XMPP Service Operators - 2023-05-12

  1. sedula

    Hello everybody

  2. sedula

    If i want to add account with onion server

  3. sedula

    How to do it

  4. Ellenor Bjornsdottir

    sedula: Can you elaborate on what you're trying to achieve?

  5. sedula

    I try to use accounts with other servers not like @conversations.im

  6. sedula

    Because i cant contact some of my friends

  7. sedula

    They have like example

  8. sedula

    Sgdnfjfifnckfjfnsjxjdjfkdnfgau@onion.nl

  9. sedula

    And i cant write to them

  10. sedula

    They cant write to me

  11. maëlys

    the server needs to be setup to federate with it via eg. mod_onions for that to work

  12. sedula

    Can you explain me how to set it up

  13. Ellenor Bjornsd.

    sedula: Only available for Prosody. Check the admin manual.

  14. sedula

    Where to check

  15. sedula

    For some friends somebody can online to configure it

  16. Ellenor Bjornsd.

    What?

  17. moparisthebest

    > Sgdnfjfifnckfjfnsjxjdjfkdnfgau@onion.nl This isn't an onion address but a regular domain

  18. sedula

    How to make acount like this

  19. sedula

    Fteheidhdxjbfksbdj@onion.nl or something like this

  20. sedula

    Because from @conversations.im

  21. sedula

    We cant contact each other

  22. moparisthebest

    I think you have the server wrong because http://onion.nl redirects to something different and doesn't appear at first glance to actually be a server?

  23. maëlys

    there are like onion.proxy.tld proxies that will make an actual onion available over clearnet

  24. maëlys

    which probably wouldn't actually handle xmpp traffic well

  25. moparisthebest

    I haven't seen those for XMPP, it'd require terrible JID rewriting hacks

  26. maëlys

    they may be trying to use one is what I mean

  27. moparisthebest

    ah maybe, but that site doesn't seem to be that either

  28. maëlys

    they may not be mentioning the actual domain and there are a handful similar onion.tld that do exist

  29. Ellenor Bjornsdottir

    Deh

  30. jonas’

    hey PSA: there's a local privilege escalation in Linux (CVE-2023-32233) which hasn't been patched in either debian or ubuntu at this time. You may want to deploy (partial) workarounds (`sysctl -w kernel.unprivileged_userns_clone=0` and persist that in /etc/sysctl*). See also https://www.openwall.com/lists/oss-security/2023/05/08/4

  31. jonas’

    hey PSA: there's a local privilege escalation (both user -> root and container -> host) in Linux (CVE-2023-32233) which hasn't been patched in either debian or ubuntu at this time. You may want to deploy (partial) workarounds (`sysctl -w kernel.unprivileged_userns_clone=0` and persist that in /etc/sysctl*). See also https://www.openwall.com/lists/oss-security/2023/05/08/4

  32. maëlys

    fedora has 6.2.15 in testing, to install it: sudo dnf update --refresh --enablerepo=*updates-testing kernel*

  33. MattJ

    jonas’, thanks. I wasn't aware of the workaround... do you know if it has any negative impact?

  34. jonas’

    yes

  35. jonas’

    chromium doesn't work anymore

  36. MattJ

    :D

  37. jonas’

    and it doesn't help you for containers running as root

  38. Martin

    So luckily no negative impact for my use of docker (jitsi-meet on my vps). 😇

  39. maëlys

    it won't help in that case either afaiu

  40. Tcache

    Hello MattJ :)

  41. MattJ

    Hello :)