XMPP Service Operators - 2023-04-06

  1. agh

    DANE is awesome. I use Unixes would rewrite gethostbyname to use it.

  2. moparisthebest

    Menel, also note you should pin your *key* (that never changes) with DANE and not your *cert* which changes every 60 days

  3. moparisthebest

    in fact it's up to the protocols which DANE profiles are supported and I believe XMPP should prohibit/discourage cert pinning :/

  4. Lightning Bjornsson

    > agh a écrit : > DANE is awesome. I use Unixes would rewrite gethostbyname to use it. ghbn sucks.

  5. agh

    Even more so without name integrity

  6. moparisthebest

    Anyway sadly DANE isn't something we can totally rely on because popular TLDs don't even support it, stop using .im I guess... 🙃

  7. agh

    Increase the DNSSEC adoption.

  8. moparisthebest

    Can you convince the .im TLD? It's not up to us

  9. Martin

    I wonder why they don't support it. Aren't most other popular TLDs supporting it?

  10. moparisthebest

    Well all new gtlds are required to support it, and the major old ones all do, org, com etc

  11. moparisthebest

    It's just these stuck in the middle that seem to have no interest

  12. Licaon_Kter

    Isn't that the actual Island of Man? Like a lighthouse and 4 house and 1637822 companies fleeing taxes?

  13. Martin

    And unfortunately the island of man is among them…

  14. Martin

    Licaon_Kter: And instant messaging. 🙃

  15. Licaon_Kter

    Just a coincidence