-
MattJ
Good morning
-
MattJ
I'm going to upgrade xmpp:xmpp.org, which means this room will be (hopefully briefly) unavailable, and you will need to rejoin
-
MattJ
Hopefully for the last time, because the next version preserves room occupants between restarts :)
-
MattJ
Wait. Or am I?
-
MattJ
Looks like an OS upgrade will be needed first
-
lovetox
Do we get MAM here then?
-
lovetox
or at least a history that doesnt save chatstates
-
MattJ
MAM is the goal, yes
-
lovetox
great š
-
jonasā
lovetox, are you confusing this room with jdev@?
-
lovetox
maybe, does this one not save chatstates :D
-
jonasā
I donāt think it does
-
jonasā
but I havenāt been using a non-always-on client in MUCs for a while now, so I donāt know
-
jonasā
okay, Iāve officially been doing too much XMPP. when I type x in my browser bar, the first suggestion is not xkcd.com anymore, but xmpp.org.
-
zinid
jonasā, I keep you even more busy :) check the inbox :)
-
jonasā
holy smokes, I knew you were one of those russian spammers!!!! (jk)
-
zinid
jonasā, haha, two more to come! (but not now)
-
zinid
jonasā, this time when you find the problems with the document tell me and I will fix them prior to the Council discussion, in order not to waste their time
-
jonasā
zinid, okay
-
Ge0rG
I have a vague feeling that the council members are on council because they like wasting their time with taking apart protocols...
-
zinid
really?
-
zinid
I thought they mostly take apart XSF rules :)
-
Ge0rG
zinid: those are a special kind of protocol.
-
zinid
Ge0rG, yeah, I learnt recently SEX is also a protocol
-
zinid
how is it going btw? where is the protoxep?
-
zinid
"how is your SEX life by the way"
-
Ge0rG
zinid: I haven't decided yet whether to make it a proto XEP. Need to read through OX and MLS first
-
Ge0rG
Also, surprisingly, some people dislike the name
-
zinid
ha, I told you. The wrong community. Rename to FAP.
-
zinid
btw, I tried to read the MLS I-D, but fell asleep after a few minutes. Really not my stuff.
-
Maranda
zinid, very satisfying thanks š¤£ š¤£ š¤£
-
zinid
Maranda, hello ;)
-
Maranda
Good mornin' šø
-
dwd
Wasn't SEX the thing that was "post operational transform" and could transfer an empty XML doc in only 9,000 stanzas and half a gig?
-
Zash
dwd: SXE?
-
dwd
Oh, yes. That's the one.
-
Zash
What sort of amazing compression were you using to get that into half a gig?
-
dwd
Zash, Good point - these days, compression isn't allowed Because Security.
-
pep.
Looking at Outreachy. "FOSS communities need to have secured funding for at least one intern ($6,500)", that's.. not going to be possible?
-
Zash
Somewhat out of reach for ~3 people working in their free time without any formal organization, yeah.
-
pep.
Ok so outreachy for diversity in this community is a no-go, unless companies can chime in maybe.
-
Zash
Something something discrimination against poor FOSS projects!!!!11!1eleven
-
pep.
Yeah, so like 90% of FOSS
-
rion
I'm trying to understand one thing about Jingle. For example I have got a session-initiate request. iq-from and "initiator" are different for some reason. so I send back iq ack to iq-from and then session-accept to initiator jid. What if for example I receive content-add from initiator jid as iq-from now instead of original iq-from? How should I treat it?
-
Zash
pep.: Tho, we could still talk to them
-
pep.
Do you know who to ping and how to approach them?
-
Zash
Not really
-
Zash
pep.: "Hi, we're a bunch of FOSS projects around the open IM protocol XMPP" and invite the organizers to some event to talk about encouraging diversity in FOSS projects. Like a sprint or somesuch.
-
Zash
Something along those lines
-
pep.
How to reuse Matrix marketing 101: https://ppjet.bouah.net/im-protocols-interop.png (I took a few liberties)
-
Zash
oh lawd
-
Zash
https://en.wikipedia.org/wiki/Xmpp#Connecting_to_other_protocols
-
pep.
Matthew, (please stop me if you're not the right matthew), I'm looking at the Matrix and the french state talk, and you list a set of features for the protocol, notably e2ee _and_ server-side search. How does that work?
-
pep.
What do you look at if your server doesn't have plain data
-
Matthew
the idea is that you run your own server somewhere trusted to index the data
-
Matthew
https://github.com/matrix-org/matrix-search
-
Andrew Nenakhov
Those ee2e freaks never cease to amaze me. First they trust no one and demand end to end encryption. Them they understand that total privacy is kinda inconvenient, so they are willing to totally compromise their e2ee to have nice fearures back
-
Matthew
(the idea is also to run the server clientside; eg in the desktop apps, to have better control over the plaintext)
-
Matthew
weāre not trying to do homomorphic encryption or anything fancy
-
pep.
Right, so it's more of a client-side feature ish
-
pep.
Does the data come from the client, or is the indexer actually plugged on the network
-
Andrew Nenakhov
Why not run just your own server and not bother with e2ee?
-
Matthew
Andrew Nenakhov: because it sucks if someone pwns your server
-
Matthew
and servers tend to be slightly easier to pwn than endpoints
-
pep.
I don't actually agree with the last comment, but I do with the previous one.
-
Zash
Got stats on that?
-
pep.
And as a server admin I'd like to not be able to see my users' data
-
Matthew
pep.: in the linked project, the data comes from the network
-
Matthew
we are having second thoughts on whether thatās the right design
-
Andrew Nenakhov
You mean than android phones that can pe pwned with a png oic?
-
Matthew
zash: just common sense that itās easier to pwn some random crappy homerun vps than an iphone
-
pep.
Matthew, you mean an iphone not pin-locked? :P
-
Matthew
also, itās easier to find servers and theyāre tend to be turned on all the time
-
Matthew
and they gather more data and metadata than a client
-
Matthew
*shrug*
-
Andrew Nenakhov
> And as a server admin I'd like to not be able to see my users' data I mean, the only security threat that e2ee helps is server operators. If you are your own operator you dont need to protect against yourself
-
Zash
So nothing to back that up?
-
pep.
Andrew Nenakhov, not sure if I read your message correctly, but yeah, as a server admin I'd like not to be able to sell (give) my users' data to any government or whatever
-
Andrew Nenakhov
> And as a server admin I'd like to not be able to see my users' data That's easy. Never look at it.
-
pep.
read my last message
-
Andrew Nenakhov
Oh right. Do not host servers with data from strangers.
-
pep.
What have strangers to do with that
-
Zash
Don't host servers to begin with. Or use computers! Moving into the woods and growing potatoes is the final solution to all tech problems!
-
Andrew Nenakhov
If you have a known people who's data might be asked for retrieval by government, you'd better not have them on your server in the first place
-
mathieui
why?
-
Andrew Nenakhov
This obsession with encryption is unhealthy. :-/
-
Andrew Nenakhov
If users want e2ee, fine
-
mathieui
people who are in trouble with their governments do not have the right to use IM?
-
Andrew Nenakhov
Just dont ask for server to nicely find your chats from last year by fulltext
-
pep.
Matthew, do you have resources describing what e2ee in matrix protects from (what goals)? or can you summarize it quickly?
-
Andrew Nenakhov
As a person who was visited by FSB thugs 4 times last year pressing me to have backdoors in our app... I do more than most people to protect rights of users to use IM
-
Andrew Nenakhov
I also know that 80-90% of e2ee users in russia are junkies
-
Zash
Beware selection bias :)
-
Andrew Nenakhov
Like, literally, junkies and their drug suppliers
-
pep.
So what
-
pep.
It's not worth giving options to the other 10%?
-
Andrew Nenakhov
So im allergic to e2ee demands. )) Because i have a very accurate mental image of an average user
-
Andrew Nenakhov
Also worth noting, that junkies are MUCH more inclined to pay for their privacy than those other 10%
-
pep.
I'm not denying that what I'm seeing is also crypto junkies. That doesn't mean I'm excluding legimate cases entirely, (whatever legitimate means)
-
Matthew
pep.: https://docs.google.com/spreadsheets/d/1Bv2Pf4rz62nB8omDFoolRmONmU47zIeGewJBbPeADoM
-
pep.
Thanks
-
Matthew
is some brief notes on matrixās e2ee threat model from a while back
-
Andrew Nenakhov
Somehow these who love freedom and are offended by idea of being spied upon rarely pay. I guess that has to do with them treating e2ee as their constitutional right
-
Andrew Nenakhov
And noone pays for constitutional rights)
-
Matthew
(btw, itās a pleasure to be having constructive xmpp<->matrix convo; bridging ftw)
-
pep.
:)
-
pep.
I know right, bridging ftw: https://ppjet.bouah.net/im-protocols-interop.png :P
-
Matthew
i saw :p
-
pep.
Do you know a bit about OMEMO, and do you think that'd be compatible with Olm?
-
pep.
As in, is that even bridgable
-
Zash
Didn't they differ in some tiny part like IV or somesuch?
-
pep.
that would suck
-
pep.
hmm, the certificate changes incorporated in synapse 0.99, that seems a bit meh. Judging how people never update their deployment, you're basically cutting off federation with them on a 3-months (was it?) notice
-
pep.
Where did I read that again
-
Zash
It was in the talk IIRC?
-
pep.
There's a bit in the talk, but not the notice period
-
pep.
https://github.com/matrix-org/matrix-doc/pull/1711/commits/f30e6851127874739659ffe2b2c211c4db6e50f0#diff-14fe96e0952d0411db3e9ecbbddce789R53 I remember reading this
-
pep.
Or my browser remembers, rather
-
pep.
"Once everybody has migrated off to v3 rooms, we'll be killing off v1 rooms", so, almost never :x
-
Zash
Let me tell you about Groupchat 1.0
-
pep.
I was going to mention it yeah
-
Zash
That was "The old thing" back when MUC was first written
-
Matthew
the difference is perhaps that weāre in position to upgrade a bit more ruthlessly and proactively
-
Matthew
and can massively cheat because thereās only one usable server
-
pep.
That surely simplifies lots of things. You're not in control of every deployment though
-
pep.
I think that's the biggest barrier
-
Zash
I'm sure we could have done that in 2003 when jabber.org was still The Place
-
Matthew
of course, but if we ship synapse 1.0 that refuses to talk to self-signed certs and put it on the disproportionately large matrix.org, i suspect folks would get around to chucking a real cert on their servers
-
Matthew
and weāve given a month for folks to sort themselves out
-
Matthew
it remains to be seen if thatās enough
-
Matthew
but iād prefer to set a fast tempo for this sort of thing, and coincide it with the 1.0 etc
-
Matthew
and yes, i bet in the jabber.org days you could have done similarly for xmpp
-
Matthew
and yes, i know omemo, and it is compatible with olm (in fact the omemo xep at one point adopted olm). but that doesnāt help when the underlying protocols are entirely different
-
pep.
I was just curious to know if it was compatible enough to work over a bridge
-
Matthew
itās like saying that xmpp and nntp both use tls, and then being sad when they canāt talk to one another
-
Zash
There comes a point where if you do that, you would be cutting yourself off from the wider federation.
-
Matthew
no, you always have to reencrypt e2e over a bridge
-
Matthew
or have a multihead client
-
pep.
yeah ok
-
Zash
Matthew: I don't think the low-level protocol matters for that. OTR "works" over any transport.
-
Matthew
zash: only because otr is used for plain text payloads
-
Zash
It'll be more a matter of how what bits goes into OMEMO and OLM and whether they can come out the other end
-
Zash
Matthew: So is OMEMO
-
Matthew
whereas omemo and olm encrypt entire objects aiui
-
Matthew
or at least olm does
-
Zash
No, OMEMO is jsut the plain text body
-
Matthew
oh, ok
-
Zash
That's one of the problems some people have with it
-
Matthew
well, i guess we could do a dialect of olm which only encrypts the plaintext body, but thatās a bit bleurgh
-
Zash
Right
-
Matthew
especially as matrix is about syncing objs rather than IMs in the end
-
Matthew
weāre going to take a look at replacing olm and megolm with mls, anyway
-
Matthew
which at least might get everyone on the same ratchet
-
Matthew
but youād have the same problem of what layer you encrypt at
-
pep.
yeah
-
Matthew
in terms of the body or the whole stanza (or event in matrix terminology)
-
pep.
What I'd like to have, is a client implementing the component interface, and being able to run bridges etc., this way I wouldn't care about these bridges decrypting and reencrypting
-
Matthew
basically, e2ee + bridging = sadpanda
-
Matthew
unless you run the bridge clientside, but then youāre basically back at a multiheaded client again.
-
Zash
and the cycle continues
-
Matthew
loads of the matrix bridges are built that way tho (whatsapp, imessage, signal etc)
-
Matthew
inderd
-
Matthew
and indeed
-
Matthew
i donāt think itās that unreasonable to say that if you want e2e you should be on the same network tho
-
Matthew
assuming you have bridged public rooms and insecure bridged dms
-
pep.
I don't think it's reasonable to say that to users. They don't understand they're using Matrix or XMPP and they really don't care. Or at least my mom doesn't :)
-
Zash
That basically goes with all more advanced native features
-
Matthew
then perhaps there is more use for a ājust the payloadā e2e dialect
-
Matthew
for bridging purposes
-
Zash
When doing bridges, there'll usually be things that can't be translated. So you end up with the lowest common denominators.
-
Matthew
have filed https://github.com/matrix-org/matrix-doc/issues/1871 fwiw
-
pep.
:)
-
vanitasvitae
Matthew: nice to see you in this room :) Had some enlightening talks with matrix folks at fosdem
-
vanitasvitae
Very excited that you seem to have found some solutions to the "fingerprint flood problem" :D
-
Matthew
cool :) glad you were able to sync with folks on our side
-
Matthew
and yup, cross signing is looking promising
-
Matthew
although we still have some thinkos in the current spec
-
Matthew
and need to do a 3rd rewrite
-
Matthew
https://github.com/uhoreg/matrix-doc/blob/cross-signing/proposals/1680-cross-signing.md is the 2nd iteration of it
-
Matthew
in case thereās anything of interest there.