-
yon
https://xiaoyu.net:7443/httpfileupload/a3109f0d-bb4f-4543-a76e-ede7b0c631e7/V7Kxuv24TBWt1JMEZynTHQ.jpg
-
yon
xmpp check not normal work
-
yon
i am using.ecc cert
-
ThurahT
that's a screen shot if I ever saw one
-
yon
now check.messaging.one
-
yon
hi
-
MattJ
Hi
-
edhelas
spam from swissjabber.li
-
edhelas
blacklisting also this server
-
Ge0rG
just blacklist *@swissjabber.*
-
Ge0rG
> dujin2320@swissjabber.eu wants to subscribe just got that
-
edhelas
i cannot blacklist with .*
-
edhelas
any idea of all the extensions ?
-
Zash
Internet search gives https://wiki.xmpp.org/web/SwissJabber.ch
-
Ge0rG
Which is ancient.
-
SouL
I used to have a MUC there
-
SouL
Because SwissJabber was the only server I could find that allowed like 500 people in a MUC or something like that
-
SouL
maybe 700
-
Maranda
O_o?
-
Maranda
"allowed"
-
SouL
Or could handle
-
Maranda
better
-
Maranda
:P
-
SouL
Whatever you use to describe the participants limit :D
-
Link Mauve
SouL, are there many servers with a limit?
-
Maranda
Don't look here.
-
Maranda
Limiting sounds like +l on IRC, that's why "handling" is better than "allowed"
-
Link Mauve
Are you expecting scaling issues in MUC?
-
Maranda
Yes, are you not?
-
Maranda
:P
-
Link Mauve
Given the very small amount of resources used normally by my servers, no.
-
SouL
Link Mauve, I don't know actually. At that time I didn't even had my own server or anything. So I just kept browsing public servers with Psi+ until I found that one, when modifying the MUC settings, the limit would be really big, compared to the ones I used to use.
-
Link Mauve
SouL, at least in Prosody, there is no limit setting.
-
Maranda
Hmm each message or presence stanza sent to the muc *needs* to get reflected 700 times, does that ring a bell?
-
Maranda
just to begin with.
-
Link Mauve
Maranda, so you’re expecting 700 packets to take your network to its knees?
-
Ge0rG
presence traffic on a MUC is O(N²)
-
Maranda
^
-
Holger
Link Mauve: Prosody has MUC traffic limits I keep running into with legitimate traffic, though.
-
Ge0rG
mod_muc_limits is absolutely inadequate.
-
Link Mauve
Holger, you mean mod_muc_limit, the one limiting the amount of concurrent messages?
-
Ge0rG
The queue is filled up with CSNs and then your actual messages are rejected.
-
Ge0rG
https://prosody.im/issues/988
-
Holger
Link Mauve: Probably. I just receive the error stanzas :-)
-
Link Mauve
Note that this is a community module, not part of the server.
-
Link Mauve
If operators use it, they’re on their own.
-
Holger
Link Mauve: So there's some Prosody user in the community who believes that MUC scalability might be an issue :-)
-
Holger
Link Mauve: If they don't, they're not on their own? :-)
-
Link Mauve
Holger, AFAIK, it’s not a solution to scalability, but a solution to random spammers who used to flood MUCs.
-
Holger
DoS against MUC is easy because MUC doesn't scale.
-
Maranda
Just that that the rtc of most public traffic (presence and messages) in is O(N^2) as Ge0rG pointed out, is enough to tell you how well MUC scales Link Mauve.
-
Link Mauve
Maranda, rtc?
-
Maranda
I think you don't need another reason.
-
Maranda
Running Time Complexity?
-
Maranda
brb
-
Maranda
tbh while mod_muc_limits isn't perfect it looked to always be one of the few viable solutions to muc servers not getting brought down to their knees by a DoS.
-
Maranda
so I wouldn't really spit on it.
-
Ge0rG
I'm not spitting on it, it's in use on my server. But I wish somebody would improve it.
-
Maranda
The improvements I made to it, was making the limit ratio configurable by room (with muc pluggable config), but I'm confident that could be in Prosody's as well.
-
Ge0rG
adhoc commands?
-
Maranda
But I'm not sure that'd fix any issue
-
Maranda
no just room config
-
Ge0rG
Maranda: not in default 0.10 MUC code :(
-
Maranda
Ge0rG, https://lightwitch.org/Media/Default/Pictures/muc_limit_config.png -- it also can be (? I don't remember if it's the default) setup to ignore traffic from server buddies (xep-267)
-
Ge0rG
Maranda: way too complicated
-
SouL
I like to be able to configure stuff
-
Ge0rG
`[ ] Configure stuff`
-
Ge0rG
`[ 75%] Stuff Stuffyness`
-
Maranda
Ge0rG, also you know that mod_muc_limits doesn't drop stanzas from affiliated members right?
-
Ge0rG
Maranda: I know
-
Marzanna
-certinfo chat.jabb.ip✎ -
Bunneh
Marzanna: Host unreachable: Server-to-server connection failed: DNS resolution failed
-
Marzanna
-certinfo chat.jabb.im ✏
-
Bunneh
Marzanna: chat.jabb.im has a mismatched certificate issued by Let's Encrypt Authority X3
-
Maranda
-certinfo metronome.im
-
Bunneh
Maranda: metronome.im has a valid certificate issued by Let's Encrypt Authority X3
-
yon
xiaoyu.net
-
yon
test site only get T result
-
nuron
The TLS connection failed... You should fix that issue
-
nuron
yon:
-
yon
client can connect
-
yon
i.using ecc cert
-
yon
tls 1.2
-
yon
maybe site cant test ec cert?
-
nuron
https://uploads.trashserver.net/upload/5Nb8HXHOgUeORUVR/cHnnaS1hRQGd9rjIgVYPKQ.jpg
-
nuron
yon:
-
nuron
Maybe you haven't set an srv record? Or you haven't open this port
-
yon
which port?
-
yon
5222 open
-
yon
should site cant.connect ec cert
-
yon
i have test some clients can work
-
nuron
https://uploads.trashserver.net/upload/j2VUe8q-H-DnkNT1/0tKU4erUSRClyqVDw6QuZQ.jpg
-
nuron
Hmm when you have tested the TLS and it works everything will be fine
-
yon
i shoud is A
-
yon
Recommend a good APP for me?
-
yon
i download some app not good for use