XMPP Service Operators - 2025-05-08

  1. tom

    Is there a particular reason why only the monocles/cheogram/conversations clients connected to me server are using AES128/sha256 instead of everything else which is using AES256 and SHA384?

  2. tom

    Everything else is using the higher security level aes256. It's not like aes256 is that more computationally expensive then 128

  3. tom

    sometimes it's even faster then 128 because the hardware manufacturers expect aes256 usage to be more common.

  4. tom

    What is neat is that every client connected to my server right now is using a minimum of TLS1.3.

  5. tom

    I'm going to watch that for the next week or so and consider making that the new mandatory minimum

  6. tom

    Wow, there's four servers still using RSA ciphersuites instead of AES

  7. tom

    jabbim.pl | TLSv1.2 | ECDHE-RSA-AES128-GCM-SHA256 matrix.org | TLSv1.2 | DHE-RSA-AES256-GCM-SHA384 jabber.sk | TLSv1.2 | ECDHE-RSA-AES128-GCM-SHA256 conference.jabber.ru | TLSv1.2 | ECDHE-RSA-AES128-GCM-SHA256 Operators of these servers you may want to consider updating your TLS implementation library. If this is intentional could you explain why your using these odd ciphersuites?

  8. tom

    Especially Matrix.org.

  9. Nyx (everypizza.im)

    matrix.org is shutting down their XMPP

  10. tom

    oh?

  11. Nyx (everypizza.im)

    yeah, they don't have funding for Bifrost bridge anymore and that's literally the only use of their XMPP

  12. tom

    What a shame.

  13. Menel

    It never really worked anyway

  14. tom

    Nyx (everypizza.im) , your website is awesome and extremely performant.

  15. Nyx (everypizza.im)

    yeah, it's sad there's no XMPP <-> Matrix bridges currently maintained

  16. Nyx (everypizza.im)

    > Nyx (everypizza.im) , your website is awesome and extremely performant. thanks :D

  17. tom

    You actually cared to make it accessible with xht.

  18. Kris

    Nyx (everypizza.im) : the aria-net bifrost fork is under minimal maintenance and has been significantly improved over the one matrix.org runs.

  19. Nyx (everypizza.im)

    might try that one out

  20. Kris

    But I wouldn't call it great either.

  21. Kris

    The code-base is apparently very low quality.

  22. Kris

    (Not too surprising as it was written as a hobby by a teenager before they (halfshot) got hired by Element and didn't work further on it).

  23. tom

    I think it has more to do with achieving a critical mass of users after VC funding.

  24. tom

    But I'm not sure.

  25. Kris

    I am talking specifically about Bifrost. No matrix in general.

  26. Kris

    I am talking specifically about Bifrost. Not matrix in general.