Recently, our company branch are spread over the whole country. From one branch to another we use public internet to our HQ Server. Our client using Spark version 2.8.3. We use openfire 4.0.1 with ssl protocol enabled.
However, if we enable encryption message mode with lock icon on the top left then is it all the message are really fully encrypted? is it really save?
Actually using SSL should be enough against sniffing. That lock icon is OTR and is more for encrypting messages against someone having control over the server, so they couldn’t read messages on the server if some kind of archiving is enabled. This is more relevant when using public servers.