Zoom meeting access:



  • @Obsolesce said in Zoom meeting access::

    @scottalanmiller said in Zoom meeting access::

    @Obsolesce said in Zoom meeting access::

    @scottalanmiller
    001b8079-ef19-42b6-bc1a-51dee6edecdc-image.png

    Perhaps on your meeting, you disabled the ability?

    Doesn't seem likely as I don't have any settings. But you can see the line ABOVE the one you highlight shows the problem - only people with Zoom accounts (but that's free) AND signed in get the option. I'm guessing that you've been signing in in some way.

    I have not been signing in, I only have been looking for and confirming the join from browser link, not following it through to inside a meeting. I don't have an account either.

    Odd, in their docs it says right there that it's only available when signed in.

    Maybe it's completely random?



  • @scottalanmiller said in Zoom meeting access::

    That's a bizarre requirement for the most basic feature, I feel. Like I don't want to be signed in to Zoom, or to have an account, to use someone else's teleconference system. Nor do I want to install an app for it for sure. It all feels very aggressive when they could easily have just provided an anonymous join from browser option.
    Especially given that Zoom has been caught selling personal data, this feels like they are trying to collect data that I'm not okay with them having.

    I agree. This is also why we at my current employment are not allowed to use Zoom for work, as it doesn't meet our security or GDPR requirements. It's been like that for years AFAIK.



  • @scottalanmiller said in Zoom meeting access::

    @Obsolesce said in Zoom meeting access::

    @scottalanmiller
    001b8079-ef19-42b6-bc1a-51dee6edecdc-image.png

    Perhaps on your meeting, you disabled the ability?

    Doesn't seem likely as I don't have any settings. But you can see the line ABOVE the one you highlight shows the problem - only people with Zoom accounts (but that's free) AND signed in get the option. I'm guessing that you've been signing in in some way. I don't have a Zoom account, and would never, ever have thought that there'd be a reason for one, so it never crossed my mind to make one and nothing in the Zoom meeting joining process does it make it feel like you should.

    That's a bizarre requirement for the most basic feature, I feel. Like I don't want to be signed in to Zoom, or to have an account, to use someone else's teleconference system. Nor do I want to install an app for it for sure. It all feels very aggressive when they could easily have just provided an anonymous join from browser option.

    Especially given that Zoom has been caught selling personal data, this feels like they are trying to collect data that I'm not okay with them having.

    Don't you have a dummy email account that you can use to avoid giving away personal data?



  • @black3dynamite said in Zoom meeting access::

    Don't you have a dummy email account that you can use to avoid giving away personal data?

    I almost never do that, but certainly could. In this case, it never occurred to me to do it because... why? What would prompt someone that isn't hosting meetings to have a Zoom account? Never crossed my mind even to be an option.



  • @scottalanmiller said in Zoom meeting access::

    @Obsolesce said in Zoom meeting access::

    @scottalanmiller
    001b8079-ef19-42b6-bc1a-51dee6edecdc-image.png

    Perhaps on your meeting, you disabled the ability?

    Doesn't seem likely as I don't have any settings. But you can see the line ABOVE the one you highlight shows the problem - only people with Zoom accounts (but that's free) AND signed in get the option. I'm guessing that you've been signing in in some way. I don't have a Zoom account, and would never, ever have thought that there'd be a reason for one, so it never crossed my mind to make one and nothing in the Zoom meeting joining process does it make it feel like you should.

    That's a bizarre requirement for the most basic feature, I feel. Like I don't want to be signed in to Zoom, or to have an account, to use someone else's teleconference system. Nor do I want to install an app for it for sure. It all feels very aggressive when they could easily have just provided an anonymous join from browser option.

    Especially given that Zoom has been caught selling personal data, this feels like they are trying to collect data that I'm not okay with them having.

    How can they sell your data if you don't install an app that can steal your data behind the scenes, or have you sign into their website?



  • @scottalanmiller said in Zoom meeting access::

    @black3dynamite said in Zoom meeting access::

    Don't you have a dummy email account that you can use to avoid giving away personal data?

    I almost never do that, but certainly could. In this case, it never occurred to me to do it because... why? What would prompt someone that isn't hosting meetings to have a Zoom account? Never crossed my mind even to be an option.

    Agreed.



  • @scottalanmiller said in Zoom meeting access::

    Doesn't seem likely as I don't have any settings.

    Bullshit. you are making a meeting. You have settings.

    If you are not making the meeting, then whoever is has the settings.



  • Your settings are in your Zoom account settings on the main website.

    https://zoom.us/profile/setting

    There are a few settings to be aware of.
    6ddc6fdc-53b8-4ad6-87a8-992d62e18c7a-image.png

    c275b30c-add2-4e7a-8696-4eb5728e060f-image.png

    Result

    293b56b9-55c8-42d2-9e17-aa5a120b49b8-image.png

    Clicking on the link results in this since I do not let random people, who happen to guess my ID, join.
    812c0fdf-3f93-4e0d-84b6-02c2a9580ecb-image.png



  • @scottalanmiller said in Zoom meeting access::

    @Dashrender said in Zoom meeting access::

    @scottalanmiller said in Zoom meeting access::

    @WLS-ITGuy said in Zoom meeting access::

    I was just told to find an alternative to Zoom. I asked why and they named all the issues that were there.

    Zoom is very easy, but any reason to use it over even easier things?

    other than your own in house solution - what is easier?

    Other than the one that I mentioned in the thread? 😉 Just use Jitsi. If you don't want the Jitsi package, use Vitals!

    https://meet.vitalpbx.org/

    How does one go about verifying the security of a service like the one you linked above? Is that a secure solution that someone could feel comfortable with sending out the link and sharing their screen with others, etc.?



  • @Dragon3303 said in Zoom meeting access::

    How does one go about verifying the security of a service like the one you linked above? Is that a secure solution that someone could feel comfortable with sending out the link and sharing their screen with others, etc.?

    Like any software application. You research it.
    As for the specific solution you quoted, that is simply Jitsi Meet, hosted by VitalPBX.

    So first, you research Jitsi and decide if you trust the application.
    Then, you research VitalPBX and decide if you trust them not to do something to record the media on the server side.



  • @JaredBusch said in Zoom meeting access::

    @Dragon3303 said in Zoom meeting access::

    How does one go about verifying the security of a service like the one you linked above? Is that a secure solution that someone could feel comfortable with sending out the link and sharing their screen with others, etc.?

    Like any software application. You research it.
    As for the specific solution you quoted, that is simply Jitsi Meet, hosted by VitalPBX.

    So first, you research Jitsi and decide if you trust the application.
    Then, you research VitalPBX and decide if you trust them not to do something to record the media on the server side.

    Sure...I guess that's more my question to those here and particularly to @scottalanmiller as he was the one who linked it. Is VitalPBX reputable enough that this is a trustworthy service to use?



  • @Dragon3303 said in Zoom meeting access::

    Sure...I guess that's more my question to those here and particularly to @scottalanmiller as he was the one who linked it. Is VitalPBX reputable enough that this is a trustworthy service to use?

    They are pretty reputable, and they are here in the community, and they are partners with Skyetel. They are using a service that makes recording cumbersome and isn't designed around that, and they have a lot of reputation to risk by recording. So existing reputation and market forces make recording unlikely. I have no qualms using them. Maybe I'd not use them if I was like exchanging military secrets or something. But business stuff, for sure.

    If you don't like the idea that they might have a hook to grab your data, you can do a few things: not let them generate the room, check your data stream to see if it is going to someone not part of your meeting or.... if those aren't enough to make you comfortable, then run your own Jitsi as no company will pass muster (nor should they.)



  • @Dragon3303 said in Zoom meeting access::

    How does one go about verifying the security of a service like the one you linked above? Is that a secure solution that someone could feel comfortable with sending out the link and sharing their screen with others, etc.?

    Keep in mind that unlike Zoom, where there is no way to know what they are doing with your data, and they have a reputation for stealing data, and they set everything up to do that; services like VitalPBX's hosted Jitsi are engineered around the completely opposite use case. Your data doesn't flow to them, ever. So use Wireshark and watch your traffic. It should be peer to peer, so unable to be recorded by a third party (except for your ISP.)



  • Sounds good. It seems like a nice, easy, free way to go about conducting meetings that one would maybe otherwise have to use a paid service for and there's always going to be some people who get nervous that they don't know the company, you don't have to have an account with a username/password, etc.



  • @Dragon3303 said in Zoom meeting access::

    Sounds good. It seems like a nice, easy, free way to go about conducting meetings that one would maybe otherwise have to use a paid service for and there's always going to be some people who get nervous that they don't know the company, you don't have to have an account with a username/password, etc.

    You can require passwords for the individual meetings if you like. Usernames are useful for management, but not security. Don't get me wrong, easy management encourages security. But in a case like this, it actually makes it more secure, not less. If you use u/p then you encourage a system where once hacked, people can record you. Jitsi does a non-repeating double password mechanism that's all but unbreakable unless someone shares it, and that's a risk either way.


Log in to reply