Difference between revisions of "Jitsi"
m (→Installation) |
(→Chrome Install) |
||
(14 intermediate revisions by 2 users not shown) | |||
Line 1: | Line 1: | ||
− | + | [https://jitsi.org/ Jitsi] is a fully open source and self-hostable video conferencing alternative to commercial products like Skype and Zoom. It is extremely easy to install taking literally five minutes. We've used this a lot now and have found this to be the only libre alternative for which the call quality to be as good or better than any of the commercial products we've tried. | |
+ | |||
+ | Jitsi is secure and private when you install it on your own trusted server, but currently when running on an unknown server, you cannot be sure that the server operators are not eavesdropping on your calls. This is because the need to decrypt information while it traverses Jitsi Videobridge, technically provides whoever controls the JVB machine with an opportunity to access the data. They are hence in a position to hear and see everyone on the meeting. There will soon be a solution to this [https://github.com/jitsi/lib-jitsi-meet/blob/master/doc/e2ee.md available on Chrome using their new Insertable Streams system] and eventually on other browsers too as the IETF settled on a path forward for E2EE over WebRTC a few years ago. See [https://jitsi.org/news/e2ee/ this Jitsi news item] and [https://github.com/jitsi/lib-jitsi-meet/blob/master/doc/e2ee.md this dev post] for more details. | ||
== Installation == | == Installation == | ||
− | The [https://github.com/jitsi/jitsi-meet/blob/master/doc/quick-install.md Quick installation] guide automatically installs the system into an existing | + | The [https://github.com/jitsi/jitsi-meet/blob/master/doc/quick-install.md Quick installation] guide automatically installs the system into an existing [[Nginx]] or [[Apache]] if one is found, so on a clean machine it's a good idea to install one first. It uses ''LetsEncrypt'' to create certs for [[SSL]] setup. Here's a list of the listening services that are running after the system is installed: |
<source> | <source> | ||
tcp 0 0.0.0.0:80 0.0.0.0:* LISTEN 505/nginx | tcp 0 0.0.0.0:80 0.0.0.0:* LISTEN 505/nginx | ||
Line 15: | Line 17: | ||
udp 0 0.0.0.0:58434 0.0.0.0:* 399/java | udp 0 0.0.0.0:58434 0.0.0.0:* 399/java | ||
udp 0 0.0.0.0:10000 0.0.0.0:* 454/java | udp 0 0.0.0.0:10000 0.0.0.0:* 454/java | ||
+ | </source> | ||
+ | |||
+ | == Upgrading == | ||
+ | Since it's just a normal Debian package it should be kept up to date with the rest of the system, but sometimes you'll see it saying that the Jitsi packages are being kept back. If this is the case, just start at the beginning of the list of kept back packages and ''apt install'' them. | ||
+ | |||
+ | == Reinstalling == | ||
+ | If you break the installation irreparably, it's very difficult to remove it properly from the system. Here's how you can re-install it to a working state. | ||
+ | |||
+ | First purge it as much as possible from the system: | ||
+ | <source lang="bash"> | ||
+ | apt-get --purge remove jitsi-meet jitsi-meet-prosody jitsi-meet-web jitsi-meet-web-config jicofo jitsi-videobridge | ||
+ | apt-get autoclean | ||
+ | apt-get remove | ||
+ | apt-get autoremove | ||
+ | apt-get install --reinstall dpkg | ||
+ | rm /var/lib/dpkg/info/jitsi* | ||
+ | </source> | ||
+ | |||
+ | |||
+ | Then reinstall it again, and rebuilt the certs - due to the certs and Nginx config still being in the system, it already will know the domain you want to use. | ||
+ | <source lang="bash"> | ||
+ | apt-get install jitsi-meet | ||
+ | /usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh | ||
+ | </source> | ||
+ | |||
+ | == Jibri == | ||
+ | [https://github.com/jitsi/jibri Jibri] provides services for recording or streaming a Jitsi Meet conference. | ||
+ | |||
+ | === snd-aloop on Ubuntu 18 === | ||
+ | Jibri installation instructions were for Ubuntu 16 so the install of snd-aloop failed on Ubuntu 18. [https://github.com/jitsi/jibri/issues/133 This issue] shows a fix for this. | ||
+ | |||
+ | <source lang="bash"> | ||
+ | sudo apt-get install linux-modules-extra-gcp | ||
+ | grep -A200 submenu /boot/grub/grub.cfg |grep menuentry | ||
+ | # Copy the ID on the first line: gnulinux-advanced-XXXX | ||
+ | # And the ID from the gcp line: gnulinux-5.4.0-1044-gcp-advanced-XXXX | ||
+ | sudo nano /etc/default/grub | ||
+ | #GRUB_DEFAULT=0 | ||
+ | GRUB_DEFAULT=gnulinux-advanced-XXXX>gnulinux-5.4.0-1044-gcp-advanced-XXXX | ||
+ | sudo update-grub | ||
+ | sudo reboot | ||
+ | </source> | ||
+ | |||
+ | Then '''modprobe snd_aloop''' should work. | ||
+ | |||
+ | === Chrome Install === | ||
+ | Chrome also had issue with the default installation instructions so to install run: | ||
+ | <source lang="bash"> | ||
+ | sudo apt-get install xdg-utils | ||
+ | wget https://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb | ||
+ | sudo dpkg -i google-chrome-stable_current_amd64.deb | ||
</source> | </source> | ||
Line 21: | Line 74: | ||
*[https://github.com/jitsi/jitsi-meet/blob/master/doc/manual-install.md Advanced installation] | *[https://github.com/jitsi/jitsi-meet/blob/master/doc/manual-install.md Advanced installation] | ||
*[https://github.com/jitsi/jicofo#secure-domain Configuring an authenticated domain] | *[https://github.com/jitsi/jicofo#secure-domain Configuring an authenticated domain] | ||
+ | *[https://github.com/jitsi/docker-jitsi-meet Jitsi Docker image] | ||
+ | *[https://github.com/jitsi/jitsi-meet/issues/4758 Major problems with conference calls using Firefox] | ||
− | + | == See also == | |
+ | *[[Setting up a TURN server]] | ||
+ | *[[Big Blue Button]] | ||
+ | *[[Prosody]] | ||
[[Category:Libre software]] | [[Category:Libre software]] |
Latest revision as of 20:16, 3 June 2021
Jitsi is a fully open source and self-hostable video conferencing alternative to commercial products like Skype and Zoom. It is extremely easy to install taking literally five minutes. We've used this a lot now and have found this to be the only libre alternative for which the call quality to be as good or better than any of the commercial products we've tried.
Jitsi is secure and private when you install it on your own trusted server, but currently when running on an unknown server, you cannot be sure that the server operators are not eavesdropping on your calls. This is because the need to decrypt information while it traverses Jitsi Videobridge, technically provides whoever controls the JVB machine with an opportunity to access the data. They are hence in a position to hear and see everyone on the meeting. There will soon be a solution to this available on Chrome using their new Insertable Streams system and eventually on other browsers too as the IETF settled on a path forward for E2EE over WebRTC a few years ago. See this Jitsi news item and this dev post for more details.
Contents
Installation
The Quick installation guide automatically installs the system into an existing Nginx or Apache if one is found, so on a clean machine it's a good idea to install one first. It uses LetsEncrypt to create certs for SSL setup. Here's a list of the listening services that are running after the system is installed:
tcp 0 0.0.0.0:80 0.0.0.0:* LISTEN 505/nginx
tcp 0 0.0.0.0:5269 0.0.0.0:* LISTEN 450/lua5.2
tcp 0 0.0.0.0:8888 0.0.0.0:* LISTEN 399/java
tcp 0 0.0.0.0:4443 0.0.0.0:* LISTEN 454/java
tcp 0 0.0.0.0:443 0.0.0.0:* LISTEN 505/nginx
tcp 0 0.0.0.0:5280 0.0.0.0:* LISTEN 450/lua5.2
tcp 0 127.0.0.1:5347 0.0.0.0:* LISTEN 450/lua5.2
tcp 0 0.0.0.0:5222 0.0.0.0:* LISTEN 450/lua5.2
udp 0 0.0.0.0:55914 0.0.0.0:* 454/java
udp 0 0.0.0.0:58434 0.0.0.0:* 399/java
udp 0 0.0.0.0:10000 0.0.0.0:* 454/java
Upgrading
Since it's just a normal Debian package it should be kept up to date with the rest of the system, but sometimes you'll see it saying that the Jitsi packages are being kept back. If this is the case, just start at the beginning of the list of kept back packages and apt install them.
Reinstalling
If you break the installation irreparably, it's very difficult to remove it properly from the system. Here's how you can re-install it to a working state.
First purge it as much as possible from the system:
apt-get --purge remove jitsi-meet jitsi-meet-prosody jitsi-meet-web jitsi-meet-web-config jicofo jitsi-videobridge
apt-get autoclean
apt-get remove
apt-get autoremove
apt-get install --reinstall dpkg
rm /var/lib/dpkg/info/jitsi*
Then reinstall it again, and rebuilt the certs - due to the certs and Nginx config still being in the system, it already will know the domain you want to use.
apt-get install jitsi-meet
/usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh
Jibri
Jibri provides services for recording or streaming a Jitsi Meet conference.
snd-aloop on Ubuntu 18
Jibri installation instructions were for Ubuntu 16 so the install of snd-aloop failed on Ubuntu 18. This issue shows a fix for this.
sudo apt-get install linux-modules-extra-gcp
grep -A200 submenu /boot/grub/grub.cfg |grep menuentry
# Copy the ID on the first line: gnulinux-advanced-XXXX
# And the ID from the gcp line: gnulinux-5.4.0-1044-gcp-advanced-XXXX
sudo nano /etc/default/grub
#GRUB_DEFAULT=0
GRUB_DEFAULT=gnulinux-advanced-XXXX>gnulinux-5.4.0-1044-gcp-advanced-XXXX
sudo update-grub
sudo reboot
Then modprobe snd_aloop should work.
Chrome Install
Chrome also had issue with the default installation instructions so to install run:
sudo apt-get install xdg-utils
wget https://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb
sudo dpkg -i google-chrome-stable_current_amd64.deb
Resources
- Quick installation
- Advanced installation
- Configuring an authenticated domain
- Jitsi Docker image
- Major problems with conference calls using Firefox