• Blattstruktur@lemmy.ml
    3·
    4 years ago

    However, due to XMPP’s inherent metadata leaks, XMPP should usually not be trusted for private communication. Does anyone have more information on this? I always assumed XMPP to be quite good for private conversations, considering it’s strongly decentralized nature and maturity.

    • linkpop@lemmy.ml
      3·
      4 years ago

      The metadata thing is mostly to do with the server having a plaintext record of things like your contact list but honestly it’s a moot point if you run your own server for your friends.

    • poVoq@lemmy.ml
      2·
      4 years ago

      This is one of these “true, but” kind of things. Of course in a federated network servers need to communicate with each other and that “leaks” meta-data to them. Maybe XMPP could be optimized a bit more to share less metadata (but it already shares less then Matrix), but in the end there is no way to totally avoid that if you want to enable federation.

      IMHO I think the privacy benefits outweigh the downsides, because in XMPP each server only has a limited subset of the metadata and thus is it much harder to do AI driven data-mining on it.

      • Blattstruktur@lemmy.ml
        1·
        4 years ago

        Thank you for the insights, do you know which data that is in particular? For federation I would think 1) who you’re speaking to (both servers?), 2) on which server they are, 3) how long, how often, etc. Is that about right?

        • linkpop@lemmy.ml
          2·
          4 years ago

          Yes, and all of that lives inside TLS, so only the server admins on both ends would see it.