Ge0rGI'm looking for public servers that have:
- IBR with a captcha
- Redirection from IBR, https://xmpp.org/extensions/xep-0077.html#redirect
- IBR and run ejabberd
MartinMaybe also ask in operators
Ge0rGMartin: right, thanks
moparisthebesthas joined
pep.jonas’, your ToS thing is up for the taking I assume? Talking about IBR
Jaehas joined
pep.I'm finally working on opening up my service and that's a requirement to me. (at least if we get things going I know I won't be stuck with http redirects forever)
pulkomandyhas joined
kikuchiyohas left
jonas’pep., -v please
pep.Long ago when we did gdpr stuff you proposed a tos spec
jonas’I know
jonas’you can invent something better than that, sure
jonas’I don’t intend to continue to work on it
rionhas joined
pep.Right that was my question. I might as well reuse the name :P
pulkomandyhas left
pulkomandyhas joined
jaehas joined
moparisthebesthas left
Jaehas left
asterixhas left
asterixhas joined
Jaehas joined
kikuchiyohas joined
pulkomandyhas left
moparisthebesthas joined
debaclehas left
moparisthebesthas left
DebXWoodyI'm going to implement XEP-0373. Just tried to add my JID like xmpp:user@domain.tld.
https://xmpp.org/extensions/xep-0373.html#openpgp-user-ids
gpg> adduid
Ihr Name ("Vorname Nachname"): xmpp:test@domain.tld
Email-Adresse:
Kommentar:
Sie haben diese User-ID gewählt:
"xmpp:test@domain.tld"
Bitte keine Emailadressen als Namen oder Kommentar verwenden
It's not possible, because gpg says: The name look like a email address. --quick-adduid is working.
pulkomandyhas joined
flowDebXWoody, that's more of an gpg API issue
DebXWoodyYes, but it should look like I did?
DebXWoodyAdd the xmpp URI as name and keep mail and comment empty.
flowI haven't verified that gpg will then produce the according rfc4880 subpacket, but it's not unreasonable that it does
flowIIRC gpg provides a dump command to inspect the rfc4880 structure
flowone potentially want to use that to verify that the result is compliant to xep373✎
pep.I think I used xmpp URIs in the email or comment field last time I tried✎
flowyou potentially want to use that to verify that the result is compliant to xep373 ✏
Jaehas left
pep.I think I used xmpp URIs in the email last time I tried ✏
flowI'd guess either of name or mail address is fine
pep.flow, hmm, that'S gonna be slightly problematic if gpg doesn't accept it. Assume most implementations will use gpg / gpgme or similar for this :/
flowpep., well they should use the high level gpg api for taht
flowbesides older gpg versions are known to have a problematic api
flowmostly because older gpg versions had no api, so gpg APIs where build around the gpg command line interface and parsed the gpp output
flowevery reasonable OpenPGP API lets you create the User ID Packet with an arbitrary string
flowcause that is what rfc4880 specifies: https://tools.ietf.org/html/rfc4880#section-5.11
pep.ok
flowin the example DebXWoody gave, gpg is trying to prevent the user doing something uncommon (assuming the user wants to use gpg as gpg believes it should be used)
lovetoxhas left
flowthey should use the high level gpg api for taht → they should *not* use the high level gpg API for that
lovetoxhas joined
lovetoxgpg lets you do this
lovetoxyou just have to pass the proper commands
lovetoxthere is a command that lets you skip all those checks
lovetoxfor example --allow-freeform-uid
lovetoxDisable all checks on the form of the user ID while generating a new one.
pep.One wouldn't use gpg directly though right? :/
pep.I mean gnupg
lovetoxif the command line app will not support something,i think your chances are low that you can do it programmatically
Holgerhas left
flowpep., yes, you would want to use an library providing an OpenPGP API
flowfor gnugp there is gpgme, but I can't comment on its suitability nor usability
flowbut there a dozens of alternatives
pep.dozens?
flowhttps://neopg.io/
flowhttps://sequoia-pgp.org/
flowpaul's pgpainless (java)
flowhttps://www.openpgp.org/software/developer/
lovetoxgpgme is not very advanced
lovetoxi remember when i implemented gpg in gajim, it didnt even had an api for importing a key
lovetoxthe python bindings i mean
flowthe situation of python openpgp APIs was not good a few years ago, I hope that changed
lovetoxi think someone worked on the python gpgme bindings
lovetoxand it can do now more but didnt look since a year
pep.Yeah last time I checked was the berlin sprint last year
pep.Using the Rust binding of gpgpme. I might use sequoia someday if I tackle this again
flowsequoia is in very good standing
flowdefinetly something to look out for
pep.It's been a few years I've known about them, just never had the chance
Jaehas joined
Wojtekhas joined
pulkomandyhas left
asterixhas left
asterixhas joined
adrienhas left
pulkomandyhas joined
asterixhas left
asterixhas joined
asterixhas left
asterixhas joined
jaehas left
jcbrandhas left
Holgerhas joined
adrienhas joined
DebXWoodygpgme is ok: https://codeberg.org/xmpp-messenger/xmppc/src/branch/master/src/mode/pgp.c#L99
adrienhas left
pulkomandyhas left
moparisthebesthas joined
DebXWoodyI like the idea of XEP-0373 and 0027 is obsolete. But I don't get why there is https://xmpp.org/extensions/xep-0373.html#synchro-pep within XEP-0373? Is it ok to skip it or is the client in those case not XEP-0373? My key is on a Nitrokey / Smartcard and I would like to use this key for 0373. There is no need to sync the private key and there is also no need to create a new one for me.
Marchas left
Marchas joined
flowDebXWoody, nothing in xep373 mandates that this is mandatory-to-implement
DebXWoodyok
Jaehas left
Jaehas joined
flowthe xep(s) deliberately keep a degree of freedom here, while sketching a schema that could work to get the average users to use OpenPGP encrypted XMPP messages (without ideally even being aware that she/he does)✎
flowthe xep(s) deliberately keep a degree of freedom here, while sketching a scheme that could work to get the average users to use OpenPGP encrypted XMPP messages (without ideally even being aware that she/he does) ✏