Re: [Operators] Suspicion of Jabbim services being hacked

On 12/19/2014 06:22 PM, Dave Cridland wrote: > A clear message like this, perhaps: > > http://wiki.xmpp.org/web/Plain_Stupid > > (Yeah, everything needs a catchy name these days). Sounds good; step two is to convince TLS stack maintainers to actually give us access to the client final message

Re: [Operators] Suspicion of Jabbim services being hacked

On 19 December 2014 at 22:55, Dave Cridland wrote: > > > On 19 Dec 2014 22:12, "Waqas Hussain" wrote: > > > > On Fri, Dec 19, 2014 at 3:18 PM, Kevin Smith > wrote: > >> > >> On 19 Dec 2014, at 19:36, Mathieu Pasquet > wrote: > >> > > >> > On Fri, Dec 19, 2014 at 06:48:44PM +, Dave Cridland

Re: [Operators] Suspicion of Jabbim services being hacked

On 19 Dec 2014 22:12, "Waqas Hussain" wrote: > > On Fri, Dec 19, 2014 at 3:18 PM, Kevin Smith wrote: >> >> On 19 Dec 2014, at 19:36, Mathieu Pasquet wrote: >> > >> > On Fri, Dec 19, 2014 at 06:48:44PM +, Dave Cridland wrote: >> >> On 19 Dec 2014 18:32, "Sam Whited" wrote: >> >>> On 12/19/20

Re: [Operators] Suspicion of Jabbim services being hacked

On Fri, Dec 19, 2014 at 3:18 PM, Kevin Smith wrote: > > On 19 Dec 2014, at 19:36, Mathieu Pasquet wrote: > > > > On Fri, Dec 19, 2014 at 06:48:44PM +, Dave Cridland wrote: > >> On 19 Dec 2014 18:32, "Sam Whited" wrote: > >>> On 12/19/2014 09:24 AM, Peter Viskup wrote: > Hi all, > t

Re: [Operators] Suspicion of Jabbim services being hacked

On 19 December 2014 at 20:18, Kevin Smith wrote: > > On 19 Dec 2014, at 19:36, Mathieu Pasquet wrote: > > > > On Fri, Dec 19, 2014 at 06:48:44PM +, Dave Cridland wrote: > >> On 19 Dec 2014 18:32, "Sam Whited" wrote: > >>> On 12/19/2014 09:24 AM, Peter Viskup wrote: > Hi all, > thou

Re: [Operators] Suspicion of Jabbim services being hacked

On 19 Dec 2014, at 19:36, Mathieu Pasquet wrote: > > On Fri, Dec 19, 2014 at 06:48:44PM +, Dave Cridland wrote: >> On 19 Dec 2014 18:32, "Sam Whited" wrote: >>> On 12/19/2014 09:24 AM, Peter Viskup wrote: Hi all, thought it would be interesting to the audience of this mailinglist.

Re: [Operators] Suspicion of Jabbim services being hacked

On Fri, Dec 19, 2014 at 06:48:44PM +, Dave Cridland wrote: > On 19 Dec 2014 18:32, "Sam Whited" wrote: > > On 12/19/2014 09:24 AM, Peter Viskup wrote: > > > Hi all, > > > thought it would be interesting to the audience of this mailinglist. > > > > > > http://pinky.jabb.im/2014/12/jabbim-bezpec

Re: [Operators] Suspicion of Jabbim services being hacked

It feels like we should do something like the encryption push, but for non-plaintext passwords. On 19 Dec 2014 18:32, "Sam Whited" wrote: > Another great example of why you should ditch DIGEST-MD5 and store your > passwords as SCRAM bits. > > —Sam > > On 12/19/2014 09:24 AM, Peter Viskup wrote: >

Re: [Operators] Suspicion of Jabbim services being hacked

Another great example of why you should ditch DIGEST-MD5 and store your passwords as SCRAM bits. —Sam On 12/19/2014 09:24 AM, Peter Viskup wrote: > Hi all, > thought it would be interesting to the audience of this mailinglist. > > http://pinky.jabb.im/2014/12/jabbim-bezpecnostni-problem-security

[Operators] Suspicion of Jabbim services being hacked

Hi all, thought it would be interesting to the audience of this mailinglist. http://pinky.jabb.im/2014/12/jabbim-bezpecnostni-problem-security.html Best regards, -- Peter Viskup