XSF Discussion - 2017-01-24

  1. SamWhited has left

  2. daurnimator has left

  3. SamWhited has left

  4. SamWhited has joined

  5. vanitasvitae has left

  6. lonerz has joined

  7. mancho has left

  8. stpeter has left

  9. SouL has left

  10. daurnimator has left

  11. jubalh has left

  12. daurnimator has left

  13. stpeter has joined

  14. Tobias has left

  15. daurnimator has left

  16. lonerz has left

  17. SamWhited has left

  18. SamWhited has joined

  19. Tobias has left

  20. Tobias has left

  21. lonerz has joined

  22. Guus has left

  23. Yagiza has joined

  24. SouL has joined

  25. pep. has left

  26. daurnimator has left

  27. daurnimator has left

  28. daurnimator has left

  29. Guus has left

  30. liebre has left

  31. SamWhited has left

  32. Yagiza has joined

  33. stpeter has left

  34. daurnimator has left

  35. Guus has left

  36. daurnimator has left

  37. daurnimator has left

  38. Yagiza has left

  39. jere has left

  40. jere has joined

  41. waqas has left

  42. mancho has joined

  43. daurnimator has left

  44. SamWhited has left

  45. SamWhited has left

  46. daurnimator has left

  47. jere has left

  48. arc has left

  49. arc has joined

  50. arc has left

  51. arc has joined

  52. Sonny has left

  53. Sonny has joined

  54. Zash has joined

  55. SamWhited has left

  56. bjc has joined

  57. goffi has joined

  58. Guus has left

  59. waqas has joined

  60. waqas has left

  61. Guus has left

  62. daurnimator has left

  63. daurnimator has left

  64. daurnimator has left

  65. daurnimator has left

  66. Zash has joined

  67. winfried has left

  68. winfried has joined

  69. Guus has left

  70. daniel has left

  71. mimi89999 has joined

  72. ralphm has joined

  73. Guus has left

  74. xnyhps has joined

  75. Guus has left

  76. nyco has left

  77. nyco has joined

  78. Guus has left

  79. Zash has left

  80. bear has left

  81. daurnimator has left

  82. lonerz has left

  83. Guus has left

  84. lonerz has joined

  85. lonerz has left

  86. Ge0rG has left

  87. Guus has left

  88. Flow has joined

  89. daurnimator has left

  90. Zash has joined

  91. Tobias has joined

  92. blipp has left

  93. blipp has joined

  94. Flow has left

  95. Ge0rG has left

  96. edhelas has joined

  97. dwd has joined

  98. dwd has left

  99. dwd has joined

  100. Zash has left

  101. Zash has joined

  102. Steve Kille has left

  103. Steve Kille has left

  104. Steve Kille has joined

  105. blipp has left

  106. blipp has joined

  107. daniel has joined

  108. Valerian has joined

  109. pep. has left

  110. Guus has left

  111. Flow has joined

  112. Guus has left

  113. Guus has joined

  114. jcbrand has joined

  115. Sonny has left

  116. Sonny has joined

  117. Ge0rG has left

  118. Ge0rG has left

  119. arc has left

  120. arc has joined

  121. Sonny has left

  122. Sonny has joined

  123. Lance has joined

  124. Lance has left

  125. Lance has joined

  126. Lance has left

  127. vanitasvitae has left

  128. Alex has joined

  129. daniel has left

  130. daniel has joined

  131. Ge0rG has left

  132. intosi has joined

  133. Alex has left

  134. Alex has joined

  135. Ge0rG has left

  136. mimi89999 has left

  137. Ge0rG

    Yay! I am not alone! https://gist.github.com/ValdikSS/30f866602413c036e4e6924c1895b838

  138. goffi

    Ge0rG: you are not alone willing to improve clients, but you should understand that we (clients developers) have limited time and resources.

  139. mathieui

    I think Ge0rG understands that just as much as other client developers

  140. Ge0rG

    mathieui: or even more so.

  141. Ge0rG

    The last yaxim release has been two years ago.

  142. Ge0rG

    But I have good news to announce. I found a critical vulnerability in yaxim that requires an immediate release!

  143. Zash

    Nothing like a security issue to speed up the release schedule :D

  144. mathieui slowly fades out in the background

  145. Guus has left

  146. mancho has left

  147. Vinilox has joined

  148. Steve Kille has left

  149. Guus has joined

  150. Steve Kille has left

  151. Guus has left

  152. Guus has joined

  153. intosi has left

  154. intosi has joined

  155. Guus has left

  156. Guus has joined

  157. Ge0rG

    does anyone know if xabber is still considered as maintained?

  158. Flow

    Ge0rG: yes, gregory is very active

  159. Flow

    he's contributing to smack as well as commiting to xabber

  160. Ge0rG

    Flow: do you happen to have his jid?

  161. mancho has left

  162. Flow

    No, I'd contact him via mail

  163. Flow

    btw, the development seems to happen in the 'develop' branch and not in 'master': https://github.com/redsolution/xabber-android/tree/develop

  164. Flow

    Which is a pitty as it makes the project appear inactive while it isn't

  165. Flow

    uh, grigory that is

  166. Valerian has left

  167. Valerian has joined

  168. Ge0rG has joined

  169. Valerian has left

  170. Valerian has joined

  171. Steve Kille has left

  172. liebre has joined

  173. Guus has left

  174. Guus has joined

  175. Valerian has left

  176. intosi has left

  177. intosi has joined

  178. daniel has left

  179. daniel has joined

  180. Sonny has left

  181. Sonny has joined

  182. kalkin has left

  183. Ge0rG

    O tempora, o mores! Some mediated MUC invitations contain <x xmlns="jabber:x:conference"/>, despite not being required, others don't.

  184. moparisthebest has left

  185. moparisthebest has joined

  186. Ge0rG

    is that a groupchat 1.0 invitation?

  187. Zash

    Yes, and also direct MUC invitation.

  188. Ge0rG

    which have a different schema.

  189. Ge0rG

    the MUC code I inherited first checks for presence of <x xmlns="jabber:x:conference"/>, then parses <x xmlns="http://jabber.org/protocol/muc#user"><invite /></x>

  190. Ge0rG

    which is bound to fail on non-groupchat1-servers and for direct invitations

  191. liebre has left

  192. Sonny has left

  193. Steve Kille has left

  194. Sonny has joined

  195. Valerian has joined

  196. Sonny has left

  197. Sonny has joined

  198. Ge0rG has left

  199. Guus has left

  200. Guus has joined

  201. Guus has left

  202. Guus has joined

  203. Ge0rG has left

  204. Ge0rG has left

  205. intosi has left

  206. intosi has joined

  207. Ge0rG has left

  208. Yagiza has joined

  209. mancho has left

  210. Guus has left

  211. Guus has joined

  212. Alex has left

  213. Ge0rG has left

  214. jere has joined

  215. waqas has joined

  216. SamWhited has left

  217. SamWhited has joined

  218. vanitasvitae has left

  219. daurnimator has left

  220. Guus has left

  221. Guus has joined

  222. daurnimator has left

  223. Steve Kille has left

  224. Guus has left

  225. Guus has joined

  226. Steve Kille has joined

  227. Sonny has left

  228. Sonny has joined

  229. Zash

    fippo, do you have a socket library with MSG_PEEK support?

  230. Ge0rG has left

  231. waqas has left

  232. Alex has joined

  233. Tobias

    Zash, it's supported by BSDs and Linux, end even abstraction libs like libuv

  234. Zash

    High level socket library*

  235. Zash

    LuaSocket doesn't afaik

  236. SamWhited has left

  237. SamWhited has joined

  238. Tobias

    libuv is pretty high level

  239. fippo

    zash: proper C and good old select() :-)

  240. Ge0rG has left

  241. pep. has left

  242. fippo

    zash: it doesn't have to be peek. if you can get your first batch of tcp data and then decide whether to put it into openssl or your xml parser that is sufficient. i found peek very convenient for the way i dealt with openssl (not using bios... a decade later i know how to do that too :-))

  243. mancho has left

  244. daurnimator has left

  245. daurnimator has left

  246. Ge0rG has left

  247. moparisthebest

    and that's a nifty feature, but I just let sslh handle all that for me

  248. moparisthebest

    because I don't want an xmpp server doing xml and TLS on 443, I want https, imaps, smtps, xmpps, ircs etc etc etc all on 443

  249. Holger

    sslh is nice indeed, except that it currently only supports select() or fork().

  250. mhterres has left

  251. Holger

    It should just use libev or something ...

  252. moparisthebest

    he's very receptive to patches Holger, wink wink :)

  253. moparisthebest

    haproxy supposedly supports doing the same stuff and I think it uses libev and zero-copy stuff etc

  254. moparisthebest

    I haven't tried it though

  255. Zash

    libev, libuv, libevent hrrrrr

  256. Holger

    moparisthebest: :-) Yes I was going to add libev support next time I'm bored.

  257. Tobias

    Zash, yeah...all the same stuff that requires to give up runtime control :/

  258. Zash

    I'll just write my own network lib, with hookers, and blackjack!

  259. Holger

    moparisthebest: Should be really simple.

  260. Tobias

    bite my shiny little network lib :P

  261. moparisthebest

    I'm hoping you get bored soon Holger , the sslh code is rather nice for C in my opinion, I'm not really a C developer

  262. Zash

    Why hasn't that moved into systemd yet?

  263. Tobias

    how can you judge the niceness of C code, when you're not really a C developer?

  264. Tobias

    Zash, too few CVE potential

  265. Tobias

    Zash, too small CVE potential

  266. moparisthebest

    I mean, I write C code sometimes, but I'm primarily a Java developer

  267. moparisthebest

    and some C code makes me wince and other looks nice :)

  268. Zash

    Tobias: TLS support in the socket activation bits of the init system? Surely you can get a few CVEs out of that?

  269. Tobias

    Zash, but it seems they go for low hanging CVEs instead of complicated TLS/socket CVEs ...as soon as OpenSSL and systemd reach the same code quality level they could merge that in...running OpenSSL code in PID 1, a dream come true

  270. intosi

    moparisthebest: isn't that true in any language?

  271. moparisthebest

    intosi, yes of course, I was only commenting that in my opinion the sslh code looked like nice C code

  272. intosi

    Bad coders will create awful code, no matter how nice the language. C doesn't only hand you the gun, it detaults to pointing it at your feet, making bad coding that much more obvious, but bad devs will go at lenghts to point guns towards feet.

  273. waqas has joined

  274. kaboom has joined

  275. kaboom has left

  276. kaboom has joined

  277. kaboom has left

  278. jubalh has joined

  279. Guus has left

  280. Guus has joined

  281. winfried has joined

  282. winfried has joined

  283. jcbrand has left

  284. mimi89999 has left

  285. jubalh has left

  286. xyz has joined

  287. jubalh has joined

  288. tim@boese-ban.de has left

  289. Guus has left

  290. Guus has joined

  291. Ge0rG has left

  292. mimi89999 has left

  293. mimi89999 has left

  294. mimi89999 has joined

  295. mimi89999 has left

  296. mimi89999 has left

  297. mimi89999 has joined

  298. xyz has left

  299. Yagiza has left

  300. daniel has left

  301. daniel has joined

  302. Ge0rG

    intosi: C is rather easy to use correctly when compared to C++

  303. mancho has left

  304. Zash

    pointer to pointer to array of pointer to structs full of pointers to pointers hurts my head tho

  305. daniel has left

  306. daniel has joined

  307. Holger

    Actually it's one of the few languages that feels like it more or less completely fits into my brain.

  308. Holger

    Unlike these C++/Scala/whatever monsters.

  309. Zash

    Sure, yeah. C and Lua <3

  310. Zash

    C with moderate use of pointer indirection :)

  311. Holger

    Yes C and Lua, and Erlang falls into that category as well :-) Most others don't.

  312. Sonny has left

  313. Sonny has joined

  314. Ge0rG

    Zash: arrays in C are a lie!

  315. kalkin

    You guys should try forth. Its so easy to implement it itself in asm.

  316. Zash

    Ge0rG: No, all memory is a giant array.

  317. kalkin

    It's minimal and your software ends up written in a DSL like language which makes fits your software

  318. kalkin


  319. Zash

    So many languages. So few ideas about what to do with them.

  320. Ge0rG

    kalkin: I've written a robot control application in Z80 Forth some 20 years ago. Most find some time to blog it

  321. Ge0rG


  322. MattJ


  323. kalkin


  324. kalkin

    Ge0rG: 😎

  325. Ge0rG

    Zash: each memory, but not all memory! πŸ˜€

  326. Ge0rG

    God, I'm old.

  327. Zash throws a handfull of tiny magnetic rings at Ge0rG

  328. intosi

    Wait, I need to fix things on my SPARC, glad Openboot has forth built in ;)

  329. xyz has joined

  330. Ge0rG

    Zash: damn it, you just made me realize that /me notifications in yaxim are broken.

  331. Zash

    Ge0rG: You are welcome

  332. SamWhited has left

  333. Lance has joined

  334. xyz has left

  335. Ge0rG

    Zash: thanks! ☺️

  336. Zash

    Ge0rG: Speaking of which, is Yaxim still built with Smack versions from before SCRAM was implemented?

  337. Holger has left

  338. SamWhited has left

  339. dwd

    Both major C++ projects I've done recently went sailing through COverity et al without anything major being found. OTOH, their C dependencies were pretty scary.

  340. daniel has left

  341. daniel has joined

  342. daniel has left

  343. daniel has joined

  344. Ge0rG

    Zash: smack 3.something

  345. daniel has left

  346. daniel has joined

  347. blipp has left

  348. blipp has joined

  349. bra has left

  350. Valerian has left

  351. Valerian has joined

  352. daniel has left

  353. daniel has joined

  354. bra has joined

  355. daniel has left

  356. daniel has joined

  357. Valerian has left

  358. daniel has left

  359. daniel has joined

  360. Alex has left

  361. daniel has left

  362. daniel has joined

  363. mimi89999 has left

  364. holger has joined

  365. holger has left

  366. holger has joined

  367. holger has left

  368. holger has joined

  369. holger has left

  370. Lance has left

  371. Steve Kille has left

  372. Steve Kille has left

  373. Sonny has left

  374. Sonny has joined

  375. Steve Kille has joined

  376. bra has left

  377. bra has joined

  378. bra has left

  379. bra has joined

  380. bra has left

  381. bra has joined

  382. bra has left

  383. bra has joined

  384. daniel has left

  385. daniel has joined

  386. daniel has left

  387. daniel has joined

  388. SamWhited has left

  389. daniel has left

  390. daniel has joined

  391. Sonny has left

  392. Sonny has joined

  393. arc has left

  394. arc has joined

  395. Sonny has left

  396. Sonny has joined

  397. bra has left

  398. Steve Kille has left

  399. mancho has left

  400. daniel has left

  401. Sonny has left

  402. Sonny has joined

  403. daniel has joined

  404. Valerian has joined

  405. daniel has left

  406. daniel has joined

  407. bra has joined

  408. Valerian has left

  409. Valerian has joined

  410. Guus has left

  411. Guus has joined

  412. daurnimator has left

  413. daniel has left

  414. bra has left

  415. bra has joined

  416. daniel has joined

  417. intosi has left

  418. daniel has left

  419. daniel has joined

  420. Guus has left

  421. Guus has joined

  422. Guus has left

  423. Sonny has left

  424. Sonny has joined

  425. Guus has joined

  426. daniel has left

  427. daniel has joined

  428. Sonny has left

  429. Sonny has joined

  430. jubalh has joined

  431. intosi has joined

  432. mancho has left

  433. Flow has joined

  434. daniel has left

  435. daniel has joined

  436. Guus has left

  437. Guus has joined

  438. jubalh has left

  439. Guus has left

  440. Guus has joined

  441. bear has joined

  442. pep. has left

  443. Flow has left

  444. intosi has left

  445. liebre has joined

  446. liebre has left

  447. Valerian has left

  448. intosi has joined

  449. Alex has left

  450. lonerz has joined

  451. arc has left

  452. arc has joined

  453. Alex has joined

  454. Flow has joined

  455. Flow has left

  456. dwd has left

  457. Ge0rG has left

  458. lonerz has left

  459. Alex has left

  460. Ge0rG has left

  461. Alex has joined

  462. jubalh has joined

  463. jubalh has left

  464. intosi has left

  465. jubalh has joined

  466. Guus has left

  467. Guus has joined

  468. waqas has left

  469. waqas has joined

  470. SamWhited has left

  471. intosi has joined

  472. SamWhited has left

  473. SamWhited has joined

  474. SamWhited has left

  475. SamWhited has joined

  476. Tobias

    i don't get the value of default ports if you have a requirement for SRV lookup anyway

  477. pep. has left

  478. jubalh has joined

  479. intosi has left

  480. Flow has joined

  481. MattJ

    I don't get the value of ports if you tunnel everything over 443

  482. intosi has joined

  483. Tobias

    I don't get the value of firewalls, if you move all applications to a single port

  484. mancho has left

  485. Tobias

    MattJ, was more refering to standards ML discussion about new direct TLS only ports for C2S and S2S xmpp

  486. SamWhited has left

  487. SamWhited has joined

  488. goffi has left

  489. blipp has left

  490. blipp has joined

  491. moparisthebest has joined

  492. intosi has left

  493. Ge0rG

    the bike shedding debate about whether real tls is more securer than start tls?

  494. Ge0rG

    we all know that startssl is insecure since it was bought by China

  495. intosi has joined

  496. Flow has joined

  497. moparisthebest

    Tobias: yea I don't think default ports are useful there either

  498. Ge0rG

    just default to 443!

  499. jere has joined

  500. intosi has left

  501. daniel has left

  502. daniel has joined

  503. Alex has left

  504. daniel has left

  505. daniel has joined

  506. moparisthebest

    There you go Ge0rG ! :-) you are getting it now

  507. SamWhited has left

  508. dwd has joined

  509. dwd has left

  510. dwd has joined

  511. stpeter has joined

  512. vanitasvitae has left

  513. waqas has left

  514. waqas has joined

  515. mancho has left

  516. blipp has left

  517. blipp has joined

  518. SamWhited has left

  519. SamWhited has joined