Why does Jitsi Meet totally peak out my CPU, even with the camera turned off, and nobody else in the room with me? They must be running some bloated ass Javascript
I also notice that it take a few minute before my CPU (dual core 1.6Ghz) goes back to normal after I close the #JitsiMeet tab. Hmmmm ...
@strypey hey I've been wanting to test Jitsi. I often use ZOOM. It's proprietary but has great a feature set. I'd 100% prefer to drive eyes to something like Jitsi. Your experience sounds like I might need to use some caution.
@david_ross be aware that my computer was new when the Ark was being built ...
https://www.coactivate.org/projects/disintermedia/bishop
@david_ross , but I tried logging in with #OpenBox, instead of #GNOME #Fallback, OB uses a bunch less CPU while idlng, and Jitsi Meet still pushed the CPU to 99% without doing anything but idlng with no cam. I also tried the #FramaSoft instance (#FramaTalk) and it was just the same
@david_ross I'm excited about testing #NextCloudTalk, the new #WebRTC app for the NC platform. I believe it's a rewrite of #Spreed, so I'm hoping that means it's a bit more resource efficient than #JitsiMeet
@strypey I brought this up on a Mozilla vols call today. Thanks for the update!
@david_ross @strypey Please kill #WebRTC with fire until it is a crispy charred hunk of Zuul meat.
Thanks.
@Shufei @david_ross I don't know, #WebRTC is pretty useful. #WebTorrent is built on it, for example
@david_ross @strypey It breaks VPN. Virtually every web browser which has it, has it enabled by default, causing obvious security risks. I’m glad it has legitimate uses for them who want it. I’ll never want it, for anything I can see.
But yes, I suppose I ought to be grateful. Ripping out WebRTC by the roots was a nice little education in tweaking obscure options in about:config, etc. And being more sceptical of even Mozilla browser defaults.
@david_ross @strypey Mmm, sometimes one needs VPN without Tor. Though it’s definitely a good suggestion, this.
@Shufei @david_ross would be good if #WebRTC can be turned on and off as needed, with the user explicitly giving permission for each site trying to us it, like #Firefox does with cam and mic
@strypey @Shufei @david_ross I have never understood this idea of hiding IP address on secure alt tech servers as we would be nieve to not understand that governments/isp's/corporations holesale cleact IP address flying over the #openweb we actually know they do this from Snowden etc. #securitytheater #geekproblem is dangerous to sell/push this fig leaf? As I say I have never understood this? Comments?
@Hamishcampbell @strypey @Shufei Yeah those mental models are not particularly helpful in this instance. WebRTC is a relatively new set of API's which expose internal ports by design. Some of the issues is due to its perceived complexity. It's a very real problem and more so on a LAN. Not Snowden territory. More Library/hotel network engineer seeing everything exposed. https://developer.mozilla.org/en-US/docs/Web/API/RTCPeerConnection
@Hamishcampbell @strypey @david_ross I’ve never understood the “absolute safety” fallacy, myself. There is unsafe infosec and safer. It’s figleafs all the way down, an arms race of figleafs, even in crypto. And even the surveillance state doesn’t have total immediate clairvoyance. So if hiding ip foils some metadata skimmers, but not all, at least you’ve foiled probably most. It buys time and options and muddies waters. That’s all one can do anyway.
@Shufei @strypey @david_ross my though on much of the wrighting/presentation on the subject. Say clearly your muddying the waters dont sell crypto as a black and white sulution to everything. We have had 10 years of that and it needs to stop #geekproblem #openweb
@Hamishcampbell @Shufei @david_ross IP addresses can be *very* easily tracked back to individual users. Without the ability to obscure your IP address, no other anonymization will work. That's why #Indymedia sites, and other activist services like #RiseUp, state very publicly that they don't log IPs. It's precisely because of the always-on mass survellance #Snowden confirmed (but we had always suspected) that obscuring IPs is important.
@strypey @Shufei @david_ross yes but bad acters could (and do) track ip addresses going over the open internet and no amount of not loging at server can block that. If this is true then fig leafs are danguruse if you rearly need privacy. We have not been clear in saying this, we need to be.
@Hamishcampbell @Shufei @david_ross can you explain exactly what you mean when you say "track ip addresses going over the open internet", with links to some specifics?
@strypey @Shufei @david_ross I have flaky/limited Internet on boat will try and find you some links when on good wifi.
@Hamishcampbell @Shufei @david_ross on a boat eh? Awesome! Have you tried out #Scuttlebutt? That's exactly the sort of use case it's intended for (some of the developers live on boats).
@strypey @Shufei @david_ross the key word is "obscuring" IP's think #encryptionsts #geekproblem has been pushing to meany tools and sulutions for privacy that are figleafs and calling them secure for the last 10 years. Have been pushing back on this and it seems to be reaching a tiping point now? The is more value in the #openweb is my posative push on this subject.
@Hamishcampbell @Shufei @david_ross
this is the online equivalent of saying we should all just start taking a shower on the street, because we can't absolutely guarantee nobody has managed to sneak a camera into out bathroom. The fact that there are people trying (and sometimes succeeding) is a terrible reason to give up on designing for privacy. See:
https://ind.ie/excuse-me/
You are wriggling so as not to address what am saying :)
To be clear am saying we have (largely) been miss-sold privacy (as an absolute) by #encryptionists for the last 20 years or so , were it should have been sold as obscurity/mudding the waters etc.
This has lead to damaged to many #openweb projects by making them hard to use and incomprehensible.
We need to be clear.
@Hamishcampbell @Shufei @david_ross I see. To be clear, I'm saying I don't think people who do essential work, on making software more privacy-respecting, are responsible for other people's misperceptions of security as an absolute, rather than a spectrum. What do you think?
@Hamishcampbell @Shufei @david_ross
to address your second point, I don't agree that the #UX of free code software is patchy because of anything to do with security or privacy, and I'm not sure how you came to that conclusion. Some more likely reasons, as well a potential solutions, are discussed here:
https://media.libreplanet.org/u/libreplanet/m/who-cares-if-code-is-free-ux-and-free-software/
I'm not really sure where this thread is going since it looks like a collection of many different issues. But on the topic of Mozilla and privacy, anyone who thinks that Mozilla is some great champion of privacy doesn't understand the business model. Modern Firefox is a telemetry machine with some web browsing features.
The current web is a bit like the current state of politics. The main options for accessing the web aren't all that great and there are significant issues no matter which browser you use.