💾 Archived View for rawtext.club › ~sloum › geminilist › 001966.gmi captured on 2020-11-07 at 02:35:12. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2020-09-24)
-=-=-=-=-=-=-
solderpunk solderpunk at SDF.ORG
Sat Jun 27 09:59:10 BST 2020
- - - - - - - - - - - - - - - - - - -
----- Forwarded message from solderpunk <solderpunk at SDF.ORG> -----
Date: Fri, 26 Jun 2020 16:44:41 +0000From: solderpunk <solderpunk at SDF.ORG>To: Gemini application layer protocol <gemini at lists.orbitalfox.eu>Subject: Re: TLS certificate sizes in Geminispace
On Fri, Jun 26, 2020 at 05:05:22PM +0200, Felix Queißner wrote:
Using Kristall works and it's blazingly fast, seems to be a correct
server configuration
Initially, I could not access cozylabs.eu using Bombadillo. Then Iupgraded my Golang version from 1.11 to 1.14 and rebuilt Bomadillo, andnow it works just fine. I have not tested it yet, but I presume thatexactly the same would be true of Amfora. I tried this after realisingthat the crypto/ed25519 package only appeared in the Go standard librarywith the 1.13 release (September last year).
I run Debian stable, famous for lagging behind the latest release ofeverthing. In this case, Debian stable was far enough behind on Go thatit meant Go-based clients wouldn't work with ED25519. After the *next*Debian stable release, I imagine this will not be an issue. Alreadywith the current stable release, Python-based clients using Python'sOpenSSL binding work with ED25519 just fine. My tiny little ~100 lineLua client also works just fine, although to be fair I may have pulledin some Lua libraries from LuaRocks which are more up to date than whatDebian ships with.
Anyway, it seems to me that we're perhaps a year or so away from asituation where even famously slow moving and outdated distributions canhandle these certs out-of-the-box with a majority of clients , so let'slook forward to that faster future.
In the meantime, folks who like to "live on the edge" can change earlierI will probably, contrary to my earlier claim, be a bit moreconservative with gemini.circumlunar.space, because that really ought tobe very widely acccessible.
Also in the meantime, I encourage all authors of Gemini-related softwarewritten in Go who distribute pre-compiled binaries to compile theirbinaries with the latest version of Go they can.
Cheers,Solderpunk