XMPP Service Operators - 2022-10-02

chat.disroot.org failed. Certificate hash: 4724dd84f0fc4977d6ce5be5ccb7f6e4d9f7433f. Error with certificate 0: certificate has expired.

someone in from disroot?

I like the procedure of adding the server name in brackets to the participant name. This is how it is done in the German XMPP Admin MUC.

sorry my client keeps renaming me admin

i'm *not* the admin

admin: which client?

dino

its getting quite annoying

PfW (xmpp.pingu.at): this is a public channel, it's semi-anonymous, having that server in name is a privacy leak...why want that?

admin: `/nick newnik` does not work?

lets see

oh

well thanks

i don't know why i have set my alias to be xutaxkamay but when ever there is two clients connected it just keep admin (my username part)

xutaxkamay: fix it in all clients...

its already set so

just bugs somewhere, would need to dig into code i guess

Licaon_Kter: > ... this is a public channel, it's semi-anonymous, having that server in name is a privacy leak...why want that? I use different JIDs for different MUCs. Some, I like to be anonymous, other not. As an XMPP admin, I'm not really anonymous. My server has a contact information configured, I need an impressum... On the other hand, I like to be easily found by other admins, if they want to reach me. So, in this special case it's no privacy leak for me.

I don't even know a German admin muc.. Share the jid?

PfW (xmpp.pingu.at): ok, that's up to you ✏

for privacy i guess you could use vpn port forwarding which could solve the ip issue

using a vps or something

the moderators in this chat hall are probably laughing at us since they can see everyone's jid 😊. If you want ultimate privacy, I suggest don't use the internet.

He trust the admins here, only not every participat Trung .

Trung: it's not about the admin/mod/owners.

Spammers only need a bot to join every public channels and have all addresses, if it were open to everyone ✏

It's about drive-by spamming as said above. ✏

if there is a spammer in your system, please post in this muc so everybody will block that jid.

spammer can hit 1 jid but if we all block the spammer, they will be pretty useless.

They can generate unlimited jids.

As long as there are servers to register It will be possible. Its onl y about make it cost them more.. Its not completely preventable

open registration is the problem then. coz no normal humans would spend their time doing that.

_normal_ ... Been to the Internet lately? 😀

hahahahahaha

https://invidious.namazso.eu/watch?v=8NJDMV9hJxc Welcome to the Internet Good song

hahahaha. oh well i think people don't spam for no reason. there's a cost to everyth i believe.

FYI subdomains are free and each come with an infinite supply of jids

PfW (xmpp.pingu.at), but then i think best not to share jid randomly though unless u're making a honeypot.

yeah but we can contact the admin of those free subdomain and if they don't do anyth abt it then we can block them no?

I'm saying a spammer can run unlimited jids on unlimited subdomains

…ban the parent domain?

Sure, then they buy another domain for $1 and start again, how many millions of spam messages can they send before people figure it out

moparisthebest, stop giving them ideas

a parent domain can't cost a 1$ rite? why would they spend money for nothing?

$3 at the moment, but you could check other registrar's for sales: https://www.gandi.net/en-US/discounts?sort=price_asc

Aren't there domains that are free the first year? "Buy" one, don't renew. Free domain.

moparisthebest, your scheme requires hosting an xmpp server, which would be the weak point

Cheap vps's too, and free domains http://www.dot.tk/en/index.html?lang=en and https://freedns.afraid.org/subdomain/

or just compromised hosts

it's a never ending fight mate. as long as they make more money over the cost they have they will always be active and we'll always be inactive. I mean just look at e-mails. we'll be heading there eventually.

but the problem with emails is that it's now very very centralised. And XMPP is not as much at the moment so we'll have better chance i think

*reactive (me and spelling goddamit)

There are many advantages that XMPP has over email for tackling spam. Not saying XMPP will ever be 100% spam-free, but it never has to be as terrible as email (and even SMS) became.

MattJ: its death had no hand in this?

Yeah, XMPP being dead helps :P

The big advantage, which is sad it's even an advantage, is that if a message comes from @bob.com you can actually be sure bob.com sent it, something sms/email does not have

In fact most email things are trying to tack that on later and failing

yup.

email is just so freakin broken. u can just change anythin in the header. there's no hard law.

> <MattJ> There are many advantages that XMPP has over email for tackling spam. Not saying XMPP will ever be 100% spam-free, but it never has to be as terrible as email (and even SMS) became. Or phone itself

Although the privacy-hazard Xiaomi Spam filter works kind of good

my Xiaomi keep askin me to give it permission to download an app to change the background or theme or whatever so……

it was also very fun to wait for 21 days to unlock the bootloader coz I kept hitting the wrong button

About spam, it’s funny that on various forums where I mentioned XMPP I often received answers concerning the ‘huge spam problem of XMPP’. I guess I arrived after XMPP’s death (I’m just quoting here :P) because I never ever received a single spam message. (This is not a provocation, please do not unleash hell on me for saying that ^^)

Same for me.. On my private domain only one familiy member had spam once like 8 years ago. Then I enabled secure auth for s2s, and that server never connected to me again..

I used to get a ton of spam offering me stolen credit cards, half english half russian, none of my other (family/friend) users did, but I'm the only one who spams my JID around

then I used mod_firewall to block messages containing cyrillic characters, ran that way for maybe a year, removed it, never got more spam again anyway /shrug

moparisthebest: Y U a racist?

hahahaha

well I can't read it so why deliver it right? :)

So far every single spam message contained Cyrillic letters, so if you don't have Russian friends blocking Cyrillic solves the spam problem easily.

i have russian friends, but I think they can use forms of rulat if they want