Neustradamusnote: https://xmpp.net/ has a problem: Code d'erreur : ssl_error_no_cypher_overlap
I am not alone to have this problem.
SimonHow is everyone's test day going?
intosiToo early to tell for j.org, I only just flipped the switch.
Neustradamusnow all are good for me :)
SimonI've basically left all the buddycloud server set to force since the last test day.
NeustradamusI have only problems with:
SimonIs Metronome the Prosody fork?
intosiSo far, the usual suspects are failing on my home interop testing servers.
intosiNeustradamus: from your own server? No need reporting unrelated issues that have been reported before and are looked into. That only muddles the feedback on the TLS testing day.
Neustradamusreply from Metronome dev:
[12:23:37] <Marco Cirillo> you have a problem only joining mucs on Metronome servers which run bidi
[12:24:02] <Marco Cirillo> try with your account on jappix.com
[12:24:13] <Marco Cirillo> you'll see it works
Neustradamusit is a bug before the switch like I have sent
[08:43:05] <Neustradamus> *** 2014-02-21
[01:54:23] <Maranda> stpeter btw, j.o's seems to have some blocking issues regarding bidi, some users (e.g. Neustradamus) can't join mucs on my server because, even if it requested bidi & authenticated, j.o still bounces the incoming stanzas it receives on the bidi enabled stream.
intosiNeustradamus: stop doing that. The jabber.org admins know about the issue, and you know that. It is not related to the TLS testing day.
Neustradamusno problem, strange that it is a little hours before...
intosiAs expected, the number of active s2s connections on jabber.org is dropping, where on normal Saturdays, the number should still be increasing. Still too early to tell the difference between this day and the previous one.
Simonintosi - are you or Peter going to fix the cipher list on jabber.org?
intosiThough not today.
intosiWith eventually, I really mean Real Soon Now™ ;)
Simongreat. I always notice it in the test results.
intosiThere is some discussion on what impact this will have on older clients and clients that cannot do HGE.
intosiHigh Grade Encryption
intosiAnd whether we should care about that.
SimonThere's a high chance that older clients are set to autoconnect and have sat untouched in the background of a machine for years.
Zashxnyhps, is xmpp.net broken? submit.php and result.php gives empty replies
intosiBut it's more secure that way ;)
ralphmfippo, did you see this update: https://code.google.com/p/webrtc/issues/detail?id=2923
fipporalphm: yeah... we should probably work on giving them a... say swiften-based... example :-)
KevSounds like something for the XSF to fund ;)
fipponah, for google!
fippodamn, that would have been a nice gsoc project actually
KevIt was on the list of ones I was going to put up for Swift, until I didn't have time to mentor.
fipporalphm: i'd actually say that the signalling components of libjingle are not useful :-)
ralphmThat's kinda funny
Simonxnyhps if you are there, - running a test against any domain on xmpp.net is failing. some Secruity test day folks are confused.
KevPeter asked if the OS could be updated. Turns out that the observatory doesn't like the new packages much.
KevI've been looking at it, but I've got stuff to do this afternoon.
KevThijs knows about it (but I think is AFK, hasn't been responding for a few hours).
SimonIf there is anything I can do, I'm happy to jump on.
KevI don't think so, thanks.
KevAt least we're A on ssllabs now.
KevWeren't looking so good with openssl0.9.8
SimonI understand. And if I remember correctly, upgrading openSSL basically implies a new distro version.
KevNothing more relaxing after a long week at work than a remote dist-upgrade on an old old machine.
KevOther than, you know, not that.
Simonnods. On my own server where I know all the gotchas… fine. But you never know what undocumented workarounds someone else has done in the heat of the moment and then forgotten to go in and fix properly.
KevOS did OK in the end...other than that the only thing running on the machine doesn't run on the new packages.
KevThat's got things a /little/ better.
KevIt's hard not to hate PHP sometimes.
KevI don't spend much of my time thinking about it.
KevStill a load of errors in the logs, but I don't know if they're normal or not.
KevYeah, a number of them seem to be general bugs - errors in the logs going back days.
KevNot others, though.
KevOh, no, that error's been there for days too.
KevRight. I can't find any errors in the logs that haven't shown up before.