XMPP Service Operators - 2021-12-21

  1. kikuchiyo

    !uptime nixnet.services resulted in: remote-server-timeout !version nixnet.services resulted in: remote-server-timeout !contact nixnet.services resulted in: remote-server-timeout Reaching out to xmpp:amolith@nixnet.services results in > Connection failed: connection closed But the public MUCs on nixnet.services are running.

  2. kikuchiyo

    Also we were unable to exchange one of his OMEMO keys a few days ago.

  3. kikuchiyo

    What can I/we do to fix that?

  4. neox

    kikuchiyo: well. Perhaps it's dns 🤔

  5. Menel

    xmpp-server xmpp.nixnet.services. 5269 Priority: 5 Weight: 50 IP: 2a01:4f9:3a:1f11::2 Connection: [Not OK] dial tcp6 [2a01:4f9:3a:1f11::2]:5269: connect: connection refused IP: 135.181.177.46 Connection: [OK] StartTLS: [OK] Certificate: [OK] xmpps-server xmpp.nixnet.services. 5270 Priority: 5 Weight: 50 IP: 2a01:4f9:3a:1f11::2 Connection: [Not OK] dial tcp6 [2a01:4f9:3a:1f11::2]:5270: connect: connection refused IP: 135.181.177.46 Connection: [OK] TLS: [Not OK] tls: first record does not look like a TLS handshake

  6. Menel

    IPv6 seems broken there

  7. Menel

    And direct TLS too

  8. Menel

    But since one records is valid it should work to contact people there.. Do they have block strangers?

  9. tom

    https://xmpp.net/result.php?domain=nuegia.net&type=client

  10. tom

    why is my certificate not trusted?

  11. tom

    !uptime nuegia.net

  12. tom

    !help

  13. tom

    !?

  14. tom

    !ping localhost

  15. Link Mauve

    tom, xmpp.net is not up to date, its CA bundle is old and only includes the old Let’s Encrypt chain.

  16. tom

    oh ok

  17. Link Mauve

    It uses a custom made old OpenSSL with SSL2 support.

  18. tom

    so it's not my problem

  19. tom

    is there a modern replacement?

  20. Link Mauve

    Maybe it is, you can’t exclude that just from this result.

  21. Link Mauve

    tom, I don’t know.

  22. tom

    imagine if letsencrypt turned evil

  23. Link Mauve

    Oh noes.

  24. tom

    so much of the internet now relies on 1 certificate athority

  25. tom

    i mean, i remember what it was like before letsencrypt

  26. tom

    but i'd think there'd be more certificate providers like letsencrypt

  27. tom

    guess not

  28. tom

    Link Mauve, cute fox

  29. Link Mauve

    There are many other ones, feel free to use them.

  30. Link Mauve

    Thanks. :)

  31. Link Mauve

    Some even also implement the ACME protocol.

  32. tom

    Link Mauve, https://e2e.ee/upload/znBoIfS7TBudnuT_/20211221_173802750_5157.jpg

  33. Link Mauve

    ^^