14:36:56 <rehrar> Guys, I'm sorry, but due to the virus, Monero devs are asked to stay and work from home.
14:37:04 <rehrar> selsta moneromooo xiphon
14:37:36 <selsta> ok boss
14:37:55 <rehrar> hyc, you were supposed to bring doughnuts next, so that will carry on when we come back sometime next year
14:41:21 <rehrar> Snipa: this disaster occurred on your watch after pony stepped down. You will go down in history as responsible for the CoronaVirus
15:08:34 <xiphon> rehrar: alright )
15:19:14 <hyc> I will keep this box of donuts stashed here until we re-convene
16:44:15 <Snipa> rehrar - Excellent, I've been working from home for a week.  Always good to know what I'm getting blamed for. :P
16:49:42 <asymptotically> my home is a work-free zone
16:52:36 <fuwa> if you work you lose
21:41:14 <xiphon> damn it.. just discovered web browsers when using SSL are sending requested server name in plain text in during the handshake. ClientHello packet -> Server Name Indication extension
21:44:22 <moneromooo> Have to, so the server knows which key to use.
21:45:18 <asymptotically> wasn't encrypting it supposed to be a part of tls 1.3? :'(
21:46:42 <moneromooo> Hmm. I suppose the server could send back a list of vhosts along with the keys, and the client uses the one it likes...
21:47:26 * moneromooo recently spend more time that comfortable dealing with apache config
21:47:50 <xiphon> yep, but i naively thought such and information has to be encrypted
21:48:48 <xiphon> so passive adversary won't know which sites (domain names) a user is visiting over HTTPS
21:49:11 <moneromooo> If your DNS doesn't leak it :)
21:49:42 <asymptotically> https://tools.ietf.org/html/draft-ietf-tls-esni-06 <-- not sure what the status of this is. apprently firefox supports it already
21:52:45 <xiphon> asymptotically: looks promising
21:55:51 <moneromooo> Hmm. Proposed by Cloudflare. The very people who would still have access to that info for most of the web...
21:57:18 <asymptotically> i guess it helps sites served by big hosts and cdns like buttflare most. maybe you didn't just transmit getmonero.org in cleartext but you're still connnecting to their ip address
21:57:34 <dsc_> I believe QUIC fixes the problem xiphon talked about, where HTTP does not start until TLS session has been established (don't quote me on that)
21:57:48 <asymptotically> also "they" don't need to look at the SNI info if you're just connecting to google/buttflare/bigcorp
22:06:23 <hyc> this is just one of the main reasons not to do virtual HTTP servers
22:06:45 <hyc> spectre/meltdown being another significant reason not to share your infrastructre with anyone else
22:07:14 <asymptotically> if only i didn't have to sell a kidney or three to get some ipv4 addresses :(
22:08:42 <dsc_> That's just routing though, I think hyc means "sharing memory" in the context of spectre/meltdown :p
22:09:31 <hyc> the rest, cloudflare proxies intercepting your traffic - I mean seriously, who intentionally builds MITM doors into their protocols?