The XMPP Standards Foundation: The XMPP Newsletter August 2025
XMPP Newsletter Banner
Welcome to the XMPP Newsletter, great to have you here again!
This issue covers the month of August 2025.
Like this newsletter, many projects and their efforts in the XMPP community are a result of people’s voluntary work. If you are happy with the services and software you may be using, please consider saying thanks or help these proj … ⌘ Read more
The XMPP Standards Foundation: MongooseIM 6.4 - Simplified and Unified
MongooseIM is a scalable and efficient instant messaging server. It implements the open, proven, extensible and constantly evolving XMPP protocol, which is an excellent choice when it comes to instant messaging. To communicate with other XMPP entities, the server uses three main types of interfaces, listed in the table below.
XMPP InterfacePurposeConnection typeReworked in v … ⌘ Read more
The XMPP Standards Foundation: The XMPP Newsletter July 2025
XMPP Newsletter Banner
Welcome to the XMPP Newsletter, great to have you here again!
This issue covers the month of July 2025.
Like this newsletter, many projects and their efforts in the XMPP community are a result of people’s voluntary work. If you are happy with the services and software you may be using, please consider saying thanks or helping these project … ⌘ Read more
Erlang Solutions: Supporting the BEAM Community with Free CI/CD Security Audits
At Erlang Solutions, our support for the BEAM community is long-standing and built into everything we do. From contributing to open-source tools and sponsoring events to improving security and shaping ecosystem standards, we’re proud to play an active role in helping the BEAM ecosystem grow and thrive.
One way we’re putting that support into action is by offering free CI/CD-based security … ⌘ Read more
i signed up for omg.lol and i’m really liking it. such a cozy and fun little community with a suite of fun web things. i wish the financial barrier to entry was a bit lower though (maybe like $5 for a few months on it or something) just so i could recommend it to my broke friends more, but i totally get why it’s priced the way it is (solo dev!!!)
This is it, boys and girls! The year of the Linux Desktop is this! I can smell it! :-D
For the first time, Linux has officially broken the 5% desktop market share barrier in the United States of America! It’s a huge milestone for open-source and our fantastic Linux community.
Ignite Realtime Blog: Empowering Digital Sovereignty with Openfire: A Secure and Customizable Communication Platform
In today’s interconnected world, digital sovereignty has become increasingly important for individuals and organizations seeking to maintain control over their data, infrastructure, and technologies. Openfire, an open-source, real-time collaboration (RTC) server that uses the XMPP (Extensible Messaging and Presence … ⌘ Read more
It annoys me when I clone a git repository A in order to build and self-host some software, only to realize later that I also needed to clone repos B, C and D. I’m not saying that’s a bad thing–logical separation of code between, say, a client and a server is very handy–but some projects do not communicate very well when you need multiple tools to get it running independently.
shared a guest talk and workshop at Decomputing: A Community Exploration | gemini://compudanzas.net/talks_and_workshops.gmi
OpenBSD has the wonderful pledge() and unveil() syscalls:
https://www.youtube.com/watch?v=bXO6nelFt-E
Not only are they super useful (the program itself can drop privileges – like, it can initialize itself, read some files, whatever, and then tell the kernel that it will never do anything like that again; if it does, e.g. by being exploited through a bug, it gets killed by the kernel), but they are also extremely easy to use.
Imagine a server program with a connected socket in file descriptor 0. Before reading any data from the client, the program can do this:
unveil("/var/www/whatever", "r");
unveil(NULL, NULL);
pledge("stdio rpath", NULL);
Done. It’s now limited to reading files from that directory, communicating with the existing socket, stuff like that. But it cannot ever read any other files or exec() into something else.
I can’t wait for the day when we have something like this on Linux. There have been some attempts, but it’s not that easy. And it’s certainly not mainstream, yet.
I need to have a closer look at Linux’s Landlock soon (“soon”), but this is considerably more complicated than pledge()/unveil():
↳
In-reply-to
»
@bender Both Gopher and Mastodon are a way for me to “babble”. 😅 I basically shut down Gopher in favor of Mastodon/Fedi last year. But the Fediverse doesn’t really work for me. It’s too focused on people (I prefer topics) and I dislike the addictive nature of likes and boosts (I’m not disciplined enough to ignore them). Self-hosting some Fedi thing is also out of the question (the minimalistic daemons don’t really support following hashtags, which is a must-have for me).
⤋ Read More
@bender@twtxt.net Yeah, well, it’s a bit like twtxt. There is a Gopher community, but it’s small. I actually don’t like that HTTP is so easily accessible. I don’t like it that much when people post links to my site on HackerNews or something like that. Too much exposure.
Gopher is a small world. It’s slow and cozy.
And much like twtxt, the protocol is simple®, so it’s easier to tinker with it.
My Journey to KubeCon + CloudNativeCon 2024: A Story of Volunteering and Growth
My name is Oscar Ayra and I am from Lima, Peru. In 2024, I had the privilege of being part of the volunteer team at Kubernetes Community Days (KCD) Lima. It was an enriching experience where… ⌘ Read more
The XMPP Standards Foundation: The XMPP Newsletter May 2025
XMPP Newsletter Banner
Welcome to the XMPP Newsletter, great to have you here again!
This issue covers the month of May 2025.
Like this newsletter, many projects and their efforts in the XMPP community are a result of people’s voluntary work. If you are happy with the services and software you may be using, please consider saying thanks or help these projects! Int … ⌘ Read more
Apple introduces new Liquid Glass design language
Apple at WWDC announced iOS 26, introducing a comprehensive visual redesign built around its new “Liquid Glass” concept, alongside expanded Apple Intelligence capabilities, updates to core communication apps, and more. Liquid Glass is a translucent material that reflects and refracts surroundings to create dynamic, responsive interface elements, according to Apple. The new design language transforms the Lock Screen, where the time f … ⌘ Read more
OIDC: The Digitally signed Pinky Swear “It’s Me” (Part I)
Whenever an Elbow-Shake Protocol is being established, there’s always Users try to communicate safely during Corona pandemic!
[Continue reading on InfoSec Write-ups »](https://infosecwrit … ⌘ Read more
Kubeflow Advances Cloud Native AI: a glimpse into KubeCon + CloudNativeCon Europe 2025
The Kubeflow community is rapidly growing due to its contributions to advancing AI by streamlining the AI/ML experience in Kubernetes. Kubeflow provides a composable ecosystem for implementing end-to-end solutions for AI/ML. Kubeflow includes the following projects:… ⌘ Read more
JMP: Mitigating MITMs in XMPP
In October 2023, Jabber.ru, “the largest Russian XMPP messaging service”, discovered that both Hetzner and Linode had been targeting them with Machine-In-The-Middle (MITM) attacks for up to 6 months. MITM attacks are when an unauthorised third party intercepts traffic intended for someone else. At the point of interception, the attacker can inspect and even modify that traffic. TLS was created to mitigate this; all communication between the two parties is encrypted, so the third party sees … ⌘ Read more
JMP: Mitigating MITMs in XMPP
In October 2023, Jabber.ru, “the largest Russian XMPP messaging service”, discovered that both Hetzner and Linode had been targeting them with Machine-In-The-Middle (MITM) attacks for up to 6 months. MITM attacks are when an unauthorised third party intercepts traffic intended for someone else. At the point of interception, the attacker can inspect and even modify that traffic. TLS was created to mitigate this; all communication between the two parties is encrypted, so the third party sees … ⌘ Read more
↳
In-reply-to
»
(#qfrmt2q) @lyse Where do they come from, anyway? Are they somehow auto-discovered or is this a curated list?
⤋ Read More
@movq@www.uninformativ.de oh, you bet someone is adding them. Being as we are a small community, I could almost guess who added what. 😅
Thank You, Equinix Metal: The CNCF Community Bids Farewell to the Bare Metal Cluster
To our incredible open source community, Today, we’re announcing the sunset of the CNCF Community Cluster at the end of 2025. As Equinix Metal sunsets its offering, support for community initiatives like ours is also being… ⌘ Read more
Olimex Showcases Open Source €20 Smart Home Server Project
Olimex has recently highlighted a new open-source hardware and software project aimed at creating a €20 smart home server. The initiative was introduced during a lightning talk at TuxCon 2025, a community-driven open-source conference held earlier this month in Bulgaria. The project aims to deliver a compact, easy-to-use smart home server that prioritizes local control, […] ⌘ Read more
MinIO Removes Web UI Features from Community Version, Pushes Users to Paid Plans
Comments ⌘ Read more
Asynchronous jobs and communicating with them ⌘ Read more
Debian XMPP Team: XMPP/Jabber Debian 13 Trixie News
Debian 13 “Trixie” full freeze has started 2025-05-17, so this is
a good time to take a look at some of the features, that this release
will bring. Here we will focus on packages related to XMPP, a.k.a.\
Jabber.
XMPP is a universal communication protocol for instant messaging, push
notifications, IoT, WebRTC, and social applications. It has existed sin … ⌘ Read more
Beyond best practices: Using OWASP ASVS to bake security into your delivery pipeline for 2025
How to turn a community-driven checklist into a living part of your SDLC.
[Cont … ⌘ Read more
Armbian 25.5 Adds New Board Support, Application Modules, and Receives Community Recognition
The Armbian team has released version 25.5, bringing expanded hardware compatibility, improved system tools, and a growing library of post-install application modules. The update also coincides with Armbian being recognized by NetBox Labs with a 2025 NetBox Hero Award for its role in open infrastructure innovation. New in Armbian v25.5 The latest release include … ⌘ Read more
Turkey’s Erdogan blames the LGBT community for falling birthrate ⌘ Read more
↳
In-reply-to
»
@kat I don’t like Golang much either, but I am not a programmer. This little site, Go by example might explain a thing or two.
⤋ Read More
One of the nicest things about Go is the language itself, comparing Go to other popular languages in terms of the complexity to learn to be proficient in:
- Go:
25keywords (Stack Overflow); CSP-style concurrency (goroutines & channels)
- Python 2:
30keywords (TutorialsPoint); GIL-bound threads & multiprocessing (Wikipedia)
- Python 3:
35keywords (Initial Commit); GIL-bound threads,asyncio& multiprocessing (Wikipedia, DEV Community)
- Java:
50keywords (Stack Overflow); threads +java.util.concurrent(Wikipedia)
- C++:
82keywords (Stack Overflow);std::thread, atomics & futures (en.cppreference.com)
- JavaScript:
38keywords (Stack Overflow); single-threaded event loop &async/await, Web Workers (Wikipedia)
- Ruby:
42keywords (Stack Overflow); GIL-bound threads (MRI), fibers & processes (Wikipedia)
↳
In-reply-to
»
I'm sending out my first newsletter later today. Sign up at https://darch.dk/newsletter if you want it fresh of the press 💌
⤋ Read More
My vision with this newsletter is to have a slower medium for communicating about my art as well as ideas and projects I’m working on regarding how we can use digital technology to our own benefits instead of being exploited by big tech.
Twtxt not sloe enough for you? 🤣
↳
In-reply-to
»
@thecanine @movq So I actually agree with you! I think Dustin is taking a bit of a "deep and dark" path here (depression), and there are many parallels to other types of activities that we can all talk to. "AI" or "LLM"(s) here should be no different. Use them, Don't use them. I don't really see how it takes away our creativity or critical thinking.
⤋ Read More
@thecanine@twtxt.net I admit I’m a little unclear of your position. What do you mean by “not the right approach”? What’s your position here? 🤔 – I have a funny feeling we actually algin, just getting our wires all mixed up in communicating it 🤣
Machinist and Machine
Reading and “accepting/rejecting” so much AI generated code in the last months has made me a bit burned out and have somewhat of an identity crisis.
I have been making more and more time at night to reconnect with the craft.
I think more people in the community might be struggling, so I just wanted to share my way of dealing with it.
Please share how you are dealing with the tokens.
On the relationship between Qt and KDE
Volker Hilsheimer, chief maintainer of the Qt project, says he has learned lessons from the painful Qt 5 to Qt 6 transition, the importance of Qt Bridges for using Qt from any language, and the significance of the relationship with the Linux KDE desktop. ↫ Tim Anderson at Dev Class Qt plays a significant role in the open source desktop world in particular, because it’s the framework KDE uses. Hilsheimer notes that KDE’s role in the Qt community is actual … ⌘ Read more
Even John Siracusa thinks Tim Cook should step down
John Siracusa, one third of the excellent ATP podcast, developer of several niche Mac utilities, and author of some of the best operating system reviews of all time, has called for Apple’s CEO, Tim Cook, to step down. Now, countless people call for Tim Cook to stand down all the time, but when someone like Siracusa, an ardent Mac user since the release of the very first Macintosh and a staple of the Apple community, makes such a … ⌘ Read more
10 Recent Newsworthy Hallucinations
The University of Nebraska identifies seven elements of newsworthiness: impact (the number of people affected by a reported item); proximity (the degree of a community’s physical closeness to the reported item); timeliness (the more recent, the more timely); prominence (the importance of the reported item or the fact that it is associated with a celebrity); […]
The post [10 Recent Newsworthy Hallucinations](https://listverse.com/2025/05/09/10-recent-newsworthy … ⌘ Read more
Which AI “arena” is the one we can actually trust?
I’m getting deeper and deeper into the AI space, and I’m discovering the different AI “arenas” and benchmarking. I have no idea what to trust or leverage to help me learn about the different models out there. Does the lobste.rs community have one that they go to by default? ⌘ Read more
Stop Uncapped Cloud Billing
This emerging community was created when its author got a single-day cloud bill of $97k due to a DoS attack that killed his small business.
Open Home Foundation Marks Second Year with Structural Changes and Home Assistant 2025.4 Update
April 2025 marked the start of the Open Home Foundation’s second year. Since its launch at the State of the Open Home 2024 event, the Foundation has grown rapidly, gaining broad community and industry support. Last month’s 2025 event highlighted key milestones from its first year and outlined plans for continued development. Over the past […] ⌘ Read more
LILYGO T-Echo Lite Offers Integrated LoRa, GNSS, and E-Paper Display in Compact Form
The LILYGO T-Echo Lite is a compact wireless development board designed for embedded applications that require long-range communication, positioning, and low-power display capabilities. Built around the Nordic nRF52840 microcontroller, the platform supports a wide range of wireless protocols and is available in several hardware configurations. The main processing component is t … ⌘ Read more
The XMPP Standards Foundation: The XMPP Newsletter April 2025
XMPP Newsletter Banner
Welcome to the XMPP Newsletter, great to have you here again!
This issue covers the month of April 2025.
Like this newsletter, many projects and their efforts in the XMPP community are a result of people’s voluntary work. If you are happy with the services and software you may be using, please consider saying thanks or help these project … ⌘ Read more
Understanding Kubernetes Gateway API: A Modern Approach to Traffic Management
Traffic management in Kubernetes can be complex, especially with modern applications composed of multiple services like frontends, APIs, and backends spread across hybrid and multi-cloud environments. As these environments grow, ensuring secure, efficient, and reliable communication… ⌘ Read more
Protecting NATS and the integrity of open source: CNCF’s commitment to the community
Updated May 1, 2025: CNCF and Synadia have come to an agreement to ensure that NATS continues to thrive as a healthy open source project within CNCF, with Synadia’s continued support and involvement. Please see our… ⌘ Read more
The AI-Powered DevOps revolution: Redefining developer collaboration
Collaboration is crucial to successful software delivery. Let’s dive into how AI can help your development teams decrease their time to delivery, and foster better communication and collaboration using GitHub Copilot.
The post [The AI-Powered DevOps revolution: Redefining developer collaboration](https://github.blog/ai-and-ml/github-copilot/the-ai-powered-devops-revolution-redefining-de … ⌘ Read more
Erlang Solutions: Looking Forward to ElixirConf EU 2025
ElixirConf EU 2025 is only two weeks away! Soon, it will once again be time for the Elixir community from Europe and beyond to come together, connect, and learn from each other about Elixir and its ecosystem. There will be dozens of talks from speakers across the community, training opportunities, and more.
This year’s event is being held in Kraków, Poland from May 15-16, with optional training available o … ⌘ Read more
↳
In-reply-to
»
Finally I propose that we increase the Twt Hash length from
⤋ Read More
7 to 12 and use the first 12 characters of the base32 encoded blake2b hash. This will solve two problems, the fact that all hashes today either end in q or a (oops) 😅 And increasing the Twt Hash size will ensure that we never run into the chance of collision for ions to come. Chances of a 50% collision with 64 bits / 12 characters is roughly ~12.44B Twts. That ought to be enough! -- I also propose that we modify all our clients and make this change from the 1st July 2025, which will be Yarn.social's 5th birthday and 5 years since I started this whole project and endeavour! 😱 #Twtxt #Update
@eapl.me@eapl.me I honestly believe you are overreacting here a little bit 🤣 I completely emphasize with you, it can be pretty tough to feel part of a community at times and run a project with a kind of “democracy” or “vote by committee”. But one thing that life has taught me about open source projects and especially decentralised ecosystems is that this doesn’t really work.
It isn’t that I’ve not considered all the other options on the table (which can still be), it’s just that I’ve made a decision as the project lead that largely helped trigger a rebirth of the use of Twtxt back in July 1 2020. There are good reasons not to change the threading model right now, as the changes being proposed are quite disruptive and don’t consider all the possible things that could go wrong.
Firefox tab groups are here
Article URL: https://blog.mozilla.org/en/firefox/tab-groups-community/
Comments URL: https://news.ycombinator.com/item?id=43834101
Points: 504
# Comments: 300 ⌘ Read more
Reversing the Fossilization of Computer Science Conferences – Communications of the ACM
Comments ⌘ Read more
Also, I see what you did there in regards to the reply model change poll. ]:->
The community is heavily divided in this regard, and yet we need consensous. We’re like the three Borg in VOY: Survival Instinct. 🥴
↳
In-reply-to
»
03:45 You can pretty blame capitalism for everything that's wrong with anything 🤣
⤋ Read More
@prologic@twtxt.net if not that, what else? Communism? Is there, really, such thing? 🤣