Dev/Gajim
From Whonix
< Dev
TODO[edit]
- Gajim might intelligently set a Tor socks user name per account already. Do we still manually specify a user/password?
- Gajim developers said they don't intelligently set a Tor socks user name per account. https://dev.gajim.org/gajim/gajim/issues/9213 [archive]
- security
- (3) TODO: create an AppArmor profile
- does it have any protocol leaks [archive]?
- (4) TODO: check Gajim's built-in XML console
- how to pre-configure Gajim with all these settings by default as a linux distribution?
- (5) TODO: feature request for .d config folder support - https://dev.gajim.org/gajim/gajim/issues/9214 [archive]
- feature request: Forcing OMEMO out of the box
Resolved[edit]
Was a blocker:
- Despite the proxy setting, it routes DNS requests use system default networking, thus end up in Tor's TransPort, thereby DNS is not stream isolated.
- Won't be fixed. Python limitation.
- https://dev.gajim.org/gajim/gajim/issues/8538 [archive]
- Violates Whonix ™ Default Application Policy.
- --> Strict stream isolation removed from Whonix ™ Default Application Policy.
Done[edit]
- Are uploads by gajim-httpupload encrypted using gajim-omemo?
- Developer responded: "yes if you have activated OMEMO, httpupload will always encrypt the file, in fact you can not send a unencrypted file with OMEMO activated even if you wanted."
- Plugin installer is only using https for verification which is weaker than gpg which is used by APT which is usually used to install software. [1] [2]
- We can nuke the plugin installer. anon-apps-config [archive] which is installed by default will deactivate gajim plugin installer / updater [archive] because it's not secure. Using
config-package-devdisplace. - (2) Debian feature request to ship the gajim plugin-installer plugin in a separate Debian package.[3]
- We can nuke the plugin installer. anon-apps-config [archive] which is installed by default will deactivate gajim plugin installer / updater [archive] because it's not secure. Using
Discussion[edit]
- some answers here: https://dev.gajim.org/gajim/gajim/issues/8651 [archive]
- gajim Whonix ™ integration development discussion: https://forums.whonix.org/t/gajim-messenger [archive]
Footnotes[edit]
Whonix ™ is Supported by Evolution Host DDoS Protected VPS. Stay private and get your VPS with Bitcoin or Monero.
|
100px |
| Fosshost | About Advertisements |
Search engines: YaCy | Qwant | ecosia | MetaGer | peekier | Whonix ™ Wiki
Check out the Whonix ™ News Blog. 
Priority Support | Investors | Professional Support
Whonix ™ | © ENCRYPTED SUPPORT LP | 
Freedom Software / 
Open Source (Why?)
The personal opinions of moderators or contributors to the Whonix ™ project do not represent the project as a whole.