[Kira_Yamato]

Hello everyone, 

I hosted a free XMPP server for everyone to join, the server is hosted as a hidden service and only accepts Tor incoming and outgoing traffic. 

- Server is hosted as hidden service
- End 2 End encryption supported with OMEMO (Gajim for desktop and Conversations or Blabber for android phone). 
- Messages are archived for 2 days and it will be removed from the server, just make sure you use OMEMO encryption and everything is confident. 
- XMPP doesn't require any identification.
- No email and no number needed, just sign up. 
- No chances of IP leaks since the server doesn't allow non-Tor connections. 
- Private group chat END 2 END encryption supported through OMEMO
- For feedback or questions please ask in this thread. 

Domain of the XMPP server: 

6lpsq3jx46rms3bk2rmcgpmfx26n6pis6kbxgqlzod6x52wz7azhuvqd.onion


Accounts can be made easily through Gajim (make sure you have Tor browser running and are listening on 127.0.0.1 port 9150)

Or use Conversations in combination with either Orbot or Invizible Pro.

My contact on the XMPP server for questions or feedback:

kira@6lpsq3jx46rms3bk2rmcgpmfx26n6pis6kbxgqlzod6x52wz7azhuvqd.onion

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Attempting to sell CC/VCC| http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.

[LulzSec]

tor url in xmpp? nah i'm good

[Kira_Yamato]

tor url in xmpp? nah i'm good

Its a Tor only server so yes.

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Attempting to sell CC/VCC| http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.

[Moonshine]

not bad, good luck

[Kira_Yamato]

not bad, good luck

Thanks, its just a fun project.

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Attempting to sell CC/VCC| http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.

[Kira_Yamato]

BUMPing this, everyone is welcome.

More secure messaging than anything else!

Marketplaces allowed!

I dare to find anything more secure than the setup of my prosody server.

META-DATA? Yes of course there is meta data, but EVERYONE who owns a server has meta-data including Signal! And even if they claim they havev no meta-data they can always opt in to see it. The difference between XMPP on the onions is that all incoming traffic comes from Tor exit nodes, and Prosody itself only sees this traffic as 127.0.01. Signal can log your real IP addresses when they want to, Telegram already does it and telegram also gives IP addresses to the cops.

Its free for the time being! Enjoy.

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Attempting to sell CC/VCC| http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.

[animalz]

The difference between XMPP on the onions is that all incoming traffic comes from Tor exit nodes, and Prosody itself only sees this traffic as 127.0.01.

Hidden services, like yours for example, don't use exit nodes. Exit nodes is used only when you leaving tor network. In this case xmpp server is inside the tor network, so no exit nodes used. And that's good.

I dare to find anything more secure than the setup of my prosody server.

Secure or more anonymous/private ? All decentralized solutions is more anonymous and private then xmpp. Like these.
https://tox.chat/
https://www.ricochetrefresh.net/
https://cwtch.im/
https://getsession.org/

It's cool that you setup this server, but i think xmpp is a thing of the past.

[Kira_Yamato]

The difference between XMPP on the onions is that all incoming traffic comes from Tor exit nodes, and Prosody itself only sees this traffic as 127.0.01.

Hidden services, like yours for example, don't use exit nodes. Exit nodes is used only when you leaving tor network. In this case xmpp server is inside the tor network, so no exit nodes used. And that's good.

I dare to find anything more secure than the setup of my prosody server.

Secure or more anonymous/private ? All decentralized solutions is more anonymous and private then xmpp. Like these.
https://tox.chat/
https://www.ricochetrefresh.net/
https://cwtch.im/
https://getsession.org/

It's cool that you setup this server, but i think xmpp is a thing of the past.

I know I don't use exit nodes, but all incoming traffic towards my servers comes from Tor exit nodes (i.e. the last hop IP addresses). That's what I mean. 

> Tox (has really bad code written and not even a year a go major exploits were found in it. 

> Rico (never heard off) 

> cwthc (if I'm not mistaken its peer 2 peer, just like briar which is also peer 2 peer. And peer 2 peer by design is of course more safer, but its less convinient since both persons need to be online at the same time. But yes its more safe and secure). 

> Session (Session has no PFS (Perfect Forward Secrecy) and Session also is NOT (yet) integrated into the lokinet, and there are more issues with which I explain maybe later). Session is oke, but also very heavy and buggy whilee XMPP is very light weight.

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Attempting to sell CC/VCC| http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.

[animalz]

I know I don't use exit nodes, but all incoming traffic towards my servers comes from Tor exit nodes (i.e. the last hop IP addresses). That's what I mean.

Incoming traffic to your server don't come from exit nodes. There is no exit node in the chain when you using hidden service. But whatever it's just terminology.

Tox (has really bad code written and not even a year a go major exploits were found in it.

Vulns are found everyday, thats normal thing. They fix what they can. That's good thing. They improve.

I don't really like idea that my contact list and my connection timestamps is kept on the jabber server.
But yeah man, i don't want to argue what you want to use and why. There are carders that sill use ICQ.

[Kira_Yamato]

I know I don't use exit nodes, but all incoming traffic towards my servers comes from Tor exit nodes (i.e. the last hop IP addresses). That's what I mean.

Incoming traffic to your server don't come from exit nodes. There is no exit node in the chain when you using hidden service. But whatever it's just terminology.

Tox (has really bad code written and not even a year a go major exploits were found in it.

Vulns are found everyday, thats normal thing. They fix what they can. That's good thing. They improve.

I don't really like idea that my contact list and my connection timestamps is kept on the jabber server.
But yeah man, i don't want to argue what you want to use and why. There are carders that sill use ICQ.

" I don't really like idea that my contact list and my connection timestamps is kept on the jabber server." 

I get that, that's meta-data and meta-data in a lot of cases is something inevitable. I mean I don't trust companies or people who claim "we dont have your meta-data", that's almost impossible. Even Signal claims they don't have your meta-data (or SimpleX for that matter), but that isn't something that you can check by yourself as you would've need access to their servers. I still believe XMPP hosted as a hidden service is currently safer than many other options unless you want to go hardcore and use P2P IM like Briar or something similar.

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Attempting to sell CC/VCC| http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.