xmpp service on port 443 and sslh complexity
Pirate Praveen
Public
Seen by 249
We started offering xmpp on port 443 to bypass stupid firewalls. But it added a complex piece of software sslh to the mix. With matrix service becoming popular and sslh configuration causing down times, I suggest we stop providing xmpp on port 443 (it will still be availble on 5222 and 5223 ports). If someone figures out a way to proxy this using nginx, we can consider this again. This will help us to get rid of sslh.
Poll Created Sun 1 Jul 2018 11:07AM
Stop providing xmpp service on port 443 Closed Sun 8 Jul 2018 11:01AM
This will significantly reduce complexity by removing sslh from the equation and reduce maintenance burden.
Results
| Results | Option | % of points | Voters | |
|---|---|---|---|---|
|
|
Agree | 100.0% | 7 |
|
| Abstain | 0.0% | 0 | ||
| Disagree | 0.0% | 0 | ||
| Block | 0.0% | 0 | ||
| Undecided | 0% | 46 |
|
7 of 53 people have participated (13%)
Pirate Praveen
Sun 1 Jul 2018 11:08AM
I think the benefit is not worth the extra complexity we need to manage.
Shamil
Sun 1 Jul 2018 12:37PM
A lot of people don't use XMPP anyway. I don't even know why we were listening on 443, If someone requests it, we can consider reenabling it.
Pirate Bady
Sun 1 Jul 2018 1:35PM
It'd be great if existing xmpp users, if any, can switch to more feature-rich matrix.
Prinz Piuz
Sun 1 Jul 2018 2:38PM
i think nobody is using xmpp
Pirate Praveen Sun 1 Jul 2018 2:12PM
If you want to try ha-proxy, go ahead. The basic idea is to fool stupid firewalls that block everything other than 80 and 443 ports. We enabled this after we got a request from @devraj . It was when he was still in college and we did not have matrix.
Prinz Piuz Sun 1 Jul 2018 2:38PM
i think nobody using xmpp...but to chat with converstions app we will need it r?....i dont know anybody using conversations....i think matrix have more features than xmpp
Pirate Praveen Sun 1 Jul 2018 2:51PM
We need the xmpp service to use poddery account with conversations, but this vote is not to stop it completely. We only want to stop providing this on port 443. We will continue to offer it on 5222 and 5223 ports. Most of the users will still be able to use xmpp service just like they are using right now. Only those who are using it from a very restrictive network which blocks all ports except 80 and 443 (in many colleges and companies) will be affected. I think at least @noteness said he started using it again.
Shamil Sun 1 Jul 2018 3:07PM
I do use XMPP a lot. I know some people who doesn't like the memory hunger/bloat of Riot, they still prefer XMPP as their primary communcation platform.
Shamil · Sun 1 Jul 2018 1:54PM
Or, we can move to ha-proxy. It can do all these, and much more!