As a remote-first startup (from day one), we were heavy Slack users. Considering moving to Mattermost, or any other alternative, caused many folks to shiver. But we switched. Why? Because of what matters the most to us:
- Permissionless innovation
- Control and visibility of our data
- Zero Trust security
- Belief in open source
- Ability to dogfood our Zero Trust functions
Now, obviously core messaging functionality is critical. Mattermost is great there, but so is Slack. In fact, Slack features like third-party integrations and threaded messaging were missed greatly (thank you, Mattermost, for recently adding threaded messaging). So the relative parity between the solutions from a ‘speeds and feeds’ perspective was table stakes, but we ended up going with the solution which arguably had less ‘features’ and niceties, but fit better with our core principles. And we are now very happy Mattermost users.
Sidebar: we are sharing the paragraph above because we believe it is critical to any startup, such as Mattermost, which is courting an early adopter market segment. Focus on what your tiny, tiny pond of early adopters wants and needs, rather than fighting a feature war for mass market opportunities. Delight your tiny pond of early adopters, and you can grow from there. Ok, back to the main story.
Let’s look at the reasons we switched from Slack to Mattermost, grouping together the list at the top of this post:
Permissionless innovation; control; open source
We like to innovate. Mattermost, as an open source based solution, gives us that opportunity. Closed SaaS (like Slack) is terrific, and we use plenty of it, but we always prefer to use open source at the core to give us the extensibility and flexibility we want, and then to use SaaS around the periphery to make our lives simpler or easier. The world is much different than it was before C-19 became part of our vocabulary. What will the world look like in 5 years? No idea. So we need the flexibility to change with an ever changing world. Mattermost open source helps provide the basis for that permissionless innovation.
Control and visibility often go hand-in-hand with an open source base. We can host the Mattermost servers anywhere. We control the architecture and retain full control and visibility of each byte of data. We have direct access to the (also great and open source) database (PostgreSQL). Our data is core and messaging is at the nucleus of our business. Now, this doesn’t mean we don’t use third party software as part of that defense. It is quite the opposite. Because we control our core data, we have the capability to use best in class third party software (and SaaS) in the ways which best meets our needs. Mattermost helps enable that paradigm.
Zero Trust; eat dogfood and drink wine
As a Zero Trust provider, Zero Trust is important to us. Duh. And, as a startup, we always eat our own dogfood and drink our own wine. Fine, what does that have to do with Mattermost versus Slack? Everything.
The JS SDK puts Zero Trust into Mattermost clients (browsers, thick clients). What does that mean? When I use Mattermost from my Chrome browser, then the Mattermost code (aided by the JS SDK) establish a Zero Trust Mattermost connection to our Mattermost servers, without a VPN client, without DNS configurations and without infrastructure. Code replaces configuration. As a user, I just, well, use Mattermost with no VPNs etc. in the way. It doesn’t matter where I am . It doesn’t matter where the Mattermost data is.
Not in the Zero Trust fan club like us? Then you have the freedom and flexibility to deploy Mattermost in a different way – the beauty of Mattermost’s open source approach.
How Zero Trust Mattermost looks to a user:
Ok, every user is happier when not on a VPN (riddle: who is the only party in the world that likes VPNs and firewalls? Answer at the end of the post).
But what does all that mean from an administrator perspective (admins, DevOps, NetOps). Simplification, automation and a better night’s sleep. No VPNs to manage. No DNS complexity. No open firewall ports. Far less risk of ransomware. The ability to innovate – e.g. fully automated