πΎ Archived View for gemi.dev βΊ gemini-mailing-list βΊ 000153.gmi captured on 2024-03-21 at 16:58:36. Gemini links have been rewritten to link to archived content
β¬ οΈ Previous capture (2023-12-28)
-=-=-=-=-=-=-
Hi! I've been lurking for a couple of days and had some code merged to Bombadillo, and now I finally got my own Gemini space up. gemini://hannuhartikainen.fi/ I'll probably be posting some raw tech content (see the mirrored blog posts, or my website for an idea of topics), and the non-tech things I want to write about but don't want to make an eternal part of my public image. Sorry for not being more specific right now, but my interests vary. Oh, and there's a feed at gemini://hannuhartikainen.fi/twinlog/atom.xml . I'd be happy to be included in CAPCOM and Spacewalk if @solderpunk and @sloum are reading. :) Thanks to everyone who's been building the community and the tooling! Happy to be here! -- Hannu Hartikainen -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20200526/b47f c844/attachment.htm>
Sounds interesting, but unfortunately I get a "Cert hostname does not match" error in Bombadillo. Did you use a self-signed cert? If so, make sure your hostname was entered in the correct field. You will have to recreate the cert. makeworld ??????? Original Message ??????? On Tuesday, May 26, 2020 9:15 AM, Hannu Hartikainen <hannu.hartikainen+gemini at gmail.com> wrote: > Hi! > > I've been lurking for a couple of days and had some code merged to Bombadillo, and now I finally got my own Gemini space up. > > gemini://hannuhartikainen.fi/ > > I'll probably be posting some raw tech content (see the mirrored blog posts, or my website for an idea of topics), and the non-tech things I want to write about but don't want to make an eternal part of my public image. Sorry for not being more specific right now, but my interests vary. > > Oh, and there's a feed at gemini://hannuhartikainen.fi/twinlog/atom.xml . I'd be happy to be included in CAPCOM and Spacewalk if @solderpunk and @sloum are reading. :) > > Thanks to everyone who's been building the community and the tooling! Happy to be here! > > -- > Hannu Hartikainen
On Tue, May 26, 2020 at 03:27:12PM +0000, colecmac at protonmail.com wrote: > Sounds interesting, but unfortunately I get a "Cert hostname does not match" > error in Bombadillo. Confirmed. Works great with AV-98, but gives a certificate error when accessed with Bombadillo. -- Antti -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20200526/db42 7f3c/attachment.htm>
Oops! Thanks for pointing that out. It's fixed now. Of course this will break TOFU, so at least users of AV-98 who visited before will have to accept the new certificate with the fingerprint f83a41457ae34c5cc6b3836bfdd41e4563ac73c4c03c1397306051c2544af491. I was working with a subdomain for a long time, and only tested with AV-98 and ncgopher after switching domains. Live and learn, I guess. On Tue, 26 May 2020 at 18:47, Antti Ker?nen <detegr at rbx.email> wrote: > On Tue, May 26, 2020 at 03:27:12PM +0000, colecmac at protonmail.com wrote: > >> Sounds interesting, but unfortunately I get a ?Cert hostname does not >> match? error in Bombadillo. >> > Confirmed. Works great with AV-98, but gives a certificate error when > accessed with Bombadillo. > > ? Antti > -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20200526/68cf 3bea/attachment-0001.htm>
On Tue, May 26, 2020 at 04:15:55PM +0300, Hannu Hartikainen wrote: > Oh, and there's a feed at gemini://hannuhartikainen.fi/twinlog/atom.xml . > I'd be happy to be included in CAPCOM and Spacewalk if @solderpunk and > @sloum are reading. :) Joo, min? luen. :) Kiitos Atomista ja tervetuloa Geminiin! But, hey, please be very careful about posting stuff in Geminispace that you would not be comfortable posting to the web because you are worried about possible real-world consequences. I totally understand the concern and applaud you being careful about it, but often these little "underground" spaces prove not to be as hidden as you might think, in the long term. It has happened before in Gopherspace that somebody has setup a Gopher-to-web proxy or gateway thing to make Gopherspace easily accessible from a standard web browser, but they have not been careful about using robots.txt to exclude search engine crawerls from that service. Now big swathes of Gopher content are easy to find via Google. Obviously this stuff does not rank highly in Google's algorithms so it won't turn up if you are writing about stuff which is widely discussed on the web, but with a specific enough search term, it'll be there. A carefully used psuedonym is a better idea, IMHO. Cheers, Solderpunk
On Tue, May 26, 2020 at 06:47:08PM +0300, Antti Ker?nen wrote: > On Tue, May 26, 2020 at 03:27:12PM +0000, colecmac at protonmail.com wrote: > > Sounds interesting, but unfortunately I get a "Cert hostname does not match" > > error in Bombadillo. > > Confirmed. Works great with AV-98, but gives a certificate error when > accessed with Bombadillo. Huh, that's kind of weird, AV-98 should definitely be checking that one of the hostnames in a certificate matches the expected hostname. Or are you running an older version (anything more than like a week old would not bat an eye at this). Cheers, Solderpunk
On Tue, May 26, 2020 at 05:05:55PM +0000, solderpunk wrote: > Huh, that's kind of weird, AV-98 should definitely be checking that one > of the hostnames in a certificate matches the expected hostname. Or are > you running an older version (anything more than like a week old would > not bat an eye at this). I was running commit a68e092593fa2999a81edd7a7e111e52076d5922 Sadly I cannot test it again with the latest master branch as Hannu fixed his server already. :) -- Antti -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20200526/49c1 b6c1/attachment.htm>
On Tue, May 26, 2020 at 08:41:04PM +0300, Antti Ker?nen wrote: > I was running commit a68e092593fa2999a81edd7a7e111e52076d5922 > > Sadly I cannot test it again with the latest master branch as Hannu > fixed his server already. :) Huh, that should definitely have picked up mismatching hostname issue. Unless Bombadillo only checks the Common Name and not Subject Alternative Names? Cheers, Solderpunk
On Tue, 26 May 2020 at 20:04, solderpunk <solderpunk at sdf.org> wrote: > But, hey, please be very careful about posting stuff in Geminispace that > you would not be comfortable posting to the web because you are worried > about possible real-world consequences. > That's a good thing to point out. I think picking someone's words out of context years later and tearing them apart is inhumane. So that's why I'm worried and write about it. Not because I think I'm more at risk than any random person. On Tue, May 26, 2020, 20:47 solderpunk <solderpunk at sdf.org> wrote: > On Tue, May 26, 2020 at 08:41:04PM +0300, Antti Ker?nen wrote: > > > I was running commit a68e092593fa2999a81edd7a7e111e52076d5922 > > > > Sadly I cannot test it again with the latest master branch as Hannu > > fixed his server already. :) > > Huh, that should definitely have picked up mismatching hostname issue. > > Unless Bombadillo only checks the Common Name and not Subject > Alternative Names? > I'm pretty sure the previous cert only had CN=gemini.hannuhartikainen.fi, no SANs. The command I used was probably `openssl req -x509 -newkey rsa:4096 -days 3650 -nodes -out cert.pem -keyout key.pem`. -- Hannu Hartikainen -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20200526/d67b c791/attachment.htm>
---
Previous Thread: Geddit, link aggregator for Gemini
Next Thread: [ANN] Darwaza - An extensible Tcl/Tk Graphical Browser