- Last year there was a bug where encryption wasn’t applied to uploads using httpupload even when OMEMO was applied. This has been fixed in version 0.4. Stretch includes 0.4.1 so its covered.
-
Socks5 support has been implemented for a decade:
proxy socks5 (#799) · Issues · gajim / gajim · GitLab -
Tor DNS resolution support status is “patches welcome”. Python libs have limited ability to to tricks with DNS routing. I think this is potentially a problem with every other IM software that is not Tor Messenger.
Gajim with Tor leaks DNS requests (#8538) · Issues · gajim / gajim · GitLab -
It installs its config in: /home/user/.config/gajim/config I’m not sure that’s useful without .d style support. If this is figured out
accounts.Local.log_encrypted_sessions = True
plugins.plugin_installer.active = True
could be set to False.
-
The plugininstaller is annoying and actively pushes users to update and install code over CA TLS which is broken in our threat model.
-
The DNS problem can be considered a “protocol leak” but in the context this page describes this (using the bittorrent example), its not relevant Whonix since it can’t leak that info.
Its up to you if you want to go forward with this given this info.