-
paul
How to use strophe js get friends status?
-
paul
Anybody know ?
-
Licaon_Kter
Maybe ask here? xmpp:discuss@conference.conversejs.org?join
-
paul
ok
-
rozzin
moparisthebest: > the revoking talk is because CAB requirements say if you mis-issue a cert, you must revoke it > they claimed 90 days, delivered 90 days + 1 second, therefore must revoke So..., what happens when there are leap seconds?
-
croax
rozzin: seems to be a well-known parameter since it makes references to it: > Namely, it attempts to clarify time periods in days and seconds, to avoid confusion with respect to months, fractional seconds, leap seconds, and other forms of date calculation, https://cabforum.org/2019/09/10/ballot-sc22-reduce-certificate-lifetimes-v2/
-
rozzin
croax: right..., so the BR says: > For the purpose of calculations, a day is measured as 86,400 seconds. Any amount of time greater than this, including fractional seconds and/or leap seconds, shall represent an additional day. So is it an automatic BR-violation incident every time IERS adds a leap second, or what? (there was a +1 leap second a year into Let's Encrypt's operation, so I guess we can look up whether there was an incident filed for Let's Encrypt or any other CA stemming from that?)
-
rozzin
And what's the significance relative to BR that last year there were actually days *shorter* than 86400 seconds?
-
rozzin
🤯
-
tom
» <rozzin> croax: right..., so the BR says: » > For the purpose of calculations, a day is measured as 86,400 seconds. Any amount of time greater than this, including fractional seconds and/or leap seconds, shall represent an additional day. » So is it an automatic BR-violation incident every time IERS adds a leap second, or what? (there was a +1 leap second a year into Let's Encrypt's operation, so I guess we can look up whether there was an incident filed for Let's Encrypt or any other CA stemming from that?) the earth's rotation slows down over many years until the difference is more than a full second so we have to keep doing that
-
tom
time and time zones are a tarpit of complexity
-
tom
ntp daemons
-
tom
they all have to account for things like leap seconds
-
tom
also
-
tom
throw in security to the mix of ntp as well
-
tom
weird undefined behavior of operating systems and software when the day is way off, such as jan 1st 1970, or before that
-
tom
https://0x0.st/-LBp.webm
-
rozzin
Leap seconds do not actually have anything to do with continued slowing (or other _changes_) of the earth's rotation..., it's just that a day is not actually 86400 seconds--just like how leap days at the end of every 4th February are to manage the accumulation of fractional days in each year.... The *rate of leap-second allocations* (and its unpredictability) is what comes from the _changes_ in the planet's rotation ;)
-
rozzin
I'm still interested in the question about whether LE is automatially in violation or the BR whenever the IERS adds a leap second--even though at this point it looks like Let's Encrypt has opted to just log `yes that was technially a violation, and our non-handling of it was technically a second violation, so we just had 2 technical violations'.
-
tom
rozzin: who cares really?
-
tom
certificate authorities are a joke
-
tom
they are a problem themselves not a solution
-
tom
letsencrypt was always a kneejerk reaction against how bad the ca system was in the 90s and 00s
-
tom
rather than fussing about this, maybe you can spend that effort implementing the Convergence distributed notary system?
-
tom
https://en.wikipedia.org/wiki/Convergence_(SSL)
-
tom
can somebody recommend me some nice universal 1U rackmount rails?
-
tom
preferably screwless
-
tom
i don't mind paying a premium for good rails, i'm swapping machinery in and out of racks several times a day
-
Licaon_Kter
tom: why?
-
tom
why what?
-
Licaon_Kter
The swapping
-
tom
oh
-
tom
I work in a lab
-
tom
with limited space
-
tom
I debug servers on a workbench and rack them for testing
-
pintosesk
> tom wrote: > https://en.wikipedia.org/wiki/Convergence_(SSL) Looks cool!
-
pintosesk
I like it.
-
raghavgururajan
Howdy Folks!
-
raghavgururajan
Is aliasing possible for JIDs?
-
raghavgururajan
Like how othername@domain can be alias of username@domain, in email.
-
kousu
raghavgururajan: https://modules.prosody.im/mod_alias.html
-
kousu
My understanding is it is tricky to do with instant messaging
-
kousu
You can do it with https://modules.prosody.im/mod_firewall.html but only in one direction
-
raghavgururajan
I see.