jabber.spline.de

notes about spline's jabber service

required s2s encryption

2014-01-02 by Michael, tagged as google, security

There has been a long discussion about how to handle server to server encryption or the lack of it on the xmpp operators mailing list. Admins would like to switch it on of course but the biggest player in the federation network, Google, is blocking this.
However, both admins and developers have created and signed a manifesto on how to deal with this issue that puts pressure on Google and might in the worst case result in a federation split and the loss of a huge user base:

https://github.com/stpeter/manifesto/blob/master/manifesto.txt

I, personally, fully support this manifesto and hence decided to play along and switch to:

-{s2s_use_starttls, optional}.
+{s2s_use_starttls, required_trusted}.

on Saturday, January 4th. Let's see how it goes :)