XSF Discussion - 2019-02-21


  1. jubalh

    is there a way to tell the xmpp server to only send me messages from contacts in my roster? or do some clients have such a feature to drop everything that comes from contacts not in the roster?

  2. Zash

    yes

  3. Zash

    :)

  4. jubalh

    which/how?

  5. Zash

    Privacy lists did this, but we killed it. Now I think clients just don't notify about messages from non-roster entities.

  6. jubalh

    ok, thanks

  7. Zash

    jubalh: What's your reason for this?

  8. jubalh

    Zash, https://github.com/boothj5/profanity/issues/955

  9. Zash

    A couple of clients have such anti-spam feature, where non-contacts are required to answer some question before their message is shown to the user.

  10. jubalh

    which kind of clients? would like to see what they do. i thought about just blocking if user enables that feature

  11. Zash

    I think there's a plugin for Gajim, and something similar for some other client that I'm not sure which one it is. Psi perhaps?

  12. rion

    yep Psi

  13. Zash

    Haven't used this feature myself, I got along by blocking domains for a while.

  14. jubalh

    yeah me too

  15. jubalh

    ok will take a look at those two

  16. zinid

    profanity is alive?

  17. Zash sees recent commits by a "julbah", whoever that might be

  18. Zash sees recent commits by a "jubalh", whoever that might be

  19. jubalh

    ;)

  20. jubalh

    i try to keep it alive, yes

  21. jubalh

    released a 0.6.0 couple of days ago

  22. Guus

    OneTeam is a ProcessOne project, isn't it?

  23. Guus

    oneteam.im isn't responding for me

  24. zinid

    Guus, yes

  25. Zash

    jubalh: how alive? maintaining or active development? :)

  26. zinid

    Guus, it's discontinued

  27. jubalh

    Zash, so far it was maintaining and now i'm slowly transitioning to active development

  28. Guus

    ah, then we probably should take it off of https://xmpp.org/software/clients.html

  29. jubalh

    but i can only do it in small time chunks because of other obligations

  30. zinid

    Guus, yes

  31. Zash

    Doesn't that happen by itself?

  32. jubalh

    closed quite some bugs in recent weeks, and now try to add new features

  33. Zash

    Nice!

  34. zinid

    jubalh, is it XEP-0412 compliant yet? :)

  35. Zash

    jubalh: Can I interest you in doing the timestamp update thing so it shows up on https://xmpp.org/software/clients.html ?

  36. jubalh

    zinid, didnt check, dont think so

  37. jubalh

    Zash, timestamp update thing?

  38. zinid

    heh

  39. Zash

    jubalh: https://github.com/xsf/xmpp.org/blob/master/data/README.rst

  40. rion

    hm Psi is not in the list.

  41. Zash

    rion: you too then ↑

  42. jubalh

    ah i thought timestamp update thing is somehow a xep ;)

  43. zinid

    yeah and please somebody remove OneTeam from the list :)

  44. jubalh

    you mean just updating the entry there

  45. Zash

    zinid: https://github.com/xsf/xmpp.org/pull/529

  46. jubalh

    sure i'll do this for profanity later toay

  47. goffi

    would be good to have a xmpp or email reminder for this timestamp thing, I haven't noticed it was off for SàT for a couple of months.

  48. zinid

    Zash, 👍

  49. rion

    hm update-entry.py also did this - "name": "Bruno the Jabber™ Bear", + "name": "Bruno the Jabber\u2122 Bear",

  50. Zash

    Normalization is fun!

  51. rion

    I'll remove this change and do PR

  52. jonas’

    yeah, python is by default very conservative about emitting JSON

  53. jubalh

    Zash, https://github.com/xsf/xmpp.org/pull/530

  54. Zash

    👍

  55. Ge0rG

    jubalh: which server software are you using?

  56. jubalh

    Ge0rG, prosody

  57. Ge0rG

    You can block spam with mod_firewall, I've heard

  58. jubalh

    Ge0rG, I myself block already via prosody. But this issue was not created by me, and I don't know whether the user runs his own server

  59. Guus

    > would be good to have a xmpp or email reminder for this timestamp thing, I haven't noticed it was off for SàT for a couple of months. That kind of defeats the purpose of having the timeout.

  60. Guus

    But you can easily add a recurring reminder in your own calendar. 😉

  61. goffi

    Guus: why would that be defeating the purpose? A reminder doesn't prevent the manual update, which is the real indicator of project activity.

  62. Ge0rG

    goffi: caring enough to have your own reminder is even more indicatior of project activity.

  63. zinid

    I disagree

  64. zinid

    that's only an indicator that the project author enabled the reminder

  65. goffi

    Ge0rG: Guus: it forces me to install a calendar or something to set up a reminder, while for XSF it's just about a script in cron which do an XMPP send.

  66. Ge0rG

    goffi: what about you configuring a cron which do an XMPP send?

  67. goffi

    Ge0rG: that exactly what I'm asking for

  68. Ge0rG

    goffi: essentially everybody in XSF is absolutely overloaded with work.

  69. goffi

    on clients dev side it mean that they have to setup a server, make a regular sync with git repos, and do a cron to check that. And trust me all client devs are overloaded too.

  70. Ge0rG

    goffi: you don't need any of that. Just a cron job: `30 8 21 2 * echo 'renew my xmpp.org software'`

  71. goffi

    Ge0rG: supposing all client devs have a anacron or similar available, and check logs. Just this morning has shown that 2 clients were not visible because devs have missed it. As a result, the list of client is not up to date. If think it's a pity as it could be easily fixed. But not need to talk about that for hours.

  72. Ge0rG

    goffi: I'm sure you have read the rationale in https://xmpp.org/2017/03/new-xmpp-software-listing-rules/

  73. goffi

    Ge0rG: yes I know that, I don't see how it changes any bit of what I've said.

  74. flow

    https://news.ycombinator.com/item?id=19216077

  75. Andrew Nenakhov

    I, for one, think that email is just a xep

  76. Ge0rG

    https://news.ycombinator.com/item?id=19216252 sarcasm overflow!

  77. Ge0rG

    https://slashdot.org/story/99/01/04/1621211/open-real-time-messaging-system

  78. pep.

    Ge0rG, please reply that? :P

  79. Seve

    o/

  80. Seve

    ralphm, do we have meeting today?

  81. Guus

    I can't make it

  82. Guus

    In car

  83. Guus

    Traffic jam now

  84. Seve

    No worries Guus, take care

  85. MattJ

    I'm semi-around, have a bad headache... so I won't complain if we skip this week

  86. Seve

    MattJ, doesn't look like Board is present so.. :) Get well soon

  87. MattJ

    Thanks

  88. zinid

    > https://news.ycombinator.com/item?id=19216252 sarcasm overflow! I also replied 🙂

  89. zinid

    https://news.ycombinator.com/item?id=19216963

  90. Ge0rG

    🍿

  91. Ge0rG

    Andrew Nenakhov: so I charged my iPhone now. Xabber beta on TestFlight is a month old. My xabber.com account shows as "offline", despite being activated. The first tab (messages?) is empty and the add dialog has no action buttons. The second tab is completely blank.

  92. Ge0rG

    do you need a video of that?

  93. oli

    of you eating 🍿

  94. Ge0rG

    https://upload.yax.im/upload/73-dxDyvscbeeqyY/XabberFail.mp4

  95. Andrew Nenakhov

    Ge0rG, We didn't give this area any work. Looking for other things to marvel at.

  96. Ge0rG

    Andrew Nenakhov: by "this area" you are speaking of Xabber/iOS?

  97. jonas’

    I think Ge0rG is trying to say that the current UI as-is is confusing to him and it appears to be not working at all

  98. Ge0rG

    jonas’: there is "confusing" and there is "broken".

  99. jonas’

    I have to agree that all those empty fields are extremely confusing/misleading/broken-looking

  100. Andrew Nenakhov

    Hard stuff is not adding contacts, but consistently working with message archive

  101. Ge0rG

    Andrew Nenakhov: I can not login. I can not send messages. What should there be in that consistently hard message archive?

  102. Ge0rG

    And there are no offline messages on xabber.com

  103. Andrew Nenakhov

    Yes! Offline messages is an outdated concept.

  104. Andrew Nenakhov

    Ge0rG, I can log in, can send messages. If you can't, file an issue with test accounts on your server. Probably smth wrong with that.

  105. jonas’

    isn’t the video showing xabber.com as serevr?

  106. Andrew Nenakhov

    Hardly. Registration on that server is not free.

  107. oli

    login, online and messages are outdated concepts

  108. Ge0rG

    > Registration on that server is not free. That would be a better error message than "Offline".

  109. Ge0rG

    so yay, I can login to xabber.org but not to .com.

  110. Ge0rG

    now I have two accounts configured with no way to delete the broken one.

  111. Ge0rG

    But I still can't add contacts or send messages.

  112. Andrew Nenakhov

    Ge0rG, try doing it an iOS way.

  113. Ge0rG

    Andrew Nenakhov: doing what, what way?

  114. Andrew Nenakhov

    Ge0rG, > now I have two accounts configured with no way to delete the broken one.

  115. Andrew Nenakhov

    That is done the iOS way

  116. Ge0rG

    By swiping it? I tried.

  117. zinid

    oh, I'm getting downvoted on HN, lovely

  118. Ge0rG

    zinid: they know a troll. :P

  119. Andrew Nenakhov

    > By swiping it? I tried. Go to connection settings

  120. Ge0rG

    Andrew Nenakhov: been there

  121. zinid

    Ge0rG, any reply to matrix talibans is trolling, okay

  122. Ge0rG

    zinid: not any. Just yours 😁

  123. jonas’

    c’mon, Ge0rG

  124. Andrew Nenakhov

    https://xmpp.redsolution.com/upload/4bddf4f264f5c6577f16551f16a0abdf3f7ff84d/BhZOF4b0/IMG_20190221_205419.jpg

  125. zinid

    speaking about xmpp promotion

  126. Andrew Nenakhov

    In Xabber iOS adding contacts, and settings in general are the least worked on parts. Cause they are too trivial and in inconsequential.

  127. Ge0rG

    Andrew Nenakhov: now *this* is fucking well hidden. Settings -> Account -> Connection -> all the way down to the basement

  128. Ge0rG

    Andrew Nenakhov: why isn't it at the bottom of Account?

  129. zinid

    Ge0rG, then reply to matrix dude something, stoping eating pop-corn, or just take your ass and upvote those who replied

  130. debacle

    good, it supports stream compression

  131. Andrew Nenakhov

    We know we can do it any time putting in a couple of days of work

  132. Ge0rG

    > We know we can do it any time putting in a couple of days of work Awesome.

  133. Andrew Nenakhov

    So why wasting time on that when we have more potentially deal breakers in front of us?

  134. Ge0rG

    Andrew Nenakhov: so what *are* you working on?

  135. Ge0rG

    New-MUC?

  136. jonas’

    itym GC1.0-NIH

  137. Andrew Nenakhov

    Like a library to decode/encode ogg for example

  138. jonas’

    aren’t there libraries to do that already?

  139. Ge0rG

    You know that saying about you needing to learn walking before starting to fly?

  140. Andrew Nenakhov

    jonas’, you'd be surprised, but no, there is no ogg lib for iOS

  141. Andrew Nenakhov

    In 2019!

  142. jonas’

    thefuck

  143. jonas’

    if this is for telephony, go straight to opus

  144. Ge0rG

    Andrew Nenakhov: okay, congratulations. you have explained to me how to use the account setup part of your non-working client

  145. Andrew Nenakhov

    That's exactly what we went for

  146. Ge0rG

    Andrew Nenakhov: why can't I send and receive fucking text messages, like it's 2002?

  147. Andrew Nenakhov

    Ge0rG, this client is not even released

  148. Andrew Nenakhov

    Ge0rG, you can't send messages because you are lame

  149. Ge0rG

    Andrew Nenakhov: you know that part about "public beta tests"?

  150. Ge0rG

    you announce it. People test it and report back. Unless they realize after five minutes that it's a broken mockup with your company logo on top

  151. oli

    you'are all a bunch of neurons

  152. Ge0rG

    Andrew Nenakhov: why can't I *receive* messages, then?

  153. Andrew Nenakhov

    Ge0rG, cause you are lame, I guess. For me Xabber works extremely well now.

  154. Andrew Nenakhov

    Those parts of it that work, at least ;)

  155. Ge0rG

    Andrew Nenakhov: send a message to ge0rg@xabber.org

  156. zinid

    Andrew Nenakhov, only ass-ugly yaxim works for him

  157. Ge0rG

    The most funniests thing is this: I receive back a 0184 receipt, but the message doesn't arrive in Xabber.

  158. Ge0rG

    Andrew Nenakhov: Ha! I got a notification from you. Tapped it. Xabber crashed.

  159. zinid

    Ge0rG, last time you told me to file a bug report when I said something like that about another client

  160. zinid

    Ge0rG, so go file a fucking bug report!

  161. Ge0rG

    zinid: why? The developer doesn't believe me anyway. I'm a liar.

  162. jonas’

    maybe with a stacktrace they will

  163. Andrew Nenakhov

    Most likely the version on test flight is fairly old.

  164. zinid

    Ge0rG, because you're indeed a liar?

  165. Ge0rG

    > Most likely the version on test flight is fairly old. Yes. One month.

  166. jonas’

    okay, at this point, I’d like to point out to *all* participants of this conversation (yes, you too, Ge0rG), that the level of toxicity you’ve reached is terrible and you all should take a step back.

  167. Alex

    jonas’: thank you (Y)

  168. Ge0rG

    jonas’: sorry. I'm calm now.

  169. oli

    🍿 no, they are just starting...

  170. jonas’

    Ge0rG, if you don’t want to debug xabber, then just don’. Andrew Nenakhov, if you want Ge0rG to help you make xabber better (because I don’t doubt that there are issues), please point out the info you need in bugreports and how Ge0rG can gather it (mind that he’s not an iOS dev).

  171. jonas’

    thanks

  172. Andrew Nenakhov

    Xabber is not even a beta release, it's a rolling alpha builds. Some parts of it work (and do it great. Like, you've seen many clients that load recent chats history in a consistent way?). Some can react to it positively, some can go to very trivial to do areas of app and point fingers.

  173. Andrew Nenakhov

    So I actually don't care for pointed fingers. :) We know what we do and why we do it in this exact order, and we'll release when we're ready.

  174. Ge0rG

    🤐

  175. zinid

    I would rather suggest to Andrew Nenakhov to stop paying attention to Ge0rG since he's known hypocrite with double standards. And rather focus on client development - the task Ge0rG definitely failed 🙂

  176. zinid

    now I shut up 😀

  177. Andrew Nenakhov

    Lol )

  178. Andrew Nenakhov

    Also, better check this niiiiice vCard view

  179. Andrew Nenakhov

    https://xmpp.redsolution.com/upload/4bddf4f264f5c6577f16551f16a0abdf3f7ff84d/TJKNGQTe/IMG_20190221_211000209.jpg

  180. jonas’

    that’s indeed nice

  181. Andrew Nenakhov

    jonas’, thanks

  182. jubalh

    question regarding OMEMO: "A random preKeyPublic entry is selected, and used to build an SignalProtocol session." why a random one from the list?

  183. Andrew Nenakhov

    To minimize conflicts, I guess

  184. Ge0rG

    there is no protocol support to tell the server "give me a unique prekey"

  185. jubalh

    ah later one we remove a key from the list, I see

  186. jubalh

    got it got it :)

  187. jubalh

    so lets say 20 preKeyPublic entries got published, which is hte minimum as i understand it, and i have 5 clients online. als they choose a random key. if they collide how is that detected again? i'm not clear about this part

  188. Ge0rG

    jubalh: as soon as you used a prekey, the other side is supposed to update the list in PEP

  189. pep.

    Ge0rG, "it depends"

  190. vanitasvitae

    Once your client receives a prekey message for a certain prekey, it deletes said key. So if yet another client builds a session with that exact key, your client will be unable to decrypt that prekey message.

  191. pep.

    vanitasvitae, you means once you have confirmation that the session is initiated, right?

  192. pep.

    (I also need to understand the thing as I fear I'm going to spend time debugging it in the near future)

  193. vanitasvitae

    Hehe

  194. vanitasvitae

    > vanitasvitae, you means once you have confirmation that the session is initiated, right? ?

  195. vanitasvitae

    It deletes the prekey after it successfully decrypted the prekey message which initiates a session.

  196. pep.

    Right

  197. pep.

    Oh, wait so, you to me and me to you, that's two different sessions?

  198. Ge0rG

    Whoever invented per device keys shall burn in hell forever

  199. pep.

    master key has other disadvantages fwiw

  200. lovetox

    pep. a session can have more than one stage here

  201. lovetox

    first you chose a prekey and send X messages, thats stage 1, it has not yet the full security propertys

  202. lovetox

    so you have a session in stage 1

  203. lovetox

    after some time the other side answers, this pushs the session into stage 2

  204. lovetox

    and from that point on you have all the propertys like FS and what not

  205. lovetox

    in stage one its like pgp i think

  206. lovetox

    in the sense that it has no FS, if someone gets your secret key he can decrypt all past and future message of a stage 1

  207. lovetox

    session