Skip to content


Security Notice: Uncontrolled Resource Consumption with Highly-Compressed XMPP Stanzas

The XMPP Standards Foundation has published a security notice describing an uncontrolled resource consumption vulnerability in several XMPP server implementations that support application-layer compression. Details can be found at <http://xmpp.org/resources/security-notices/uncontrolled-resource-consumption-with-highly-compressed-xmpp-stanzas/>.

April 4, 2014

Posted in security.

Comments Off
Third Security Test Day

Tomorrow sees the third security test day. Security test days help XMPP operators test-run with strong encryption settings prior to the big encryption switch-over scheduled for 19 May 2014. A large number of XMPP sites have already signed up to the ubiquitous encryption manifesto. More so, some of the participating sites have already permanently enabled [...]

March 21, 2014

Posted in security.

Comments Off
Google Summer of Code 2014

While the XSF may not be mentoring a project in this years Google’s Summer of Code 2014 -  we sure can celebrate and shout about the fact that some of the projects include XMPP as part of their project ideas! The Jitsi project has several projects relating to WebRTC, XMPP and the Jitsi Videobridge. XMPP/Jingle/WebRTC also [...]

February 28, 2014

Posted in Uncategorized.

Comments Off
Second Security Test Day

This Saturday (February 22, 2014), XMPP site operators are again flipping the “encrypt all traffic” switch. This is the second of four test days kicked off by the manifesto first published last fall. The aim is to encrypt all traffic between servers and clients on the public, federated XMPP network. You can take part, too: [...]

February 18, 2014

Posted in community, security.

Comments Off
Thank You to the Internet Society

On December 20th 2013 the XSF received some very exciting news, to end what had already been a great year – ISOC were awarding the XMPP community an incredibly generous gift to help support the work we are doing in improving privacy and security. In their own words: “The Internet Society takes a great interest [...]

February 12, 2014

Posted in community.

Comments Off