XMPP Service Operators - 2021-06-11


  1. paul

    How to use strophe js get friends status?

  2. paul

    Anybody know ?

  3. Licaon_Kter

    Maybe ask here? xmpp:discuss@conference.conversejs.org?join

  4. paul

    ok

  5. rozzin

    moparisthebest: > the revoking talk is because CAB requirements say if you mis-issue a cert, you must revoke it > they claimed 90 days, delivered 90 days + 1 second, therefore must revoke So..., what happens when there are leap seconds?

  6. croax

    rozzin: seems to be a well-known parameter since it makes references to it: > Namely, it attempts to clarify time periods in days and seconds, to avoid confusion with respect to months, fractional seconds, leap seconds, and other forms of date calculation, https://cabforum.org/2019/09/10/ballot-sc22-reduce-certificate-lifetimes-v2/

  7. rozzin

    croax: right..., so the BR says: > For the purpose of calculations, a day is measured as 86,400 seconds. Any amount of time greater than this, including fractional seconds and/or leap seconds, shall represent an additional day. So is it an automatic BR-violation incident every time IERS adds a leap second, or what? (there was a +1 leap second a year into Let's Encrypt's operation, so I guess we can look up whether there was an incident filed for Let's Encrypt or any other CA stemming from that?)

  8. rozzin

    And what's the significance relative to BR that last year there were actually days *shorter* than 86400 seconds?

  9. rozzin

    🤯

  10. tom

    » <rozzin> croax: right..., so the BR says: » > For the purpose of calculations, a day is measured as 86,400 seconds. Any amount of time greater than this, including fractional seconds and/or leap seconds, shall represent an additional day. » So is it an automatic BR-violation incident every time IERS adds a leap second, or what? (there was a +1 leap second a year into Let's Encrypt's operation, so I guess we can look up whether there was an incident filed for Let's Encrypt or any other CA stemming from that?) the earth's rotation slows down over many years until the difference is more than a full second so we have to keep doing that

  11. tom

    time and time zones are a tarpit of complexity

  12. tom

    ntp daemons

  13. tom

    they all have to account for things like leap seconds

  14. tom

    also

  15. tom

    throw in security to the mix of ntp as well

  16. tom

    weird undefined behavior of operating systems and software when the day is way off, such as jan 1st 1970, or before that

  17. tom

    https://0x0.st/-LBp.webm

  18. rozzin

    Leap seconds do not actually have anything to do with continued slowing (or other _changes_) of the earth's rotation..., it's just that a day is not actually 86400 seconds--just like how leap days at the end of every 4th February are to manage the accumulation of fractional days in each year.... The *rate of leap-second allocations* (and its unpredictability) is what comes from the _changes_ in the planet's rotation ;)

  19. rozzin

    I'm still interested in the question about whether LE is automatially in violation or the BR whenever the IERS adds a leap second--even though at this point it looks like Let's Encrypt has opted to just log `yes that was technially a violation, and our non-handling of it was technically a second violation, so we just had 2 technical violations'.

  20. tom

    rozzin: who cares really?

  21. tom

    certificate authorities are a joke

  22. tom

    they are a problem themselves not a solution

  23. tom

    letsencrypt was always a kneejerk reaction against how bad the ca system was in the 90s and 00s

  24. tom

    rather than fussing about this, maybe you can spend that effort implementing the Convergence distributed notary system?

  25. tom

    https://en.wikipedia.org/wiki/Convergence_(SSL)

  26. tom

    can somebody recommend me some nice universal 1U rackmount rails?

  27. tom

    preferably screwless

  28. tom

    i don't mind paying a premium for good rails, i'm swapping machinery in and out of racks several times a day

  29. Licaon_Kter

    tom: why?

  30. tom

    why what?

  31. Licaon_Kter

    The swapping

  32. tom

    oh

  33. tom

    I work in a lab

  34. tom

    with limited space

  35. tom

    I debug servers on a workbench and rack them for testing

  36. pintosesk

    > tom wrote: > https://en.wikipedia.org/wiki/Convergence_(SSL) Looks cool!

  37. pintosesk

    I like it.

  38. raghavgururajan

    Howdy Folks!

  39. raghavgururajan

    Is aliasing possible for JIDs?

  40. raghavgururajan

    Like how othername@domain can be alias of username@domain, in email.

  41. kousu

    raghavgururajan: https://modules.prosody.im/mod_alias.html

  42. kousu

    My understanding is it is tricky to do with instant messaging

  43. kousu

    You can do it with https://modules.prosody.im/mod_firewall.html but only in one direction

  44. raghavgururajan

    I see.