XMPP Service Operators - 2021-05-18

  1. Licaon_Kter

    jl4: > jl4 umh...there seems to be a mess on the OMEMO certs... As expected, not a issue per se > on Converse's side or Prosody server side ? In your browser but yeah, look server side too

  2. qrpnxz

    404.city not connecting for me. Can anyone corroborate?

  3. jonas’

    s2s or c2s?

  4. qrpnxz

    s2s

  5. jonas’

    s2s looking good to me

  6. qrpnxz

    Weird.

  7. qrpnxz

    Restarting prosody seemed to do it.

  8. 404.city

    >qrpnxz‎: 404.city not connecting for me. Can anyone corroborate? The 404.city is blocked under some totalitarian regimes. You may be in one of these countries

  9. 404.city

    In some cases, transit countries hack connections and try to replace the certificate. This is a rare occurrence, but it also happens.

  10. arne

    Oh shit, is only the domain blocked? Maybe you can bypass it at least temporary

  11. pintosesk

    I'd think region/traceroute would be useful here, but according to > qrpnxz wrote: > Restarting prosody seemed to do it. the problem's probably fixed itself?

  12. arne

    Btw. I have a little issue too. Videocalling through mobile clients is working perfect to everywhere but from webclients (movim) only in my country 😅

  13. croax

    arne: what makes Movim access A/V than other client can't? Is TURN traffic proxied by websocket/BOSH thing?

  14. arne

    BOSH is reachable

  15. arne

    yes

  16. arne

    I thought maybe the coturn port is blocked in other countries

  17. croax

    Maybe whole UDP blocked except _very_ well known one.

  18. croax

    Might be possible to reach TURN with TCP but could be a bad user experience (never tried)

  19. croax

    It might be possible to reach TURN with TCP but could be a bad user experience (I've never tried)

  20. rob

    Movim worked for me without Bosh or websockets

  21. arne

    I sat up bosh for jsxc actually

  22. arne

    I'll try it to norway from germany now 🤣

  23. tom

    » <404.city> >qrpnxz‎: 404.city not connecting for me. Can anyone corroborate? » The 404.city is blocked under some totalitarian regimes. You may be in one of these countries » <404.city> In some cases, transit countries hack connections and try to replace the certificate. This is a rare occurrence, but it also happens. 404.city, do you have mod_darknet or mod_onions? Can we federate over tor?

  24. rob

    > Movim worked for me without Bosh or websockets Maybe I lied, trying now and it doesn't work

  25. tom

    I've had corporations, but not countries trying to replace my cert

  26. tom

    What they would do, is look up the dns request and then generate a new certificate with the dns lookup as the CN in the cert

  27. tom

    Thankfully the person this affected didn't have that weird cacert and so it failed to connect

  28. tom

    I think they did this on the fly

  29. arne

    > tom schrieb: > I've had corporations, but not countries trying to replace my cert Could be really possible... Google and microsoft seem to hate me

  30. arne

    But actually I blocked some of their IPs (not all for sure)

  31. rob

    I haven't actually had success yet with web clients, but as I said I haven't set up bosh or websockets

  32. arne

    I try to figure it out...

  33. arne

    haha norway works

  34. moparisthebest

    pure browser clients can't connect to raw TCP/TLS sockets, so they need bosh or websockets to work

  35. moparisthebest

    movim connects to real TLS sockets from the server, and the browser client talks to it, so that'll work without them

  36. rob

    Makes sense, which is why I can log-in and send messages but no a/v

  37. arne

    thanks moparisthebest for the info