Comments on: office live communications server 2007 and public IM connectivity

By: ShadowMobo

ShadowMobo — Thu, 12 Feb 2009 14:37:30 +0000

What is great about the PIC feature in OCS is for companies like the one I run OCS for who are getting forced into keeping an archive of all IMs sent, but cannot take the Public IM services away from their customer. PIC lets us allow the customers in our network to chat with AOL, Yahoo, and MSN users while at the same time allowing the IT Divisin to keep a record of all chats to ensure compliancy in case someone wants to try and sue us.

By: btm

btm — Fri, 08 Feb 2008 16:52:00 +0000

Sure. I mean I get the super corporate point of view. So I run Communicator, Pidgin and an IRC client at work. I wouldn’t run Communicator except that I do like it (except note #1). It’d be sweet if communicator was more like pidgin. I’m not just a nerd too, i’d say the majority of my employees run at least one other IM client.

note #1: I run communicator and communicator mobile. I’d prefer that mobile always be “away”, but all this “presence” hackery makes it so my mobile status updates my desktop status and vice versa. Everytime I leave my desk I need to set myself as away, and everytime I come back I have to set myself available.

that’s actually my biggest UI complaint, but again I get why it does it.

By: conalw

conalw — Fri, 08 Feb 2008 05:08:00 +0000

Well, if you want your IM to be secure then it had better be running over TLS. Ditto for media. Alternatives such as E2E encryption schemes are difficult to orchestrate. Let’s not make the same mistakes as email. Naturally, there is a limit to how much sensitive data you’d pass into a giant provider network like AOL, but for federation with other companies it’s a reasonably trustworthy mechanism. IMHO with PKI it comes down to how much you trust the public CAs to do their job properly.

By: btm

btm — Thu, 07 Feb 2008 07:41:00 +0000

Sure, I get it. But normally most IM isn’t over TLS anyways, so that’s a poor selling point for having to buy in.

At the very least, XMPP federation should be available and free, being open and everything.

By: conalw

conalw — Thu, 07 Feb 2008 04:00:00 +0000

OCS federates directly to the PIC providers so that the link is secured by TLS. Various providers have various kinds of servers on the other end, all of which somehow look like an OCS edge server. The provisioning process involves each PIC provider adding your organization’s domain and edge server FQDN to their list of federated partners (they don’t use DNS SRV to locate your edge server, though yours will use it to locate theirs). All this involves setup and maintenance costs, which is the primary reason why it isn’t free.