Here's a first-hand review. I posted this as a reply a minute ago, then decided to make it a primary comment.
Wire has been my go-to communications app for 2-3 years now. Running it on a Google-free phone, it has gradually become more buggy, and less reliable over time, and sadly, still the best secure/encrypted app I could find.
Testing Jami. I tried Ring 8-10 months ago. Text worked, audio/video did not.
In the past few days, trying Jami, audio-only works very well - clear, crisp, no lag - much better than Wire. Video was a bit buggy, but still decent.
Connectivity was an issue, calls froze, or got cut off a couple times. Tentatively, it looked like switching from a local WiFi to phone ISP was at least part of the problem.
Also, using the same account across multiple devices is a bit buggy. Contacts established on one device are not available on the other.
All things considered, the basic quality of the connection is very good, better than Wire, maybe better than Skype. Reliability of the connection, and the various 2ndary features that people take for granted, still need work.
Not GP, but I assume he doesn't mean a phone with /nothing/ Google on it, but more likely that the phone connects to no Google services and lacks Google Play Services. I do something like this by running AOSP on a Pixel device, which makes my choices of apps that work...less numerous. I'll have to give Jami a try, based on GP's good experience.
AOSP derived ROMs without gapps are pretty much "nothing Google". Unless you count AOSP itself as "Google", which it kind of is I guess, but it's not Google proprietary.
My pessimistic side is really just thinking Yet Another Instant Messaging Service.
I never understood what the benefit here was, you'll never convert the majority of your friends/connections to use these niche messaging services and so you will inevitably end up having to install one of the major ones (WhatsApp, Messenger, et al) at which point you lose any benefits of anonymity, right?
How do you fight this? Do you simply cut off people who won't swap to these services or maintain contact via other means?
That's a good question (and the downvotes are unjustified), but
> you'll never convert the majority of your friends/connections to use these niche messaging services
isn't true -- it's certainly possible, if you are pushy and refuse other apps.
I pushed most of my close contacts to use Signal and now they use that (among other tools).
Unfortunately Signal is not very good, because it's not very reliable (calls fail ~40% of the time, sometimes messages don't arrive) and the engineering practices lack (almost no tests, no CI, "bug bankruptcy" closing of all issues on the bugtracker) so I don't have high hopes for reliability to improve.
This made it harder to convert people, but it worked nevertheless.
I used to use Pidgin a long time ago now (in web time I mean) to be connected to multiple networks at the same time but there was a shift of tech stacks and companies slowly closed off their protocols or increased their security and Pidgin slowly got less and less support...
I use XMPP with everyone who is willing to join and am available via text, e-mail and normal phone calls for those who don't want to join.
However, it is a bit difficult with phone calls to countries outside of the EU: Sometimes I agree on using an old Skype account, sometimes I use my Nextcloud.
In theory, XMPP could handle that too, but in reality, none of my XMPP-clients has a great call experience (same old 'XMPP-clients need some love' song).
I have been moving very much to texts. The fear usually is, though, that someone might have to pay to contact me which is not ideal. Such a shame XMPP isn't foolproof for calls
I just use xmpp, text messages and phone calls personally. It's enough to keep connected with friends and familly. I don't feel the need to be more connected to people than that.
And for the times I need to send attachments, https://send.firefox.com or email (asynchronously), and sometimes https://instant.io (synchronously, for GB sized files, if the other party doesn't have a regular bittorrent client)
What’s stopping you from using multiple apps? You can probably convince most of your family and tech-savvy friends to download Signal/Jami/Keybase/whatever you might prefer.
No need to cut off people or uninstall insecure apps like Instagram to get to enjoy the benefits of communicating securely with some (rather than none) of your contacts.
I don’t think I’ve ever met a person who had less than 3 chat apps, and I can’t really relate to not remembering which contacts use which apps. Also, is a 50-100MB chat app really an issue when you have a 32+GB device? Even if only 1 person was willing to switch then I’d argue it’s a very small price to pay. Especially when the alternative is supporting an evil corporation that violate people’s privacy.
As for centralized logs, I would like for that as well, and I think something like Volt would be our best bet.
Been using Wire for team communication for while instead of things like Slack and Skype, really like it, but I wanted to try Jami instead as I got interested in the project.
It works beautifully for me on iOS when using just for personal stuff, but it seems they do not support group chats right now, which is a block for team communication.
I know it's FOSS -- but is there an independent reviewer or body that confirms such a service does not spy on its users and that the code is clean -- a service that would save me the time in having to read through all the C-code?
Such a service would need to review every source code update for a whole bunch of projects, which seems like an enormous amount of work. My best guess is that such a service does not exist.
A loosely coupled set of highly trusted and capable security engineers who formed a group to audit such things that upon successful audit could place their seal of approval on a version I would support with a subscription in no time.
A large group of individuals would guard against any one or a majority being compromised by bribes or otherwise. Not entirely make such fraud impossible just less likely.
I see this similar to the Jepsen set of tests for a given database. A similar code test would be nice. But tough since patches and things would nullify the approval. Some tweaking to the idea would be nice but in general it’s almost a never adopt for me for security focused products because I don’t know if I can trust the creators. Why would I? I don’t have anything to go on.
I'm just replying to the demo animation showing on the front page:
- the user gets a notification from Bárbara, and taps it, then
- the tap triggers Jami to open to the list of all contacts, presented in some order that apparently is not by recency of communication, because
- the user scrolls through the list down to Bárbara, who is below the fold, and whose list entry shows no obvious indication of unread messages
- the user taps Bárbara's entry and goes to the chat pane
- then, the user clicks the phone button to call Bárbara, which is beside a camera icon
- yet the next screen looks like a video call
My take: a person would have to value privacy and openness of source very highly to put up with this unobvious UI. It doesn't seem like it should be necessary to have to trade-off security guarantees for good design in theory, but in practice it frequently seems like that's the choice given.
I avoid anything from Facebook like the plague and never try to push people towards using any of my odd messengers. I actually avoid discussing this as it will have me labelled a missionary and just naturally fall back on SMS and email.
the price is being forgotten every now and then and missing out on some events. I don't like that but I consider it as a part of slowing down social interactions and subjecting those to some natural selection. I believe that has some healthy benefits on its own.
I know it may seem unusual, but there are people who want to occasionally video chat using a laptop (which you can only do with Signal Desktop as long as you also have a smartphone).
If not for that silly requirement, I'd be using Signal.
Signald allows you to make an account via pairing (which requires a smartphone) or by registering a new number. It also supports having multiple registered numbers.
Both of the programs I mention are built atop Signald
It’s certainly better than having all identities sitting on one company’s server. In that case, they can delete whoever they want and they also know your IP (look at keybase for example).
The tile is a bit misleading. This is primarily an internet phone app. The instant messaging is incidental to that. It evolved from a SIP phone program.
So, we got WhatsApp, FB Messenger, Threema, Signal, Telegram, Riot/Matrix, Jabber/XMPP, maybe Slack or even Skype and now Jami.
I'm _so_ looking forward to another messenger and trying to onboard users/friends to that, because _this_ now is the final solution to all our IM problems.
First we need to support only protocols where an open source /free client can be written. Then I am free to use it (the best I can find) and other people can use any one they choose. I avoid using anything that requires a proprietary client. If I really have to, I'll use a web client and not be online most of the time.
I tried it out a while ago when it was still Ring. It did not work, and that wasn't as advertised. The linux client had dependencies making it impossible to run on a non-mainstream linux distro, the android client could not reliable add other users (we were in the same room) and after it worked, it could not reliably send and receive messages. Often needed restarts to receive messages. Voice and video did only work for seconds.
Would be interested to know whether it works better now.
Wire has been my go-to communications app for 2-3 years now. Running it on a Google-free phone, it has gradually become more buggy, and less reliable over time, and sadly, still the best secure/encrypted app I could find.
Testing Jami. I tried Ring 8-10 months ago. Text worked, audio/video did not.
In the past few days, trying Jami, audio-only works very well - clear, crisp, no lag - much better than Wire. Video was a bit buggy, but still decent.
Connectivity was an issue, calls froze, or got cut off a couple times. Tentatively, it looked like switching from a local WiFi to phone ISP was at least part of the problem.
Also, using the same account across multiple devices is a bit buggy. Contacts established on one device are not available on the other.
All things considered, the basic quality of the connection is very good, better than Wire, maybe better than Skype. Reliability of the connection, and the various 2ndary features that people take for granted, still need work.