It means it’s a robust well-tested protocol (referring to HTTP)
XMPP by now is no less well-tested.
Average company firewall: Allow 80 Allow 443 Allow 53 to <internal DNS server> Deny to any
Average company firewall shouldn’t allow 80 and 443 to outside anyway.
Anyway, that could have been a fallback, it’s the only way instead.
Doing an IM over TCP I can understand. VoIP signalling over TCP is not serious.
What’s the better solution?
Look at Retroshare. In this particular regard (not its whole model of security, which is seemingly not good, but I’m not a specialist) it does things right, I think.
Yeah it has a lot of problems, but all the things you listed are the least of it.
And which are not in your opinion?
Still better than anything else.
Still not better than XMPP, so factually wrong. =)
Less resource-heavy than Matrix, doesn’t have the “store everything from your every chat” feature and thus requiring less space, more mature, very easy to set up.
Verify - as in what? The algorithm is open-source. If you’re talking about the keys, yes, you can view the keys used in a conversation and check if the fingerprints match.
What does this even mean in the context of data you’d transfer in Matrix?
Ease in which context? What’s so much harder to which you are comparing it?
Are you certain that something TCP-based gives that? Latency sucks too.
PKI is crap. Just saying. Easy and wrong.
Nobody said that.
And such an esteemed thing as Gnutella uses Web technologies.
I just don’t like it. It’s my opinion. Just as you have yours.
It means it’s a robust well-tested protocol (referring to HTTP)
It’s a robust, well tested, and well known protocol.
Average company firewall: Allow 80 Allow 443 Allow 53 to <internal DNS server> Deny to any
What’s the better solution?
Yeah it has a lot of problems, but all the things you listed are the least of it. Still better than anything else.
XMPP by now is no less well-tested.
Average company firewall shouldn’t allow 80 and 443 to outside anyway.
Anyway, that could have been a fallback, it’s the only way instead.
Doing an IM over TCP I can understand. VoIP signalling over TCP is not serious.
Look at Retroshare. In this particular regard (not its whole model of security, which is seemingly not good, but I’m not a specialist) it does things right, I think.
And which are not in your opinion?
Still not better than XMPP, so factually wrong. =)
By firewall I mean outgoing. And XMPP is kind of a non-starter.
Peer to peer is also a non starter. You have to have some kind of email-like structure.
What’s so good with XMPP?
Less resource-heavy than Matrix, doesn’t have the “store everything from your every chat” feature and thus requiring less space, more mature, very easy to set up.
Hm. How’s E2EE?
OMEMO is implemented, at least in major clients. I use it all the time.
Is it true end to end? As in can you verify?
Verify - as in what? The algorithm is open-source. If you’re talking about the keys, yes, you can view the keys used in a conversation and check if the fingerprints match.