XMPP Service Operators - 2022-05-04


  1. Amolith

    Hmmmmm is this message federating properly?

  2. Menel

    Amolith: pong?

  3. Amolith

    Nice. My server's been down for multiple days because of issues with LXC and I just finished moving it to a VPS

  4. mjk

    Amolith: welcome back

  5. Amolith

    Or issues with Erlang. Still not sure which, but from what I can tell, it's out of my control 😛

  6. Licaon_Kter

    Amolith: so you've built from source afterall?

  7. Amolith

    Licaon_Kter, nope, I basically just picked my stuff up out of LXC and dropped it on a VPS

  8. Licaon_Kter

    Oh

  9. myjabber1337

    also im planning to host my server on VPS, is there any privacy issues from hoster?

  10. Amolith

    building from source would require migrating from debian 11's version all the way up to current and i'd rather just stick with what i've got now

  11. Licaon_Kter

    myjabber1337: they could see all unencrypted data, of course

  12. myjabber1337

    Amolith: try gentoo, so :)

  13. Amolith

    old server to up-to-date when it was working so i didn't have to mees with downgrading or anything like that either. dump the database, tar some dirs, copy to server, untar, import, mostly done

  14. Amolith

    old server was up-to-date when it was working so i didn't have to mees with downgrading or anything like that either. dump the database, tar some dirs, copy to server, untar, import, mostly done

  15. Amolith

    old server was up-to-date when it was working so i didn't have to mess with downgrading or anything like that either. dump the database, tar some dirs, copy to server, untar, import, mostly done

  16. myjabber1337

    > Licaon_Kter написал: > myjabber1337: they could see all unencrypted data, of course is there any technique that prevent hypervisor access to data?

  17. Licaon_Kter

    In theory yes, that ~snake-oil~ I forgot its name lol

  18. myjabber1337

    i mean, of course if i use e2e encrypt hoster will suck, but he will see that im hosting XMPP server

  19. Licaon_Kter

    Yes, rosters, bookmarks, all sorts of stuff. As expected.

  20. Menel

    As always, you have to trust (to a degree) or go somewhere else.

  21. myjabber1337

    is there any solution that will encrypt volumes in way that mean if hypervisor always logging and debuting VM and still hadn't access to my data?

  22. Licaon_Kter

    They sell that promise...yes...but, can they really not read?

  23. myjabber1337

    i heard about homomorphing encryption that making possible to calculate encrypted data on third party machines, is there any similar solution to execute applications on third party server without his knowledge about this?

  24. mjk

    myjabber1337: I'm pretty sure homomorphic encryption isn't advanced enough yet for such complex applications as xmpp servers

  25. mjk

    the best you could do is host the server locally, while tunneling connections through the vps

  26. mjk

    the vps would still see the remote endpoint addresses, that's how IP works

  27. mjk

    so the metadata of who connects to you and vice versa is probably unhideable in clearnet, as well as the fact that the connections are xmpp

  28. mjk

    for the latter, you could obfuscate port numbers using SRV and never connect to other servers using obvious xmpp port numbers, but that cripples federation

  29. mjk

    in cinclusion, just run an onion service and forget about the vps 🙃

  30. mjk

    in conclusion, just run an onion service and forget about the vps 🙃

  31. Amolith

    Now I've got an issue that I don't understand at all. File uploads aren't working and neither is captcha generation even though my web server is proxying both of those requests

  32. Amolith

    https://up.nixnet.services/6tt8bvk9.txt

  33. Amolith

    and the logs aren't helpful at all

  34. Amolith

    running dino from the command shows that the server is returning 500 Internal Server Error though

  35. RayTutu

    Perhaps a file system path / permissions issue?

  36. Amolith

    > Cannot store file blahblah from hidden_by_ejabberd for upload.secluded.site: read-only file system whot

  37. Amolith

    files are just being stored in `/etc/ejabberd/uploads/`

  38. RayTutu

    Is the mount rw? Or perhaps a uid/gid access issue?

  39. Amolith

    Everything looks fine to me

  40. Amolith

    And I just successfully touched a file at the end of that path as the ejabberd user