XMPP Service Operators - 2018-01-26

  1. yon


  2. yon

    xmpp check not normal work

  3. yon

    i am using.ecc cert

  4. ThurahT

    that's a screen shot if I ever saw one

  5. yon

    now check.messaging.one

  6. yon


  7. MattJ


  8. edhelas

    spam from swissjabber.li

  9. edhelas

    blacklisting also this server

  10. Ge0rG

    just blacklist *@swissjabber.*

  11. Ge0rG

    > dujin2320@swissjabber.eu wants to subscribe just got that

  12. edhelas

    i cannot blacklist with .*

  13. edhelas

    any idea of all the extensions ?

  14. Zash

    Internet search gives https://wiki.xmpp.org/web/SwissJabber.ch

  15. Ge0rG

    Which is ancient.

  16. SouL

    I used to have a MUC there

  17. SouL

    Because SwissJabber was the only server I could find that allowed like 500 people in a MUC or something like that

  18. SouL

    maybe 700

  19. Maranda


  20. Maranda


  21. SouL

    Or could handle

  22. Maranda


  23. Maranda


  24. SouL

    Whatever you use to describe the participants limit :D

  25. Link Mauve

    SouL, are there many servers with a limit?

  26. Maranda

    Don't look here.

  27. Maranda

    Limiting sounds like +l on IRC, that's why "handling" is better than "allowed"

  28. Link Mauve

    Are you expecting scaling issues in MUC?

  29. Maranda

    Yes, are you not?

  30. Maranda


  31. Link Mauve

    Given the very small amount of resources used normally by my servers, no.

  32. SouL

    Link Mauve, I don't know actually. At that time I didn't even had my own server or anything. So I just kept browsing public servers with Psi+ until I found that one, when modifying the MUC settings, the limit would be really big, compared to the ones I used to use.

  33. Link Mauve

    SouL, at least in Prosody, there is no limit setting.

  34. Maranda

    Hmm each message or presence stanza sent to the muc *needs* to get reflected 700 times, does that ring a bell?

  35. Maranda

    just to begin with.

  36. Link Mauve

    Maranda, so you’re expecting 700 packets to take your network to its knees?

  37. Ge0rG

    presence traffic on a MUC is O(N²)

  38. Maranda


  39. Holger

    Link Mauve: Prosody has MUC traffic limits I keep running into with legitimate traffic, though.

  40. Ge0rG

    mod_muc_limits is absolutely inadequate.

  41. Link Mauve

    Holger, you mean mod_muc_limit, the one limiting the amount of concurrent messages?

  42. Ge0rG

    The queue is filled up with CSNs and then your actual messages are rejected.

  43. Ge0rG


  44. Holger

    Link Mauve: Probably. I just receive the error stanzas :-)

  45. Link Mauve

    Note that this is a community module, not part of the server.

  46. Link Mauve

    If operators use it, they’re on their own.

  47. Holger

    Link Mauve: So there's some Prosody user in the community who believes that MUC scalability might be an issue :-)

  48. Holger

    Link Mauve: If they don't, they're not on their own? :-)

  49. Link Mauve

    Holger, AFAIK, it’s not a solution to scalability, but a solution to random spammers who used to flood MUCs.

  50. Holger

    DoS against MUC is easy because MUC doesn't scale.

  51. Maranda

    Just that that the rtc of most public traffic (presence and messages) in is O(N^2) as Ge0rG pointed out, is enough to tell you how well MUC scales Link Mauve.

  52. Link Mauve

    Maranda, rtc?

  53. Maranda

    I think you don't need another reason.

  54. Maranda

    Running Time Complexity?

  55. Maranda


  56. Maranda

    tbh while mod_muc_limits isn't perfect it looked to always be one of the few viable solutions to muc servers not getting brought down to their knees by a DoS.

  57. Maranda

    so I wouldn't really spit on it.

  58. Ge0rG

    I'm not spitting on it, it's in use on my server. But I wish somebody would improve it.

  59. Maranda

    The improvements I made to it, was making the limit ratio configurable by room (with muc pluggable config), but I'm confident that could be in Prosody's as well.

  60. Ge0rG

    adhoc commands?

  61. Maranda

    But I'm not sure that'd fix any issue

  62. Maranda

    no just room config

  63. Ge0rG

    Maranda: not in default 0.10 MUC code :(

  64. Maranda

    Ge0rG, https://lightwitch.org/Media/Default/Pictures/muc_limit_config.png -- it also can be (? I don't remember if it's the default) setup to ignore traffic from server buddies (xep-267)

  65. Ge0rG

    Maranda: way too complicated

  66. SouL

    I like to be able to configure stuff

  67. Ge0rG

    `[ ] Configure stuff`

  68. Ge0rG

    `[ 75%] Stuff Stuffyness`

  69. Maranda

    Ge0rG, also you know that mod_muc_limits doesn't drop stanzas from affiliated members right?

  70. Ge0rG

    Maranda: I know

  71. Marzanna

    -certinfo chat.jabb.ip

  72. Bunneh

    Marzanna: Host unreachable: Server-to-server connection failed: DNS resolution failed

  73. Marzanna

    -certinfo chat.jabb.im

  74. Bunneh

    Marzanna: chat.jabb.im has a mismatched certificate issued by Let's Encrypt Authority X3

  75. Maranda

    -certinfo metronome.im

  76. Bunneh

    Maranda: metronome.im has a valid certificate issued by Let's Encrypt Authority X3

  77. yon


  78. yon

    test site only get T result

  79. nuron

    The TLS connection failed... You should fix that issue

  80. nuron


  81. yon

    client can connect

  82. yon

    i.using ecc cert

  83. yon

    tls 1.2

  84. yon

    maybe site cant test ec cert?

  85. nuron


  86. nuron


  87. nuron

    Maybe you haven't set an srv record? Or you haven't open this port

  88. yon

    which port?

  89. yon

    5222 open

  90. yon

    should site cant.connect ec cert

  91. yon

    i have test some clients can work

  92. nuron


  93. nuron

    Hmm when you have tested the TLS and it works everything will be fine

  94. yon

    i shoud is A

  95. yon

    Recommend a good APP for me?

  96. yon

    i download some app not good for use