Empathy needs to support OTR encryption

Binary package hint: empathy

Hello,
I just tried empathy (the Intrepid version) and it looked very solid and stable. There were a few minor things that could be improved (e.g. automatically resizing the contact list), but that is not the topic here.
The reason why I won't switch to empathy from pidgin is the missing OTR support (http://www.cypherpunks.ca/otr/ ). This is a really important feature because no one should read your messages.
There were others with the same idea (links at the bottom).
Would be so great if it could support that important encryption standard.
Thanks for helping out!

Links:
https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/253452/comments/2
http://lists.cypherpunks.ca/pipermail/otr-users/2008-September/001479.html
http://bugs.freedesktop.org/show_bug.cgi?id=16891

that's a telepathy request

+1 That's a must have feature! Without this Emphaty can never replace Pidgin.

I'd agree this is extremely important. Any chance of a comment on this from the devs?

+1 This is also a important feature for me. OTR should be supported before it replaces Pidgin in Ubuntu!

This is not releated to libtelepathy

I will not use empathy until it has OTR support. It is worthless to me. I don't care if the maintainers think they can think of something better. Unless they can get it adopted by other popular IM clients, I want OTR. And it's not better unless it also has the deniability that OTR provides.

OTR is a must-have feature.

You can not replace pidgin with empathy while not supporting OTR.

It's the only widespread encryption technology that works protocoll independend.

I like empathy and think it has a lot of potential to be a really nice piece of software but lacking support for encryption will force me to use pidgin instead.

I will not use empathy without OTR support either. The statement of the developers is absurd - they think, that their users dont need it and the only other option is to wait until there is native support in some protocol, which most users dont use or even know about. So thank you for telling me, that I dont need OTR and should convince all my chat-buddies to switch to jingle, but I prefer I to choose what to do with my computer, so until there is OTR support for empathy I will use Pidgin.

OTR support is critical. It needs to be there, and it needs to be something that other people are using. I guess I need to go back to pidgin.

OTR++

It's mandatory. Good summary why: http://lists.freedesktop.org/archives/telepathy/2009-August/003701.html

I totally agree, OTR is eminent. I can se no reason denying users their right to privacy. The OTR should work for all communacations within empathy, text, audio, video, and all protocols.

Encryption is an absolut ko-creterion. So i have two reasons why pidgin will remain on my system:

1.) The Devs of empathy told me on irc that i have to trust the people how run the communication-server! Or i have to set up an own server! That's both totally out of the question for the average user. Sometime i get the impression that some devs are ignorant.

2.) I can't understand how a piece of software which trample on users privacy can make it into ubuntu. Using tubes to control remote desktops without encryption is a great security issue.

The underlying idea of empathy/telepathy may be good. But really important things are ignored. To move the responsibility to ONE protocol (jabber ) which may implement encryption in the future is really unsatisfying.

Not to mention that the proposed idea for implementing encryption over Jabber doesn't give the same level of privacy guarantees as OTR, nor is it actually as nice a standard in a lot of other ways.

The average user will never generate an X.509 certificate for themselves. Anything based on that kind of technology is broken from the start. It's like making an email application that requires the user be in X.500 directory before it delivers mail.

Added package empathy from Ubuntu, as this represents a regression from Intrepid.

Also, there seems to be no plugin system in empathy / telepathy, so it's no clear how to proceed with implementing an OTR plugin.

This shouldn't be considered a 'Wishlist' item. A browser without https support is considered broken, not under-featured. The same should be true for an IM program.

I'd say that the default chat client should have OTR support, but no
problem with having other choices that don't, Empathy has voice and
video, which does make it a nice option.

Ron

On Wed, Sep 23, 2009 at 11:51 AM, Omnifarious
<email address hidden> wrote:
> This shouldn't be considered a 'Wishlist' item.  A browser without https
> support is considered broken, not under-featured.  The same should be
> true for an IM program.
>
> --
> empathy needs to support OTR encryption
> https://bugs.launchpad.net/bugs/296867
> You received this bug notification because you are a direct subscriber
> of the bug.
>
> Status in High-level library and user-interface for Telepathy: New
> Status in Telepathy framework - library: Confirmed
> Status in “empathy” package in Ubuntu: Triaged
> Status in “libtelepathy” package in Ubuntu: Invalid
>
> Bug description:
> Binary package hint: empathy
>
> Hello,
> I just tried empathy (the Intrepid version) and it looked very solid and stable. There were a few minor things that could be improved (e.g. automatically resizing the contact list), but that is not the topic here.
> The reason why I won't switch to empathy from pidgin is the missing OTR support (http://www.cypherpunks.ca/otr/ ). This is a really important feature because no one should read your messages.
> There were others with the same idea (links at the bottom).
> Would be so great if it could support that important encryption standard.
> Thanks for helping out!
>
> Links:
> https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/253452/comments/2
> http://lists.cypherpunks.ca/pipermail/otr-users/2008-September/001479.html
> http://bugs.freedesktop.org/show_bug.cgi?id=16891
>

--
Plato seems wrong to me today.

OTR support is critical to me as well. As there unfortunately is no plugin system this has to be done inside telepathy/empathy.

I concur -- OTR support is needed, for sure. For anyone truly dedicated to Empathy, you could run the AIM proxy or write your own for any chat protocol (could be done easily in Java, libraries for most major chat services already exist.) However, until Empathy supports OTR, I, along with numerous other users, will be "stuck" with Pidgin.

Telepathy & Empathy developers are working on API sketches for encrypted channels and OTR. The mailing list post:

http://lists.freedesktop.org/archives/telepathy/2009-October/003936.html

Upstream is definitely considering this issue; developers know it's important to a lot of people.

Yay! Though, I looked over XTLS and I think it's a horrible idea. The worst part of TLS is x.509 certificates for a whole host of different reasons, and one reason OTR works so well is it adopts the ssh model of verification over the stupid x.509 model which doesn't really work for anything but domain names (and even there is way overly centralized).

But OTR support would be good. One issue though is that there is an ad-hoc method for doing OTR over Jabber that several other clients support. It's almost necessary that they support that method as well, and it's not clear that they intend to.

OTR is a must have feature for Instant Messageing!

I don't agree that this has the same importance as https in browsers (Pidgin does _not_ support OTR out of the box and the devs even refused to pull in the plugin). Still I think the request is reasonable and Empathy should support OTR either natively or using a plugin (which would require a plugin system first...)

I will not use Empathy until it supports OTR.

Empathy might think that they are cute and functional with video and voice chat, but I will never use it if I can not send my admins passwords and system information without worrying about a security breach.

Please include a plug in system in order to accommodate OTR. Secure chats are just as important as HTTPS

I agree that OTR is a must, and will keep using pidgin.

OTR is required by our company, and though I would love to use Empathy, this is a show stopper for me.

Really a bad step from canonical to make empathy the standard client in ubuntu without any kind of encryption. Uhhh...really. OTR is an absolute must have for me and the people I chat with.

Not having OTR support is inexcusable. It's like a browser that doesn't have HTTPS. empathy will stay broken until such time when this bug is fixed.

This is Linux/Gnome, not some bullsh.t commercial application, it is supposed to have encryption, it is supposed to be interoperable. OTR is currently the only standard that works for IM protocols.

Including this obviously broken app in the new ubuntu release is a very bad move, a'la M$.

Okay we get it. OTR is important to everyone and everyone thinks it's bad
that it's the default IM client in Ubuntu. The fact remains that these
comments are of no use in a bug report (neither is this one for that
matter).

The relevant developers are working on this bug and also get the point.
What's done is done, and the consequential issues are being addressed as
best as possible. Please refrain from polluting the bug report with
complaints and declarations that you will use alternate clients. These types
of comments are better suited in a forum or maybe a blog.

I think we are all losing your time requesting a feature that's not likely to be implemented but I too have reverted to pidgin (this bloated and ugly IM client) because of the lacking of ORT support on empathy, and the inability to block a single contact in my contact list.

Bug tracking people, please pull your heads out of your rear-ends!

Encryption support is a **MUST** in an IM program! This is **NOT** a wish-list item! It is a REQUIREMENT!!!

Empathy should not be the default IM client. As an option, it is fine. But the fact remains: EMPATHY IS ***BROKEN***!!! And it will not be used by me until it supports encryption! Preferably OTR.

I use OTR in pidgin all the time,
 it just works! Also with the many MAC Adium Users!!

I would love to see OTR in empathy

I agree with previous posts - encryption is a must and OTR is what all the others do, so it should be supported in the default IM, period.

Its ridiculous how this bug has been set to wont fix :))

Does empathy support any other form of encryption? I understand this could be challenging when you need to support audio and video, but guys, challenging doesnt mean you have to run away from it.

OTR or some sort of encryption at the client side is a must. switching to pidgin temporarily. :)

As I recall, Empathy feels the world should be fixed. This would be
nice, but it is a long ways off. So, yes, they have switched the
default IM to empathy, which has no real plans to support encryption
in the foreseeable future (xmmp crypto someday?), but Pidgin/OTR will
remain installable. Of course, soon enough, video/audio will be
working in Pidgin.

Arg,
Ron

On Mon, Mar 29, 2010 at 1:23 PM, avallark <email address hidden> wrote:
> Its ridiculous how this bug has been set to wont fix :))
>
> Does empathy support any other form of encryption? I understand this
> could be challenging when you need to support audio and video, but guys,
> challenging doesnt mean you have to run away from it.
>
> OTR or some sort of encryption at the client side is a must. switching
> to pidgin temporarily. :)
>
> --
> empathy needs to support OTR encryption
> https://bugs.launchpad.net/bugs/296867
> You received this bug notification because you are a direct subscriber
> of the bug.
>
> Status in Chat app, and Telepathy user interface: New
> Status in Telepathy framework - library: Confirmed
> Status in “empathy” package in Ubuntu: Triaged
> Status in “libtelepathy” package in Ubuntu: Invalid
> Status in “empathy” package in Fedora: Won't Fix
>
> Bug description:
> Binary package hint: empathy
>
> Hello,
> I just tried empathy (the Intrepid version) and it looked very solid and stable. There were a few minor things that could be improved (e.g. automatically resizing the contact list), but that is not the topic here.
> The reason why I won't switch to empathy from pidgin is the missing OTR support (http://www.cypherpunks.ca/otr/ ). This is a really important feature because no one should read your messages.
> There were others with the same idea (links at the bottom).
> Would be so great if it could support that important encryption standard.
> Thanks for helping out!
>
> Links:
> https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/253452/comments/2
> http://lists.cypherpunks.ca/pipermail/otr-users/2008-September/001479.html
> http://bugs.freedesktop.org/show_bug.cgi?id=16891
>
> To unsubscribe from this bug, go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscribe
>

--
Plato seems wrong to me today.

Just to clarify;

1. the fedora guys have marked it as wont-fix
since which we read this comment in the fedora bug tracker:

Jonathan Blandford 2009-11-16 08:23:37 EST

[ Note that upstream has since changed their mind on that, and claims to be
considering how to include OTR. In the short run though, its gotta be pidgin.
]

2. the ubuntu guys have marked it merely as triaged, not wont-fix

Also I note the main advantage of OTR is that it supports end-to-end encryption even when the transport does not support encryption.

In the mean time I'm the cause of Ubuntu being dissed by my associates because Pidgin doesn't support video or audio chat, and I'm certainly not going to use Empathy in it's current state.

Bump for great OTR justice!

Le gasp! Hopefully this will clear things up for people that think this isn't on the to-do list

Agree that empathy is unusable without OTR.

Empathy is totally worthless without otr support. To subsitute it with pidgin is totally annoying because I can not speak crypted with non experienced ubuntu users. Wondering why this wasnt the first people implemented, open source software should provide those features per default enabled to protect privacy and help unexperienced users in nowadays time!!!

Empathy looks really good, but messages from my friends are just:

?OTR:AAIKAAAAwGdCcqGnCMxPZGOkEr6VJPgbC10+PzfztAU/+xoKNxiFIsQyyYZx2TAiUo+ey3soBid9+sI8OIMF9ypbCWudRJEv...

not cool :-(

+1

Pidgin has it, empathy should, too.

those +1 comments are of no use there, could you refrain from adding those?

So, this is triaged and wishlisted, is anyone interested in implementing it? I am.

I agree with the developers' general concerns regarding OTR, it doesn't work well, but it works with users of common IM clients on all operating systems. I have a lot of experience with its' funkiness

The most important use of OTR for serious IT? Giving users secure passwords, or asking them for a new password for a service which must be reset by an admin in the shell.

Second most important? Talking about competetive business ideas that might compete with companies who own and operate huge IM networks. It shouldn't be possible to operate a dedicated, physically secure server to have a secure conversation.

The deniability aspect is not the most important thing to me, I'm not sure a mainstream product needs to AIM FOR giving users deniability, as this implies intentional protection of wrongdoing, but it is essential to be able to secure at least portions of a conversation, selectively, and in fact OTR's PGP-based system is effective at removing deniability when that is intended, so not just encryption, but signature identity.

Anyway, I'm interested in helping to implement this feature if noone currently is. Pidgin is, in fact, a flaky pile of crud that evolved from gaim which evolved from who knows what, paper cups and string. The biggest problem I have with Pidgin is that it sometimes just stops accepting pastes, so that's been enough for me to decide that OTR is no longer my favorite feature, though still an important one.

That Empathy was flung onto Ubuntu users with reduced functionality and arbitrary opposition to reproducing commonly used functionality, however, is inescapably ironic to me. ;)

Whups..

Shouldn't be *necessary* to run a server to have secure communications, absolutely should be possible. :)

yeah .. finally .. someone hear our wishlist :)

In these times, end-to-end encryption is really a must. Even Google, with switching to https, is starting to realize that security is paramount. I find it shocking to read that this is lacking in the Ubuntu default client.

Things like this: http://live.gnome.org/Empathy/FAQ#Will_Empathy_have_OTR_.28.22Off_The_Record.22.29_support.3F
Concern me greatly. While it would be wonderful to have the end-to-end communications secured natively in the protocol, the sad truth is that we're never going to get an update to the legacy protocols to support it.

And no, the answer isn't "Just move to another instant message platform"
One of the advantages of tools like Empathy is the ability to support a multi-service situation. It allows me to run a single app, and connect to any service I need.

The arguments that, "Pidgin supports it, you should too." don't really hold much water. I go back to the requirements that drove me to OTR in the first place.

Encryption: No one else can read your instant messages.

Authentication: You are assured the correspondent is who you think it is.

Deniability: The messages you send do not have digital signatures that are checkable by a third party. Anyone can forge messages after a conversation to make them look like they came from you. However, during a conversation, your correspondent is assured the messages he sees are authentic and unmodified.

Perfect forward secrecy: If you lose control of your private keys, no previous conversation is compromised.

So, to me it's as simple as that. Please find a way to get the above services into Empathy. I personally would suggest the use of OTR as there are already libraries developed you can use to use.

Nate - do you want to help with the implementation?

I've volunteered to do this work, but it is taking some time to acclimate myself to the codebase. The Empathy core developers don't seem particularly interested in this feature, so I think those of us stomping our feet oughta pitch in.

The architecture is really pretty simple, the meat seems to be in a Handler component which is designed to be able to be supplanted, afaict. I just haven't decided how to do this with the least intrusion into already-working code.

Emphaty needs OTR support, EVEN CLIMM has it.

I do not understand why it is not implemented, and they find excuses after excuses?

I wish you good luck Justin Alan Ryan, and I hope you make it.

Quote:
"The biggest problem I have with Pidgin is that it sometimes just stops accepting pastes, so that's been enough for me to decide that OTR is no longer my favorite feature, though still an important one." - I have the same issue but only on yahoo, when I do some paste it wont go thru, but on jabber, and icq works perfectly.

"One of the advantages of tools like Empathy is the ability to support a multi-service situation. It allows me to run a single app, and connect to any service I need."

So does pidgin. And it supports OTR.

Heck, I cannot even figure out how to have Empathy support multiple
statuses! One status, for all accounts, or perhaps that is just from
the way Ubuntu integrated it. Some accounts I want to be invisible, I
don't want to have a flippant status for work, etc.

Ron

On Wed, Jun 16, 2010 at 2:25 PM, Mathew Hennessy <email address hidden> wrote:
> "One of the advantages of tools like Empathy is the ability to support a
> multi-service situation. It allows me to run a single app, and connect
> to any service I need."
>
> So does pidgin.  And it supports OTR.
>
> --
> empathy needs to support OTR encryption
> https://bugs.launchpad.net/bugs/296867
> You received this bug notification because you are a direct subscriber
> of the bug.
>
> Status in Chat app, and Telepathy user interface: Confirmed
> Status in Telepathy framework - library: Confirmed
> Status in “empathy” package in Ubuntu: Triaged
> Status in “libtelepathy” package in Ubuntu: Invalid
> Status in “empathy” package in Fedora: Won't Fix
>
> Bug description:
> Binary package hint: empathy
>
> Hello,
> I just tried empathy (the Intrepid version) and it looked very solid and stable. There were a few minor things that could be improved (e.g. automatically resizing the contact list), but that is not the topic here.
> The reason why I won't switch to empathy from pidgin is the missing OTR support (http://www.cypherpunks.ca/otr/ ). This is a really important feature because no one should read your messages.
> There were others with the same idea (links at the bottom).
> Would be so great if it could support that important encryption standard.
> Thanks for helping out!
>
> Links:
> https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/253452/comments/2
> http://lists.cypherpunks.ca/pipermail/otr-users/2008-September/001479.html
> http://bugs.freedesktop.org/show_bug.cgi?id=16891
>
> To unsubscribe from this bug, go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscribe
>

--
Plato seems wrong to me today.

@Justin Ryan: I am interested in helping out with this feature. Email me with the current status; I'm eager.

is OTR still not supported?

Really? Still no Support ...

still no OTR support?! :(

Yeah, that's the only reason why I still use Pidgin.

On Wed, Aug 4, 2010 at 4:46 PM, frederyk <email address hidden> wrote:

> still no OTR support?! :(
>
> --
> empathy needs to support OTR encryption
> https://bugs.launchpad.net/bugs/296867
> You received this bug notification because you are a direct subscriber
> of the bug.
>
> Status in Chat app, and Telepathy user interface: Confirmed
> Status in Telepathy framework - library: Confirmed
> Status in “empathy” package in Ubuntu: Triaged
> Status in “libtelepathy” package in Ubuntu: Invalid
> Status in “empathy” package in Fedora: Won't Fix
>
> Bug description:
> Binary package hint: empathy
>
> Hello,
> I just tried empathy (the Intrepid version) and it looked very solid and
> stable. There were a few minor things that could be improved (e.g.
> automatically resizing the contact list), but that is not the topic here.
> The reason why I won't switch to empathy from pidgin is the missing OTR
> support (http://www.cypherpunks.ca/otr/ ). This is a really important
> feature because no one should read your messages.
> There were others with the same idea (links at the bottom).
> Would be so great if it could support that important encryption standard.
> Thanks for helping out!
>
> Links:
> https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/253452/comments/2
> http://lists.cypherpunks.ca/pipermail/otr-users/2008-September/001479.html
> http://bugs.freedesktop.org/show_bug.cgi?id=16891
>
> To unsubscribe from this bug, go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscribe
>

--
Michael

http://live.gnome.org/Empathy/FAQ#Will_Empathy_have_OTR_.28.22Off_The_Record.22.29_support.3F:
"Will Empathy have OTR ("Off The Record") support?

We think that the correct approach to secure end-to-end communications is to support it natively in the protocol. There is ongoing work on standardising secure end-to-end messaging in Jingle (using XTLS and Jingle) and we plan to support this in the future (current API sketch).

We don't think that layering encrypted messaging on top of protocols that don't support it is very useful, since such extensions won't, by definition, work in native protocol clients, and any clients that do go out of their way to support encrypted messaging might as well do so using a native protocol.

Nevertheless there is a bug report talking about OTR support, and a comment dated October 2009 is talking about API sketches for encrypted channels and OTR. <https://bugzilla.gnome.org/show_bug.cgi?id=545347#c12> (please do not submit "me too" comment in the bug report, thanks)."

could people stop adding comment on that bug? the issue is confirmed and the bug will be updated when that change, no need to add "still no otr" comments

this bug is misclassified as "wishlist": upon introduction empathy was supposed to replace pidgin, it is unable to do so because crucial functionality is missing - thus it is REGRESSION and should be treated as such.

I can confirm that there ought to be some sort of standardized encryption available in empathy. It appears that the upstream developers have considered this. I suppose it's just a matter of waiting at this point

Yes ... this is important imho

On Wed, Oct 27, 2010 at 11:50 PM, Allen Lowe <email address hidden> wrote:
> I can confirm that there ought to be some sort of standardized
> encryption available in empathy. It appears that the upstream developers
> have considered this. I suppose it's just a matter of waiting at this
> point
>
> --
> empathy needs to support OTR encryption
> https://bugs.launchpad.net/bugs/296867
> You received this bug notification because you are a direct subscriber
> of the bug.
>

We still do not have this?
I want to program it. Please one of the developers contact me. I will work this and I will code it, I will also make sure that all of my code meets your exact specifications. I am serious.
 I am getting my degree in software engineering, and I already have a good grasp of Python.

We need to have this by Natty. That would be awesome.
> We still do not have this?
> I want to program it. Please one of the developers contact me. I will work
this and I will code it, I will also make sure that all of my code meets
your exact specifications. I am serious.
> I am getting my degree in software engineering, and I already have a good
grasp of Python.
>
> --
> empathy needs to support OTR encryption
> https://bugs.launchpad.net/bugs/296867
> You received this bug notification because you are a direct subscriber
> of the bug.
>
> Status in Chat app, and Telepathy user interface: Confirmed
> Status in Telepathy framework - library: Confirmed
> Status in “empathy” package in Ubuntu: Triaged
> Status in “libtelepathy” package in Ubuntu: Invalid
> Status in “empathy” package in Fedora: Won't Fix
>
> Bug description:
> Binary package hint: empathy
>
> Hello,
> I just tried empathy (the Intrepid version) and it looked very solid and
stable. There were a few minor things that could be improved (e.g.
automatically resizing the contact list), but that is not the topic here.
> The reason why I won't switch to empathy from pidgin is the missing OTR
support (http://www.cypherpunks.ca/otr/ ). This is a really important
feature because no one should read your messages.
> There were others with the same idea (links at the bottom).
> Would be so great if it could support that important encryption standard.
> Thanks for helping out!
>
> Links:
> https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/253452/comments/2
> http://lists.cypherpunks.ca/pipermail/otr-users/2008-September/001479.html
> http://bugs.freedesktop.org/show_bug.cgi?id=16891
>
> To unsubscribe from this bug, go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscribe

I think this qualifies for a papercut therefore I added it. Please some one confirm this.

Please do not expect a patch for this by Natty, I will not be able to dedicate serious time to this until my schedule clears up. I have it slated for serious work, not just tinkering and learning starting on the 18th of January 2011. During that time I have given myself nearly 15 days to work solely on the patch. I have been speaking with the telepathy developers to get a better understanding of the best way to patch the bug. I am also looking over the Telepathy / OTR code, but it will take me a little to familiarize myself and to decide with the Telepathy developers the best approach. Hopefully in a few weeks I will have a plan to present to them. I am knew to the Open Source game, but I am eager to contribute.

If I submitted a patch and it got reviewed and approved prior to feature freeze then the patch would be committed correct? I see the release date for Natty is April 28, 2011, but when would the feature freeze date be? It is possible depending on how those 15 days go that I could make Feature Freeze.
I also had a question about sponsorship, if I create a branch and then submit it with a correct debdiff, then someone will review it and thus sponsor me at that time, automatically?
Finally a progress update for today, I have Bazaar updated and code downloaded to include OTR. I have also taken all of the advice of the telepathy developers and bookmarked several pages, I have also got accounts for GNOME's and FreeDesktop's Bugzillas.

Natty Release Schedule is here:
https://wiki.ubuntu.com/NattyReleaseSchedule

Feature Freeze seems to be on February 24th.

> If I submitted a patch and it got reviewed and approved prior to feature freeze then the patch would be committed correct?

If upstream agrees on the way the fix is done yes

> I see the release date for Natty is April 28, 2011, but when would the feature freeze date be?

the reply to that was in the previous comment

> I also had a question about sponsorship, if I create a branch and then submit it with a correct debdiff, then someone will review it and thus sponsor me at that time, automatically?

Either use a debdiff and subscribe the ubuntu-sponsors team or do a merge request on launchpad

All, I have already been speaking with the Telepathy developers, there is certianly no way the work can be completed by Natty, but I think I will have a patch by or before 11.10. I am currently gathering details for my proposal, which will get tweaked and then be drafted into a Spec for Telepathy. Once that is correct and complete, I will begin to code the patch according to the Spec. Telepathy developers are taking care of me; so I will not need a sponsor; as they are my mentors, reviewers, and sponsors. I will be posting back here with updates about once a month, all other updates will be made via the mailing-list for Telepathy and/or #telepathy @ freenode.

This constitutes a feature request and is thus outwith the definition of a papercut.

If, after Pidgin, Emphaty is also going to support this, aMSN should support this too in my opinion. See https://bugs.launchpad.net/ubuntu/+source/amsn/+bug/216872 for "Yes, this affects me."

Pander, I do not see the relation between this bug and aMSN, does aMSN use Telepathy for it's back-end? The OTR patch for Empathy is actually being applied by providing OTR support in Telepathy, which is the back-end for Empathy.

For updates on this bugs status please watch these two bugs: http://bugs.freedesktop.org/show_bug.cgi?id=16891 and https://bugs.freedesktop.org//show_bug.cgi?id=29904. 29904 will be the most active initially well the end-to-end security spec is ironed out enough to support OTR and hopefully future protocols. Once activity begins on 16891, we should be on the way to full OTR support for Telepathy/Empathy.

 I just wanted to mention that this is a critical bug for people who lives in autocratic regimes like Iran whose Internet activities is constantly under supervision. Specially now that people are using virtual medias to organize their event. Several people has been arrested in Iran during past year because their unencrypted emails was intercepted by the authority. I don't think there's an issue more critical than decreasing the number of prisoners of conscience.

Clearly this is a really sort after feature why is it being ignored? Why is there so much resistance to OTR?

David, their is no more resistance among the developers. I am working on it, but for this month my time is still limited. But by mid May I will have a lot more time to dedicate to this project. SO please stay hopeful, OTR is coming to Empathy I promise.

Thanks ... lots of people want OTR in empathy.

Steve

On Mon, Apr 11, 2011 at 9:14 AM, Jordan Farrell
<email address hidden> wrote:
> David, their is no more resistance among the developers. I am working on
> it, but for this month my time is still limited. But by mid May I will
> have a lot more time to dedicate to this project. SO please stay
> hopeful, OTR is coming to Empathy I promise.
>
> --
> You received this bug notification because you are a direct subscriber
> of the bug.
> https://bugs.launchpad.net/bugs/296867
>
> Title:
>  empathy needs to support OTR encryption
>
> To unsubscribe from this bug, go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscribe
>

Jordan,

Is there any hope to get it in the final release of 11.04? That would be awesome!! The first Ubuntu release with OTR in empathy I'll be switching my business and family over to Ubuntu.

Thanks for your work on this,
David

Actually, it would be impossible to have made the cut for 11.04 just
because the day I started the project I would have only had two weeks
to get something pushed through and then approved for the code freeze
date. However I am shooting for 11.10 and I now have two more people
that will be helping me with it. The major push for the project will
begin in mid-May and hopefully our code will be accepted before 11.10.
But initially their may only be support for Google and MSN, possibly
Yahoo. The rest will follow those and Google and MSN should be
completed about the same time. The reason for MSN being supported so
early is that the connection manager for it was programmed in Python,
which is the language I have more experince in.

On Thu, Apr 14, 2011 at 5:34 AM, mitzip <email address hidden> wrote:
> Jordan,
>
> Is there any hope to get it in the final release of 11.04? That would be
> awesome!! The first Ubuntu release with OTR in empathy I'll be switching
> my business and family over to Ubuntu.
>
> Thanks for your work on this,
> David
>
> --
> You received this bug notification because you are a direct subscriber
> of the bug.
> https://bugs.launchpad.net/bugs/296867
>
> Title:
>  empathy needs to support OTR encryption
>
> Status in Chat app, and Telepathy user interface:
>  Confirmed
> Status in One Hundred Paper Cuts:
>  Invalid
> Status in Telepathy framework - library:
>  Confirmed
> Status in “empathy” package in Ubuntu:
>  Triaged
> Status in “libtelepathy” package in Ubuntu:
>  In Progress
> Status in “empathy” package in Fedora:
>  Won't Fix
>
> Bug description:
>  Binary package hint: empathy
>
>  Hello,
>  I just tried empathy (the Intrepid version) and it looked very solid and stable. There were a few minor things that could be improved (e.g. automatically resizing the contact list), but that is not the topic here.
>  The reason why I won't switch to empathy from pidgin is the missing OTR support (http://www.cypherpunks.ca/otr/ ). This is a really important feature because no one should read your messages.
>  There were others with the same idea (links at the bottom).
>  Would be so great if it could support that important encryption standard.
>  Thanks for helping out!
>
>  Links:
>  https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/253452/comments/2
>  http://lists.cypherpunks.ca/pipermail/otr-users/2008-September/001479.html
>  http://bugs.freedesktop.org/show_bug.cgi?id=16891
>
> To unsubscribe from this bug, go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscribe
>

I've been tracking this bug over the years and am very happy to hear momentum is gaining. I'd humbly like to put forward a use case that may or may not affect how the implementation is performed.

I regularly use OTR via Pigdin to securely communicate from a jabber account through a private jabber server then through a IM gateway to many AIM, MSN and Yahoo accounts (required by work). This is one of the areas where OTR shines as it is protocol independent. One of the reasons that OTR managed to gain popularity is its entire protocol is wrapped in the text that is transferred between users (read as, "it just works"). It manages to avoid all sorts of complexity and issues by staying entirely out of the existing IM protocols including any sort of server side changes or support.

Adding encryption into the jabber protocol (XTLS/Jingle) doesn't help unless there are encryption and federation standards that are supported across all IM protocols and i'd imagine that would be harder to get implemented than this bug. =)

In response to Mark M, I think this is why PGP also took off and is more widely known than S/MIME.

@Jordan: There are a lot of us OTR junkies waiting in the wings to congratulate you when you get this done. I'd really like to use Empathy on my Gnome 3 system, but sometimes I really need OTR and it's not an option not to use it. When you have code that can be tested, I'd be very happy to give it a try and let you know if I find any bugs.

@ZAP: Thanks for volunteering. I will let you know when I have something concrete. I am still tinkering and there have been some changes to implement OTR only rather than accommodating XTLS too. One thing I have to be careful of is that OTR is considering dropping support for Python-OTR, which could be a problem for me. But for the Google IM and Jabber this will not be a problem. João Paulo Rechi Vita is helping to get the spec right and will be writing the code for the Gabble CM.

@Jordan: It's great to know someone is working on it - I'm available for testing too, as unfortunately I have no real Python coding experience.

As for python-OTR, [1] has released the first beta of the pure python implementation protocol, it doesn't seem the authors are dropping the support for a python bridge, but it's true, they mention the "deprecated" C-style bindings that were available before.

[1] http://python-otr.pentabarf.de/

Hi Jordon,

You indicated in https://bugs.freedesktop.org/show_bug.cgi?id=16891 that there would be a monthly update.

And earlier you indicated that people should watch: https://bugs.freedesktop.org/show_bug.cgi?id=16891 and https://bugs.freedesktop.org//show_bug.cgi?id=29904

Do you have a code repository that someone can checkout and assist you with thing can see?

Thanks,
Anand

Hi Anand,
I have pulled back work on a pythonic fix for the Telepathy OTR situation. But before I did that João Paulo Rechi Vita started advancing my work and has since completed all of the spec work for OTR. He is now building the Telepathy Gabble OTR code and will then finish the Empathy hooks that will be needed for OTR support. Gabble is the Connection manager for Jabber and Google Chat. He hopes to have all of his work wrapped up by the end of this month. His website is here: http://jprvita.wordpress.com/

He is a more seasoned developer than I and he was able to communicate with the Telepathy Developers better and faster than I was able to. Sorry for bugging out, but the pace of his work far out paced my work. But I am still watching developments for this project and will ensure it gets completed, but I am pretty sure João has got it.

Once his work becomes a solid spec I may still go back and finish the Python version which will add support for MSN. I also think that porting his code from Gabble to Haze should not be too difficult, which should round out the the IM OTR support.

It seems that in spite of the good work of Jordan and other volunteers, development of this widely desired feature is falling through the cracks. Will it be possible to regroup and finish this work if jprvita is not available to help?

Jedna Dvatři, I am willing to push forward on OTR again if need be. First I am going to try to reach out to Jprvita one more time.
This is what I know right now which is rather out dated and it does show that according to his time-line it should be done, but deadlines can be hard when dealing with so many peices of code that need to be implemented.
https://live.gnome.org/JoaoPauloRechiVita_Telepathy_OTR
But I am also pretty sure that the code for Telepathy.Gabble was completed to support OTR. I think he was bogged down when he started trying to integrate it into Empathy.

Jedna et all, I have found that the code for implementing OTR in Telepathy.Gabble is complete as shown here:
https://gitorious.org/jprvita-repos/telepathy-gabble/blobs/otr/src/im-channel-otr.c
https://gitorious.org/jprvita-repos/telepathy-gabble/blobs/otr/src/im-channel-otr.h
Which will mean support for OTR in Google chat, Jabber, XMPP, and FaceBook. It is just the work for integration into Empathy that needs to be completed, I am waiting to here back from Jprvita on how that is going.

+1

I am tired of pidgin and very interested in Empathy. But i depend on OTR, so i cannot switch.

I know 5 others in my local geekosphere who have the same.

OTR is unaware of the layer below. That makes it clumsy or unelegant to implement for an individual protocol like XMPP. But at the same thime this is a strength: a multi-protocol IM client with OTR has end-to-end security with the same key pair on all protocols used. And that is elegant again :-) Calling that "broken by design" is a narrow view and missing the point of OTR.

obviously a wasted effort it seems, because the programmer disappeared.

all went fine until july 27,2011 when something snapped, and no more updates or signs of life from the programmer (jprvita)

he kept posting on the blog and even met with telepathy programmers in berlin, but it seems about other stuff no more work on this project, and once again there is need for a new person to continue it.

can we have OTR in precise milestone ?

This bug is not in relation ??
Please include support for RFC6189 (ZRTP): https://bugs.launchpad.net/empathy/+bug/816163

@ Khairul Aizat Kamarudzzaman (fenris): At this moment i don't see OTR in Emapthy's preference :-(

Most of the work for this is complete, but project has stalled. Perhaps if I have time again latter I can get a hack together.

That sounds great! It's really needed. Let us know if we can assist somehow

Can some paypal help? I'm clean out of time...
Is the nearly-done code committed anywhere?

@Sam Liddicott as I stated before the code is hosted here:
https://gitorious.org/jprvita-repos/telepathy-gabble/blobs/otr/src/im-channel-otr.c
https://gitorious.org/jprvita-repos/telepathy-gabble/blobs/otr/src/im-channel-otr.h
The code for OTR is mostly done for telepathy-gabble that is; but there is no front end code for empathy to actually implement this code. That is where the project was dropped.

Can that be merged for now and then the Empathy UI can be worked on?

Is jprvita needed for the merge?

@Danny Piccirillo: jprvita is not needed for a merge because it is Git, any one could just clone it. The code has to be merged into main-line telepathy and that has to be approved by the lead telepathy developers. I don't know how stable that code is, but they will not accept unstable code into the mainline. I could talk with them latter this week and see if they would merge it, but still what good would it do with no way to use it?

This bug and the zRTP one are crucial for privacy and security reasons yet they are already 3.5 and 2.5 years old, respectively. Would it be possible to go crowdfunding or something similar in order to speed up the addition of OTR and zRTP to telepathy and empathy? It would be great to have out of the box encrypted chat/voip/video on Ubuntu, specially when the Ubuntu phone comes.

@Jordan Farrell
>I could talk with them latter this week and see if they would merge it, but still what good would it do with no way to use it?

There are also some requests regarding otr for kde-telepathy. But the the delopers could only start to implement it in kde-telpathy after the integration of otr happend in telepathy.

By the way, have you talked with the the telepathy developers? Any response?

@Ronny Rabuzarus, I did not discuss OTR further with the developers since there was no way to use it at the time. They are always aviable via #telepathy on freenode IRC. Keep me updated if kde-telepathy gets OTR, I have KDE as one of my desktops and that would be a good reason to use KDE more often!

Update from telepathy mailing list: http://lists.freedesktop.org/archives/telepathy/2012-June/006122.html

I love empathy, but it lacks a off the record plugin or encryption like in adium or pidgin,,,,it is a shame, as empathy is such a great messaging client.

OK, soon gsoc will start again. Maybe it can used to find someone who will implement OTR in telepathy. Does anybody has good connection to telepathy/gnome/fdo developers to ask if they would provide a mentor for such a project?

What really annoys me about the otr integration in telepathy is the lack of information you get. People (e.g. jprvita, McVittie) come and go. Someone never hear something again about the project and the status. There are some questions in my head. Something like, is the approach of jpvita usefull for furher devlopment. If it's useful, what needs to be done to finish it?
I think it would be useful to have a wiki page with such kind of informations. I can't believe that nobody is willing to code on this, so the question seems to be what keeps developers away from coding on this or vice versa what incentives must be given that someone is willing to work on otr implementation.

P.S. Don't get me wrong I don't want to blame anybody with this post. It presents just a couple of questions which have risen in my head.

I would love to jump in and tackle this: I'm a developer, I want to switch to Empathy.

I know lots of developers work on things they care about in their free time; I can't afford to do that right now. Without turning this into a classified ad, I'll simply suggest that anyone interested in helping me with this (or talking to me more! I like meeting people anyway) email me via my profile.

Mods: if this is an inappropriate comment, I sincerely apologize and will never do it again. I can make this happen if a lot of people help me, and it seems there are a lot of people who care and use this forum to stay up to date.

My idea comes one day late as the deadline was yesterday :(

OpenITP is looking for projects to fund. Eligible projects must work on improving users' ability to circumvent censorship and surveillance on the Internet. So OTR support for Empathy fits perfectly!

http://openitp.org/?q=openitp_first_round_of_2013_project_funding_now_open_for_proposals

What do you think? Should we keep one eye on this kind of fundings and get someone paid to do it?
I have no idea about who would be willing to do it but I'm sure you guys can find one person in the community.

It might be worth asking if we can get an exension on the deadline

I'm willing to do it! I think it's worth asking, Pablo.

You could also consider a Kickstarter campaign. Don't expect a fortune but maybe enough to compensate your efforts.

Yesterday I sent OpenITP an email regarding a possible deadline extension but they haven't answered yet.
I'll let you know if they answer me.

No deadline extension is possible, they have received a lot of proposals.

They told me that there will be another funding round this year.

Do we have someone who can commit to doing this work if funding shows
up? I'm happy to help promote a kickstarter campaign.

On Thu, Apr 4, 2013 at 11:55 AM, Pablo Castellano <email address hidden> wrote:
> No deadline extension is possible, they have received a lot of
> proposals.
>
> They told me that there will be another funding round this year.
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/296867
>
> Title:
> empathy needs to support OTR encryption
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscriptions

--
http://about.me/justizin

It may be worth approaching the guy who did it for pidgin.

An alternative might be to write a shim library so that pidgin plugins
would work with empathy.

On Thu, Apr 11, 2013 at 10:39 PM, Justin Alan Ryan <
<email address hidden>> wrote:

> Do we have someone who can commit to doing this work if funding shows
> up? I'm happy to help promote a kickstarter campaign.
>
> On Thu, Apr 4, 2013 at 11:55 AM, Pablo Castellano <email address hidden>
> wrote:
> > No deadline extension is possible, they have received a lot of
> > proposals.
> >
> > They told me that there will be another funding round this year.
> >
> > --
> > You received this bug notification because you are subscribed to the bug
> > report.
> > https://bugs.launchpad.net/bugs/296867
> >
> > Title:
> > empathy needs to support OTR encryption
> >
> > To manage notifications about this bug go to:
> > https://bugs.launchpad.net/empathy/+bug/296867/+subscriptions
>
>
> --
> http://about.me/justizin
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/296867
>
> Title:
> empathy needs to support OTR encryption
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscriptions
>

Could someone create feature request funding at https://www.catincan.com/

Might there be new interest in seeing this one through, in light of the recent revelations?

I think https://en.wikipedia.org/wiki/2013_mass_surveillance_scandal should be a good motivator to speed up support for OTR.

pidgin was written by problem solvers
empathy is written by architects
they have different itches to scratch.

Those who want encryption still use pidgin. It still works.

On Tue, Jul 23, 2013 at 4:20 PM, Pander <email address hidden> wrote:

> I think https://en.wikipedia.org/wiki/2013_mass_surveillance_scandal
> should be a good motivator to speed up support for OTR.
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/296867
>
> Title:
> empathy needs to support OTR encryption
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscriptions
>

@sam-liddicott Empathy does not need to support OTR, because *there are no* alternatives that do. Empathy needs to support OTR, because *there are* alternatives that do. It is state of the art to support OTR and Empathy not including it is backward.

Empathy is the instant messenger included the GNOME desktop which ships as a default for many modern distributions, so Empathy is itself a default. An user could educate oneself about this default, notice this backwardness and replace Empathy with a less backward instant messenger. Educating oneself about the security of the installed instant messenger requires but examination that not all users may be able to perform, because of the complexity of the topic. So especially the less computer literate users, who would benefit the most from it will not get covered by OTR.

So this boils down to a question of defaults: Should the default be to ship an instant messenger with OTR-support with GNOME desktop? I think recent revelations have shown that "security by default" should have been targeted wherever possible for a long time now.

Maybe the GNOME folks would share a bit of their $20,000 that they raised to enhance security and privacy for the GNOME desktop? https://www.gnome.org/news/2013/07/gnome-raises-20000-to-enhance-security-and-privacy/

@Bengt Lüers
I agree with all your points.
But none of the empathy dev want to do it.
No-one who is capable of doing it wants to do it.
I was just trying to summarise why that might be the case.

Bounty is now at 400 USD. Make that 4000 USD and someone with the required skills can spend a month between two jobs collecting it. Sadly, FreedomSponsors seems quite unpopular, so that people in the right position might not see the tender offer. Are there perhaps other platforms one could advertise for it? Maybe freelancing sites or so?

Thi bug depend of thi one:
https://bugs.freedesktop.org/show_bug.cgi?id=16891
There are crownd funding project with one or two student who work on. The find are to 450 $
http://freedomsponsors.org/core/issue/333/telepathy-should-support-otr-encryption

https://freedomsponsors.org/core/issue/333/telepathy-should-support-otr-encryption

$942

Maybe someone is willing to spend some time on this. I tried at a point to gather some support, but well the core developers of empathy believe OTR is a bad idea, and well jprvita is not willing to continue with the project, wolfrage seems to have disappeared and so on. Anyway, trolling won't help, just a reminder that the bounty is now higher.

I am sorry if you feel that I have disappeared. I did not intend it that way. I did what I could to help. The developers of empathy stated that they could not implement OTR unless they had a spec first. They also forced the issue that my spec had to include XTLS. I am only a novice programer and certianly not a spec writer, I also volunteered for far more then I could handle hoping that OTR would be a welcome addition to Telepathy. Unfortunately even after the Spec was ready for review, it never recieved a review. I also was working in Python as that is what I program in, and Telepathy removed support for Python around this same time. JPRvita told me that he would take my spec and complete it for XTLS and that he could program in C. For a long time it looked like this would work. JPRvita had a solid spec, but as happend with me the spec was never reviewed, I am not sure what happened to him and his GSoC XTLS/OTR Spec for Telepathy.

References:
http://jprvita.wordpress.com/2011/07/17/otr-over-xmpp-on-telepathy/
http://lists.freedesktop.org/archives/telepathy/2011-June/005583.html

Honestly my take is that this is a developer issue, they don't want OTR and no one can force it upon them.

So I got over it and I use Pidgin.

FYI for "cbris" or "ScotlandHacks" you should use jprvita's Spec it was much further along than mine, it is here: https://gitorious.org/jprvita-repos/telepathy-gabble/source/

I think they are waiting for a "clean" well specified standard maybe with "nsa approved" security ;-)

Updated URL for JPRvita's Spec: https://gitorious.org/jprvita-repos/telepathy-gabble/

Please bump the priority for this. If you can't add OTR support then please give instructions how to add a plugin. I've been waiting patiently for several years for this support. I was thrilled to see an IM client get audio and video support on Linux. Now it's time to get encryption. We have the evil US empire spying on human rights activists, protesters, etc and by not supporting encryption we're enabling that spying.

I also feel that Canonical should be funding this or providing developers since they made it the default for Ubuntu and exposed all their users to sending cleartext personal info over the internet.

From comments when this first arose, the empathy developers were not
interested in something that was interoperable with OTR, but might,
someday, be interested in their own unique snowflake of an encryption
system.

I'm not a coder, but OTR is out there, works, and plays well with others.
They really ought to make it work in empathy, one way or another. Perhaps
there is a new bug that people might pay attention to, given the emphasis
on crypto these days?

On Fri, Apr 18, 2014 at 3:23 PM, WhyteHorse <email address hidden> wrote:

> I also feel that Canonical should be funding this or providing
> developers since they made it the default for Ubuntu and exposed all
> their users to sending cleartext personal info over the internet.
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/296867
>
> Title:
> empathy needs to support OTR encryption
>
> Status in Chat app, and Telepathy user interface:
> Confirmed
> Status in One Hundred Papercuts:
> Invalid
> Status in Telepathy framework - library:
> Confirmed
> Status in “empathy” package in Ubuntu:
> Triaged
> Status in “libtelepathy” package in Ubuntu:
> Confirmed
> Status in “empathy” package in Fedora:
> Won't Fix
>
> Bug description:
> Binary package hint: empathy
>
> Hello,
> I just tried empathy (the Intrepid version) and it looked very solid and
> stable. There were a few minor things that could be improved (e.g.
> automatically resizing the contact list), but that is not the topic here.
> The reason why I won't switch to empathy from pidgin is the missing OTR
> support (http://www.cypherpunks.ca/otr/ ). This is a really important
> feature because no one should read your messages.
> There were others with the same idea (links at the bottom).
> Would be so great if it could support that important encryption standard.
> Thanks for helping out!
>
> Links:
> https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/253452/comments/2
>
> http://lists.cypherpunks.ca/pipermail/otr-users/2008-September/001479.html
> http://bugs.freedesktop.org/show_bug.cgi?id=16891
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscriptions
>

--
Plato seems wrong to me today.

> Now it's time to get encryption
> I also feel that Canonical should be funding
> They really ought to make it work in empathy

Because open source is all about freedom. The freedom to demand that other people should do free work for you.
Sorry, these comments are not helpful.

I'm not complaining about people who spend time auditing security software and finding these bugs making their discoveries known - even if they are less than polite while doing so. (I myself am taking maximum advantage of the opportunity to poke fun at ridiculous or borderline fraudulent statements I've spotted during my literature review - it's one of the few redeeming features of writing a PhD thesis.) They are just as crucial as and even less appreciated than the developers. Certainly if I get round to writing this code it will need their attention.

What I don't like are people who do nothing except repeat something we already know ("This software doesn't do X. People want it to do X.") but louder and more rudely.

I think people are trying provoke a post-Snowden comment from the devs or
Ubuntu.

This uncomfortable discussion has an important social role in establishing
or restoring or writing off credibility.

Pre-Snowden the official position seemed incredible, but potentially
honestly held.

It may even have been part of the Ubuntus baffling but consistent long term
strategy of replacing working software with half finished software.

But post-Snowden we see an opportunity to discover if they are accidental
helps or wilful supporters of the evil empire.

Thus are reputations forged.

Sam
On 28 Apr 2014 20:15, "Chris Kerr" <email address hidden> wrote:

> I'm not complaining about people who spend time auditing security
> software and finding these bugs making their discoveries known - even if
> they are less than polite while doing so. (I myself am taking maximum
> advantage of the opportunity to poke fun at ridiculous or borderline
> fraudulent statements I've spotted during my literature review - it's
> one of the few redeeming features of writing a PhD thesis.) They are
> just as crucial as and even less appreciated than the developers.
> Certainly if I get round to writing this code it will need their
> attention.
>
> What I don't like are people who do nothing except repeat something we
> already know ("This software doesn't do X. People want it to do X.") but
> louder and more rudely.
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/296867
>
> Title:
> empathy needs to support OTR encryption
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/empathy/+bug/296867/+subscriptions
>

I just logged in to say thank you! I am so happy to see this eventually finished. Thank you so much. :)
Hope to see this soon merged into mainline. Thanks again :)