> We strongly recommend hosting your own XMPP server in a controlled environment or switching to instant messengers that either implement client-side account management or enforce end-to-end encryption for account management.<p>Sadly, the author does not mention which instant messengers he recommends in this regard. The issues mentioned in this article can either be solved by using authenticated end-to-end encryption or cannot be solved without p2p protocols (maybe XEP-0174 Serverless Messaging?). Client side account management or end-to-end encryption for account management won't do much since, if you control the server, it is easy to log which contacts you send messages to, effectively revealing your contact list over time.
You don't host it, it ain't yours. This is why I've never really bought the whole "give us all your info on register" thing. Or most forms of metadata tracking.<p>This is also why I'm flabbergasted at the cavalier attitudes admins I've met have toward user privacy.