15:07 < Nimda> HookThrough3 by [A] Awesome just released on Moderate at 2015-10-29 15:00
15:08 <+devnull> you run a https server on 'forum.ddnet.tw' with an invalid certificat
15:08 <+devnull> https://forum.ddnet.tw
15:20 <@heinrich5991> devnull: apparantly tls isn't supposed to work. maybe they should idsable it
15:21 <+devnull> http only login in forum
15:21 <+devnull> nice job
15:22 <@heinrich5991> good point
15:22 <+devnull> that is a invitation for mitm attacks
15:22 <@heinrich5991> yes
15:23 <@heinrich5991> mitm isn't even needed, you can just sniff the password
15:23 <+devnull> jups
15:54 < EastByte> heinrich5991: no reason to disable tls, self signed certificate works fine if it is manually accepted by the user
15:54 < EastByte> still waiting for letsencrypt beta invite for ddnet.tw
16:10 <@heinrich5991> EastByte: fundamentally insecure in some browsers
16:10 <@heinrich5991> e.g. chrome
16:10 < Learath2> EastByte: you could get a startssl cert
16:11 < Learath2> should be fine
16:12 <@heinrich5991> i.e. you could argue that the false sense of security is worse than the obviously bad http
16:12 < Learath2> or atleast fix the common name and unexpired
18:47 < Splinter> hello
18:47 < Splinter> can comebody help me please?
18:48 < Splinter> somebody*
18:49 <@heinrich5991> not unless you tell us your problem
18:49 <@heinrich5991> :)
18:50 < Splinter> exist it the ddnet mod with rainbow somewhere?
18:50 < EastBite> not opensource afaik
18:50 < Splinter> oh :/
18:51 < StitchGay> I will change ddnet servers name using ip spoofing you know i can spoof from my home connection, this will be ddnet german servers name since tomorrow: Name I WILL ABDUCT U MY GIRL, GameType ABDUCTION, Map ABDUCTIO, AND FUCK YOU HAHAHAHA
18:51 < EastBite> heinrich5991: https://eastbit.net/
18:51 < EastBite> does it work?
18:51 < EastBite> StitchGay: oh hi Cider
18:51 < StitchGay> hi
18:52 < StitchGay> what you want?
18:52 < Splinter> can i get it from someone here?
18:52 <@EastBite> Splinter: not sure
18:53 < Splinter> mh 
18:53 <@EastByte> ty
18:53 <@heinrich5991> EastByte: yes, it does
18:54 <@heinrich5991> is that letsencrypt?
18:54 <@EastByte> yep
18:54 <@heinrich5991> cool
18:54 <@EastByte> setup took me only 5 min :D
18:54 <@heinrich5991> is this the beta or is it generally available now?
18:54 <@EastByte> that's beta
18:54 <+Splinter> what is beta?
18:55 <+Splinter> eastbit.net 
18:55 <@EastByte> letsencrypt https://letsencrypt.org/
18:56 <@EastByte> it's a CA I used to sign my https certificate
18:57 <@EastByte> heinrich5991: not generally available yet
18:58 <@EastByte> took ~2 weeks to get the beta invite for eastbit.net
18:59 <+Splinter> what do you want run on eastbit.net
18:59 <@heinrich5991> a web server that returns a smiley
18:59 <@heinrich5991> (secured by TLS)
19:00 <+Splinter> perfect
19:00 <+Splinter> this smiley is awesome
19:00 <@EastByte> yea I know