In this new opportunity and taking advantage of the current global situation in terms of resource optimization, use of open and free tools, and the increasing trend of protection measures to the vulnerabilities of our communications and identity on the Internet, I bring you this humble solution based on Free Software using simple and current programs and technologies available to everyone, that is, Openfire, Jabber, XMPP and Tor Messenger.
We have already learned about the high level of surveillance to which we are subjected on the Internet, and that is why more and more people are looking for safe ways to communicate to maintain their privacy, it does not matter that we have nothing to hide, we all have the right to want to keep in We talk about it privately and with whom we talk about it.
And what do we need to consider that a messaging application is considered safe?
Here are some important safety criteria, at the level of protection worthy of being considered:
- Encryption of communications in transit, using a key that the service provider does not have access to. So that whoever offers the service cannot read our messages. That is, using encryption end to end, where the keys necessary to decrypt the messages are generated from the user side and not from the servers. Therefore, the encryption method used must be well documented.
- The user must be able to verify, independently of the service provider, the identity of their contacts, while the service provider must guarantee the client that their past communications remain secure even after the loss and disclosure of our access codes. And that by deleting our local copies, they are deleted forever.
- The application code must be open for independent review. Not necessarily under the philosophy of Open Source or Free Software, but if sufficient access is provided so that third parties can analyze it and look for possible failures, thus facilitating its audit.
And yet, in fact, some of the most popular and similar services or applications are completely devoid of encryption, allowing information to suffer from numerous vulnerabilities that could be used to steal it.
Do you think the information you are posting or exchanging is "safe", even if you take steps to control what you send?
Regrettably, your information is not safe no matter how hard you try. But safe from whom? From hackers with harmful intentions to companies with dubious ethics, access to your information even if it is difficult is possible. But, that is not why we should increase the levels of security (privacy and anonymity) from our messaging systems.
Quoting verbatim Rob enderle, Principal Analyst at Enderle Group: “As data breaches have affected virtually every aspect of our economy, cybersecurity is one of the defining issues of our time. Along with the need for organizations to meet the demands of an evolving regulatory landscape, current realities demand a new type of messaging platform. " And “Organizations require a reliable business-to-business communications tool that meets workflow productivity, while addressing complex data security and meeting regulatory compliance needs. … ».
Due to this, first we will review some important concepts to be fully understood, to understand the proposed solution.
Openfire: is a Jabber / XMPP server written in Java that provides both commercial and free licenses (GNU). To learn more about Openfire check these URL: link 1 y link 2
Jabber: it was an open and free protocol for instant messaging, which was based on XML and with core XMPP. To learn more about Jabber check these URL: link 1 y link 2
XMMP: it is an open protocol created for instant messaging. Its acronym is an abbreviation for the term Extensible Messaging Presence Protocol, which could be translated as Extensible Messaging and Presence Protocol. To learn more about XMPP check these URL: link 1, link 2 y link 3
tor messenger: is a secure messaging client that encrypts your conversations to make them completely private. This new, multi-platform, secure messaging client sends all its traffic through the Tor network. To learn more about tor messenger check these URL: link 1, link 2 y link 3
And how do we take advantage of all this?
First install the Openfire application on your Server, following some of the many tutorials available on the Internet. I particularly recommend these:
- Official Installation Guide
- Installation Guide on CentOS
- Installation Guide in DEBIAN
- Installation Guide on Elastix
Then in their Clients (Workstations), Tor Messenger by following the recommendations below:
- Download it from your Official website selecting the right architecture (32 or 64 Bit)
- Unzip it and run the desktop link (shortcut) called: start-tor-messenger.desktop
- Follow the steps here recomendados
Sure, there are many other clients for OpenFire, XMPP or Jabber but tor messenger offers us not only Security, but also Anonymity. So if you want, to dispense with Anonymity I recommend you read this Post so you can see the options available under Linux. U these others: Clients for Jabber y Clients for XMPP.
I personally tested it with an XMPP account and it works great for me. I leave the images below for you to see:
Did you close the records to the forum? When I try to register I receive this error:
Error: Unable to send email. Please contact the forum administrator with the following error message reported by the SMTP server: «553 5.7.1: Sender address rejected: not owned by user forum@desdelinux.net «.
Great post friend, you will not know of any application for android that can be used with the openfire server.
I use Xabber for Android.
https://play.google.com/store/apps/details?id=com.xabber.android&hl=es_419