-
rob
Bosh and websocket now available
-
rob
But no authorized domains yet or alt connect info via well known, after dinner š¤
-
tom
That's only really needed for things like conversejs
-
tom
Unless, is it possible to specify an i2p or onion address in a alt-connect method?
-
rob
Not sure, but I wanted to let people use mov.im or whatever if they want.
-
rob
I'll maybe add converse.js on the domain for convenience too
-
thndrbvr
There's also https://jsxc.org
-
rob
I think Converse was just easier as it has a module, also supports more features I think
-
rob
Also mov.im seems to work fine without cors so maybe it doesn't require bosh or websockets
-
rob
Brb
-
rob
Nice, works well. Oh I have to allow all cors domains for the C compliance thing to pass
-
tom
Don't do that
-
tom
Cors is a good security protection
-
tom
Just allow the domain exception you need
-
tom
Oh, but if you want it completely open, i guess
-
rob
I don't really, I was thinking just a few public web clients. I just didn't realize the compliance suite wants it wide open
-
moparisthebest
24ish hours until I release the tool that can crash prosody's that haven't mitigated https://prosody.im/security/advisory_20210512/ if you haven't done so, please do it now
-
tom
moparisthebest: i don't think much will happen
-
tom
The 1 billion laughs attack has been around for quite a while
-
tom
As a generic cve
-
tom
Not one specificly tied to xmpp, but xml
-
moparisthebest
that one doesn't work in XMPP at all, or shouldn't anyway
-
qrpnxz
rob, that movim thing is pretty cool! thx for mentioning it
-
Licaon_Kter
rob: movim, converse, jsxc....why let your users give to random sites their creds to your host? Host your own...
-
Licaon_Kter
MattJ: is docker autoupdating like prosody from distro repos?
-
arne
> Licaon_Kter schrieb: > Host your own... Yes, that's really recommended when running an own xmpp server✎ -
arne
> Licaon_Kter schrieb: > Host your own... Yes, that's really recommended, especially when running an own xmpp server ✏
-
MattJ
moparisthebest, historically a bunch of servers were susceptible to billion laughs :)
-
qrpnxz
should be impossible with the new standard
-
qrpnxz
thankfully
-
MattJ
Licaon_Kter, no, Snikket doesn't auto-update, but updating is easy and it has update notifications
-
rob
> rob: movim, converse, jsxc....why let your users give to random sites their creds to your host? > Host your own... True, so far it's just self hosted Converse
-
Araucaria
Was there an office hours talk yesterday?
-
Sam
no
-
rob
How do you get a perfect cipher score on xmpp.net? And do I need to care?
-
jonasā
no idea, no
-
jonasā
itās old
-
rob
Haha
-
rob
Ok
-
rob
I just like everything full, all the green checks or dots or bars etc
-
arne
though still you should get 100 for all ?
-
jonasā
everyone does
-
rob
> though still you should get 100 for all ? No I've never had greater than 90 for cipher
-
rob
> everyone does It's all just a game
-
arne
mh I have 100 since very long actually
-
rob
Give me achievements lol
-
rob
Which server?
-
arne
or always. But I sat up the ciphers, etc. myself
-
arne
prosody
-
arne
> rob schrieb: > Give me achievements lol > Which server? you?
-
Araucaria
š
-
arne
š
-
jonasā
rob, you get a šÆ if you donāt blindly follow every check list / achievement score :)
-
arne
xmpp is pretty old I think✎ -
arne
xmpp.net is pretty old I think ✏
- Licaon_Kter gives rob the "At least they tried" award
-
Araucaria
Wasn't xmpp.net hijacked somewhere along the line?
-
Araucaria
Or was that another xmpp checker site?
-
jonasā
I donāt know of any hijacking
-
MattJ
xmpp.net wasn't, though it was down for a while due to a server failure
-
arne
are there any new tests?
-
jonasā
I have something in the pipeline, but also lots of other stuff :)
-
arne
:D
-
rob
> š Thank you, thank you. First I want to thank my dog, for always supporting me
-
Martin
> are there any new tests? cryptcheck.fr
-
Araucaria
That server has its time wrong
-
Araucaria
2 years off?
-
Menel
You just don't get 100 if you allow less then aes256.. But its just CPU waste and aes128 is totally ok. I don't desire 100%
-
rob
> cryptcheck.fr I got an E
-
Menel
That one doesn't like DH, even if its a very strong one, I don't know of any security issue with that
-
rob
Ah well, my server works so w/e š¤
-
thndrbvr
IRC but seems important. Freenode being taken over, volunteer staff moving & forming Libera.Chat (why it isn't XMPP this time I'm not sure.) https://lwn.net/Articles/856543/
-
Sam
It's supposed to be a straight up move. Users should be able to just change a server name in their config and keep using it exactly like they were, it wouldn't make much sense to learn to setup a whole new thing like XMPP.
-
MattJ
Switching to IRC at the same time as a domain change would simply reduce the migrating channel count
-
Sam
What Matt said.
-
thndrbvr
Eh, true. Maybe they should just set up bridges.
-
MattJ
Re. XMPP alternatives, https://cheogram.com/freedomware-muc/ is an offer that deserves some publicity
-
Sam
oh cool, they really don't advertise well because even as a user I keep finding new cool projects they maintain
-
moparisthebest
the rule is, if it's something cool you might want, cheogram probably hosts it
-
Ge0rG
A MUC hosted free of charge. This is revolutionary!
-
moparisthebest
at your own domain, what else offers that ?
-
Ge0rG
ah yeah, that's a good point
-
Sam
Yah, I might take them up on that if they can provide a way to delegate from an apex domainā¦ the Mellium server is not great.
-
rob
With a bridge too
-
moparisthebest
they do, it's CNAME
-
Sam
cname can't be set on an apex domain
-
moparisthebest
> First, create the subdomain you will use (e.g. conference.myproject.tld) and set a CNAME to freedomware-muc.cheogram.com (your chatrooms will have addresses like discuss@conference.myproject.tld).
-
moparisthebest
oh, you said apex domain.... sorry I missed that part
-
[czar]
What are apex domains?
-
moparisthebest
well a SRV would work but they can't get a valid cert then...
-
moparisthebest
[czar], ie bob.com is an apex domain while something.bob.com is not
-
[czar]
Ah thanks
-
Frank
Aplex is 28 points in Scrabble btw.