Logs: freenode/#haskell
| 2021-03-10 00:38:36 | × | vonfry quits (~user@116.236.75.207) (Remote host closed the connection) |
| 2021-03-10 00:38:44 | → | Fractalis joins (~Fractalis@2601:987:280:fb20:ad9b:b2c6:b33d:6cda) |
| 2021-03-10 00:39:47 | × | usr25 quits (~usr25@unaffiliated/usr25) (Quit: Leaving) |
| 2021-03-10 00:41:18 | × | heatsink quits (~heatsink@2600:1700:bef1:5e10:246b:c0a0:2c4b:51c3) (Remote host closed the connection) |
| 2021-03-10 00:41:39 | → | justsomeguy joins (~justsomeg@unaffiliated/--/x-3805311) |
| 2021-03-10 00:42:38 | → | bergey joins (~user@pool-74-108-99-127.nycmny.fios.verizon.net) |
| 2021-03-10 00:43:25 | → | rajivr joins (uid269651@gateway/web/irccloud.com/x-zgcncjnqyenbczlt) |
| 2021-03-10 00:46:11 | × | Guest79545 quits (~zzz@2a03:b0c0:3:d0::3095:3001) (Quit: quit) |
| 2021-03-10 00:46:46 | → | zzz joins (~zzz@2a03:b0c0:3:d0::3095:3001) |
| 2021-03-10 00:46:54 | → | xintron joins (~xintron@unaffiliated/xintron) |
| 2021-03-10 00:47:10 | zzz | is now known as Guest26442 |
| 2021-03-10 00:48:05 | × | Tourist quits (~tourist@unaffiliated/tourist) (Ping timeout: 272 seconds) |
| 2021-03-10 00:48:35 | → | crestfallen joins (~john@128.32.176.159) |
| 2021-03-10 00:51:11 | <curiousgay> | eh, how often haskell.org rotates certificates? |
| 2021-03-10 00:51:52 | <curiousgay> | right now I can't connect to it because certificate has changed (but few minutes ago it was fine) |
| 2021-03-10 00:53:02 | <monochrom> | worksforme |
| 2021-03-10 00:53:14 | <monochrom> | It really doesn't change certificate all that often. |
| 2021-03-10 00:53:48 | <curiousgay> | well, at least now I'm able to connect |
| 2021-03-10 00:53:50 | → | vgtw_ joins (~vgtw@gateway/tor-sasl/vgtw) |
| 2021-03-10 00:53:55 | <glguy> | It's a Let's Encrypt certificate, so it changes regularly |
| 2021-03-10 00:54:08 | <curiousgay> | guh |
| 2021-03-10 00:54:17 | <glguy> | the current one is from Feb 9 |
| 2021-03-10 00:54:28 | × | rj quits (~x@gateway/tor-sasl/rj) (Ping timeout: 268 seconds) |
| 2021-03-10 00:54:28 | × | vgtw quits (~vgtw@gateway/tor-sasl/vgtw) (Ping timeout: 268 seconds) |
| 2021-03-10 00:54:28 | vgtw_ | is now known as vgtw |
| 2021-03-10 00:54:52 | × | Wuzzy quits (~Wuzzy@p5b0df7c2.dip0.t-ipconnect.de) (Remote host closed the connection) |
| 2021-03-10 00:54:52 | <monochrom> | expires May 10. |
| 2021-03-10 00:55:06 | <monochrom> | I really doubt there was a change in the last 24 hours. |
| 2021-03-10 00:55:12 | <curiousgay> | encryption is strong enough to serve for decades, there's no reason to rotate certificate every month |
| 2021-03-10 00:55:14 | → | heatsink joins (~heatsink@2600:1700:bef1:5e10:246b:c0a0:2c4b:51c3) |
| 2021-03-10 00:55:25 | <glguy> | curiousgay: that's not why they rotate |
| 2021-03-10 00:55:32 | <curiousgay> | s/every month/every 3 months/ |
| 2021-03-10 00:55:44 | <glguy> | anyway, rotation is normal and not something a client will get hung up on |
| 2021-03-10 00:55:57 | → | nbloomf joins (~nbloomf@2600:1700:ad14:3020:2411:9949:8ba3:cb86) |
| 2021-03-10 00:56:24 | <monochrom> | I have never ran into a certificate problem with haskell.org. |
| 2021-03-10 00:56:39 | <monochrom> | May I suggest the darker theory that your connection is/was compromised. |
| 2021-03-10 00:56:55 | <curiousgay> | glguy: that rotation is based on assumption a client trusts certificate authorities |
| 2021-03-10 00:57:41 | × | nbloomf quits (~nbloomf@2600:1700:ad14:3020:2411:9949:8ba3:cb86) (Client Quit) |
| 2021-03-10 00:57:45 | × | crestfallen quits (~john@128.32.176.159) (Quit: Leaving) |
| 2021-03-10 00:57:50 | <curiousgay> | in TOFU world rotating without warning doesn't make any sense |
| 2021-03-10 00:58:11 | <monochrom> | glguy: I'm curious now. What is the benefit of the rotation? |
| 2021-03-10 00:58:16 | → | nbloomf joins (~nbloomf@2600:1700:ad14:3020:2411:9949:8ba3:cb86) |
| 2021-03-10 00:58:32 | × | sw1nn quits (~sw1nn@2a00:23c7:622f:2c00:df3:76c2:ae90:b3b4) (Ping timeout: 258 seconds) |
| 2021-03-10 00:59:15 | <glguy> | monochrom: you don't have to maintain as big of a CRL, leaked private keys are dangerous for shorter windows, you can transfer a domain to someone new who can start using it earlier knowing the certiifcates issued for it have expired already, probably others, but those come to mind |
| 2021-03-10 00:59:16 | <curiousgay> | the benefit of rotation is that if one of your private keys gets compromised it doesn't allow to compromise entire history |
| 2021-03-10 00:59:21 | × | raehik quits (~raehik@cpc95906-rdng25-2-0-cust156.15-3.cable.virginm.net) (Ping timeout: 264 seconds) |
| 2021-03-10 00:59:40 | <monochrom> | Ah, thanks. |
| 2021-03-10 00:59:43 | <curiousgay> | but if you leak keys you need to restructure your security |
| 2021-03-10 01:00:29 | × | stree quits (~stree@68.36.8.116) (Ping timeout: 260 seconds) |
| 2021-03-10 01:01:00 | <curiousgay> | like don't store keys where you run a bunch of untrusted programs where you don't know how they work |
| 2021-03-10 01:01:17 | → | myShoggoth joins (~myShoggot@75.164.81.55) |
| 2021-03-10 01:01:30 | <curiousgay> | and encrypt your disk with AES-256 in XTS mode with long reliable password |
| 2021-03-10 01:01:53 | <glguy> | anway, it sounds like you understand how certificates work |
| 2021-03-10 01:03:06 | <curiousgay> | not really, I simply treat them as public keys, but I'm aware their structure is more complex than that |
| 2021-03-10 01:03:50 | <curiousgay> | that allows them to go into a nightmare called web of trust |
| 2021-03-10 01:04:13 | <glguy> | Anyway, we're more focused on Haskell here than PKI |
| 2021-03-10 01:05:55 | × | justsomeguy quits (~justsomeg@unaffiliated/--/x-3805311) (Quit: WeeChat 3.0.1) |
| 2021-03-10 01:06:41 | × | m0rphism quits (~m0rphism@HSI-KBW-085-216-104-059.hsi.kabelbw.de) (Ping timeout: 256 seconds) |
| 2021-03-10 01:06:42 | <curiousgay> | well, I thought it makes sense to also discuss official Haskell site here |
| 2021-03-10 01:07:03 | <glguy> | yeah, the question of did the certificate rotate was resolved |
| 2021-03-10 01:08:27 | × | elfets quits (~elfets@ip-37-201-23-96.hsi13.unitymediagroup.de) (Read error: Connection reset by peer) |
| 2021-03-10 01:09:39 | → | elfets joins (~elfets@ip-37-201-23-96.hsi13.unitymediagroup.de) |
| 2021-03-10 01:10:22 | × | Deide quits (~Deide@217.155.19.23) (Quit: Seeee yaaaa) |
| 2021-03-10 01:11:08 | → | sw1nn joins (~sw1nn@2a00:23c7:622f:2c00:377a:cf20:5183:83de) |
| 2021-03-10 01:12:22 | → | mimi_vx joins (~mimi@2a01:490:16:1026:4525:56c0:a6ea:87c1) |
| 2021-03-10 01:12:30 | × | nbloomf quits (~nbloomf@2600:1700:ad14:3020:2411:9949:8ba3:cb86) (Quit: My MacBook has gone to sleep. ZZZzzz…) |
| 2021-03-10 01:12:33 | × | myShoggoth quits (~myShoggot@75.164.81.55) (Ping timeout: 245 seconds) |
| 2021-03-10 01:13:02 | → | myShoggoth joins (~myShoggot@75.164.81.55) |
| 2021-03-10 01:13:17 | → | stree joins (~stree@68.36.8.116) |
| 2021-03-10 01:15:19 | → | acarrico joins (~acarrico@dhcp-68-142-39-249.greenmountainaccess.net) |
| 2021-03-10 01:18:14 | × | omnitrogen quits (~omnitroge@vps-c9700282.vps.ovh.net) (Ping timeout: 260 seconds) |
| 2021-03-10 01:18:26 | → | jamm_ joins (~jamm@unaffiliated/jamm) |
| 2021-03-10 01:18:33 | × | notzmv quits (~zmv@unaffiliated/zmv) (Ping timeout: 264 seconds) |
| 2021-03-10 01:19:07 | × | tzlil quits (~tzlil@unaffiliated/tzlil) (Ping timeout: 272 seconds) |
| 2021-03-10 01:20:40 | → | nbloomf joins (~nbloomf@2600:1700:ad14:3020:2411:9949:8ba3:cb86) |
| 2021-03-10 01:20:40 | → | tzlil joins (~tzlil@unaffiliated/tzlil) |
| 2021-03-10 01:20:49 | × | conal quits (~conal@192.145.118.107) (Quit: Computer has gone to sleep.) |
| 2021-03-10 01:21:18 | × | elfets quits (~elfets@ip-37-201-23-96.hsi13.unitymediagroup.de) (Ping timeout: 245 seconds) |
| 2021-03-10 01:21:20 | → | conal joins (~conal@192.145.118.107) |
| 2021-03-10 01:21:59 | × | Inoperable quits (~PLAYER_1@fancydata.science) (Ping timeout: 256 seconds) |
| 2021-03-10 01:22:33 | × | myShoggoth quits (~myShoggot@75.164.81.55) (Ping timeout: 245 seconds) |
| 2021-03-10 01:22:36 | × | m1dnight_ quits (~m1dnight@188.ip-51-91-158.eu) (Ping timeout: 256 seconds) |
| 2021-03-10 01:22:50 | × | jamm_ quits (~jamm@unaffiliated/jamm) (Ping timeout: 264 seconds) |
| 2021-03-10 01:23:58 | → | merijn joins (~merijn@83-160-49-249.ip.xs4all.nl) |
| 2021-03-10 01:25:33 | × | conal quits (~conal@192.145.118.107) (Ping timeout: 246 seconds) |
| 2021-03-10 01:29:44 | × | thc202 quits (~thc202@unaffiliated/thc202) (Quit: thc202) |
| 2021-03-10 01:31:23 | × | viluon quits (uid453725@gateway/web/irccloud.com/x-degqoszkevovakgs) (Quit: Connection closed for inactivity) |
| 2021-03-10 01:31:45 | → | minoru_shiraeesh joins (~shiraeesh@46.34.206.251) |
| 2021-03-10 01:31:55 | → | ProofTechnique_ joins (sid79547@gateway/web/irccloud.com/x-rfjenrecvyozipoh) |
| 2021-03-10 01:31:55 | → | mitchellsalad_ joins (uid40617@gateway/web/irccloud.com/x-iwkvoqzlrnkzeagp) |
| 2021-03-10 01:32:06 | → | bsima1 joins (~bsima@simatime.com) |
| 2021-03-10 01:32:15 | → | howdoi_ joins (uid224@gateway/web/irccloud.com/x-fqbegxygueqsadzs) |
| 2021-03-10 01:32:40 | × | stree quits (~stree@68.36.8.116) (Quit: Caught exception) |
| 2021-03-10 01:33:06 | → | stree joins (~stree@68.36.8.116) |
| 2021-03-10 01:33:11 | → | jokester_ joins (~mono@unaffiliated/jokester) |
| 2021-03-10 01:33:33 | × | SIben quits (~SIben@101.ip-164-132-107.eu) (Ping timeout: 264 seconds) |
| 2021-03-10 01:35:03 | → | debugloo1 joins (~danieln@unaffiliated/debugloop) |
| 2021-03-10 01:37:15 | → | Jello_Raptor_ joins (~Jello_Rap@li641-12.members.linode.com) |
| 2021-03-10 01:37:33 | × | Sheilong quits (uid293653@gateway/web/irccloud.com/x-wqscfhvgecjdxrxn) (Quit: Connection closed for inactivity) |
| 2021-03-10 01:37:51 | → | WojciechK joins (~wojciechk@2001:41d0:a:5be4::449) |
All times are in UTC.