-
mitchelmonrooi
Licaon_Kter: incase LE gets their hand on the server
-
mitchelmonrooi
Would it be possible for them to somehow get the whiped msgs back?
-
Licaon_Kter
mitchelmonrooi: you use OMEMO, they get they're hands but they can't decrypt
-
Martin
>18.04.20 22:38:36 - mdosch.de: Establishing a secure connection from mdosch.de to jabber.org failed. Certificate hash: a360db6f6d8fec07e09ab62c0b6e4026669e25208dbcafb14f59b3bfda875627. Error with certificate 0: certificate has expired.
-
Martin
Checking it with `testssl -t xmpp --xmpphost jabber.org hermes2.jabber.org:5269` fails, dunno why: >hermes2.jabber.org:5269 doesn't seem to be a TLS/SSL enabled server
-
Martin
MattJ: Is it you already controlling this as testssl says the machine is xmpp.org: >rDNS (208.68.163.218): xmpp.org.
-
MattJ
Martin: jabber.org is a separate team and separate server, but yes, I'm on both teams and I have access
-
MattJ
But I don't have a clue how to fix the expired cert
-
MattJ
I tried last time
-
Martin
MattJ: But why does the rDNS lookup for jabber.org resolves to xmpp.org then?
-
MattJ
Bug in the DNS I guesw✎ -
MattJ
Bug in the DNS I guess ✏
-
Martin
First I thought I made it wrong and checked xmpp.org instead of jabber.org but I confirmed I checked jabber.org :D
-
Martin
Otherwise I can just file an issue on github. Last time stpeter took care of it.
-
MattJ
Yes, he has the knack
-
MattJ
It's his primary server so he'll notice it
-
MattJ
When he logs in
-
MattJ
Hopefully this will be the last time
-
Martin
https://github.com/stpeter/jabberdotorg/issues/19
-
MattJ
Thanks
-
Martin
Yeah, I think it will get a lot better when you are taking care of it. :)
-
Martin
OK, testssl works against the c2s port and it is clearly expired: https://github.com/stpeter/jabberdotorg/issues/19#issuecomment-616079404
-
Martin
stpeter is not happy about Neustradamus? https://github.com/stpeter/jabberdotorg/issues/17
-
Maranda
edhelas: yes ppl "does", even because for certain things Windows does its job, while *nix just tries and fails miserably trying to.
-
Maranda
While for others it's the exact opposite, which is why I find all this Vs. fanboysm ridiculous
-
Licaon_Kter
Martin, no one is...
-
Maranda
Hmm I really wonder if any of the hacks I did to Metronome's service user account somehow are managing to trample on libevent
- Maranda mutters systemctl mutters