XMPP Service Operators - 2021-07-12

  1. Wojtek

    > Hello, are there any admins of the Tigase public xmpp server here? @emus 🙋‍♂️

  2. emus

    Wojtek: Im gonna text you later! ☺

  3. Martin

    Anyone knows sure.im? > Establishing a secure connection from diebesban.de to sure.im failed. Certificate hash: d6a22d3a9d5cf8d5d6c7962313024144359f71cfc1073c2165825e5b26f2d1b4. Error with certificate 0: certificate has expired.

  4. ij

    Martin, sure.im is a domain from Tigase, so Wojtek for example…

  5. Licaon_Kter

    Biggest enemy of xmpp, non-autoupdating server certs

  6. Link Mauve

    Wojtek, you might be interested in https://observe.jabber.network/ in order to get warned of such issues before they happen.

  7. Харпер

    Don't y'all get emailed when your cert is a few weeks from expiring?

  8. Link Mauve

    Харпер, most such services only monitor HTTPS, which is usually controlled by a different process than XMPP.

  9. Харпер

    I get emails from let's encrypt

  10. Харпер

    I guess if you had certbot update them but not copy them in place is the common issue?

  11. ij would like to have services being notified about ssl cert changes, checking validity and then automatically loading a new cert

  12. Харпер

    Doesn't ejabbers have native acme support?

  13. Харпер


  14. Holger

    Not sure the Tigase people run ejabberd 🙂

  15. Licaon_Kter

    Holger, Харпер: they could start :))

  16. Licaon_Kter

    Харпер: yes, but it might not be viable https://github.com/processone/ejabberd/issues/3075 Eg. Even in my small instance's case I can't use it

  17. Wojtek

    erm, @all: * we do use certbot and the certs are updated automatically... there is some weird issue that cached cert is being loaded (sometimes during restart and I was doing just that right now) -- we are investigating it but it's kinda "haisenbug" and when we look it doesn't happen. * we are already on observer.jabber.network and I got single notification :-)

  18. Харпер

    Just reboot your servers daily

  19. rozzin

    I use certbot and run "ejabberdctl reload" after certbot updates.

  20. rozzin

    With what I hope are the obvious caveats....

  21. Licaon_Kter

    It takes 2-3 cycles in production to level out all the bugs of one cron line, we know :))

  22. Licaon_Kter

    It takes 2-3 cycles (aka 4-9 months) in production to level out all the bugs of one cron line, we know :))

  23. WojtekIM

    it wasn't cronjob line... but cronjob hook ;) it should be working from now on <fingers crossed>

  24. Licaon_Kter

    WojtekIM: that's what you've said last time ¯\_(ツ)_/¯

  25. Wojtek

    that's life

  26. ernst.on.tour

    Is it possible to disco a xmpp-server via curl and is somebody able to give an example how to do it ? This would mayne help some people to get the admin

  27. MattJ

    curl uses HTTP, disco is performed via XMPP

  28. MattJ

    If you have a Prosody server with mod_rest then you can use curl to disco though

  29. ernst.on.tour

    Okay, was just an idea. I monitor my certs via open_ssl, maybe curl or netcat could help.

  30. jonas’

    we could teach authbot to resolve contact info of XMPP servers which publish it

  31. jonas’

    but I’m not sure if that’s something which is desirable

  32. rozzin


  33. rozzin

    jonas’: "contact info" meaning like e-mail address for the domain admin or something?

  34. rob

    Everyone should just do xmpp@domain.com

  35. rob

    Which I think is an xep recommendation? Maybe not

  36. rob

    I've got it for all my virtual hosts

  37. rozzin

    I feel like..., if people wanted to be found like that then they'd advertise their info via any of the standard means like: * WHOIS * links on web pages * standard aliases like "postmaster", "hostmaster", etc....

  38. Харпер


  39. Amolith

    Is there a MUC for Gajim? I looked around on the site and didn't notice one

  40. Licaon_Kter

    Amolith: xmpp:gajim@conference.gajim.org?join

  41. Amolith

    Licaon_Kter, thank you!

  42. freemo

    Hello everyone, new user here, evaluating jabber to see if i want to run an instance.

  43. Licaon_Kter

    freemo: that's a good start

  44. ernst.on.tour

    rozzin, Харпер: Sometimes SMTP and XMPP isn't offered by the same company/person admin@xmpp.foo.bar can't be reached if xmpp is down, therefor maybe an additional admin@reserve.bar or an additional xmpp@mail.foo.bar is named in admin-disco.

  45. rozzin

    ernst.on.tour: granted. My thought was just that so many server operators seem to go out of their way to make their contact info altogether undiscoverable with things like obfuscated WHOIS etc., and the question of "_which_ specific contact info" seems pretty meaningless in those cases--basically because that question is made "unaskable".

  46. rozzin

    I actually had someone I'd met at a conference call me at the phone number in the WHOIS listing for the domain of a project we'd talked about. It was quite a nice experience actually--made me feel like I'd made the right decision keeping the info in there.

  47. rob

    I've always hidden mine in whois because it lists your home address

  48. rob

    If I could just put email and phone I'd probably do that

  49. rob

    Even just a VoIP number like jmp

  50. rozzin

    rob: well, it lists *an* address.... Plenty of people get PO boxes to decouple their home address from their public mailing address.

  51. rozzin

    PO boxes here are something like... $100/year?

  52. Ellenor Malik


  53. Ellenor Malik

    like $1000 in Canada

  54. rozzin

    That's not like $100 US anymore, is it?

  55. rozzin

    $100/*month* sounds incredibly expensive to me. Pretty sure there are USPS boxes available for rates like that here, but those would be the *really big* ones. Might cost more in bigger cities, maybe?

  56. rob

    A small one is $173 annually in Canada

  57. rob

    Sorry that's rural, $199 in cities

  58. rob

    Like the size for regular letters

  59. argon3771

    Small one in US is about 80 a year

  60. rob

    Ya not bad, but I try to avoid any extra cost with self hosting. And all the standard email inboxes work fine for me, with xmpp@ included

  61. Ellenor Malik

    rob: Are you a fox

  62. rob