mjkcsh: https://www.ted.com/talks/james_veitch_this_is_what_happens_when_you_reply_to_spam_email
Maybe you weren't friendly enough?
Licaon_Kterhas left
moparisthebestdon't respond ever
kousuhas joined
sanderhas left
sanderhas joined
kryptoshas left
patascahas left
patascahas joined
j.r (jugendhacker.de)has left
patascahas left
patascahas joined
kryptoshas joined
patascahas left
patascahas joined
dsvhas left
dsvhas joined
dsvhas left
schäfchen726has left
Bjarkanhas joined
dsvhas joined
xormanhas left
dsvhas left
junaidhas left
junaidhas joined
Bjarkanhas left
sanderhas left
patascahas left
neoxhas left
etahas left
kousuhas left
etahas joined
xormanhas joined
dsvhas joined
reajstn28has joined
xormanhas left
Martinhas left
Martinhas joined
fantoskihas left
jayteeukhas left
jayteeukhas joined
xormanhas joined
patascahas joined
fantoskihas joined
jayteeukhas left
jayteeukhas joined
xormanhas left
kryptoshas left
xormanhas joined
kousuhas joined
patascahas left
kryptoshas joined
Bjarkanhas joined
Bjarkanhas left
iramarohas left
iramarohas joined
kryptoshas left
Steven Roosehas left
xormanhas left
xormanhas joined
patascahas joined
[czar]has left
junaidhas left
junaidhas joined
patascahas left
patascahas joined
patascahas left
patascahas joined
patascahas left
dsvhas left
dsvhas joined
dsvhas left
quantumwingshas left
quantumwingshas joined
jayteeukhas left
jayteeukhas joined
patascahas joined
dsvhas joined
etahas left
balabol.imhas joined
jayteeukhas left
jayteeukhas joined
patascahas left
quantumwingshas left
quantumwingshas joined
jayteeukhas left
jayteeukhas joined
Bjarkanhas joined
patascahas joined
Bjarkanhas left
Jonnyhas left
raghavgururajanHow's jabber.network different from xmpp.net?
jayteeukhas left
jayteeukhas joined
kryptoshas joined
reajstn28has left
patascahas left
patascahas joined
pepta.nethas left
patascahas left
patascahas joined
dsvhas left
patascahas left
patascahas joined
patascahas left
patascahas joined
dsvhas joined
kryptoshas left
ernst.on.tourhas left
ernst.on.tourhas joined
DebXWoodyhas joined
dsvhas left
patascahas left
dsvhas joined
hauntedhackerhas joined
dinosaurdynastyhas left
reajstn28has joined
patascahas joined
patascahas left
patascahas joined
menelhas joined
Jonnyhas joined
dinosaurdynastyhas joined
Huxxhas joined
patascahas left
dsvhas left
menelhas left
menelhas joined
podhas joined
Bjarkanhas joined
dsvhas joined
tomhas joined
Bjarkanhas left
menelraghavgururajan: the one checks the server xeps the other messures tsl.
mehdihas left
meneltls
sanderhas joined
sanderhas left
alexhas joined
Bjarkanhas joined
reajstn28has left
yushyinhas left
mehdihas joined
Bjarkanhas left
thornoshas joined
jayteeukhas left
jayteeukhas joined
reajstn28has joined
dsvhas left
dsvhas joined
Licaon_Kterhas joined
yushyinhas joined
jayteeukhas left
jayteeukhas joined
menelhas left
menelhas joined
dsvhas left
Bjarkanhas joined
dsvhas joined
hauntedhackerhas left
j.r (jugendhacker.de)has joined
abslimithas left
abslimithas joined
froghas joined
karmehas joined
Melhas joined
neoxhas joined
dsvhas left
dsvhas joined
Carlos Solíshas left
Carlos Solíshas joined
dsvhas left
Bjarkanhas left
secret.gombino2ndhas left
Martinhas left
Sanderhas joined
Martinhas joined
madmalkavhas joined
dsvhas joined
Sanderhas left
dsvhas left
dsvhas joined
dsvhas left
dsvhas joined
Bjarkanhas joined
Wiktorhas joined
Bjarkanhas left
abidal3has joined
Wiktorhas left
raghavgururajanmenel: Ah thanks!
Wiktorhas joined
Carlos Solíshas left
Carlos Solíshas joined
Marandahas joined
Bjarkanhas joined
abidal3has left
pepta.nethas joined
abidal3has joined
Ge0rGhas left
junaidhas left
Ge0rGhas joined
junaidhas joined
tomhey btw
tomyou can also test the server's tls with testssl.sh
tomit supports the xmpp STARTTLS variant
jonas’yes, but you need a very recent version for s2s tests
tomthe XMPP observatory seems to have severe threading limitations
jonas’the xmpp observatory runs on a very old stack which nobody knows how to maintain anymore
tomoh
jonas’I do have a rewrite (incidentally based on testssl.sh) in the pipeline :)
tomoh neat, thanks jonas’!
tomjonas’: what is the old stack?
jonas’it is actually mostly done, only needs the DNSSEC and DANE stuff sorted out.
jonas’tom, a fork of a subset of prosody’s XMPP stack with some strange patches, surrounded by more bits of lua and php
tomjonas’: I would like to follow your work on the rewrite
jonas’tom, you’re welcome to: https://github.com/horazont/testxmpp
tomthanks
patascahas joined
Bjarkanhas left
balabol.imhas left
joerghas left
joerghas joined
hauntedhackerhas joined
p55shas left
balabol.imhas joined
schäfchen726has joined
jayteeukhas left
jayteeukhas joined
ernst.on.tourWhats about:
```
echo | openssl s_client -starttls xmpp -servername domain.tls -connect domain.tld:5222 2>/dev/null | openssl x509 -noout -subject -dates -checkend $(($days*24*60*60)) && echo lives more than $days || echo need new cert
```
derventiohas joined
jayteeukhas left
jayteeukhas joined
Bjarkanhas joined
froghas left
Bjarkanhas left
tom
» 2>/dev/null
discards stderr,
» openssl x509 -noout -subject -dates -checkend $(($days*24*60*60)) && echo lives more than $days || echo need new cert
downloads the certificate, checks it's experation date and checks it's it's close to expiring
tom
» openssl s_client -starttls xmpp -servername domain.tls -connect domain.tld:5222
connects and setups up TLS over the STARTTLS method
dsvhas left
Bjarkanhas joined
derventiohas left
ernst.on.tourI test my cert with above code, it's a oneliner in crontab
tomI just use dyhdrated.sh and a slightly modified quark
tomquark can be found on suckless.org
patascahas left
tomit's a minimal webserver written in less then 1000LOC
tomdehydrated is an ACME implementation written in a few hundred lines of bash
ernst.on.tourChange "echo need new cert" to "curl ...." to send via mod_post_msg an xmpp-msg to me
tomit's very good and keeping the certs fresh, and even more advanced things like stapling, cipher selection, and alternative names
madmalkavhas left
madmalkavhas joined
tomthere's a line in /etc/aliases the redirects root to postmaster@nuegia.net, and cronic, another small shell script ensures cron only fires an email if there's a problem
Bjarkanhas left
fantoskihas left
tomit's a very extensible and simple system
tommany daemons and users across the system can use it
madmalkavhas left
madmalkavhas joined
ernst.on.tourhas left
ernst.on.tourhas joined
dsvhas joined
ernst.on.tourI use https://github.com/srvrco/getssl to generate my certs