Snikket Android app temporarily unavailable in Google Play store [RESOLVED]
by Matthew Wild.
Google removed our app, citing lack of a privacy policy. This post provides details and a workaround.
Read more...Snikket Blog
News, announcements and thoughts from the Snikket team
Security notice: Snikket not affected by CVE-2024-3094
by The Snikket Team.
A backdoor was recently found in xz, a widely used package. The vulnerability does not affect Snikket, but make sure your host systems are up to date.
Read more...Snikket Hosting is now available!
by The Snikket Team.
After several years in beta, we’re excited to announce the public launch of Snikket Hosting.
Read more...Snikket Server - January 2024 release
by The Snikket Team.
We just released a new update of Snikket Server. Read on to find out what’s new…
Read more...On the jabber.ru MITM attack
by The Snikket Team.
Reports of a possible recent interception of the public XMPP service jabber.ru have raised a lot of questions for people about how the attack happened, and whether it could affect them too. We have some answers.
Read more...State of Snikket 2023: Funding
by The Snikket Team.
A look at the various ways work on Snikket is funded - past, present and future.
Read more...State of Snikket 2023: The Apps
by The Snikket Team.
An overview of what’s going on in Snikket app development.
Read more...F-Droid security update
by Matthew Wild.
Last week, Snikket Android users who installed the Snikket app via F-Droid started receiving a warning that it contained a security vulnerability. This wasn’t entirely accurate, as the problem wasn’t with the Snikket app itself but specifically F-Droid’s own build of the app that was using an outdated version of the WebRTC library.
As of today, F-Droid have published a new build (2.10.3) of the Snikket app that now uses an up-to-date version of the WebRTC component. The new WebRTC was built by us and published to Maven Central, one of the sources that F-Droid trusts for certain pre-built dependencies.
Like many communication apps, Snikket uses WebRTC for audio and video calls. We’ve been working on finding a way for F-Droid to build Snikket with a more up-to-date version of the WebRTC library that meets the constraints of their build processes and policies. We’re happy that this work has paid off!
Read more...Notes on the F-Droid security warning
by Matthew Wild.
Update 2022-12-11: A new update (2.10.3) is has been published, and the security warning should clear after installing this update.
Snikket Android users who installed the app via F-Droid may receive a warning from F-Droid telling them that the app has a vulnerability and that they “recommend uninstalling immediately”. First of all - don’t panic! This is a over-simplified generic warning that is scary, but the actual situation is not quite so scary and has an explanation. Here goes…
Read more...Snikket Blog
Feed
Subscribe to our RSS feed for the latest updates from the Snikket project!
Recent Posts
- Snikket Android app temporarily unavailable in Google Play store [RESOLVED]
- Security notice: Snikket not affected by CVE-2024-3094
- Snikket Hosting is now available!
- Snikket Server - January 2024 release
- On the jabber.ru MITM attack
- State of Snikket 2023: Funding
- State of Snikket 2023: The Apps
- State of Snikket 2023