Logs for jabber@conference.jabber.org
[00:06:40] * teste joined the chat.
[00:08:00] * teste left the chat.
[00:18:01] * KiDo left the chat.
[01:01:05] * sono left the chat.
[01:56:35] * KiDo joined the chat.
[02:22:21] * HedgeMage joined the chat.
[04:26:53] * FRENKY joined the chat.
[04:54:37] * sono joined the chat.
[04:57:03] * sono left the chat.
[04:57:12] * sono joined the chat.
[04:57:54] * sono joined the chat.
[05:01:57] * genius joined the chat.
[05:01:57] * genius left the chat.
[05:03:43] * genius joined the chat.
[05:14:14] * genius left the chat.
[05:14:46] * genius joined the chat.
[05:14:46] * genius left the chat.
[05:18:26] * genius joined the chat.
[05:26:52] * tsk joined the chat.
[05:30:24] * Darex joined the chat.
[05:36:02] * genius left the chat.
[06:13:33] * KiDo left the chat.
[06:16:37] * KiDo joined the chat.
[06:30:50] * sono left the chat.
[06:30:50] * sono left the chat.
[06:33:03] * jakonator joined the chat.
[06:37:20] * jakonator left the chat.
[06:50:21] * harlock joined the chat.
[06:50:39] * cebewee left the chat.
[06:52:27] * ume joined the chat.
[07:14:31] * luisgf joined the chat.
[07:39:00] * intosi joined the chat.
[07:41:06] * Darex left the chat.
[07:41:34] * Neustradamus left the chat.
[07:47:28] * ume left the chat.
[07:52:24] * intosi left the chat.
[07:59:46] * yuppinturic joined the chat.
[08:28:21] * KiDo left the chat.
[08:48:32] * vilius joined the chat.
[09:03:19] * Tanguy joined the chat.
[09:04:51] * intosi joined the chat.
[09:06:56] * yuppinturic left the chat.
[09:10:03] * KiDo joined the chat.
[09:41:01] * Irdis joined the chat.
[10:08:24] * muffischlumpf@jabber.org joined the chat.
[10:08:28] * muffischlumpf@jabber.org left the chat.
[10:10:59] * muffischlumpf@jabber.org joined the chat.
[10:11:04] * muffischlumpf@jabber.org left the chat.
[10:29:06] * Naoy joined the chat.
[10:42:08] * nomadofnorad left the chat.
[10:44:16] * mittwinter joined the chat.
[10:47:29] <mittwinter> hey, is it known, that one cannot connect s2s with jabber.org if the connecting server uses a certificate/key pair with >
4096 bits, e.g. 8192 or even 15424 bits (as it is for example generated by certtool --sec-param ultra)? I configured my prosody
instance to use such a certificate and I then get "ssl handshake failed" for every connection to jabber.org while other connections
work just fine, if I switch to a 4096 bit key pair, connections to
[10:47:29] <mittwinter> jabber.org also succeed
[10:58:37] <intosi> mittwinter: I did not know that. Will try to reproduce. Thanks for letting us know.
[10:58:54] <mittwinter> of course
[10:59:11] <mittwinter> if I can do anything to help, I will
[10:59:20] <intosi> Thanks.
[10:59:38] * Isodetosi joined the chat.
[11:02:57] <intosi> It might be due to this issue in openssl, that's still marked as open: http://rt.openssl.org/Ticket/Display.html?user=guest&pass=guest&id=319
[11:03:42] <intosi> Or at least related to it.
[11:07:51] <mittwinter> maybe, but in general, openssl seems to work with such key lengths, as for example I am using ligttpd 1.4.34 which in turn
uses my local openss-1.0.1f for SSL/TLS, and there are no problems in using keys with more than 4096 bits
[11:08:40] <intosi> https://forums.openvpn.net/topic13776.html
[11:09:28] <intosi> So it appears to depend on the version of openssl (and upstream maintainers might have chosen to increase the maximum message
size in one of their patches)
[11:14:05] <mittwinter> ah, I see... so maybe I'll poke the openssl devs to find out which version would support what lengths
[11:14:59] <mittwinter> but I guess sticking to 4096 bit would be the best choice anyway for now, to be able to talk to as many servers as possible
[11:16:00] <intosi> I think that's indeed the right conclusion.
[11:16:33] <intosi> I agree with you that this is not ideal, but they way things look like at the moment, 4096 bits should be sufficiently strong
for a while.
[11:17:10] * Naoy left the chat.
[11:19:08] <intosi> http://www.keylength.com/en/compare/
[11:20:49] <mittwinter> thanks, also for immediately looking into this issue :)
[11:21:32] <mittwinter> until now, I just went with the most secure setting I could set for this parameter as there were no problems
[11:24:04] <intosi> You're welcome.
[11:24:43] * muffischlumpf@jabber.org joined the chat.
[11:24:48] <luisgf> 15424 bits for a key, wow
[11:24:52] * muffischlumpf@jabber.org left the chat.
[11:25:00] <luisgf> the handshake may be very slow :)
[11:25:07] <luisgf> and whats about EC ?
[11:54:12] * Lastwebpage joined the chat.
[12:19:58] * Naoy joined the chat.
[13:30:41] * FRENKY left the chat.
[14:09:47] * naw joined the chat.
[14:12:07] * harlock left the chat.
[14:22:24] * mihonn000 joined the chat.
[14:55:52] * mihonn000 left the chat.
[15:00:21] * chaotickjg joined the chat.
[15:06:36] * intosi left the chat.
[15:06:36] * Isodetosi left the chat.
[15:10:04] * naw left the chat.
[15:44:05] * FRENKY joined the chat.
[15:56:40] * luisgf left the chat.
[16:37:16] * naw joined the chat.
[16:40:14] * naw left the chat.
[17:00:16] * yuppinturic joined the chat.
[17:00:38] * yuppinturic left the chat.
[17:22:00] * TabTwo joined the chat.
[17:32:05] * Naoy left the chat.
[17:34:47] * FRENKY left the chat.
[17:38:40] * vilius left the chat.
[18:00:12] * Naoy joined the chat.
[18:12:35] * Niek Bergman joined the chat.
[18:15:41] * Niek Bergman left the chat.
[18:21:28] * Z_God joined the chat.
[18:23:57] * mihonn000 joined the chat.
[19:37:57] * Neustradamus joined the chat.
[19:44:00] * Tommy joined the chat.
[19:51:57] * Tommy left the chat.
[20:06:04] * Naoy left the chat.
[20:09:05] * nomadofnorad joined the chat.
[20:09:06] * nomadofnorad left the chat.
[20:10:03] * nomadofnorad joined the chat.
[20:23:59] * Naoy joined the chat.
[20:27:06] * naw joined the chat.
[21:18:13] * Bane joined the chat.
[21:18:35] * Bane left the chat.
[21:19:10] * yuppinturic joined the chat.
[21:46:19] * Lastwebpage left the chat.
[21:47:18] * Luis G.F joined the chat.
[22:03:39] * boothj5 joined the chat.
[22:25:06] * diane joined the chat.
[22:25:46] * diane left the chat.
[22:40:41] * Naoy left the chat.
[22:40:42] * Naoy joined the chat.
[22:43:16] * Niek Bergman joined the chat.
[22:43:43] * Niek Bergman left the chat.
[22:43:57] * Naoy left the chat.
[22:43:58] * Naoy joined the chat.
[22:55:45] * mihonn000 left the chat.
[22:55:55] * Luis G.F left the chat.
[22:59:37] * Naoy left the chat.
[22:59:37] * Naoy joined the chat.
[23:20:41] * yuppinturic left the chat.
[23:32:46] * Naoy left the chat.
[23:49:11] * boothj5 left the chat.