@oddbyte All data is encrypted with your password. Hacking the server (which is close to impossible) would thus give them nothing but scrambled data. ;)
Remember the threads¹² about #LetsEncrypt removing a crucial key usage from certificates issued by them in predictive obedience to their premium sponsor Google?
We were at first concerned about #SMTP. While I had lived through this problem with #StartSSL by #StartCom back in 2011, I only had a vague recollection of Jabber but recalled in detail that it broke server-to-server SMTP verification (whether the receiving server acted on it or just documented it).
This means that it will soon no longer be possible at all to operate Jabber (XMPP) servers because the servers use the operating system’s CA certificate bundle for verification, which generally follows the major browsers’ root stores, which has requirements from the CA/Browser forum who apparently don’t care about anything else than the webbrowser, and so no CA whose root certificate is in that store will be allowed to issue certificates suitable for Jabber/XMPP server-to-server communication while these CAs are the only ones trusted by those servers.
So, yes, Google’s requirement change is after all breaking Jabber entirely. Ein Schelm, wer Böses dabei denkt.
Update: it also breaks the connections between domain registrars and registries, with most being unaware that there even is a problem at this time, let alone the crazily short timeframe. See the thread linked to in a self-reply, which also confirms that the CA/Browser forum is supporting Google in this (possibly by means of Google paying, my interpretation).
While nerdcert.eu/ by @jwildeboer would in theory help, it’s not existent yet, and there’s not just the question of when it will be included in operating systems’ root CA stores but whether it will be included in them at all.
Google’s policy has no listed contact point, and the CA/B forum isn’t something mere mortals can complain to, so I’d appreciate if someone who can, and who has significant skills to argument this in English and is willing to, to bring it to them.
I was also bit by this. I switched to tlsserver profile, and when my XMPP certificate got renewed today, it failed to make any S2S connections :(. I'd to revert to classic profile. Could we please keep TLS client auth EKU ? Thanks!
Dear #Letsencrypt, you helped secure millions and millions of servers, not just web servers. But your announcement at letsencrypt.org/2025/05/14/end… about ending Ending TLS Client Authentication Certificate Support in 2026 because Google changes their requirements would result in your certificates becoming a possible risk for ensuring SMTP traffic. Please think again. Please.
Let’s Encrypt will no longer include the “TLS Client Authentication” Extended Key Usage (EKU) in our certificates beginning in 2026. Most users who use Let’s Encrypt to secure websites won’t be affected and won’t need to take any action.
The web is at an inflection point. Big Tech owns the major platforms, the major browsers, the biggest websites, and carves the Web up between themselves…
If your position on the #LA uprising is "this is exactly what Trump wants, an excuse to declare martial law", I've got a question: what's the alternative to rising up NOW?
Wait until #fascism is even more entrenched in the state apparatuses, and has *all* the guns and judges?
In der Oranienbaumer Heide kann man laut #reddit Wiedehopfe (Upupa epops, 🇬🇧 Hoopoe, 🇵🇱 dudek) sehen. Das ist nicht weit von mir. Ich habe den Ort in Google Maps auf gut Glück markiert und auf geht's. Als ich dort ankam, hörte ich diesen unverwechselbaren Gesang. Wegen der Entfernung und der Lichtverhältnisse sind die Fotos nicht grandios, aber ich bin trotzdem unglaublich glücklich!
Two decades have passed since Jason DaSilva was diagnosed with multiple sclerosis (MS) at age 25. A filmmaker known for works such as 2013’s When I Walk , DaSilva explained during an interview last week he was “able-bodied” back in 2005 when doc…
This thing made my morning lol, I haven't seen anything so sloppy in a while. Text compressed with mp4 but not because it's fun but because someone thought it's a good idea: lobste.rs/s/ntsbnt/memvid_vide…
With LibreOffice 24.8 close to end of life, all users are invited to update their free office suite to the latest release Berlin, 6 June 2025 – The Document Foundation is pleased to announce the release of LibreOffice 25.2.
Join us for a book talk with ERIN MALONE, author of IN THROUGH THE SIDE DOOR, uncovering the untold story of how women pioneers shaped the field of user experience […]\n
Join us for a book talk with ERIN MALONE, author of IN THROUGH THE SIDE DOOR, uncovering the untold story of how women pioneers shaped the field of user experience […]\n
Next ENVITER Webinar will be about the “SuperBrain Telehaptic Device” and will be held on June 18th, starting at 11:00am (CET – Central European Time), using Zoom.
A Saturday full of NVDA goodness! Jamies’s latest try build fixed all the Start menu issues in Windows 11 24H2, including the NVDA freeze. @jcsteh awesome job! Then Joseph’s 25.6 build of Win App Essentials add-on fixed NVDA not providing feedback when using Windows+Arrow keys to minimize, maximize, restore, or snap windows. It also fixed NVDA’s silence when typing numbers in the “Go to line” dialog in modern Notepad, plus some improvements for the Voice Access app. Let’s call it an NVDA avalanche then! @NVAccess github.com/nvaccess/nvda/issue… github.com/josephsl/wintenApps…
Hi all,
Windows App Essentials 25.06 is now available. This release includes localization updates and declares compatibility with NVDA 2025.1.
IMPORTANT: this is also the final localization and dev...
The irony is that now that I've fixed the spurious snapping into browse mode in the Start Menu, after hardly being able to reproduce it while testing, I've seen it multiple times in the last couple of days, and it's really, really annoying. (And when I say "fixed", I mean "hacked around Microsoft's incompetence in implementing their own APIs properly".)
LOL - I know no one likes to hear complaints, but it irked me so much that I came complaining here after not being able to get it resolved on Github. You nailed it so efficiently that I wish you could spend more time tackling some NVDA issues. Wishful thinking I know - haha. @NVAccess
Unlike last month, there is hardly anything happening this month in terms of web accessibility legal developments. But be sure to see my other post from the same day, however, about some disturbing patterns elsewhere and an important call to…
Introducing Eleven v3 (alpha) — our most expressive Text to Speech model.This research preview is designed for creators working at the frontier of AI audio. ...
I tried it, the model is good although needs work. Google put out essentially the same thing about a month ago and it sounds better in terms of sticking to the tags and prompts you give it. Eleven will get there but not quite yet.
Court allows Trump administration to proceed with efforts to destroy Institute of Museum and Library Services as case continues ala.org/news/2025/06/court-all…
A federal judge has declined to block the Trump administration’s efforts to dismantle the Institute of Museum and Library Services (IMLS). The ruling, issued today in ALA v.
I prompted Eleven Labs to create a sound effect with the following: “A joyful jingle that combines the sound of mirrors, crystal glasses, water drops, brushes and aspen trees.” Among a few choices I got, this one really caught my attention! #AudioMo
Introducing Eleven V3 (Alpha): elevenlabs.io/blog/eleven-v3 Wow, listen to the sample of that sports commentator. Amazing! Also, love the idea of audio tags. Make it easy! :)
It really is quite extraordinary isn't it? The commentator demo is particularly good, but the changing accents demo really demonstrates the capabilities of v3.
Configured auto-mounting of USB storage devices on FreeBSD courtesy of `sysutils/automount` and instructions by @vermaden ... tested with my Kobo ereader and it works good!
In this article in the FreeBSD Desktop series I will introduce various methods to automatically (or not) mount external/removable devices such as USB or eSATA disks/pendrives or SD/microSD flash ca…
oddbyte
in reply to Tuta • • •maybe dont provoke hackers to try to databreach you :p
But even if they did, they (hopefully) can't get anything :p
Tuta
in reply to oddbyte • • •oddbyte
in reply to Tuta • • •oddbyte
in reply to Tuta • • •Jamison Alexander
in reply to Tuta • • •