jdev - 2020-05-19


  1. sonny has left

  2. sonny has joined

  3. sonny has left

  4. sonny has joined

  5. marc0s has left

  6. marc0s has joined

  7. waqas has left

  8. waqas has joined

  9. Wojtek

    tbh I don't know (personally) anyone that uses Slack so it is (was?) definitelly not geared towards them. personal opinion - for me using `@` just *feels* natural

  10. Wojtek has left

  11. alexis has left

  12. alexis has joined

  13. SouL has left

  14. sonny has left

  15. sonny has joined

  16. sonny has left

  17. sonny has joined

  18. Wojtek has joined

  19. Wojtek has left

  20. sonny has left

  21. sonny has joined

  22. sonny has left

  23. sonny has joined

  24. Yagizа has joined

  25. SouL has joined

  26. sonny has left

  27. sonny has joined

  28. sonny has left

  29. sonny has joined

  30. marc0s has left

  31. marc0s has joined

  32. waqas has left

  33. waqas has joined

  34. waqas has left

  35. waqas has joined

  36. sonny has left

  37. sonny has joined

  38. waqas has left

  39. waqas has joined

  40. paul has joined

  41. Yagizа has left

  42. wurstsalat has joined

  43. waqas has left

  44. sonny has left

  45. sonny has joined

  46. sonny has left

  47. sonny has joined

  48. MattJ

    The good thing about 372 is that people can choose clients (or configure) what feels natural for them, rather than having "competing" highlight styles

  49. defanor has joined

  50. paul has left

  51. strar has left

  52. strar has joined

  53. adrien has left

  54. adrien has joined

  55. pulkomandy has left

  56. pulkomandy has joined

  57. sonny has left

  58. sonny has joined

  59. sonny has left

  60. sonny has joined

  61. paul has joined

  62. pulkomandy has left

  63. pulkomandy has joined

  64. pulkomandy has left

  65. pulkomandy has joined

  66. Guus has left

  67. Guus has joined

  68. sonny has left

  69. rion has left

  70. rion has joined

  71. sonny has joined

  72. larma has left

  73. pulkomandy has left

  74. pulkomandy has joined

  75. larma has joined

  76. sonny has left

  77. sonny has joined

  78. sonny has left

  79. sonny has joined

  80. debacle has joined

  81. Kev has left

  82. pulkomandy has left

  83. pulkomandy has joined

  84. eta has left

  85. eta has joined

  86. jonas’

    Link Mauve, slack, and discord and various other platforms, to be fair

  87. Kev has joined

  88. Link Mauve

    jonas’, sure, I just won’t list them all every time. :p

  89. jonas’

    fair

  90. Yagizа has joined

  91. goffi has joined

  92. pulkomandy has left

  93. pulkomandy has joined

  94. kikuchiyo has joined

  95. kikuchiyo has left

  96. kikuchiyo has joined

  97. pulkomandy has left

  98. strar has left

  99. pulkomandy has joined

  100. goffi has left

  101. goffi has joined

  102. serge90 has left

  103. kikuchiyo has left

  104. kikuchiyo has joined

  105. pulkomandy has left

  106. kikuchiyo has left

  107. kikuchiyo has joined

  108. pulkomandy has joined

  109. kikuchiyo has left

  110. jonas’

    PSA to all implementors: - In SASL PLAIN, the client must not call SASLprep on the auth data (username, password). This is the server’s job. (RFC 4616 §2: https://tools.ietf.org/html/rfc4616 ) - In SCRAM, the client MUST call SASLprep on the password (RFC 5802 §2) and SHOULD call it on the username while allowing for unassigned codepoints (RFC 5802 §5.1). The server MUST call SASLprep on the username (RFC 5802 §5.1). It is the server’s responsibility to ensure that PLAIN data is properly SASLprep’d if PLAIN is offered together with SCRAM.

  111. jonas’

    this was discussed in prosody@, apparently we’ve got quite a few implementations which diverge from this behaviour.

  112. pulkomandy has left

  113. pulkomandy has joined

  114. kikuchiyo has joined

  115. pulkomandy has left

  116. Ge0rG

    it'll be big fun to get out of this mess again

  117. kikuchiyo has left

  118. flow

    jonas’, is there an issue if the client saslprep's when using plain?

  119. jonas’

    flow, if the backend on the server is for example a PHP user database with hashes which doesn’t SASLprep

  120. flow

    woudn't such a setup prevent sasl mechs that require client-side sasl prep?

  121. jonas’

    yes, but also for other reasons

  122. jonas’

    flow, you wouldn’t offer SCRAM then, because you don’t have the required server side data in that case

  123. jonas’

    only PLAIN

  124. Ge0rG

    I suppose that a server now needs to perform password checks on both the prepped and the unprepped value?

  125. jonas’

    I don’t think this is truly an issue for *most* deployments. I expect the deployments which implement SCRAM to do it right (but I may of course be wrong with that) and I expect issues only when PLAIN is involved

  126. jonas’

    e.g. when authenticating with PLAIN against a SCRAM store

  127. jonas’

    but that needs to be evaluated

  128. jonas’

    aaaand I was proven wrong

  129. jonas’

    yikes

  130. pulkomandy has joined

  131. sonny has left

  132. sonny has joined

  133. kikuchiyo has joined

  134. serge90 has joined

  135. kikuchiyo has left

  136. debacle has left

  137. kikuchiyo has joined

  138. kikuchiyo has left

  139. pulkomandy has left

  140. pulkomandy has joined

  141. pulkomandy has left

  142. pulkomandy has joined

  143. pulkomandy has left

  144. pulkomandy has joined

  145. strar has joined

  146. kikuchiyo has joined

  147. kikuchiyo has left

  148. pulkomandy has left

  149. pulkomandy has joined

  150. Guus

    Some download stats of the previous release of Openfire in the release notes of the latest release, at https://discourse.igniterealtime.org/t/openfire-4-5-2-is-released for those interested in weird stats. Also, we did a new release.

  151. pulkomandy has left

  152. pulkomandy has joined

  153. pulkomandy has left

  154. pulkomandy has joined

  155. kikuchiyo has joined

  156. kikuchiyo has left

  157. Martin

    >openfire_4_5_1_x64.exe 15170 oO

  158. pulkomandy has left

  159. eta has left

  160. eta has joined

  161. pulkomandy has joined

  162. debacle has joined

  163. sonny has left

  164. sonny has joined

  165. Guus

    Yeah, the userbase is Windows-heavy. I have no idea how much of these are individual downloads, scripted, etc, etc.

  166. Zash

    99.99999999% of downloads these days seem to be CI systems that download the world for each run

  167. Zash

    Top 1 downloader of Prosody is our CI

  168. Zash

    Reeeeeeally need to make it push based instead of having it poll constantly

  169. pulkomandy has left

  170. pulkomandy has joined

  171. pulkomandy has left

  172. pulkomandy has joined

  173. kikuchiyo has joined

  174. kikuchiyo has left

  175. pulkomandy has left

  176. kikuchiyo has joined

  177. kikuchiyo has left

  178. kikuchiyo has joined

  179. pulkomandy has joined

  180. pulkomandy has left

  181. pulkomandy has joined

  182. pulkomandy has left

  183. kikuchiyo has left

  184. kikuchiyo has joined

  185. kikuchiyo has left

  186. sonny has left

  187. sonny has joined

  188. pulkomandy has joined

  189. pulkomandy has left

  190. pulkomandy has joined

  191. kikuchiyo has joined

  192. SouL has left

  193. SouL has joined

  194. pulkomandy has left

  195. pulkomandy has joined

  196. kikuchiyo has left

  197. kikuchiyo has joined

  198. kikuchiyo has left

  199. pulkomandy has left

  200. pulkomandy has joined

  201. pulkomandy has left

  202. kikuchiyo has joined

  203. pulkomandy has joined

  204. lovetox has joined

  205. debacle has left

  206. kikuchiyo has left

  207. kikuchiyo has joined

  208. pulkomandy has left

  209. kikuchiyo has left

  210. pulkomandy has joined

  211. pulkomandy has left

  212. pulkomandy has joined

  213. pulkomandy has left

  214. lovetox has left

  215. pulkomandy has joined

  216. pulkomandy has left

  217. pulkomandy has joined

  218. amnesia has joined

  219. flow has left

  220. amnesia has left

  221. pulkomandy has left

  222. pulkomandy has joined

  223. Wojtek has joined

  224. Bartek has joined

  225. lovetox has joined

  226. Bartek has left

  227. Bartek has joined

  228. pulkomandy has left

  229. pulkomandy has joined

  230. Bartek has left

  231. pulkomandy has left

  232. flow has joined

  233. pulkomandy has joined

  234. kikuchiyo has joined

  235. amnesia has joined

  236. kikuchiyo has left

  237. strar has left

  238. strar has joined

  239. goffi has left

  240. alexis has left

  241. goffi has joined

  242. kikuchiyo has joined

  243. kikuchiyo has left

  244. pulkomandy has left

  245. kikuchiyo has joined

  246. lovetox has left

  247. pulkomandy has joined

  248. kikuchiyo has left

  249. Bartek has joined

  250. lovetox has joined

  251. Bartek has left

  252. kikuchiyo has joined

  253. amnesia has left

  254. kikuchiyo has left

  255. jonas’

    odd causalities (and casualties). Our discussion about what’s valid in nodeprep / the domainpart of JIDs spilled over to #powerdns, and people started playing around and then https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-02.html happened

  256. lovetox has left

  257. sonny has left

  258. sonny has joined

  259. xecks has left

  260. xecks has joined

  261. lovetox has joined

  262. kikuchiyo has joined

  263. kikuchiyo has left

  264. kikuchiyo has joined

  265. Zash

    fun

  266. lovetox has left

  267. amnesia has joined

  268. pulkomandy has left

  269. pulkomandy has joined

  270. lovetox has joined

  271. pulkomandy has left

  272. Yagizа has left

  273. Abelardo has joined

  274. pulkomandy has joined

  275. Joel has joined

  276. amnesia has left

  277. Abelardo has left

  278. pulkomandy has left

  279. pulkomandy has joined

  280. Joel has left

  281. kikuchiyo has left

  282. kikuchiyo has joined

  283. pulkomandy has left

  284. pulkomandy has joined

  285. strar has left

  286. strar has joined

  287. pulkomandy has left

  288. amnesia has joined

  289. debacle has joined

  290. edhelas has left

  291. amnesia has left

  292. kikuchiyo has left

  293. lovetox has left

  294. pulkomandy has joined

  295. kikuchiyo has joined

  296. kikuchiyo has left

  297. amnesia has joined

  298. kikuchiyo has joined

  299. amnesia has left

  300. kikuchiyo has left

  301. eta has left

  302. eta has joined

  303. kikuchiyo has joined

  304. waqas has joined

  305. strar has left

  306. strar has joined

  307. kikuchiyo has left

  308. edhelas has joined

  309. alexis has joined

  310. wurstsalat has left

  311. wurstsalat has joined

  312. larma has left

  313. larma has joined

  314. larma has left

  315. larma has joined

  316. goffi has left

  317. flow has left

  318. paul has left

  319. debacle has left

  320. kikuchiyo has joined

  321. kikuchiyo has left

  322. Neustradamus has left

  323. xecks has left

  324. sonny has left

  325. sonny has joined

  326. Neustradamus has joined

  327. Neustradamus has left

  328. sonny has left

  329. sonny has joined

  330. Neustradamus has joined