Gajim - 2018-05-25


  1. r00tobo Hi
  2. r00tobo I have an issue I don't know if it's an xmpp server issue or a gajim issue
  3. r00tobo when I change my avatar pic and apply it it changes in all groupchats and e verywhere but when I load up gajim again and reconnect it loads up the old avatar pic
  4. r00tobo hmm so when I use the packaged version of the distro it works fine and it loads the new avatar but now since I'm using flatpak it doesn't load them after my login I have to go to the personal info and click ok to reload the new avatar (its already there) but it doesn't populate to groupchats until reload it with the ok button in the accounts settings Profile
  5. r00tobo the packaged version for the distro is 0.16.9
  6. marmistrz Why doesn't gajim omemo encrypt jingle file transfers? At least conversations shows them as unencrypted.
  7. marmistrz Why doesn't gajim e2e encrypt jingle file transfers? At least conversations shows them as unencrypted.
  8. lovetox are you asking if this was a design decision?
  9. lovetox the obvious answer is, nobody impl e2e jingle
  10. r00tobo marmistrz, jingle doesn't support e2e however you can encrypt your files with gpg/pgp instead
  11. r00tobo I don't know if http upload support e2e
  12. lovetox hm r00tobo, this is not entirley correct how you said that
  13. lovetox jingle supports e2e, just gajim doesnt implement it
  14. r00tobo didn't know I thought jingle was unencrypted lol
  15. lovetox and there also only between conv and gajim
  16. r00tobo so that's cool
  17. lovetox between gajim and gajim jingle should be encrypted
  18. r00tobo oh I see
  19. lovetox and httpupload is always encrypted if you selected an encryption for your chat
  20. r00tobo so jingle is encrypted by what?
  21. r00tobo omemo ?
  22. r00tobo or gpg
  23. lovetox no, gajim -> gajim, jingle is encrypted by what is called XTLS
  24. lovetox which is basically p2p TLS
  25. r00tobo I see
  26. lovetox but nobody supports it except gajim
  27. r00tobo its based on what? like a key pair for each particpent
  28. lovetox yes each gajim creates its own keys
  29. r00tobo cool
  30. r00tobo sorry but the httpupload
  31. r00tobo upload to the server itself
  32. r00tobo and it's stored in the server even if the link was encrypted by omemo or pgp
  33. lovetox yes
  34. marmistrz Well, while sending a 100MB file, I can't use httpupload
  35. r00tobo so techincally it could be red
  36. lovetox r00tobo only if someone breaks AES or GPG
  37. r00tobo lovetox, is there a way to make different clients support jingle's encryption on both side ?
  38. lovetox and if that happens i think the world goes crazy 🙂
  39. marmistrz I *think* conv <-> conv displays jingle transfers as encrypted.
  40. marmistrz But I'd need to check
  41. r00tobo marmistrz, what about conversations to gajim
  42. lovetox yes marmistrz, conv uses a different encryption that gajim doesnt support
  43. r00tobo not the other way around
  44. r00tobo ah I see
  45. r00tobo that's why it will not work with conversations
  46. r00tobo does conversations use a good encryption ?
  47. lovetox its unfortunate, but its on the list
  48. r00tobo I mean for the jingle's encryption
  49. lovetox both XTLS and omemo (what conv) uses are experimental XEPs so not often impl and certainly not audited, so we can not say much about its real security
  50. r00tobo lovetox, btw I was meaning that the server owner can see the http uploaded files
  51. r00tobo without the need to decrypt anything
  52. lovetox in theory its secure 🙂
  53. lovetox r00tobo, hm how can he do this if i upload it encrypted?
  54. r00tobo sorry
  55. r00tobo so httpupload uses XTLS as well ?
  56. lovetox i think you misunderstand something
  57. lovetox we are not talking about the transport here
  58. r00tobo I thought xtls was for jingle's
  59. lovetox the transport of a httpupload is TLS encrypted
  60. lovetox the file itself is AES or GPG enrypted
  61. lovetox its a http upload, so its secured with https
  62. r00tobo yes that's true
  63. lovetox but we additionally encrypt the file before we send it itself
  64. r00tobo but I'm talking about the file itself
  65. lovetox with AES or GPG
  66. r00tobo gpg ?
  67. lovetox depends if you use gpg or omemo
  68. r00tobo that is only if you were enable gpg for the chat
  69. lovetox yes of course
  70. r00tobo it encrypts it based on the assigned public key for the recevier
  71. r00tobo cool
  72. r00tobo didn't know that because it doesn't say it
  73. r00tobo last time I uploaded through httpupload I was afraid
  74. r00tobo because the link was directly provided by 404.city
  75. r00tobo oh wait
  76. r00tobo let me check one more time
  77. r00tobo the link
  78. lovetox just test it
  79. lovetox put the link in a browser
  80. lovetox you will see you cant decrypt the file
  81. lovetox or see the file
  82. lovetox everything after the hash # is the secret key to the file
  83. r00tobo the link start with aes
  84. lovetox so you should not share that link
  85. lovetox but we put this in the link
  86. r00tobo aesgcm
  87. lovetox not the server
  88. r00tobo yea I remembered that when you said AES
  89. r00tobo wanted to check that
  90. r00tobo conversations won't work even with http upload
  91. r00tobo unless one of the clients support the other's encryption protocol
  92. r00tobo btw does gajim support non-dns-leaking for socks5 proxies ?
  93. r00tobo so when you u use the socks5 proxy it automatically uses the dns's remote server
  94. lovetox httpupload does not depend on the other client
  95. lovetox and conversations supports decrypting aes links
  96. r00tobo I see
  97. r00tobo yea it's remotely
  98. lovetox you use a socks5 proxy
  99. lovetox so you need to connect to that proxy, and if you put in a domain
  100. lovetox we have to resolve it to even connect to the proxy
  101. lovetox but no in general you should not depend on gajim not leaking dns requests
  102. r00tobo for example if somebody wants to use tor
  103. r00tobo it's provided in the settings as well
  104. lovetox gajim will not make dns requests over tor
  105. lovetox its not easy possible with python right now
  106. lovetox so if you dont want to leak ANYTHING, then its better to use a system that proxys all interent traffic
  107. lovetox like TAILS
  108. r00tobo so it doesn't overright the dns request and forward it to the provided proxy
  109. lovetox or other OS that are made for that purpose
  110. r00tobo for example firefox browser have the ability to use the remote dns servers for the proxy
  111. lovetox it will also not use TOR for https requests if you click on a link
  112. lovetox you have to configure your system to route https traffic over a proxy
  113. lovetox gajim will use what your system use
  114. r00tobo I see
  115. r00tobo maybe if I used torify
  116. lovetox have to go
  117. r00tobo it will redirect all requests through tor
  118. r00tobo but that will effect other xmpp servers that are on the clearnet for ex.
  119. r00tobo ok sir. take care
  120. rvoid Are there people here who successfully changed their client language in Windows?
  121. lovetox its broken you cant
  122. rvoid pepe.jpg
  123. rvoid *sad
  124. rvoid Broken everywhere or just Winsows affected?
  125. lovetox only windows
  126. rvoid Thanks for answers
  127. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9143 >: #9143: < Show additional status changes in MUCs >
  128. jo-so What do you think about Gajim gives a warning, before sending a message in a chat with undecided OMEMO keys, even about the own keys on other devices? This would give the user a hint, why messages wouldn't show up on some devices.
  129. zuglufttier jo-so, actually, that is happening already.
  130. jo-so zuglufttier: Not at me. I've send a message to a contact with 1.0.3 and gajim didn't told me about an undecided key of my other device.
  131. lovetox jo-so, if a new key is received it opens the fingerprint dialog
  132. lovetox what i would want to do is, show devices of your own in the same screen as devices of your contact
  133. lovetox because i think people forget about that other tab
  134. lovetox and never switch to it
  135. lovetox so they dont see that there are also keys from themself to trust
  136. lovetox but other than that i think one notification about new keys is enough
  137. lovetox i dont need to bug the user multiple times about it
  138. lovetox its perfectly fine usecase to not decide on a key instantly
  139. lovetox maybe you want to check it in person a week later
  140. lovetox in that case printing a message everytime seems annoying
  141. swlkr Hello, I need a little bit of help. I accidently enabled something and now everytime I start gajim I have to enter my gnupg passphrase. I looked through the settings but found nothing to disable it. Is there some way?
  142. lovetox do you use gpg?
  143. lovetox or lets phrase it differently, do you want to use gpg to encrypt your messages with gajim?
  144. swlkr Nope but I use it for email.
  145. swlkr Of course after I asked here I found it :) It's the keyring setting. Sorry guys for bothering.
  146. bot Daniel closed an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/8108 >: #8108: < Video chat not available under Windows >
  147. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/6030 >: #6030: < No video on Windows >
  148. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/6030 >: #6030: < No video on Windows >
  149. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/8308 >: #8308: < Jingle Audio/Video usage is unstable >
  150. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/8308 >: #8308: < Jingle Audio/Video usage is unstable >
  151. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/8811 >: #8811: < Audio/Video session throws errors. >
  152. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/8188 >: #8188: < Replace Audio/Video icons with standard icons >
  153. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/7643 >: #7643: < Crashes on video start >
  154. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/7626 >: #7626: < Audio/Video devices not available in Preferences >
  155. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/7626 >: #7626: < Audio/Video devices not available in Preferences >
  156. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/7580 >: #7580: < Add 'Start Audio/Video call' to contact context menu >
  157. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/7464 >: #7464: < Audio/Video calls not possible when using Zeroconf/Bonjour >
  158. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/7303 >: #7303: < Error on try to accept an invitation to an audio call >
  159. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/7245 >: #7245: < Video does not work >
  160. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/7135 >: #7135: < Support for ZRTP (XEP-0262) >
  161. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/6117 >: #6117: < Audio/video does not work >
  162. andrey.g marmistrz, I shared my implementation for jingle encrypted file transfer on Gajim 0.16.x. It worked for me on Debian but not necessary on other OSs. https://dev.gajim.org/gajim/gajim-plugins/merge_requests/4
  163. 404.city I think he talks about a protected gnome depository
  164. rom1dep lovetox: am I seeing some reviving of the messagewindow branch? :)
  165. lovetox hm i updated to current master and added room avatars
  166. rom1dep looks like it, indeed :)
  167. lovetox i have to check whats actually missing so we can use this in gajim
  168. rom1dep seeing quite a bit of `We've already setup a session for this V3 message, letting bundled message fall through...` too
  169. lovetox nothing serious, probably old mam omemo messages
  170. rom1dep ok
  171. lovetox maybe i should open a issue with a todo
  172. Link Mauve lovetox, gpg also uses AES, fyi.
  173. Link Mauve It just has an additional container which tells exactly which encryption mechanism is used.
  174. Link Mauve This is much better than Conversations’s hacky “protocol” scheme.
  175. Link Mauve Especially wrt upgrade paths.
  176. lovetox im not sure i follow, if i encrypt a file with gpg its actually AES?
  177. Link Mauve Yes.
  178. lovetox but it has to be different somehow to what we do with pgp
  179. lovetox ah omemo
  180. Link Mauve gpg generates a random key, encrypts it with the public key of each of your recipients, and then encrypts the content of the file you want to send with said key.
  181. lovetox ah ok
  182. bot Colin 't Hart created an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9145 >: #9145: < Roster not showing number of contacts logged in per group >
  183. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9145 >: #9145: < Roster not showing number of contacts logged in per group >
  184. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9144 >: #9144: < Add support for CSI >
  185. debacle Talking of CSI etc. I'm starting to use a new mobile device (Olimex Teres) and mainly want to use it for phone (SIP/LinPhone) and chat (XMPP/Gajim). That means, that Gajim should behave like a mobile client in respect to battery life. Not every mobile XMPP user is on Conversations :~)
  186. SouL Niiice
  187. SouL I would like to hear some review, debacle
  188. SouL or opinions, whatever!
  189. debacle SouL Assembling the thing took some time, but was fun. By default it runs Ubuntu, but an older version, which still has Gajim 0.16, not 1.0. Therefore I will install Debian (https://wiki.debian.org/InstallingDebianOn/Olimex/Teres-I) ASAP.
  190. bot xekon created an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9146 >: #9146: < zeroconf bonjour local link not displaying linux user name correctly on windows roster. >
  191. bot xekon modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9146 >: #9146: < zeroconf bonjour local link not displaying linux user name correctly on windows roster. >
  192. bot xekon modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9146 >: #9146: < zeroconf bonjour local link not displaying linux user name correctly on windows roster. >
  193. bot xekon modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9146 >: #9146: < zeroconf bonjour local not displaying linux user name correctly on windows roster. link-local messaging >
  194. concerto o/
  195. concerto o/
  196. bot xekon modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9146 >: #9146: < zeroconf bonjour local not displaying linux user name correctly on windows roster. link-local messaging >
  197. bot xekon modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9146 >: #9146: < zeroconf bonjour local not displaying linux user name correctly on windows roster. link-local messaging >
  198. concerto gajim-default-nightly. I have two acccounts set up, and if a contact is added on both, the history/log for that contact seems to be displayed in one combined tab. While this is (I think) good default behaviour, is there any way to change it to show different tabs per account? For debugging purposes?
  199. Daniel concerto, someone was working on this ;) before Gajim 1.0 the account was not saved in history logs db.
  200. bot Daniel modified an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9146 >: #9146: < zeroconf bonjour local not displaying linux user name correctly on windows roster. link-local messaging >
  201. concerto Daniel: I see, thanks
  202. concerto Also, shouldn't tab completion prioritize either 1. the last person who spoke, or 2. (better) the last person who pinged you, instead of sticking to purely alphabetical order?
  203. Daniel There is an issue open about this
  204. Daniel https://dev.gajim.org/gajim/gajim/issues/4653
  205. Daniel Priority is a good idea though! I'll add a comment there
  206. bot Philipp Hörist pushed 1 commit to branch _refs/heads/master_ of _gajim_ < https://dev.gajim.org/gajim/gajim >: *2d6e7d2e* < https://dev.gajim.org/gajim/gajim/commit/2d6e7d2eee507cf267eea405be36d8cd5f534dcf > Get rid of python-avahi
  207. bot Philipp Hörist merged a merge request for _gajim/master_ < https://dev.gajim.org/gajim/gajim/merge_requests/255 >: Get rid of python-avahi
  208. bot Philipp Hörist pushed 1 commit to branch _refs/heads/master_ of _gajim_ < https://dev.gajim.org/gajim/gajim >: *c70b883f* < https://dev.gajim.org/gajim/gajim/commit/c70b883fdd8fed870ddc7686aef8dbf761923b11 > Remove python3-avahi dependency
  209. Daniel lovetox, regarding your avahi commit, are other avahi issues affected by this? E.g. #9082 #8667 #8659 ?
  210. bot Philipp Hörist created an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/9147 >: #9147: < Port Zeroconf Avahi code to GDBus >
  211. bot Philipp Hörist closed an issue in _gajim_ < https://dev.gajim.org/gajim/gajim/issues/8659 >: #8659: < Port Zeroconf feature >
  212. lovetox Daniel, i closed one, but the others are still valid
  213. lovetox although we can point people to try if it happens with gajim 1.1, when we have released it
  214. Daniel Okay, will try to remember :)