Toots for daniel@gultsch.social account

Written by Daniel Gultsch on 2025-02-01 at 07:36

I'm skipping #FOSDEM this year, but the #XMPP Standards Foundation will be there! Stop by the Realtime Lounge¹ to chat about XMPP, pick up some merch, and maybe grab a #Conversations_im sticker—while supplies last! 🚀

¹: https://xmpp.org/2025/01/xmpp-at-fosdem-2025/#realtime-lounge (K building 2nd floor, beside the elevator)

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-02-01 at 06:42

I don’t usually do this kind of evangelism, but if you’re looking for a reason to try #XMPP on #GlobalSwitchDay, now’s the perfect time: #Conversations_im is currently free on Google Play!

https://play.google.com/store/apps/details?id=eu.siacs.conversations

=> View attached media

=> More informations about this toot | View the thread

Shared by Daniel Gultsch on 2025-02-01 at 06:11 (original by Axel :xmpp: :debian: :tux:)

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-29 at 10:40

On my way to Brussels for the 27th #XMPP Summit.

Loving the new interior of the ICE trains.

=> View attached media | View attached media

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-24 at 07:37

Just got back from a week of cross-country skiing in Seefeld, Austria. The weather was perfect!

The tourism board proudly advertises that Seefeld is reachable by train (which is true, though there’s definitely room for improvement). Still, every time I mentioned to someone—be it the hotel staff or my ski instructor—that I arrived by train, they were completely baffled.

=> View attached media

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-21 at 18:38

Personally, I don’t think the impact of the "which Cloudflare server is this Signal user closest to" attack is that bad. However, it highlights yet another quirky side effect of #Signal being built on cloud infrastructure.

https://www.404media.co/cloudflare-issue-can-leak-chat-app-users-broad-location/ (by @404mediaco, paywall)

https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117 (original post)

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-19 at 12:45

I love open source, and I want young people to know there’s a career path outside of #FAANG. Open source can be financially sustainable—it just gets super hard if one of your key goals is making your investors even richer. #Conversations_im is about the same age as #Matrix. I never took VC funding, and I’m doing fine.

[#]OpenSource

=> More informations about this toot | View the thread

Shared by Daniel Gultsch on 2025-01-18 at 17:12 (original by Daniel Gultsch)

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-18 at 15:02

The Matrix.org/Element saga isn’t about sustaining Open Source development—it’s a tale of venture capital and corporate greed playing out exactly as foretold.

[#]Matrix

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-14 at 14:29

11 years into the development of #Conversations_im, I’m still working to enhance its security. Most recently, I’ve added support for XEP-0474: SASL SCRAM Downgrade Protection.

To take advantage of our continued commitment to security, make sure to:

· Use Conversations rather than a (soon-to-be-abandoned) fork

· Install Conversations through a source that provides automatic updates (F-Droid for Android 12+ or Google Play)

[#]XMPP

=> More informations about this toot | View the thread

Shared by Daniel Gultsch on 2025-01-14 at 14:16 (original by Ralf Stockmann)

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-13 at 16:29

Statt mehr Milei oder Musk könnte Deutschland ja auch mal mehr Lina Khan wagen.

Monopole zerschlagen und Wettbewerb fördern – das müsste doch eigentlich ein Kernthema für eine liberale Partei wie die #FDP sein.

https://www.youtube.com/watch?v=enHn9R_T2R8

[#]BTW25

=> More informations about this toot | View the thread

Shared by Daniel Gultsch on 2025-01-13 at 15:18 (original by ejabberd)

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-12 at 14:50

Gerade ein sehr angenehmes Interview von Tilo Jung mit Jan van Aken zu Ende gehört.

Bei dem, was Jan van Aken über Wirtschafts-, Sozial- und Verkehrspolitik zu sagen hat, gibt es von mir ja viel Zustimmung.

Ich würde mir wünschen, @dielinke hätte mehr Bewusstsein dafür, dass, wenn ein Autokrat in ein wehrloses Europa einfällt, wir die ganze schöne Sozialpolitik auch nicht mehr umsetzen können.

https://www.youtube.com/watch?v=ls0tBHgy_xI

[#]BTW25

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-12 at 07:48

One of the most important things I consider when choosing a social media platform is whether people can read what I post without being nagged or forced to create an account. For many of my friends who don’t really care about #Mastodon, https://gultsch.social is just a website they can drop by occasionally to see what I’m up to.

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2025-01-08 at 09:25

Just over three weeks remain until the 27th #XMPP Summit takes place in Brussels. If you’re planning to attend but haven’t registered yet, please make sure to add your name to the wiki by the end of this week: https://wiki.xmpp.org/web/Conferences/Summit_27

If you’re an XMPP developer or spec author and weren’t planning to attend, I’d strongly encourage you to reconsider

For those who can’t make it to Brussels but will be in Berlin on Wednesday, February 12th, we’ll be discussing the Summit at that week’s XMPP Meetup

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2024-12-26 at 13:56

If you run a public #XMPP server can you look up what percentage of connected clients are Blabber? I’m wondering if the 15% reported by jabberfr.org is a weird outlier. On our server (conversations.im) the number is closer to 4-5% but we are obviously biased towards Conversations users.

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2024-12-26 at 08:56

The same security issue is likely to be found in some of the crazier forks of Conversations like c0nnect. As mentioned earlier¹ I’ve reached out to the developers a month ago and they didn’t care.

¹: https://gultsch.social/@daniel/113521011923491030

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2024-12-26 at 08:52

[#]Conversations_im and #BlabberIm traditionally had compatible backup formats. However the backup format has changed in the two years since Blabber has been abandoned. To migrate to Conversations and keep your history do the following:

· Create Backup on Blabber

· Install version 2.12.7 of Conversations from F-Droid and restore backup. Do not activate the account!

· Upgrade to latest Conversations.

· Optionally: Create another backup and migrate to the Play Store version.

=> More informations about this toot | View the thread

Written by Daniel Gultsch on 2024-12-26 at 08:45

⚠️ 🚨 It’s time to stop using Blabber.im 🚨⚠️

The abandoned fork of #Conversations_im has a critical security issue: attackers can bypass STARTTLS negotiation, resulting in an unencrypted connection to a fake server. This vulnerability is similar to the STARTLS attack discovered in various email clients¹

✅ Fixed in Conversations 2.13.1 (Feb 2024)

📢 Please migrate to Conversations immediately! It's free on Google Play until the end of the year and always free on #fdroid

¹: https://archive.fosdem.org/2024/schedule/event/fosdem-2024-2179--protocols-security-of-starttls-in-the-e-mail-context/

=> More informations about this toot | View the thread

=> This profile without reblog | Go to daniel@gultsch.social account