MattJFrom an iteam perspective Docker would be preferred
emushas left
karoshihas left
karoshihas joined
karoshihas left
adiaholic_has joined
sonnyhas left
sonnyhas joined
YagizaHello!
YagizaI have a question regarding XEP-0420: Stanza Content Encryption
Andrzejhas joined
YagizaMy client software is plugin-based, so I need to know the way of plugin interaction.
YagizaShould XEP-420 be implemented as blacklist or whitelist based?
DanielI think you need both
Daniela whitelist for the outer elements
Danieland a blacklist for the inner
Daniel(outer those that were not encrypted. inner those that are)
Danielwhen decrypting i mean
YagizaIn the first case I have a list on elements, that should be ignored when encrypting: left in stanza, not moved into encrypted <content /> element.
Danielyeah I'd do that with a whitelist approach
Danielyou only need elements that the server needs for routing
Danielmeaning message processing hints
Danielet al
YagizaIn second case we have a list of elements (reported by other plugins), which must be moved from stanza into encrypted <content/> element.
YagizaDaniel, so, you see the second way is better?
Danielimho yes
YagizaOk, thanx
Danieli'd encrypt everything but [store, no-copy, …]
Danielthe decrypting side however is more dangerous. that's where you can fuck up and create security issues
YagizaDaniel, I'm discussing encrypting side right now.
YagizaDaniel, if we encrypt "everything but..." it's a whitelist approach!
YagizaDaniel, *blacklist* I mean.
dwdSome elements you want to have outside *and* duplicate inside. XEP-0258, for example.
mukt2has left
dwdSorry, that's unclear "outisde" versus "inside" the SCE, so unencrypted versus encrypted.
dwdMattJ, Ack.
Yagizadwd, why may I want to have Security Label both encrypted and unencrypted?
Danielserver needs it for routing. but the recipient also wants to verify
Guusflow I lost my gsoc MUC bookmark, so I'll be lazy and post it here. Can you confirm that we filled out the GSoC 2020 Org payment request form? Google sent out a reminder (I think the reminder went out to every participating org, but I'm not sure).
Zashsign( meta, encrypt( more stuff ) ) ?
DanielSCE is way more complicated than some people think it is
Danieland it's really easy to srew up
vanitasvitaehas left
vanitasvitaehas joined
mukt2has joined
dwdDaniel, More fun than that, even - the security label may need to be re-written between policies and things by servers, but you still want the original. Email deals with this by triple-wrapping, but I'm really not sure we'd want to go there.
dwdZash, And yes, that's halfway to triple wrapping, which is sign[server]{ meta, sign[sender]{ more_meta, encrypt{ data }}}
dwd(If you'll pardon my newly-invented pseudo-syntax)
Shellhas joined
bearhas left
sonnyhas left
sonnyhas joined
flowGuus, yes PSA filled out the form before the deadline :)
Guus👍
flowZash> sign( meta, encrypt( more stuff ) )
should probably be sign(normalize(meta), encrypt(more stuff))
and the "problem" is the normalize(meta) part
ZashMmmmm XML c14n
flowexactly
Half-Shothas left
uhoreghas left
Half-Shothas joined
uhoreghas joined
flowit's a design decission involving balancing the tradeoff, but I actually think having something as optional experimental feature can't hurt to get some insights about potential issues
flowit's a design decission involving balancing the tradeoff, but I actually think having something sign(normalize(meta), more bytes) as optional experimental feature can't hurt to get some insights about potential issues
flowI think, for example that XML normaliziation is trivial in Java SE, while it may would require another, likely heavy-weight, dependency on Android (if something is available there at all)
flowI think, for example, that XML normaliziation is trivial with Java SE, while it may would require another, likely heavy-weight, dependency on Android (if something is available there at all)
krauqhas left
karoshihas joined
winfriedhas left
winfriedhas joined
sonnyhas left
sonnyhas joined
YagizaI still wonder, why Message Reactions uses emoji instead of reusing XEP-0107: User Mood?
emushas joined
Steve Killehas left
flowYagiza, I guess because that is because its what github, gitlab, etc do
Zashand slack and mattermost and matrix and everything
YagizaZash, so, someone's just trying to mimic other IMs and networks instead of improving XMPP?
flowYagiza, I guess because that is what github, gitlab, etc do
flowYagiza, that reads like it implies that with mimicing others one can not improve XMPP
flowYagiza, that reads like it implies that by mimicing others one can not improve XMPP
Steve Killehas joined
Yagizaflow, well... I like XMPP because it's powerful. Other networks are forced to use Emoji, 'cause they don't have such nice things, like User Mood or User Activity. But why should we?
stpeterhas joined
flowYagiza, I am not sure which one of using unicode code points or xep user mood as enumeration of possible reactions is "better". both approaches appear to have advantages and disadvantages
ZashWhy limit yourself to moods?
winfriedhas left
winfriedhas joined
ZashIIRC in Matrix it's just a piece of text. It doesn't have to be emoji, that's just an UI decision
flowZash, right, but then, on the other side, is it really good that you can react with all types of code points?
ZashJust let me react with "cool" and "!" and I'll be happy
flowe.g. github limits the kind of reactions
Yagizaflow, yes. But I think that advantages of reusing User Mood instead of emoji prevail over disadvantages.
Zashflow, still, I'd leave that as an UI decision
flowZash, I always wonder how I have to read "!" as reaction? Is it positive? Negative? Danger?
Zashflow, !
ZashHow would you read *anything*?
flowZash, sure, but is that enough? don't you have to be able to negoiate allowed reaction kinds on the protocol level?
ZashTons of emoji is incredibly ambigous
flowSure, but not all
YagizaZash, 'cause most of emoji are meaningless as reactions to messages. Also, they may lead to confuse, 'cause sender may mean different thing, than receiver may think of.
ZashAnd there's never one that means what I'm trying to say anyways
flowA thumbs up on a comment can be hardly misinterpreted
ZashSure it can
flowhmm, ok, care to elaborate how?
ZashNo
bearhas joined
ZashLanguage and communication is complicated.
flowand often not unambiguous in particular
dwdhttps://github.com/xsf/memberbot/pull/6 -- this is running on memberbot@dave.cridland.net, anyone fancy helping me test? (I'll need the jid you want to test from to add you as an "XSF Member").
karoshihas left
stpeterhas left
Guusdwd, sure
Guususe mine
Guusguus.der.kinderen at ignite
karoshihas joined
dwdAdded. You should be able to send it a subscription request and then start voting.
Guusdwd, it acknowledges me, but does not offer things to vote on.
Zash> error<wait:remote-server-timeout:Server-to-server connection failed: Error during negotiation of encrypted connection: sslv3 alert bad record mac>
ZashThe what
archas left
Shellhas left
Shellhas joined
winfriedhas left
winfriedhas joined
dwdThat's exciting.
Shellhas left
Shellhas joined
archas joined
sonnyhas left
mukt2has joined
krauqhas joined
sonnyhas joined
winfriedhas left
sonnyhas left
winfriedhas joined
sonnyhas joined
sonnyhas left
sonnyhas joined
sonnyhas left
andrey.ghas joined
sonnyhas joined
debaclehas joined
sonnyhas left
sonnyhas joined
sonnyhas left
lorddavidiiihas left
sonnyhas joined
sonnyhas left
sonnyhas joined
karoshihas left
enrarohas joined
enrarohas left
pep.> flow> A thumbs up on a comment can be hardly misinterpreted
"Somebody should ..". "👍" Do you like what I said? Are you ok with it? Are you gonna do it?
pep.language is complicated
neshtaxmpphas left
lskdjfhas joined
neshtaxmpphas joined
dwdOK, so, memberbot bug is that here: https://github.com/dwd/memberbot/blob/memberbot-fixes/memberbot/chat_voting.py#L360 slixmpp ends up trying to wrap a future into an IQ and everything breaks.
dwdpep., Does that "supports" call ever work?
karoshihas joined
pep.maybe slix broke it, dunno
karoshihas left
mukt2has left
mukt2has joined
lorddavidiiihas joined
karoshihas joined
dwdOK, that maybe works now. Seems not to break with Inverse anymore at least.
dwdGuus, want to see if that works for you as well now?
Guusdwd: Remind me after lunch please
neshtaxmpphas left
sonnyhas left
sonnyhas joined
lorddavidiiihas left
karoshihas left
karoshihas joined
sonnyhas left
sonnyhas joined
sonnyhas left
Shellhas left
Shellhas joined
sonnyhas joined
Shellhas left
sonnyhas left
Shellhas joined
mukt2has left
Tobiashas left
Tobiashas joined
stpeterhas joined
archas left
archas joined
karoshihas left
Neustradamusdwd: have you seen my PRs?
Guusdwd seems to work now. I got three votes, with (the same) three candidates each.
Neustradamusdwd: You have commented, can you test it?
karoshihas joined
GuusI've applied yes, no and abstain - seems to all work as expected.
karoshihas left
karoshihas joined
NeustradamusI can test the bot?
NeustradamusNote: When I look the vCard, the XSF logo is always the old...
waqashas joined
stpeterhas left
Shellhas left
Shellhas joined
mukt2has joined
Shellhas left
Shellhas joined
lorddavidiiihas joined
karoshihas left
Zashhas left
Zashhas joined
mukt2has left
mukt2has joined
neshtaxmpphas joined
sonnyhas joined
sonnyhas left
sonnyhas joined
sonnyhas left
Shellhas left
Shellhas joined
sonnyhas joined
sonnyhas left
sonnyhas joined
karoshihas joined
karoshihas left
robertooohas left
sonnyhas left
sonnyhas joined
sonnyhas left
sonnyhas joined
sonnyhas left
sonnyhas joined
sonnyhas left
andyhas left
andyhas joined
sonnyhas joined
Shellhas left
stpeterhas joined
dwdNeustradamus, You should be able to add memberbot@dave.cridland.net to your roster and vote (it's intentionally the same three candidates).
Shellhas joined
mimi89999has left
mimi89999has joined
chynahas left
LNJhas left
stpeterhas left
neshtaxmpphas left
goffihas left
Andrzejhas left
ralphmHave a conflicting meeting (again). Can't make it to Board today.
j.rhas left
j.rhas joined
Guusralphm: should we think about another time slot?
pep.!
Seveo/
MattJo/
pep.Especially since the two agenda items I added concern ralph. Well one definitely, the second one all of us
pep.# Welcome
pep.Any other agenda item to add?
pep.I guess we'll leave the two I added for when ralph is present
GuusI have nothing
Seveneither do I
MattJNothing here, except a query for whether the commteam have thought any more about their requirements
pep.Even though some commteam members were present last time (Seve, emus), I haven't poked anybody yet
pep.So it's also partly my fault
neshtaxmpphas joined
pep.(I still need to send minutes for last week even.)
Guusis the outside person waiting for us?
Guusif so, we should try to get some momentum
pep.Seve, maybe as a board and commteam member it'd be better if you did that?
emusHi
MattJGuus, yes and no, I don't think we've given a 'no' but we have let her know not to expect an imminent 'yes'
Sevepep., I haven't offered my self to do that because I feel you guys have more context than me on this. As I said didn't know nyco asked for a plan. I would not be good at leading this. I can try to start a conversation in the commteam though, that's for sure.
GuusLet's try and focus on this to get to a conclusion. We have a bad habit of letting things linger to long.
pep.Seve, ok. I'll try to send last time's minutes quickly (to summarize last time's chat) I'll poke commteam :x
Sevepep., very much appreciated!
GuusSeve if only to get more of a conversation started, you approaching commteam members might be good.
goffihas joined
Guusoh, or that. 🙂
pep.I have a question for board, not related to commteam but minutes: I see in other communities / organizations that acknowledging minutes is a thing, is that something that's been done before here? That some would want to do
pep.At the beginning of a meeting these orgs I've seen ask their board (or equivalent) to ack last meeting's minutes
GuusIf we do have proper meetings, we should. But, as our minutes are often absent, and we're having a verbatim log of each meeting, I don't really see the point.
pep.So maybe a topic for once we've sorted out the "minutes" problem.
pep.I'm fine with no official answer anyway. I was just curious
MattJ+1
SeveWe have the logs, so yes, everyone can confirm the minutes. Although it makes sense to do that.
GuusWhen meetings are used to record the meeting (and record decisions), we should verify/acknowledge them, I think. I don't think that's how we're currently using the minutes though.
pep.# AOB?
MattJNone here
Guusnor me
pep.Next: +1w
pep.# Close
Guusthanks
SeveThank you guys
emuspep.: So you could not find time to sunmarize the recent meeting on the hireing topic?
pep.You mean the meeting we've had in the other room? No. I think I'll just include a few lines in minutes I send for last week's board meeting to give some context. I don't think it needs much more
neshtaxmpphas left
emusAt least I would like to summarize the few points we agree in general on
pep.tbh I don't especially want to be flagged "minute person", I don't like minutes :P
pep.(Well I don't like writing them)
Andrzejhas joined
sonnyhas left
sonnyhas joined
govanifyhas left
govanifyhas joined
emuspep.: I dont take it as this, but I thought from the recent one you said you gonna do it
pep.No, I said I wouldn't do it :x
emusMaybe we can make that as a rotation system? Some documenation is important
pep.: ok then I try
pep."I won't do minutes just now. There's lots of things in there". I was planning to wait for a next meeting
emuspep.: Sorry, Im talking about the other chat on hiring only
pep.yes
pep.I'm quoting myself in that chat
pep.I'm quoting myself from that chat
emusAh okay, I think I got confused. If I can do something or help let me know
sonnyhas left
andyhas left
sonnyhas joined
adiaholic_has left
adiaholic_has joined
stpeterhas joined
govanifyhas left
govanifyhas joined
Neustradamusdwd: Thanks, can you add my PRs?
NeustradamusThe goal is to test and confirm that it is good:
- https://github.com/xsf/memberbot/pull/4
- https://github.com/xsf/memberbot/pull/5
lorddavidiiihas left
andyhas joined
sonnyhas left
sonnyhas joined
sonnyhas left
sonnyhas joined
Steve Killek
sonnyhas left
paulhas left
sonnyhas joined
mukt2has left
adiaholic_has left
lorddavidiiihas joined
sonnyhas left
sonnyhas joined
sonnyhas left
karoshihas joined
sonnyhas joined
mukt2has joined
sonnyhas left
sonnyhas joined
sonnyhas left
adiaholic_has joined
neshtaxmpphas joined
adiaholic_has left
adiaholic_has joined
sonnyhas joined
sonnyhas left
Danielcan someone enlighten me on the role of MUC in Jitsi? looking at the various parts that make up jitsi there is the jitsi video bridge which takes the role of a SFU and there is the jicofo which is a compontent that you talk COLIBRI to.
Danielbut what role does MUC take here?
sonnyhas joined
Danielthe jitsi documentation require me to set up a muc server; and also give jicofo admin (owner) rights to that muc server
Danielbut it doesn’t really say what the muc rooms are used for
MattJThe MUC is used for the signaling and chat between conference participants
Danielok; chat i get
Danielbut isn’t colibri the signaling?
MattJ(including jicofo AIUI)
NeustradamusIt uses Prosody
Danieli'm essentially wondering (text chat aside) if there is a different set of protocols aside from colibri (which is not muc or message based) that i need to understand
MattJNot that I'm aware of, not sure if they stick some stuff in presence though
neshtaxmpphas left
Danielso hypotically if i wanted to experiment with video conferencing i'd just need jicofo and the video bridge?
Zashjonas’ did some trickery to get a chat bot into Jitsi conferences iirc
adiaholic_has left
jonas’Daniel, I *think* you need to go through a MUC to talk to Jicofo, since it uses the MUC identity
jonas’but that’s just casual observation from jicofo and jvb logs as well as a bit of MUC traffic
Danieljonas’, ok thanks. that probably makes some sense in front of the background that jitsi meet is
jonas’15:36:40 jonas’> and yeah, weird stuff happens (with Jitsi Meet at least) if you have
a participant which doesn’t speak the protocols
15:36:48 jonas’> I had to hide presence to make the web ui not misbehave
jonas’15:36:40 jonas’> and yeah, weird stuff happens (with Jitsi Meet at least) if you have a participant which doesn’t speak the protocols
15:36:48 jonas’> I had to hide presence to make the web ui not misbehave
jonas’(those two messages went into the wrong room initially, sorry)
stpeterhas left
!XSF_MartinHe, I didn't realize you sent them to the wrong MUC and wondered why you quoted yourself. 😂
Daniel(fwiw i'm not interested in being compatible with jitsi meet the webinterface but just reusing the compontents to make video conferencing happening. or at least understand what that would entail)
sonnyhas left
jonas’Daniel, I recommend setting up Jitsi Meet first to get a feeling on how intertwined it all is
jonas’everything is extremely picky about everything
!XSF_MartinDaniel: So you consider adding a/v conferences to conversations?
Danielno
Danieli'm trying to understand how that would work
MattJWhen will it be ready?
GuusCOIN and Colibiri are two XEPs they use, I think
GuusAs Jonas said, they add an occupant to the muc (nicknamed 'focus') that is used for signalling.
adiaholic_has joined
!XSF_Martin> When will it be ready?
Yesterday would be a good date, otherwise xmpp is UNUSABLE!!!1!
sonnyhas joined
DanielGuus, neither COIN nor colibri mention MUC though
Danielso that was kinda the missing piece that i needed to understand all that
GuusYou can join the MUC through XMPP for chat, but in Openfire, we decided against that. It offers very disturbing user experience, as there's then a set of occupants that only chat, and a set of occupants that both chat, but also have a video conference in which communication takes place.
sonnyhas left
lovetoxhas left
GuusIt's technically entirely possible though (or at least it was in the state of the code ~2 years ago, when I last looked)
Daniel> https://faq.whatsapp.com/general/chats/how-to-format-your-messages/ :)
Isn't that literally what we are doing?
MattJYep, pretty much
Wojtekhas joined
!XSF_MartinMaybe they thought adding that xep would be *fun*.
lovetoxhas joined
Shellhas left
Shellhas joined
j.rhas left
j.rhas joined
stpeterhas joined
sonnyhas left
sonnyhas joined
adiaholic_has left
adiaholic_has joined
sonnyhas left
sonnyhas joined
intosihas left
neshtaxmpphas joined
intosihas joined
SeveDoesn't mean it is a good example :)
alexishas left
sonnyhas left
sonnyhas joined
Shellhas left
Shellhas joined
neshtaxmpphas left
sonnyhas left
sonnyhas joined
sonnyhas left
sonnyhas joined
rionhas left
!XSF_Martinhas left
LNJhas joined
!XSF_Martinhas joined
sonnyhas left
!XSF_Martinhas left
sonnyhas joined
!XSF_Martinhas joined
sonnyhas left
sonnyhas joined
!XSF_Martinhas left
Fightingbuddhahas joined
!XSF_Martinhas joined
Fightingbuddhahas left
Fightingbuddhahas joined
Fightingbuddhahas left
fightingbuddhahas joined
adiaholic_has left
adiaholic_has joined
remkohas joined
fightingbuddhahas left
Fightingbuddhahas joined
sonnyhas left
Fightingbuddhahas left
Fightingbuddhahas joined
rionhas joined
!XSF_Martinhas left
sonnyhas joined
!XSF_Martinhas joined
Steve Killehas left
adiaholic_has left
adiaholic_has joined
Fightingbuddhahas left
Fightingbuddhahas joined
Fightingbuddhahas left
fightingbuddhahas joined
lorddavidiiihas left
lorddavidiiihas joined
fightingbuddhahas left
Fightingbuddhahas joined
Fightingbuddhahas left
Fightingbuddhahas joined
Fightingbuddhahas left
Fightingbuddhahas joined
lovetoxhas left
adiaholic_has left
adiaholic_has joined
sonnyhas left
sonnyhas joined
mukt2has left
Steve Killehas joined
Fightingbuddhahas left
sonnyhas left
sonnyhas joined
lovetoxhas joined
emushas left
queen_tilfaarhas joined
Bezihas left
Bezihas joined
Bezihas left
Bezihas joined
Bezihas left
Bezihas joined
mukt2has joined
queen_tilfaarhas left
Shellhas left
Shellhas joined
remkohas left
remkohas joined
Bezihas left
Bezihas joined
archas left
archas joined
Wojtekhas left
Guushas left
alameyohas left
Guushas joined
remkohas left
sonnyhas left
sonnyhas joined
alameyohas joined
Andrzejhas left
Wojtekhas joined
xeckshas left
xeckshas joined
emushas joined
remkohas joined
remkohas left
mukt2has left
Shellhas left
Shellhas joined
Mikaelahas left
Shellhas left
Shellhas joined
mukt2has joined
adiaholic_has left
adiaholic_has joined
mukt2has left
Yagizahas left
mukt2has joined
j.rhas left
j.rhas joined
matkorhas left
matkorhas joined
Danielhas left
Danielhas joined
Shellhas left
Shellhas joined
j.rhas left
j.rhas joined
sonnyhas left
sonnyhas joined
werdanhas joined
matkorhas left
matkorhas joined
matkorhas left
matkorhas joined
matkorhas left
matkorhas joined
goffihas left
APachhas left
APachhas joined
matkorhas left
matkorhas joined
Nekithas joined
matkorhas left
matkorhas joined
mukt2has left
matkorhas left
matkorhas joined
Danielhas left
Danielhas joined
matkorhas left
matkorhas joined
mukt2has joined
alexishas joined
karoshihas left
werdanhas left
lovetoxhas left
archas left
archas joined
karoshihas joined
lorddavidiiihas left
Tobiashas left
neshtaxmpphas joined
lorddavidiiihas joined
lorddavidiiihas left
lorddavidiiihas joined
archas left
archas joined
Danielhas left
Danielhas joined
andyhas left
andyhas joined
lbocquethas joined
lbocquetWhat do you think if we change the name of https://commons.wikimedia.org/wiki/File:XMPP_logo.svg to XSF_logo.svg?
And add XMPP_logo.svg without XMPP text?
stpeterhas left
pep.lbocquet, why? I don't think the XSF has a logo. And XMPP is no property of the XSF, it's an IETF standard
neshtaxmpphas left
neshtaxmpphas joined
neshtaxmpphas left
neshtaxmpphas joined
wurstsalathas left
karoshihas left
karoshihas joined
xeckshas left
xeckshas joined
archas left
archas joined
waqashas left
andyhas left
lbocquetHow we can publish the logo with text and without?
lbocquetI have seen XSF_logo.svg (which is not good) without XMPP text...