Any thoughts on best practices re: .onion XMPP servers? I'm planning on actually writing this down in a xep
I'm thinking for outgoing connections, do starttls on the regular ports or direct TLS on 443 and accept literally any certificate
on incoming s2s just make an outgoing connection and validate that the certificate is the same, then offer sasl external
Thoughts, good, bad, whatever?
Alexhas left
adiaholichas joined
intosihas left
antranigvhas left
al1r4dhas joined
florettahas left
florettahas joined
wurstsalathas left
adiaholichas left
BASSGODhas left
BASSGODhas joined
debaclehas left
lskdjfhas left
larmahas joined
Andrzejhas joined
adiaholichas joined
lskdjfhas joined
adiaholichas left
TheCoffeMaker
moparisthebest: It would be great, this can also be applied to other VPNs ... Some friemd of mine have some large networks made with tinc and they are exchanging and maintaining root CAs✎
TheCoffeMaker
moparisthebest: It would be great, this can also be applied to other VPNs ... Some friend of mine have some large networks made with tinc and they are exchanging and maintaining root CAs ✏
moparisthebest
I think in other places where transport security and authentication isn't guaranteed like it is with .onion sharing a CA is the right thing to do and just works
BASSGODhas left
Steve Killehas left
Kevhas left
Kevhas joined
Steve Killehas joined
TheCoffeMaker
Yes, but is hard to maintain updated and coordinated
BASSGODhas joined
intosihas joined
neshtaxmpphas joined
intosihas left
Yagizahas joined
Andrzejhas left
Andrzejhas joined
Zashhas left
al1r4dhas left
adiaholichas joined
Zashhas joined
florettahas left
homebeachhas left
Matthewhas left
Rixon ππ¨has left
uhoreghas left
Half-Shothas left
Half-Shothas joined
Matthewhas joined
Rixon ππ¨has joined
uhoreghas joined
homebeachhas joined
Andrzejhas left
adiaholichas left
Menelhas left
florettahas joined
BASSGODhas left
antranigvhas joined
intosihas joined
adiaholichas joined
antranigvhas left
adiaholichas left
adiaholichas joined
intosihas left
florettahas left
florettahas joined
adiaholichas left
adiaholichas joined
adiaholichas left
Andrzejhas joined
florettahas left
florettahas joined
Yagizahas left
Yagizahas joined
BASSGODhas joined
Yagizahas left
Yagizahas joined
lskdjfhas left
adiaholichas joined
intosihas joined
marc0shas left
marc0shas joined
adiaholichas left
louishas joined
adiaholichas joined
intosihas left
Andrzejhas left
adiaholichas left
Andrzejhas joined
restive_monkhas left
adiaholichas joined
pasdesushihas joined
restive_monkhas joined
restive_monkhas left
Tobiashas joined
restive_monkhas joined
andyhas joined
Andrzejhas left
intosihas joined
ti_gj06has joined
adiaholichas left
adiaholichas joined
Menelhas joined
libredevhas left
intosihas left
intosihas joined
libredevhas joined
adiaholichas left
adiaholichas joined
Yagizahas left
Yagizahas joined
Apollohas joined
fhtesthas joined
moparisthebest
MattJ, I vaguely recall you mentioning you didn't like the SRV weight algorithm and did something else?
xnamedhas left
louishas left
pasdesushihas left
intosihas left
msavoritiashas joined
msavoritiashas left
msavoritiashas joined
florettahas left
antranigvhas joined
atomicwatchhas joined
fhtesthas left
xeckshas left
karoshihas left
florettahas joined
antranigvhas left
harry837374884has joined
MattJ
moparisthebest: I don't like it, but I didn't do much else
jcbrandhas joined
MattJ
I have a patch for Prosody I'm sitting on for now (needs further testing)
moparisthebest
MattJ: what did you do differently and/or care to share the code?
IIRC I'm following the RFC pretty closely with this implementation. My main complaint is the inefficiency of it, but every optimization suggested so far hasn't produced the same outputs as the RFC would in every case
MattJ
We did discuss putting a limit on the number of records we would attempt to process
arcxihas joined
antranigvhas joined
Alexhas joined
Kevhas left
atomicwatchhas left
adiaholichas left
atomicwatchhas joined
Kevhas joined
adiaholichas joined
gooyahas joined
tykaynhas left
adiaholichas left
ti_gj06has left
yushyinhas left
yushyinhas joined
harry837374884has left
harry837374884has joined
ti_gj06has joined
adiaholichas joined
mjk
moparisthebest:
> Any thoughts on best practices re: .onion XMPP servers? I'm planning on actually writing this down in a xep
> :::
Mentioning http client behavior would be nice as well, I think. As in, allow any cert.
Btw, relaxing the requirement to do specifically TLS in the http upload xep (instead, only require _some_ equivalently secure form of transport security) would be nice as well, but oos, it seems :)
Titihas joined
kevinhas joined
mjk
emus:
> i want to occasionally post about e.g. new XEPs
> "XEP-1234 has been proposed!
> Short description
> Author"
> Image ^
May I suggest adding to this info the essential effects of the xep addition/change for end users? ("Products, not protocols", etc.)
kevinhas left
lovetoxhas left
Danielhas left
adiaholichas left
adiaholichas joined
adiaholichas left
adiaholichas joined
Danielhas joined
gooyahas left
gooyahas joined
neshtaxmpphas left
neshtaxmpphas joined
lovetoxhas joined
andyhas left
goffihas joined
neshtaxmpphas left
neshtaxmpphas joined
neshtaxmpphas left
neshtaxmpphas joined
neshtaxmpphas left
neshtaxmpphas joined
matkorhas left
xeckshas joined
paulhas left
neshtaxmpphas left
neshtaxmpphas joined
matkorhas joined
uhoreghas left
homebeachhas left
Rixon ππ¨has left
Matthewhas left
Half-Shothas left
Half-Shothas joined
Matthewhas joined
Rixon ππ¨has joined
uhoreghas joined
homebeachhas joined
ti_gj06has left
ti_gj06has joined
Wojtekhas joined
raghavgururajanhas joined
nuronhas left
nuronhas joined
xeckshas left
L29Ahhas left
andyhas joined
andyhas left
xnamedhas joined
paulhas joined
restive_monkhas left
ti_gj06has left
restive_monkhas joined
adiaholichas left
adiaholichas joined
karoshihas joined
xeckshas joined
L29Ahhas joined
adiaholichas left
davidhas joined
adiaholichas joined
ti_gj06has joined
xeckshas left
Apollohas left
Apollohas joined
marc0shas left
marc0shas joined
Matthewhas left
Rixon ππ¨has left
uhoreghas left
homebeachhas left
Half-Shothas left
Half-Shothas joined
Matthewhas joined
Rixon ππ¨has joined
uhoreghas joined
homebeachhas joined
marc0shas left
marc0shas joined
emus
mjk: Well, XSF is protocols
emus
and its not that I will post this very frequentlt
xeckshas joined
alacerhas left
alacerhas joined
andyhas joined
Alexhas left
alacerhas left
debaclehas joined
alacerhas joined
emushas left
emushas joined
andyhas left
fhtesthas joined
fhtesthas left
misterhas joined
millesimushas joined
Alexhas joined
iinkhas joined
mjk
Well yeah, what I suggest is more like "products + protocols", so that non-tech audience isn't completely left out
L29Ahhas left
uhoreghas left
Matthewhas left
Rixon ππ¨has left
homebeachhas left
Half-Shothas left
Half-Shothas joined
Matthewhas joined
Rixon ππ¨has joined
uhoreghas joined
homebeachhas joined
nuronhas left
Kevhas left
Link Mauve
β22:13:08 moparisthebest> writing specs is annoying, writing code is fun...β, absolutely completely untrue!!!
jonasβ
+1
Zash
producolts
Ge0rG
writing code is fun. Debugging code... less so
wladmishas left
wladmishas joined
nuronhas joined
wladmishas left
wladmishas joined
L29Ahhas joined
mjk
Debugging specs that has no running code is...
lukasfhas left
Ge0rG
mjk: ...a hobby of mine
Ge0rG
finding underspecified parts and race conditions just from reading the text and thinking "what might go wrong" is exciting
mjk
Right... Exciting...
/me still healing the trauma of running a mathy algorithm partly in head, partly on paper because printf would be too verbose
applied to a struct, it generates the code necessary to use it with the {:?} placeholder, dumping all of its contents.✎
jonasβ
applied to a struct, enum or tuple declaration, it generates the code necessary to use it with the {:?} placeholder, dumping all of its contents. ✏
emus
Again said I tend to troll without intention^^
libredevhas left
emus
This what I want (example) as a tweet:
mjk
jonasβ: Ah, I thought it processes a function to generate debugging instrumentation :)) But there are debuggers for that, I guess. In my case I was lazy to research step-by-step debugging of Lua, _and_ wanted to visualze the data in a fancy manner...
emus
A new XEP has been proposed
*XEP-0461: Message Replies*
*Abstract*
This document defines a way to indicate that a message is a reply to a previous message.
*Authors*
Natalie WirthMarvin Wissfeld
https://xmpp.org/extensions/xep-0461.html
Or it's just _that_ perfect that nobody has anything to sdd ;p✎
mjk
Or it's just _that_ perfect that nobody has anything to add ;p ✏
Alexhas left
emus
Ah cool - I just go ahead ππ
emus
But I hope its clear what I wanted to discuss. I think I spread some confusion
daagshas left
L29Ahhas left
L29Ahhas joined
mjk
But I have!
> *Abstract*
> This document defines a way to indicate that a message is a reply to a previous message.
"(Allows clients to have nice quotation UI.)". or something✎
mjk
But I have!
> *Abstract*
> This document defines a way to indicate that a message is a reply to a previous message.
"(Allows clients to have nice quotation UI.)" or something ✏
emus
That is also fine to restate the abstract for non-techs
ti_gj06has left
mjknods
emus
I always wou'd like to start saying:
> This specification standardizes ...✎
emus
I always would like to start saying:
> This specification standardizes ... ✏
emus
because this is key. It works for "everyone"
Wojtekhas left
Wojtekhas joined
Alexhas joined
neshtaxmpphas left
adiaholichas left
iinkhas left
adiaholichas joined
neshtaxmpphas joined
Vidakhas left
Ge0rG
Isn't every standard specification meant to standardize something?
Vidakhas joined
Ge0rG
State the obvious with too many words, lose readers on the way
msavoritias
But maybe it helps devs from othes ecosystems realize how more democratic things work around here ;)
moparisthebesthas left
lskdjfhas joined
Ge0rG
Doing this right is really hard, maybe we should hire a competent technical writer.
Maranda[x]has left
Maranda[x]has joined
adiaholichas left
emus
> Ge0rG escribiΓ³:
> State the obvious with too many words, lose readers on the way
I think it clarifies that this was the intention. Noone has officially standardises this yet, we do
emus
And also said: Yes, and we standardized THIS
adiaholichas joined
nuronhas left
nuronhas joined
adiaholichas left
emus
I will move this to editors muc
adiaholichas joined
Apollohas joined
Alexhas left
Alexhas joined
L29Ahhas left
fhtesthas joined
fhtesthas left
fhtesthas joined
Wojtekhas left
Wojtekhas joined
adiaholichas left
fhtesthas left
moparisthebesthas joined
moparisthebest
mjk: good call about specifically documenting https behavior on onions too
moparisthebest
MattJ: thanks I'll have a look, fwiw I don't think producing the same output as the SRV RFC is that valuable, vs just maximizing connection attempts
adiaholichas joined
moparisthebesthas left
tykaynhas left
moparisthebesthas joined
tykaynhas joined
ti_gj06has joined
Ingolfhas left
Ingolfhas joined
neshtaxmpphas left
govanifyhas left
djorzhas joined
raghavgururajanhas left
raghavgururajanhas joined
Yagizahas left
Yagizahas joined
adiaholichas left
adiaholichas joined
andyhas joined
xeckshas left
xeckshas joined
Wojtekhas left
uhoreghas left
homebeachhas left
Rixon ππ¨has left
Matthewhas left
Half-Shothas left
Half-Shothas joined
Matthewhas joined
Rixon ππ¨has joined
uhoreghas joined
homebeachhas joined
adiaholichas left
adiaholichas joined
antranigvhas left
Wojtekhas joined
lskdjfhas left
debaclehas left
antranigvhas joined
lskdjfhas joined
disgyzehas left
neshtaxmpphas joined
Kevhas joined
L29Ahhas joined
Kevhas left
adiaholichas left
adiaholichas joined
Yagizahas left
Yagizahas joined
antranigvhas left
antranigvhas joined
Ingolfhas left
wladmishas left
wladmishas joined
intosihas left
intosihas joined
Alexhas left
me9has joined
Alexhas joined
BASSGODhas left
debaclehas joined
alacerhas left
alacerhas joined
intosihas left
atomicwatchhas left
Kevhas joined
Kevhas left
atomicwatchhas joined
BASSGODhas joined
intosihas joined
emushas left
govanifyhas joined
adiaholichas left
Maranda[x]has left
Maranda[x]has joined
ti_gj06has left
adiaholichas joined
Kevhas joined
Kevhas left
intosihas left
intosihas joined
jgarthas joined
me9has left
adiaholichas left
emushas joined
adiaholichas joined
BASSGODhas left
intosihas left
intosihas joined
intosihas left
intosihas joined
Kevhas joined
Kevhas left
antranigvhas left
ti_gj06has joined
florettahas left
L29Ahhas left
L29Ahhas joined
florettahas joined
BASSGODhas joined
intosihas left
Titihas left
stphas left
pasdesushihas left
misterhas left
intosihas joined
moparisthebesthas left
pasdesushihas joined
millesimushas left
wladmishas left
wladmishas joined
BASSGODhas left
L29Ahhas left
stphas joined
intosihas left
intosihas joined
adiaholichas left
uhoreghas left
Matthewhas left
Rixon ππ¨has left
homebeachhas left
Half-Shothas left
Half-Shothas joined
Matthewhas joined
Rixon ππ¨has joined
uhoreghas joined
homebeachhas joined
adiaholichas joined
Marandahas left
brunrobehas left
Mjolnir Archonhas left
Mjolnir Archonhas joined
Mjolnir Archonhas left
Mjolnir Archonhas joined
Marandahas joined
brunrobehas joined
Titihas joined
fhtesthas joined
intosihas left
jgarthas left
arcxihas left
krauqhas left
mjkhas left
mjkhas joined
arcxihas joined
krauqhas joined
restive_monkhas left
intosihas joined
Wojtekhas left
Wojtekhas joined
moparisthebesthas joined
stphas left
marc0shas left
marc0shas joined
reimarhas joined
adiaholichas left
marchas left
adiaholichas joined
marchas joined
robertooohas joined
stphas joined
emus
guus, just ignore
emus
@all please remind to set labels if you merge PRs - that would be very helpful
restive_monkhas joined
intosihas left
BASSGODhas joined
debaclehas left
intosihas joined
debaclehas joined
test1has joined
Wojtekhas left
Wojtekhas joined
intosihas left
ti_gj06has left
ti_gj06has joined
raghavgururajanhas left
raghavgururajanhas joined
intosihas joined
restive_monkhas left
lskdjfhas left
larmahas left
larmahas joined
fhtesthas left
adiaholichas left
test1has left
test1has joined
adiaholichas joined
test1has left
test1has joined
intosihas left
test1has left
test1has joined
adiaholichas left
lskdjfhas joined
xnamed
> Thank you Alex! Welcome, Ali!
Thank you Guus
> Welcome Ali!
Thank you emus
> Congrats to all, welcome Ali, and thanks for your support!
Thank you Neustradamus
Thank you all for accepting my application π
moparisthebest
Quick rundown of encrypted client hello https://guardianproject.info/2021/11/30/implementing-tls-encrypted-client-hello/
moparisthebest
This will allow connecting to XMPP servers while hiding ALPN and SNI
test1has left
test1has joined
adiaholichas joined
test1has left
antranigvhas joined
emus
The circumstance "nobody" care about protocols the posts just crossed the 1700 followers ποΈ
https://twitter.com/xmpp/status/1502364409020268544
https://fosstodon.org/web/@xmpp/107939539350756647
intosihas joined
intosihas left
intosihas joined
Menel
Wow
emus
6 retweets in 1 minute at Friday night ^^
emus
10
moparisthebest
Not "nobody" just not "normal people"
Zash
We're all "nobody" here.
moparisthebest
100% of the people in this channel or that follow that account care :)
emus
Good --> retweet etc π
emus
Zash - you did already I saw that π good job!
Zash
Marketing goes brrrrr
paulhas left
emus
πΊοΈ
emus
Lol, we have almost the same retweets as the latest newsletter ^^
Guys, I raised this today and yesterday several times, but apart from almost 95% offtopic comments nothing, so please come with proposals next time -.-
Isn't there some optimal resolution documented somewhere?
moparisthebest
Nifty
emus
larma said I should ask for some volunteers on corporate design. So please go crazy. But I would like to keep it in its own design (thats why I made it grey mode)
karoshihas left
karoshihas joined
emus
MattJ, no that I disagree with your "products, not protocols" - but I see lots of retoots already ;)