jdev - 2021-02-02

  1. SouL has left

  2. stpeter has left

  3. suohua has left

  4. mikeye has joined

  5. paul has left

  6. Vaulor has left

  7. mikeye has left

  8. debacle has left

  9. mathieui has left

  10. mac has joined

  11. suohua has joined

  12. Yagizа has joined

  13. SouL has joined

  14. suohua has left

  15. suohua has joined

  16. suohua has left

  17. suohua has joined

  18. suohua has left

  19. junaid has joined

  20. junaid has left

  21. suohua has joined

  22. junaid has joined

  23. junaid has left

  24. suohua has left

  25. Vaulor has joined

  26. alacer has left

  27. alacer has joined

  28. SouL has left

  29. belong has left

  30. sonny has left

  31. sonny has joined

  32. marmistrz has left

  33. Alex has left

  34. SouL has joined

  35. paul has joined

  36. wurstsalat has joined

  37. Alex has joined

  38. mac has left

  39. pasdesushi has joined

  40. pasdesushi has left

  41. asterix has left

  42. asterix has joined

  43. asterix has left

  44. asterix has joined

  45. alex-a-soto has left

  46. alex-a-soto has joined

  47. pasdesushi has joined

  48. mikeye has joined

  49. goffi has joined

  50. pasdesushi has left

  51. pasdesushi has joined

  52. alacer has left

  53. pasdesushi has left

  54. pasdesushi has joined

  55. pasdesushi has left

  56. pasdesushi has joined

  57. alacer has joined

  58. pasdesushi has left

  59. Wojtek has joined

  60. tsk has left

  61. tsk has joined

  62. pasdesushi has joined

  63. pasdesushi has left

  64. oibalos has joined

  65. marmistrz has joined

  66. mikeye has left

  67. pasdesushi has joined

  68. pasdesushi has left

  69. pasdesushi has joined

  70. pasdesushi has left

  71. mikeye has joined

  72. asterix has left

  73. asterix has joined

  74. pasdesushi has joined

  75. pasdesushi has left

  76. Wojtek has left

  77. suohua has joined

  78. marmistrz has left

  79. Wojtek has joined

  80. suohua has left

  81. mathieui has joined

  82. mikeye has left

  83. suohua has joined

  84. suohua has left

  85. alacer has left

  86. pasdesushi has joined

  87. alacer has joined

  88. pasdesushi has left

  89. belong has joined

  90. SouL has left

  91. debacle has joined

  92. suohua has joined

  93. SouL has joined

  94. mac has joined

  95. mikeye has joined

  96. pasdesushi has joined

  97. pasdesushi has left

  98. mikeye has left

  99. pasdesushi has joined

  100. pasdesushi has left

  101. pasdesushi has joined

  102. suohua has left

  103. mac has left

  104. pasdesushi has left

  105. pasdesushi has joined

  106. pasdesushi has left

  107. mac has joined

  108. Wojtek has left

  109. pasdesushi has joined

  110. pasdesushi has left

  111. pasdesushi has joined

  112. pasdesushi has left

  113. pasdesushi has joined

  114. fade123 has left

  115. pasdesushi has left

  116. pasdesushi has joined

  117. Wojtek has joined

  118. pasdesushi has left

  119. suohua has joined

  120. pasdesushi has joined

  121. pasdesushi has left

  122. pasdesushi has joined

  123. pasdesushi has left

  124. pasdesushi has joined

  125. pasdesushi has left

  126. pasdesushi has joined

  127. suohua has left

  128. pasdesushi has left

  129. pasdesushi has joined

  130. mac has left

  131. pasdesushi has left

  132. pasdesushi has joined

  133. pasdesushi has left

  134. marmistrz has joined

  135. marmistrz has left

  136. serge90 has left

  137. stpeter has joined

  138. serge90 has joined

  139. fade123 has joined

  140. stpeter has left

  141. Guus has joined

  142. marmistrz has joined

  143. suohua has joined

  144. Guus has left

  145. lovetox has left

  146. marmistrz has left

  147. marmistrz has joined

  148. lovetox has joined

  149. floretta has left

  150. marmistrz has left

  151. floretta has joined

  152. SouL has left

  153. Vaulor has left

  154. SouL has joined

  155. Vaulor has joined

  156. lovetox has left

  157. Wojtek has left

  158. alacer has left

  159. alacer has joined

  160. Wojtek has joined

  161. lovetox has joined

  162. marmistrz has joined

  163. suohua has left

  164. alacer has left

  165. alacer has joined

  166. marmistrz has left

  167. stpeter has joined

  168. marmistrz has joined

  169. floretta has left

  170. floretta has joined

  171. fade123 has left

  172. fade123 has joined

  173. esil has joined

  174. oibalos has left

  175. debacle

    Asking around... Has somebody experience with client certificates (0178)? If so, which server, which client? I need "something" to get started, but no drugs please, just a hint.

  176. debacle

    Asking around... Has somebody experience with client certificates (XEP-0178)? If so, which server, which client? I need "something" to get started, but no drugs please, just a hint.

  177. oibalos has joined

  178. Sam Whited

    I just recently started an implementation of this if you have specific questions. I haven't done the verification properly because I want to upstream that into the X509 library I'm using, but I think I've done most of the XMPP specific bits

  179. asterix has left

  180. asterix has joined

  181. marmistrz has left

  182. Kev

    M-Link and Swift both do cert auth. M-Link doesn't help you much I guess, but Swift might.

  183. oibalos has left

  184. adityaborikar has left

  185. adityaborikar has joined

  186. fade123 has left

  187. fade123 has joined

  188. debacle

    Sam Whited Kev So far I'm probably just too stupid to configure ejabberd properly to accept a cert login from Gajim. But I'll try with Swift - at least that would make it easier to find the culprit.

  189. belong has left

  190. belong has joined

  191. adityaborikar has left

  192. oibalos has joined

  193. adityaborikar has joined

  194. debacle

    Kev OK, it doesn't work with neither Gajim nor Swift, so the under-educated server admin (myself) is probably to blame.

  195. debacle

    I probably totally misconfigured ejabberd. Now I'll try to totally misconfigure prosody.

  196. marmistrz has joined

  197. belong has left

  198. belong has joined

  199. Yagizа has left

  200. lovetox

    debacle, i once wanted to test Gajims impl and set up my server with certs and client certs

  201. lovetox

    shit is too complicated

  202. debacle

    lovetox Yes, I wouldn't ask my aunt to do it ;-)

  203. debacle

    So you did not succeed?

  204. lovetox

    i removed client cert support from Gaim, i hope that answers your question

  205. adityaborikar has left

  206. floretta has left

  207. sonny has left

  208. sonny has joined

  209. belong has left

  210. adityaborikar has joined

  211. debacle

    lovetox I hope it comes back one day.

  212. lovetox

    if you succeed in setting up a test server it might :D

  213. debacle

    lovetox I'm not sure yet ;-)

  214. belong has joined

  215. adityaborikar has left

  216. mathieui

    lovetox, prosody with mod_client_certs works, afaik

  217. mathieui

    (but that’s for XEP-0257)

  218. mathieui

    using client certs work in slixmpp afaik, I implemented it in poezio a long time ago

  219. moparisthebest

    but does anyone use it

  220. oibalos has left

  221. adityaborikar has joined

  222. moparisthebest

    do browsers still support client cert authentication? I only know that existed because startssl did it, anyone remember that?

  223. mathieui

    I don’t know, but it seems like a nice alternative to passwords, though it would be nice if you could specify an access model

  224. mathieui

    moparisthebest, they certainly do

  225. moparisthebest

    only service I've ever known to do it

  226. lovetox

    mathieui, setting up the server is only half the task

  227. lovetox

    you also need to generate valid certs

  228. lovetox

    for the client

  229. lovetox

    who the fuck knows how to do that :)

  230. mathieui

    lovetox, not really, afair XEP-0257 does not care about what’s in the cert if I remember correctly

  231. mathieui

    lovetox, not really, afair XEP-0257 does not care about what’s in the cert

  232. mathieui

    Also, yes, X.509 authentication in browser is still very much used in corporate land

  233. mathieui

    (the product we sell at work has X.509 browser authentication, and we will never drop it because clients actually care)

  234. moparisthebest

    interesting, thanks!

  235. moparisthebest

    I thought all corporate world today did was fancy microsoft-azure-single-sign-on stuff

  236. mathieui

    (the product we sell at work has X.509 browser authentication, and we will never drop it because customers actually care)

  237. oibalos has joined

  238. Kev

    Yes, people definitely do still do cert-based authentication - but they're generally not people logging in to their personal chat account on the Internet :)

  239. marmistrz has left

  240. Wojtek has left

  241. marmistrz has joined

  242. debacle

    I like to use client certificates for XMPP IoT stuff, the "other" IoT, the one *with* security

  243. adityaborikar has left

  244. adityaborikar has joined

  245. goffi has left

  246. marmistrz has left

  247. floretta has joined

  248. oibalos has left

  249. oibalos has joined

  250. Guus has joined

  251. asterix has left

  252. asterix has joined

  253. SouL has left

  254. asterix has left

  255. asterix has joined

  256. stpeter has left

  257. oibalos has left

  258. stpeter has joined

  259. SouL has joined

  260. mikeye has joined

  261. stpeter has left

  262. asterix has left

  263. mikeye has left

  264. asterix has joined

  265. stpeter has joined

  266. stpeter has left

  267. stpeter has joined

  268. suohua has joined

  269. belong has left

  270. belong has joined