KevWhat are people's plans for the meeting tomorrow?
KevI assume they mostly involve precis as well.
KevWhich I thought was in the same room, but seems not to be.
LloydGot an announcement regarding transport to the evening meetup going out by email today.
KevI mean the WG.
KevAlthough cool :)
Lloyd(yeah just thought I'd update that bit too)
dwdLloyd, You seem to have mis-spelt "Ubber".
dwdis virtually sitting in sipcore.
dwdI have a horrible feeling our meetings sound this dull to an outsider.
fippooh, go to AVTCORE or AVTEXT (-:
Lloyddwd: As they were providing transport I felt it wouldn't be fair. Florian is coming though so we can refer to it as 'ubber' all we want :)
fippo"which lends itself to interoperability and federation thinking . things that are a bit less important these days" -- intraoperability is so much more cool, eh dwd? (guess where that is from)
dwdIntra-operability is like masturbation for networked systems.
KevNo-one has any plans for meeting prior to precis, then?
dwdralphm, That's from Tsahi's blog.
ralphmoh man, does that ever stop?
SMDid people give up on the federation angle?
Tobiasdepends who you mean with people? :)
SMWell, I do not even see StPeter here. So it would be the rest:)
Tobiasright..since he's a machine who's 24/7 online
ralphmSM: wait what?
SMRalph, I wondered whetehr people (undefined) were still pushing for federation
fipporalphm: when tsahi says "federation" he talks about things like "sip federation" and rcs-e and joyn
fippowhich is a frequent misunderstand because we use federation for "run your own server and be part of the network. minimum requirements"
ralphmSM: within the XSF? Mostly everybody.
SMRalph, the door is still open for doing some PR. It won't last for long
ralphmSM: it's not like we can just pull open a can of PR people.
SMI understand. Just mentioning it.
ralphmSM: it's mostly stating the obvious, no offense. I wish I could find the time to write more, but I have been trying to keep up with Tweets mentioning XMPP and occasionally responding to falsehoods.
ralphmGood writeups would be great.
Ge0rGare there XMPP-based services that generate large numbers of outgoing messages?
ralphmGe0rG: I can hook you up with julian if you want
Ge0rGralphm: I'm still pondering about xmpp spam prevention using proof-of-work
fippohttps://www.imperialviolet.org/2014/03/03/triplehandshake.html <-- ugh, this seems like it might affect xmpp, in particular s2s?
Tobias" and protocols that depend on channel binding"
fippooh wait, we only use channel binding with scram plus and that is typically not used with client certs?
Ge0rGI still wait for people to realize that client cert handshake is leaking big data
fippohah. xmpp beats email again ( @ security mailing list)
Tobiaswhat security ml?
Tobiasgot into spam :(
Ge0rGthere is a security@ ml? wow!
Tobiasyeah...low traffic...because XMPP is soooo secure ^^
fippo"[discuss-webrtc] How Do I know If Someon is Online To Take A WebRTC Call?" -- i am tempted to reply "use presence, it's the new dialtone"
ralphmI hope intosi is reading that list, as he's been looking into dkim issues
ralphmin general, though, gmail and others services don't really like independent mail servers sending out, you know, mai; to them
xnyhpsfippo: I think TLS resumptions is a requirement for that attack, and (I'd love to be corrected about this) I don't think anyone in the XMPP world uses that.
xnyhpsBecause of StartTLS etc.
dwdxnyhps, Actually, it's better than that. You need clients that don't validate certificates and just rely on channel binding.
dwdxnyhps, BTW, if you've got a minute at some point, it'd be great to hear how STRINT went. But not now, because I'm old and need my sleep. :-)
fippodwd: I heard that strint was rather boring (-:
xnyhpsdwd: Ah, I missed that when I read it.
ralphmdwd, xnyhps: I think it would be pretty useful to blog this on xmpp.org
xnyhpsI happen to have a series of blog posts about HTTPS attacks and how they translate to XMPP. (Where the "series" is right now at 1 item)