More privacy friendly defaults #22

New Issue

Closed

opened 2022-02-07 20:20:58 +00:00 by decentral1se · 2 comments

decentral1se commented 2022-02-07 20:20:58 +00:00

Owner

Copy Link

• Do we really need INFO level in https://git.coopcloud.tech/coop-cloud/matrix-synapse/src/branch/main/log.config.tmpl? I don't think so but I am not sure. Setting to WARN/ERROR would be better, I guess.

• add option for pruning redacted messages in f5275b2384/homeserver.yaml.tmpl (L466-L471)

• add options for server level retention periouds in f5275b2384/homeserver.yaml.tmpl (L521-L588)

• allow to disable identity server lookups for the defederated case in f5275b2384/homeserver.yaml.tmpl (L1205-L1207)

• Ensure allow_public_rooms_without_auth & allow_public_rooms_over_federation are set to false, don't rely on the defaults (might change).

• Add option for user_ips_max_age, see https://github.com/matrix-org/synapse/pull/6098/files

Been using https://matrix.org/blog/category/privacy to help read up on this stuff.

- Do we really need `INFO` level in https://git.coopcloud.tech/coop-cloud/matrix-synapse/src/branch/main/log.config.tmpl? I don't think so but I am not sure. Setting to WARN/ERROR would be better, I guess. - add option for pruning redacted messages in https://git.coopcloud.tech/coop-cloud/matrix-synapse/src/commit/f5275b2384ea07cb30e7779f3a4b71d5fb4d14c2/homeserver.yaml.tmpl#L466-L471 - add options for server level retention periouds in https://git.coopcloud.tech/coop-cloud/matrix-synapse/src/commit/f5275b2384ea07cb30e7779f3a4b71d5fb4d14c2/homeserver.yaml.tmpl#L521-L588 - allow to disable identity server lookups for the defederated case in https://git.coopcloud.tech/coop-cloud/matrix-synapse/src/commit/f5275b2384ea07cb30e7779f3a4b71d5fb4d14c2/homeserver.yaml.tmpl#L1205-L1207 - Ensure `allow_public_rooms_without_auth` & `allow_public_rooms_over_federation` are set to false, don't rely on the defaults (might change). - Add option for `user_ips_max_age`, see https://github.com/matrix-org/synapse/pull/6098/files Been using https://matrix.org/blog/category/privacy to help read up on this stuff.

josef commented 2022-02-07 20:25:59 +00:00

Member

Copy Link

Federation whitelist? f5275b2384/homeserver.yaml.tmpl (L659-L662)

Federation whitelist? https://git.coopcloud.tech/coop-cloud/matrix-synapse/src/commit/f5275b2384ea07cb30e7779f3a4b71d5fb4d14c2/homeserver.yaml.tmpl#L659-L662

❤️ 1

decentral1se referenced this issue from a commit 2022-02-07 23:32:48 +00:00

feat: more privacy friendly defaults

decentral1se referenced this issue from a commit 2022-03-13 15:56:22 +00:00

Disable registrations by default

decentral1se referenced this issue from a commit 2022-04-03 17:25:53 +00:00

feat: encryption by default

decentral1se commented 2022-04-06 16:05:40 +00:00

Author

Owner

Copy Link

Happy with this for now.

Happy with this for now.

decentral1se closed this issue 2022-04-06 16:05:42 +00:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

homeserver-config-updates

backupbot

serve_server_wellknown

coturn

5.0.6+v1.100.0

6.0.2+v1.100.0

6.0.1+v1.100.0

6.0.0+v1.100.0

5.0.5+v1.100.0

5.0.4+v1.100.0

5.0.3+v1.100.0

5.0.2+v1.93.0

5.0.1+v1.93.0

5.0.0+v1.93.0

4.0.0+v1.93.0

3.9.1+v1.87.0

3.9.0+v1.87.0

3.8.0+v1.84.1

3.7.0+v1.82.0

3.6.0+v1.81.0

3.5.0+v1.81.0

3.4.0+v1.80.0

3.3.0+v1.78.0

3.2.0+v1.77.0

3.1.0+v1.76.0

3.0.0+v1.74.0

2.6.0+v1.74.0

2.5.0+v1.73.0

2.4.0+v1.72.0

2.3.0+v1.71.0

2.2.0+v1.68.0

2.1.0+v1.62.0

2.0.0+v1.58.1

1.3.0+v1.55.2

1.2.0+v1.52.0

1.1.0+v1.51.0

1.0.1+1.48.0

Labels

Clear labels

No items

No Label

Milestone

Clear milestone

No items

No Milestone

Assignees

Clear assignees

No Assignees

2 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: coop-cloud/matrix-synapse#22

No description provided.