-
Schimon
Good day! Please read this. It is two lines and a few lines of XML. https://dev.gajim.org/gajim/gajim/-/issues/11979 Data Form value of `type="fixed"` is not manifested (Ad-Hoc Commands)
-
Schimon
https://codeberg.org/poezio/poezio/issues/3584 PEP, PubSub and Atom Over XMPP
-
singpolyma
Fixed with only a label is a bit of an odd case. Why not use fixed with text in that case?✎ -
singpolyma
Fixed with only a label is a bit of an odd case. Why not use fixed with value in that case? ✏
-
Schimon
> Good day! > Please read this. > It is two lines and a few lines of XML. > https://dev.gajim.org/gajim/gajim/-/issues/11979 > Data Form value of `type="fixed"` is not manifested > (Ad-Hoc Commands) singpolyma. I am not familiar with the matter. This element is created by Slixmpp. Could it be that Slixmpp requires a fix, or probably my code? ↺
-
singpolyma
For sure it's made by your code. You probably want to switch label for value there, especially since it looks like it isn't a label anyway?
-
Schimon
> For sure it's made by your code. You probably want to switch label for value there, especially since it looks like it isn't a label anyway? I think so, too. I will review my code. ↺
-
nicoco__
XMPP components uses a "secret" passphrase to connect to their server. What threat model does that protect agains? ie, how bad would it be if components could connect without passphrase?
-
Zash
Other things running on the same machine?
-
nicoco__
isn't it basically game over if this happens anyway?
-
nicoco__
hmmm with properly configured unix users and permissions stuff maybe not, right…
-
singpolyma
Yeah for most setup it's a very small threat but it's there
-
Zash
I'm not sure how common it is to limit what ports local users can connect to
-
nicoco__
Zash: I was thinking about reading the passphrase in `/etc/...`
-
Zash
nicoco__, `chmod o-r`
-
nicoco
That's why I said "with properly configured unix users and permissions stuff" ;)
-
moparisthebest
No password and Unix sockets would provide better protection and be faster
-
moparisthebest
I thought it was more to restrict domains though...
-
Link Mauve
moparisthebest, are there servers able to listen on an unix socket for component connections?
-
moparisthebest
Link Mauve: don't know, but there should be
-
moparisthebest
Unix sockets have even been supported natively on windows for 7 years, time sure flies...
-
singpolyma
I wish that were supported. Using TCP on localhost is silly
-
moparisthebest
Prosody admin module listens on Unix socket, I thought that would be easy to adapt into a module that listens for c2s/s2s etc but not so much, for me anyway
-
singpolyma
Components aren't over normal c2s either. There is a xep for that but no one implemented it yet 😞