Crosspost: https://feddit.de/post/8502102
Element for Android doesn’t support searching in encrypted channels and I think you can’t use E2EE in the browser at all(?), plus basically every other client has even more drawbacks when it comes to E2EE.
My team recently tried RocketChat, but E2EE is obviously an afterthought for that project as it has even more limitations than non-Element Matrix clients (no searching, no pinning, no file upload, no edit, etc.). Plus Jitsi integration seems to be buggy right now (at least on my Windows installation).
What else is out there that’s not on my radar? Is Matrix with Element really the best option right now? Is there no project that puts E2EE above all else?
Edit: Should be self-hostable and (FL)OSS.
What about session? A buddy of mine started using session and so far so good maybe
I’ve used Session for quite a while. It is not something I would use in a professional environment where reliability is required.
Signal messenger
Not really what I am looking for. Neither is it self-hostable, nor do you have access to independent clients. Plus the requirement for phone numbers makes it undesirable.
Also, I’m not really looking for a simple messenger and more for something that is useful in organizing a team.
Are you saying you want encrypted text chat? Or do you want voice or video too?
I wouldn’t obsess too much about e2ee once there are that many client os’s and apps involved, if the server is self hosted. There will be plenty of other points of vulnerability regardless, including careless humans at the endpoints. It’s not really possible to achieve security by just choosing the right software. Real opsec is much more complicated.
What do you mean by “independent clients” - multi device login?
There’s Wire, but it still resembles Signal more than Slack. But apparently they’ve put some work into making it self-hostable.
https://docs.wire.com/versions/install-with-poetry/index.html
Matrix is still probably the closest thing to Slack, Discord etc that actually has functioning E2EE, but also includes cloud synchronization when people can remember their keys.
What do you mean by “independent clients” - multi device login?
Yeah. Right now you have to have Signal running and connected on a phone. If the phone is off or not connected to the internet, you can’t use the Desktop client.
Wire
https://wire.com/en/app-download
Latest Linux release is from December 2022. That’s unacceptable.
Correcting some misconceptions…
Element for Android doesn’t support searching in encrypted channels
That’s true of regular Element for Android, but it’s being replaced with Element X (which is built with Rust). I would expect search to be added there if it isn’t already.
and I think you can’t use E2EE in the browser at all(?)
I have done it in Firefox, so that’s false. Perhaps you had trouble with a specific browser?
plus basically every other client has even more drawbacks when it comes to E2EE.
Nheko handles E2EE just fine, so that would seem to be false as well.
Since you’re looking for recommendations, it would help if you said which clients you tried and what problems you had with them.
In case you haven’t seen it, you can set a Features: E2EE filter on this list:
https://matrix.org/ecosystem/clients/
I would expect search to be added
That’s what I expected fo regular Element for Android as well, but it never came into existence.
Element X
I fail to find a feature comparison between the two. Does it have feature parity with Element yet? If not, what’s missing?
Firefox
Firefox is my main browser and has been for the last 15 years or so. It definitely was Firefox, but maybe I’m confusing it with a different issue. There definitely was some feature in Element Web that didn’t work and told me to use Desktop instead, unless I’m imagining things now.
Nheko
Interesting, I’ll take a look.
EDIT: Nheko is NOT a mobile client. I’ve misinterpreted your statement.
That unfortunately doesn’t specify the extend of the E2EE support (like search), but I appreciate your effort.
There definitely was some feature in Element Web that didn’t work and told me to use Desktop instead, unless I’m imagining things now.
It’s search.
Even in Element, last time I checked, search was incredibly half-baked and mostly useless.
I know you don’t want to use Signal, but it actually has searches that function.
You cannot compare Signal to Element at all.
Like, at all.
Signal has no search for Groups, there are no public groups or channels. Signal has a monopole server that is supposed to be OpenSource but nobody can run their own one.
Does XMPP with OMEMO give you what you are looking for, or am I misunderstanding?
In regards to e2ee probably, but they seem to have very specific feature requirements for a team-chat, which current XMPP clients do not fulfil.
However I do wonder about the fixation on e2ee. In a self-hosted scenario with TLS encryption (and local users only) there is no real need for e2ee.
The server is not hosted on premise and the team will exchange communication that requires to remain private. That’s why I really need E2EE for everything (and why RocketChat is not an option as E2EE is not fully implemented).
Why not move the server on premise? e2ee is a very imperfect protection against metadata leaks and running the servers on premise has loads of other advantages.
Its crazy how Tech Giants burst out chat apps like nothing.
Having a good client based on Conversations with some stuff added would cost nothing.
Not Conversations based, but you might want to keep an eye on: https://prose.org/ (fully open-source and XMPP standard compatible)
What issue did you have with the jitsi integration on rocket.chat?
First of all Jitsi isn’t part of the rocketchat-server package, so you need to set it up yourself or use a hoster, which both require separate accounts from the RocketChat ones.
The specific issue I had on Windows was that RocketChat wasn’t registered to handle jitsi-meet:// links, it would just open a blank “open with” Windows dialog everytime. In general the “integration” seems lacking, the whole UX is really bad compared to Matrix/Element where voice calls just work.
But where did those `` jitsi-meet://` links come from?
The calls generated inside rocket.chat are supposed to be handled by the rocket.chat app, everything else it doesn’t get involved with.
(I wrote this integration so I’m legitimately interested in how it could be better)
I’ve made some screenshots instead of a video. I hope you still get what the issue is.
At the end there is no usuable call from the RocketChat client. But I can copy the meet.jit.si URL and open it in a browser.
Originally I had an error message telling me that Windows doesn’t know what to do with jitsi-meet:// links, but that doesn’t show up anymore for some reason. Maybe because of me messing with the registry to solve the issue, but I’ve actually removed the registry key I had created before.