-
jonasw
you know that I’m not fond of Ephemeral messages, but voting on it based on "it is NTP over XMPP" was incorrect I think. I was unable to find any NTPy thing in there, and the person who suggested that on the ML backed out of that claim.
-
jonasw
also, I’d like to see reasons for the other -1s
-
Dave
Well, it's synchronizing timers and things. I'm basically not convinced of the security guarantees it's possible to offer around ephemeral messaging in general, and this seemed a particularly poor (and over complicated) rendition.
-
jonasw
it’s not really synchronizing timers. all it does is saying "hey, your client should keep this message for at most N seconds"
-
jonasw
there’s no synchronization going on
-
Kev
There's synchronisation of what you want the timers to be.
-
Kev
There isn't synchronisation of the time.
-
Kev
At least, given my reading.
-
Kev
But given that I found it very hard to read and extract what it intended people to do, I think that's a fair reason to reject it at the moment.
-
jonasw
I disagree. The ability to extract the intent from the text is (in this case, I think) mostly matter of language and structure, and thus editorial. That should not be reason to reject it from going to Experimental.
-
jonasw
(as much as I dislike the thing)
-
flow
what jonasw said
-
Kev
I'm happy for an Editor to try to clear it up so that it's possible to read it sensibly, but as things stand I can't judge the XEP properly because I can't understand what it's trying to do properly.
-
jonasw
so we’re going to reject this based on lack of manpower in the editor team, essentially? ;-)
-
Kev
I'm fairly sure that once it's clear what it's trying to do it'll be clear that it would be rejected for technical reasons.
-
Kev
So no, not really.
-
jonasw
meh
-
Kev
From what I can tell, it's got this overcomplicated and underspecified synchronisation protocol for the expiry values, which seems out of place here.
-
Kev
As well as having this weird overlap between "This isn't for security, it's just for hinting" and "Here's all this extra work we're doing to try to guarantee security".
-
daniel
i see if i can find some time next week to come up with a protoxep that’s just the hint
-
jonasw
this might offend the authors of that XEP
-
jonasw
different question: would adding a note which hints to how things were done in the past (clearly marked up as "note" and "things in the past, but still around in some implementations") be editorial?
-
jonasw
I’m "asking for a friend" who wants to add such a note to XEP-0045.
-
Kev
"It depends" is I think the answer.
-
Kev
I'd normally expect editorial changes in a Draft XEP to be typos and grammar corrections and things.
-
jonasw
okay
-
jonasw
gonna make a proper PR instead
-
jonasw
there you go: https://github.com/xsf/xeps/pull/664
-
Dave
jonasw, You can't possibly be arguing that a XEP that's too badly written for council to understand should be accepted, can you?
-
jonasw
Dave, when you put it that way it sounds horrible.
-
jonasw
I don’t think though that it’s impossible to understand and that it can be fixed
-
Dave
So you're agreeing it can't be fixed, then? ;-)
-
jonasw
argh
-
jonasw
lanugage is hard
-
jonasw
it can be fixed I mean
-
Dave
^^ irony.
-
jonasw
yeah
-
Dave
The thing is, I don't believe one can design something that gives a message an expiry for security reasons in an open interoperable way. To get those guarantees, you need restrictions on the server and clients that are unprovable.
-
jonasw
yes
-
jonasw
but isn’t it worthwhile to have a common way to do this, even if it only makes sense in specialised deployments?
-
jonasw
that would reduce the setup/development cost for those deployments.
-
Kev
Maybe, yes, but I think most of what's in the XEP is trying and failing to get security guarantees it can't achieve.
-
daniel
Dave: but arguably it is still valuable to have it standardized and then get library support so people who are using xmpp in closed environments (which I guess is the majority of people) have working solution ready
-
Kev
Yes.
-
Dave
I live in "specialised deployments", so I appreciate the sentiment. We hgave XEPs for adding classifications etc to messaging, for example. I'm all in favour of that. But those cases still provide guarantees outside of those environments. I'd be worried about the implication, so I'd want - from the outset - a clear scope on such a XEP.
-
Kev
But I'm not convinced that /this/ document is the way we would choose to standardise it for closed environments either.
-
Dave
Kev, +1 there.
-
daniel
Kev: no it's not
-
jonasw
okay fine
-
jonasw
now I wish those arguments make it into the council minutes
-
jonasw
because having "it does NTP" as rejection reason there isn’t great
-
daniel
also i think one has to use signal to understand what a timer setting update is
-
daniel
because i dont
-
daniel
i mean i get that you annotate each message with a burner. but why do you need to send updates?
-
daniel
and what does it update?
-
jonasw
the update is intended to make sure that the other side will use the new timer value on their next message
-
jonasw
i.e.: A and B have agreed on timer value X A wants to use timer value Y, so sends timer update B sends their next message with timer value Y
-
flow
FWIW I assumed timer updates to sync all devices a a user
-
jonasw
ah, other devices of the same user, too
-
daniel
ok. a) weirdly i have never been requested to implement this feature b) arguably it should use different syntax then
-
daniel
is this only signal that does this? where my contact can dictate the timeout message?
-
jonasw
I really wonder what type of people use this feature.
-
jonasw
(well, except people who really, truely need things like that)
-
daniel
that seems a bit dangerous. so if i'm just in the process of sending a password or other delicate information my contact increases the time out from 60s to 5 years
-
jonasw
good point
-
pep.
But this is not a security feature after all so I shouldn't really on this to hide a password right. Or is it still in the context of closed environments
-
jonasw
I think the latter, pep.
-
Kev
That's the confusion. It's both trying not to be a security document, and also trying to be a security document.
-
daniel
no it’s a just a hint; so in case of passwords it's like here i'm sending you information which you should copy paste into your password manager and then delete from the devices history
-
daniel
and arguably it is doing that job
-
daniel
(speaking about burner messages in general now. not that particular xep)
-
pep.
daniel, burner messages as in "marking messages as [sensitive/private]"?
-
daniel
no burner messages as in 'hey it's a good idea to delete that message after you mentally or (otherwise) processed that information
-
daniel
a friendly reminder between friends
-
pep.
k
-
daniel
a friendly reminder between friends is also what i'm going to call the XEP
-
daniel
so there wont be any confusion
-
pep.
err, s/really/rely in a previous sentence
-
Dave
pep., Marking messages as sensitive/private is already covered by XEP-0258, incidentally.
-
pep.
I see