.social/tags/Jabber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Jabber</span></a></p>