-
Tobias
do we have a meeting todayß✎ -
Tobias
do we have a meeting today? ✏
-
Kev
We do.
-
Kev
I just have to survive until then (not feel great yesterday/today)
-
Kev
We've got the TLS/DNSSEC/Dialback ProtoXEP and killing 27 with fire on the agenda.
-
Tobias
ahh..ok
-
m&m
meeting in 10?
-
stpeter
yep
-
stpeter
AFAIK
-
m&m
stpeter: I have a question for you
-
stpeter
m&m: I have an answer for you!
-
m&m
how do you deal with the RC versions of Draft XEPs?
-
stpeter
ah
-
stpeter
undocumented :-)
-
m&m
that is not covered in the README (-:
-
stpeter
yeah
-
stpeter
first we make sure that they have <interim/> element the header
-
m&m
we can have this discuss on the editor@ list
-
stpeter
in the header
-
stpeter
sure
-
fippo
oh kev?
-
Kev
Tada
-
Kev
1) Rolls
-
Lance
here
-
fippo
here, now officially being an &yeti
-
Kev
Congrats :)
-
Kev
Tobias?
-
Kev
Have poked Matt.
-
Tobias
there
-
Kev
OK.
-
Kev
2) Do we want to burn 27 with fire?
- m&m vaguely recalls MattJ sending apologies?
-
Kev
m&m: Thanks. Not sure why I missed that, will check later.
-
Lance
What are the problems with 27?
-
Kev
Lance: It's fundamentally broken.
-
stpeter
it would be good to document those, I suppose, if someone is motivated to do so
-
Tobias
Lance, http://wiki.xmpp.org/web/XMPP_E2E_Security#Comparative_Overview first row
-
fippo
and the requirements "for privacy and security features in a well-rounded instant messaging system" have changed since 2004.
-
Lance
Quite. I'd just like us to have a list of reasons to note when we kill it with fire
-
Kev
Lance: But, it encrypts but doesn't sign messages, and signs presence but without replay protection.
-
Lance
As long as we can point to 'this is why', +1 fire
-
m&m
PGP doesn't have message integrity protection
-
Dave Cridland
m&m, Really?
-
m&m
from the last I looked
-
Tobias
m&m, PGP in general or the way XEP-0027 uses it?
-
m&m
it was added to CMS fairly recently, but I don't see updates to PGP for that
-
Kev
I /think/ the right path is that it's currently Active, so it should be moved to Deprecated and then Obsolete.
-
Kev
So I think 3) Move XEP-0027 to Deprecated
-
Kev
+1
-
Lance
+1
-
m&m
Tobias: in general, to the best of my knowledge
-
MattJ
Hey
-
Kev
Afternoon.
-
fippo
'+1 as well
-
MattJ
+1 to #2, +1 to #3 :)
-
Tobias
+1
-
m&m
Tobias: let's talk later this week, I can help you update the E2E wiki
-
Kev
3) Move XEP-0027 to Obsolete
-
Kev
+1
-
stpeter
heh
-
m&m
(-:
-
stpeter
wouldn't that be 4)
-
Dave Cridland
Work that state machine.
-
Tobias
m&m, happy to do that :) i'd be great to have a good overview of what solutions we have and how they all failed :D before we start another one
-
Tobias
Kev, +1 on that
-
fippo
... +1 to burning it with fire, +1 to deprecating it, +1 to obsoleting it
-
Lance
+1 obsolete
-
Kev
I think that's everyone agreed to obsolete it. It's a shame that only the author can retract, because that seems more appropriate than Obsolete, but there we go.
-
Kev
4) http://xmpp.org/extensions/inbox/starttls-dialback.html Accept?
-
Kev
I need to vote on list on this.
-
Lance
+1 accept, but it needs some editing & clarifications
-
Dave Cridland
Kev, Retracted is only moved to from Experimental actually.
-
Lance
in particular, the text in example 16 confused me
-
Kev
Dave Cridland: By the state machine, rather than the text, I think.
-
Tobias
+1 on accepting that
-
Dave Cridland
Lance, I'm certainly not going to claim it's ready for anything more than Experimental.
-
fippo
the text in example should say something along the lines of "capulet ignores the EXTERNAL offer, despite what xep-0178 says, and uses dialback"
-
MattJ
+1 to accept
-
Kev
Assuming Fippo is +1, that leaves me on-list.
-
MattJ
I'll note that I thought it was an informational/best practice document, until it started getting into protocol details
-
fippo
oh well, 0178 only says "Server1 considers EXTERNAL to be its preferred SASL mechanism", not that it should do that
-
Dave Cridland
"In this instance, Capulet ignores the EXTERNAL offer (counter to the advice in XEP-0178), and uses with dialback"
-
Kev
5) Date of next.
-
Dave Cridland
MattJ, It *could* be Informational; I leant toward Standards Track because it can be tested.
-
Kev
SBTSBC?
-
Lance
wfm
-
Tobias
wfm
-
fippo
wfm
- stpeter agrees with Dave about testability
-
m&m
Re: starttls-dialback, does the Council want it to be Standards Track or Informational?
-
Lance
given dave's comment, i lean standards track
-
MattJ
time/date wfm
-
MattJ
m&m, as is, standards track
-
Kev
I need to have read it before I commend
-
Kev
Or comment, for that matter.
-
stpeter
I commend you for commenting
-
Kev
I note that other similar things (e.g. 178) are Informational.
-
fippo
so is 0185. I have no strong preference here.
-
stpeter
and they might be better as standards track, but I'd need to look again
-
Dave Cridland
stpeter, When he's commented, he'll command.
-
m&m
I will poll the council again just prior to advancement
-
Kev
I'm happy enough the ST, there isn't a clear Right Answer here, to me.
-
Lance
oh, fippo: is 185 obsoleted by 220?
-
Kev
I'll give it a read and comment/commend/command onlist.
-
Kev
5) Any other business
-
fippo
lance: no, 0185 is just a nice way to implement 0220
-
stpeter
I'm working on an update to XEP-0138
-
Dave Cridland
Right, XEP-0185 is not required for interop, so Informational seems sensible. XEP-0178 is again testable, but I *think* it's merely expanding on RFC 3920 - I wonder if it's now covered by RFC 6120?
-
stpeter
but no action by Council required at this time
-
Lance
ah, ok. i saw "however, the recommendations in this document have been incorporated into Server Dialback (XEP-0220) [2]." and was curious
-
Tobias
no AOB from me
-
Lance
no AOB here
-
Kev
I think we're done then.
-
Kev
Thanks all.
-
m&m
AOB from XEPs
-
Kev
m&m: Just in time.
-
Kev
What've you got?
-
m&m
XEP-0124 is available now to review
-
Kev
m&m: So you want a vote on that next meeting?
-
m&m
Kev: that's your decision (-
-
m&m
but all of the changes are available in 1.10rc3
-
m&m
http://xmpp.org/extensions/tmp/xep-0124-1.11rc3.html
-
Kev
I'm not sure it is, actually.
-
Kev
I think once we get told you want a vote on a new version, we have to do it :)
-
m&m
whether it's the next meeting or sometime later is your decision
-
Kev
Fair.
-
m&m
(-:
-
Kev
OK, that's in my TODO.
-
Kev
Anything else?
-
m&m
it's up for your review, and yes a vote is expected (-:
-
m&m
nothing from me … will get the newest protoXEP up before the end of the week
-
Kev
Ta.
-
Kev
Then we're done.
-
Kev
Thanks all
- Kev bangs the gavel
-
MattJ
Thanks Kev
-
Tobias
thank you