XMPP Service Operators - 2021-10-07


  1. b43

    Was that an open source pun? Lol

  2. mieum

    wasnt unix proprietary tho? multics too

  3. benk

    Yes

  4. Holger

    I was just making fun of our community (myself included) often preferring whatever we're used to over new solutions.

  5. mieum

    if it aint broke.... :b

  6. zp1.net

    > I was just making fun of our community (myself included) often preferring whatever we're used to over new solutions. Never touch a running system.

  7. zp1.net

    That is wisdom. Of course, not everyone is able to recognize when a system is perfect, and overestimates himself, and then goes and changes something he should not touch.

  8. tart

    > Never touch a running system. I so envied all those exchange admins with that attitude back in march.

  9. MattJ

    I hate to be the one to spoil the fun, but let's keep this room on topic :)

  10. MattJ

    There are many off-topic chats around

  11. Licaon_Kter

    Twitch username filters, useful? https://ghostbin.com/57bCm

  12. MattJ

    I saw those. I thought so too, then realised that once published they decrease in usefulness very quickly :)

  13. MattJ

    But probably still useful, if someone wants to put the effort into translating it to Prosody/ejabberd code.

  14. tart

    > There are many off-topic chats around Alright, I actually have something on topic I was thinking about. I recently had trouble on my ejabberd Server with rejected s2s connections, the reason for which being, according to my log, an expired certificate. It was that DST Root CA X3 thing. What I did was generate new certificates using certbot and this option: --preferred-chain "ISRG Root X1" That made the problem go away. Has anybody else here experienced trouble federating, with that kind of error using the old LE-chain?

  15. Licaon_Kter

    Yes, it was the problem of the day, during Sep 30-Oct 01

  16. Licaon_Kter

    Scroll up...

  17. zp1.net

    > There are many off-topic chats around Off- topic people make off-topic chats

  18. Licaon_Kter

    Fun fact, the other day I had to follow this https://www.stoutner.com/lets-encrypt-isrg-root-x1-and-privacy-browser/ and import the ISRG cert (and disable DST) on an Android 10 chinese whitelabel tablet. F-Droid.org was working fine, but anything else was not, in Firefox, eg. It could not even connect to get add-ons

  19. ernst.on.tour

    Firefox got this problem (to disable DST) on each platform, also on PC

  20. rozzin

    > I saw those. I thought so too, then realised that once published they decrease in usefulness very quickly :) Does a lot of that traffic come from people writing automatic trollbots vs. actual users, or... something? I'm naive on this; without having that background, it sounds to me like https://cwiki.apache.org/confluence/display/spamassassin/PublicRules

  21. Licaon_Kter

    rozzin: it's more about trolling and griefing than bots. mattjsuxcocs@404 is made with an intent than random russian carder

  22. zp1.net

    Do we know by now what produced the blackout of the social media sites?

  23. Menel

    Yes

  24. Menel

    If you mean Facebook

  25. zp1.net

    Yes

  26. zp1.net

    All of them

  27. Menel

    https://engineering.fb.com/2021/10/05/networking-traffic/outage-details/ & https://blog.cloudflare.com/october-2021-facebook-outage/ Licaon_Kter posted this...

  28. zp1.net

    Fb, twitter, inta,...

  29. Menel

    One command, backbone composedly offline. All dns servers taking themselves offline because of it.

  30. Menel

    One command, backbone compleadly offline. All dns servers of Facebook taking themselves offline because of it.

  31. tek_dmn

    And then apparently, physical access was controlled by their owh auth systems so people couldn't even badge in to fix it

  32. rozzin

    Well, thank goodness Facebook isn't actually responsible for all social interactions or "social media" on the Internet 😁

  33. zp1.net

    And why was twitter down?

  34. tek_dmn

    Especially with federated platforms like mastodon and diaspora now

  35. Martin

    Was it?

  36. zp1.net

    Yes and instagramm and whatsapp

  37. tek_dmn

    zp1.net: Probably because Facebook is large enough that them dropping out is a huge hole in the global routing table... that or anything that used Facebook integrations (analytics / sign in with / share on) also would have had problems

  38. rozzin

    I wonder how many people didn't even notice until they heard it from a friend.

  39. tek_dmn

    instagram is owned by facebook, as well as whatsapp

  40. Licaon_Kter

    Was Telegram down too?

  41. tek_dmn

    No. I can confirm that much.

  42. Martin

    > I wonder how many people didn't even notice until they heard it from a friend. I only heard it in xmpp mucs.

  43. zp1.net

    No telegram was just very slow

  44. rozzin

    Martin: same here.

  45. tek_dmn

    I heard because all my sysadmin circles were going crazy about it

  46. Licaon_Kter

    Saw some tweets from Signal, who themselves where out last week, making fun of WA and Telegram..meh

  47. zp1.net

    But xmmp was rocking like hell... Our server got 30 new users in one hour

  48. Licaon_Kter

    Yes, xmmp the great audio player. But MPD is better :)

  49. zp1.net

    But xmpp was rocking like hell... Our server got 30 new users in one hour

  50. tek_dmn

    matrix had a decent influx too it looked like

  51. Licaon_Kter

    Got one new contact these days, Apple user though :(

  52. tek_dmn

    But all my stuff is controlled by LDAP, I don't allow public registrations, so I don't have any local numbers

  53. rozzin

    I wouldn't be surprised if superpopular centralized services like Twitter, Telegram, Signal... effectively got DDoS'd by users rapidly and repeatedly posting about "OMG Facebook is offline".

  54. zp1.net

    Yes, why was signal down? Is signal hosted by facebook?

  55. tek_dmn

    possibly. also probably because they're BGP peers.

  56. Martin

    > I wouldn't be surprised if superpopular centralized services like Twitter, Telegram, Signal... effectively got DDoS'd by users rapidly and repeatedly posting about "OMG Facebook is offline". Take down all the dirt. 😃

  57. rozzin

    Plus new registrations, maybe.

  58. Martin

    > Yes, why was signal down? Is signal hosted by facebook? Afaik they are hosted by amazon.

  59. rozzin

    zp1.net: sorry, I didn't mean to imply that Signal went down.

  60. zp1.net

    Aaaaa prolly they are all hosted by the nsa :)))

  61. tek_dmn

    Why do you think I don't use any of the major ones.

  62. tek_dmn

    I genuinely just have Twitter to complain about FedEx playing hopscotch with my state whenever I have a package with them

  63. rozzin

    Martin: every time some big silo goes down and the other big silos get overloaded by the flood of users looking to talk about it..., I sit here going "man, if only we could get some of that flood..."

  64. tek_dmn

    Hold on, are my messages actually making it into here?

  65. rozzin

    zp1.net: > But xmpp was rocking like hell... Our server got 30 new users in one hour How do new users discover your server?

  66. rozzin

    tek_dmn: you use twitter to complain about FedEx, yes. 😃

  67. tek_dmn

    Okay, I was seeing a lot of weird connection errors in the logs

  68. tek_dmn

    Knowing me, it's mediacom's modem crashing again.

  69. zp1.net

    > zp1.net: > How do new users discover your server? I really dont know, prolly one user recommend it to other.

  70. zp1.net

    I have a lot of gamers that's all i know.

  71. zp1.net

    Some radio-station fans ..

  72. zp1.net

    Thy like the short url i suppose

  73. rozzin

    zp1.net: do you have open registration, or some sort of invitation or request system, or...?

  74. zp1.net

    rozzin: open registration.

  75. zp1.net

    Strange message i got :))) Establishing a secure connection from xmpp.net to zp1.net failed. Certificate hash: (No certificate).

  76. zp1.net

    xmpp.net has no certificate?

  77. zp1.net

    I'l better drink another beer while you scan my server :)))

  78. Menel

    Better test your server with https://testssl.sh Its in debian as a package, but you can get it from that website as a scrit too. its much faster to test with, and supports testing of xmpp.