Video conferences are one of the most important ways to build relationships and organize political and social movements with others across the US and around the world. Jitsi is a free open source video conferencing tool that works on any computer. It does not require setting up an account or paying a monthly fee. By contrast, Zoom charges an annual fee that runs from $150 for a single user to $250 a year for a business. With Jitsi, you can add any number of people to your video conference and you can run your video conference for several hours for free rather than the 40 minute time limit imposed by the Zoom free account.

Why Jitsi is much more secure than Zoom
The biggest advantage of Jitsi is that it is dramatically more secure than Zoom. This is because moderators and participants do not need to download any “apps” to use Jitsi. Just open any web browser and go to your Jitsi video conference room. By contrast, to use Zoom, you need to download a closed source (and therefore insecure) Zoom app which has a file size greater than 142 MB. Extract the largest file and click on Properties for the two folders to see that the opt folder has 1,362 files and a total file size of 523 MB. Recently, Zoom increased the file size to over 800 MB. This means that Zoom is actually larger that the Linux operating system and about 8 times larger than a draconian Deep State program called UEFI – which itself is capable of remotely bricking any Windows or Apple computer.

To give you an idea of how large 800 MB is, the classic book called Moby Dick has 213,533 words divided over about 400 pages. It has a file size of about 1 megabyte. Thus the Zoom app is the equivalent of more than 800 copies of Moby Dick or more than 300,000 pages of code! Zoom has never explained what all the millions of lines of code actually do.

But the worst part is that nearly all of this code is hidden. It is not open source. It is not subject to an independent inspection or audit. This makes the Zoom app one of the worst pieces of malware ever written.

Requiring your participants to each download this app and placing it on their computer not only places your computer at risk – but also the computers of all of your students. Thus, even if Zoom was free, you should not use it or force others to use it.

By contrast, the code for Jitsi is entirely open source and therefore subject to public audits. These audits can and do confirm that there are no hidden back doors in any Jitsi programs. In addition, the file size for Jitsi as shown on their GitHub page is 135 MB meaning that it is only about 20% of the size of Zoom

Security researchers have called Zoom “a privacy disaster” and “fundamentally corrupt”. Arvind Narayanan, an associate computer science professor at Princeton University stated: “Let’s make this simple. Zoom is malware.”

Zoom has falsely advertised itself as using end-to-end encryption, a system that secures communication so that it can only be read by the users involved, a report from the Intercept found. Zoom confirmed that end-to-end encryption was not currently possible on the platform.

"We discourage the use of Zoom at this time for use cases that require strong privacy and confidentiality," the Citizen Lab report says, such as "governments worried about espionage, businesses concerned about cyber crime and industrial espionage, healthcare providers handling sensitive patient information" and "activists, lawyers, and journalists working on sensitive topics."

It will be easier to understand how to install Jitsi Meet if you have some idea of its five basic components. These include the Jitsi Meet web page interface as output for an Nginx server combined with a Prosody Authorization system, a Video Bridge video transmission tool – and all connected together by a system called Jicofo.

Components of a Secure Virtual Private Server (VPS)
Before we can build our Jitsi Meet video conference system, we first need to create a secure Linux Virtual Private Server. This server should not be located in the US due to the Draconian Patriot Act. We will therefore use a more secure option called CanHost.ca which is located in Canada. CanHost also provides an easy to use Domain Name (DNS) management system which will help us set up Security Certificates required by Jitsi. Finally, CanHost allows us to choose either the Linux Debian 11 or Debian 12 operating system when we create our server.

In previous articles, we have explained how to use CanHost to set up a Linux Debian 12 Server which can be controlled from a secure Graphical Interface called the Hestia Control Panel. We then used this server to set up a series of interconnected Joomla websites (as a more secure alternative to Wordpress), Nextcloud Team Networks (as a more secure alternative to Google Docs and Google Forms), Freedica Social Networks (as a more secure alternative to Facebook and or Twitter) and Moodle websites that can be used for offering secure online courses.

Unfortunately, we should not install Jitsi on our “all purpose” server because the Hestia Control Panel as well as the social network and everything else running on that VPS all use significant amounts of RAM. Because Jitsi is streaming not just one but 20 to 40 videos all at the same time, Jitsi really needs its own source of RAM.

Ideally, each attendee should have a High Speed Internet connection, preferably directly connected to the Internet with a wired Ethernet cable attached to their Home router. But so our VPS does not become a data transfer bottleneck, we will use CanHost to set up a special VPS assigned to only our Jitsi Video Conferencing system. In addition, because Jitsi uses an older version of JAVA, which is not offered by the Debian 12 operating system, we will use the Debian 11 operating system for our Jitsi VPS. Finally, because we will not be using the Hestia Control Panel to visually control our server, we will review how to install and use the Midnight Commander File Manager to visually see and edit our Jitsi files.

Step 1 Initial steps before installing Jitsi
#1.1 Begin by getting a secure Linux laptop, a process we described in several previous articles. Do not use a Windows or Apple laptop as neither of these are secure. Also get a secure email address to associate with your CanHost account. Do not use Gmail as that would defeat the whole purpose of setting up a SECURE video conference system. It is very easy to get a free secure email address at Protonmail.com.

Then use your secure Protonmail email address and your Linux Laptop to get a CanHost account (if you have followed our previous articles, you already have one). Otherwise, go to CanHost.ca and sign up.

#1.2 Use CanHost to get a Domain Name for our Jitsi VPS
You can transfer an existing domain name to CanHost but the process will take a couple of weeks. In this article, we will use the domain name peacenetwork.us. We will use a sub-domain name called ns1.peacenetwork.us to install our VPS and another sub-domain name called meet.peacenetwork.us to install Jitsi. We can also use the primary domain name peacenetwork.us to install a Joomla website as our main website onto our other VPS simply by assigning it to the IP address associated with our other VPS. We can also use the sub domain team.peacenetwork.us to install a NextCloud network and a series of sub domains such as washington.peacenetwork.us to create a series of state chapter websites when building a national movement.

By default, everyone can create conference rooms in Jitsi Meet. For security reasons, it is a good idea to configure your Jitsi Meet server to only allow registered users to create conference rooms. See this page for official instructions:

https://jitsi.github.io/handbook/docs/devops-guide/secure-domain/

The official instructions begin by configuring Prosody and then configure Jitsi Meet and Jicofo. Before we being, it is helpful to know that the Jitsi package files are organized into 6 groups with files in several places like this:

prosody

/etc/prosody/conf.avail/jitsi.example.org.cfg.lua

/etc/prosody (general configurations)

/etc/prosody/conf.d (configurations)

/usr/lib/jitsi-meet-prosody (lua plugins)

/usr/share/doc/jitsi-meet-prosody (example of configuration)

jitsi-meet

/etc/jitsi/meet/ jitsi.example.org-config.js (configurations)

/usr/share/jitsi-meet (html files)

/usr/share/doc/jitsi-meet (examples of configuration for nginx)

jicofo

/etc/jicofo (configurations)

/usr/lib/jicofo (binaries)

jitsi-videobridge

/etc/jitsi-videobridge (configurations)

/usr/lib/jitsi-videobridge (binaries)

nginx… /etc/nginx

Edit the Prosody configuration file
In this example, the domain example is 'jitsi.example.org'.

In this step, we will use the Midnight Commander to help us enable the authentication system for Jitsi. Once this system is set up, only moderators with the right authentication can start meetings with Jitsi. First, we need to enable the authentication on the Prosody service and define the guest domain. Start a root SSH session. Then type mc and Press Enter. Then click on the three dots in the upper right column to go to the root folder. Then click on the etc folder and navigate to the folder:

It is relatively easy to customize the appearance of the Jitsi Meet Welcome Page. Here is what the default Jitsi Meet Welcome Page looks like:

Right click on the top image to get this image link:

https://meet.peacenetwork.us/images/welcome-background.png

Here is what the top image looks like:

It is 1280px wide by 437px high.

Here is our replacement header with the same width and a height of 300px:

SSH into your server as root and type mc to open midnight commander. Click on the three dots to go to the root folder. Go to: /usr/share/jitsi-meet.

Jitsi is a free open source video conferencing tool that works on any computer. It does not require setting up an account or paying a monthly fee. By contrast, Zoom charges an annual fee that runs from $150 for a single user to $250 a year for a business. You can add any number of people to your Jitsi video conference and you can run your video conference for several hours for free rather than the 40 minute limit imposed by the Zoom free account.

Why Jitsi is much more secure than Zoom
The biggest advantage of Jitsi is that it is dramatically more secure than Zoom. This is because moderators and participants do not need to download any “apps” to use Jitsi. Just open any web browser and go to your Jitsi video conference room. By contrast, to use Zoom, you need to download a closed source (and therefore insecure) Zoom app which has a file size greater than 142 MB. If you extract this file, you see these files: