@nextcloud What about alternatives like #jitsi #bigbluebutton #nextcloudTalk if they were under the same scrutiny?

@imacrea @nextcloud Fact is, you can't trust any proprierary software for starter.

@imacrea @nextcloud Libre software aren't totally secure etiher (at the end of day it's only a matter of pratice of distributing softwrae, doesn't have anything to do with the actuel technical part), but if they aren't libre, you can't say. It's a necessary condition.

I would also advice mumble (not because it's bullet proof, but because it's an under used solution : and under used solution are safer, because less attacked).

@otyugh @nextcloud Thanks, yup I k ow that. But in term of software, do they carry encryption features sufficiently reliable and so can we trust them if deployed properly? Or do they lack some features on the security side and should one be careful when using it? To be more precise in my questions :)

Suivre

@imacrea @nextcloud They all support some kind of encryption mechanism. I guess you should go meet CVE.

Mumble : cve.mitre.org/cgi-bin/cvekey.c

Zoom : cve.mitre.org/cgi-bin/cvekey.c

Skype : cve.mitre.org/cgi-bin/cvekey.c

Jitsi : cve.mitre.org/cgi-bin/cvekey.c

Of cours it's not enought to tell (you should know if it's a critical problem or a small one), but it gives the sens of "how much problem is found an set public". My big guess is, the most of software is used and therefore attacked, the most problems are gound.

@imacrea @nextcloud Also I must add I'm a total amateur in this so you shouldn't take what I say for "the one truth" I'd feel ashamed >.<

I just want to add : even if a software was bullet proof, the setup of it counts a loooot. Let say the HTTPS was bullet proof : a lot of people set it up in horribles ways so it's not secure at all using outdated methods. You can check the websites or service you use with simple diagnostic service like thoses : tls.imirhil.fr/

Inscrivez-vous pour prendre part à la conversation
Mastodon Chapril

Chapril, membre du collectif CHATONS, un projet de l'April.