Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Peter Saint-Andre
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 01/04/2014 02:13 AM, Peter Schwindt wrote: > Morning, > > Mike Taylor schrieb: > >> Just a friendly note that the Security Test Day is tomorrow! > >> Q: I heard there is a manifesto? A: Indeed – if you are a server >> operator and want to publicl

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Dave Cridland
Something to note; chatting with Jesse Thompson, we found that the errors we were getting back simply didn't match the likely cases. I saw DNS errors, he saw similar. I've not isolated the actual fault yet. On Sat, Jan 4, 2014 at 2:25 PM, Valérian Saliou < valer...@valeriansaliou.name> wrote: >

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Valérian Saliou
Okay, makes sense Marco. Now, let’s hope the network will be reactive enough to keep up the pace, and will conform to the new mandatory contraints. Here I see that I have about 135 in / 136 out S2S sessions, which seems growing back to the usual/normal number that we had before (minus about 10

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Marco Cirillo
Il 04/01/2014 14:39, Valérian Saliou ha scritto: Metronome as I noticed; Marco stated it’s related to an unproper StartTLS stack being running. We’re running Metronome ourselves on Jappix.com , so this might also be due to a stricter policy from Metronome, Marco? -- *Valé

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Valérian Saliou
Metronome as I noticed; Marco stated it’s related to an unproper StartTLS stack being running. We’re running Metronome ourselves on Jappix.com, so this might also be due to a stricter policy from Metronome, Marco? -- Valérian Saliou Jappix & FrenchTouch Web Agency founder. Waaave co-founder.

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Marco Cirillo
Il 04/01/2014 14:26, Kevin Smith ha scritto: On Sat, Jan 4, 2014 at 1:16 PM, Valérian Saliou wrote: Same for us @jappix.com, forced encryption on both c2s and s2s. I can see A LOT of s2s links cannot be established, mostly due to StartTLS which is not supported by some remote servers. What ar

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Kevin Smith
On Sat, Jan 4, 2014 at 1:16 PM, Valérian Saliou wrote: > Same for us @jappix.com, forced encryption on both c2s and s2s. > > I can see A LOT of s2s links cannot be established, mostly due to StartTLS > which is not supported by some remote servers. What are those remote servers running? /K

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Valérian Saliou
Same for us @jappix.com, forced encryption on both c2s and s2s. I can see A LOT of s2s links cannot be established, mostly due to StartTLS which is not supported by some remote servers. -- Valérian Saliou Jappix & FrenchTouch Web Agency founder. Waaave co-founder. Famecoin infrastructure mana

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Marco Cirillo
Switch enabled on yesterday. All <> 'cept some very bugged jabberd2 servers which get in a perpetual loop attempting to reconnect s2s wise when I bounce their streams and flood my logs :). -- *Marco Cirillo* /LW.Org/LW.Org IM Owner & Head Developer/ /Metronome IM Project Mantainer/Developer/

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-04 Thread Peter Schwindt
Morning, Mike Taylor schrieb: > Just a friendly note that the Security Test Day is tomorrow! > Q: I heard there is a manifesto? > A: Indeed – if you are a server operator and want to publicly show > your support for secure user communications, sign up (with a pull > request) at https://github.co

Re: [Operators] Security Test Day reminder - 4 Jan 2014

2014-01-03 Thread Dave Cridland
I just switched my switch - requiring encryption everywhere for the next day or so. On Fri, Jan 3, 2014 at 8:56 PM, Mike Taylor wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Just a friendly note that the Security Test Day is tomorrow! > > I'm cross posting this notice but please

[Operators] Security Test Day reminder - 4 Jan 2014

2014-01-03 Thread Mike Taylor
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Just a friendly note that the Security Test Day is tomorrow! I'm cross posting this notice but please join the Operators mailing list for any discussions :) FAQ: Q: how do I test my site’s security? A: use http://xmpp.net to run a test against your