Hello All!

ProtonMail Explains Why It Shared a User's IP Address With
Police

Even a secure email service can't ignore a legally binding
order from Swiss authorities.

By Matthew Humphries
6 Sep 2021, 3:52 p.m.

ProtonMail advertises itself as the world's largest secure
email service, and yet it recently shared the IP address and
device details of a customer with Swiss and French authorities,
which led to an arrest.

https://uk.pcmag.com/old-hosted-email-providers/135500/ protonmail-explains-why-it-shared-a-users-ip-address-with-
police

Also..

https://techcrunch.com/2021/09/06/protonmail-logged-ip-address- of-french-activist-after-order-by-swiss-authorities/

"While ProtonMail didn't cooperate with French authorities,
French police sent a request to Swiss police via Europol to
force the company to obtain the IP address of one of its
users."



--- OpenXP 5.0.50
* Origin: (} Pointy McPointFace (21:4/106.21)

ProtonMail Explains Why It Shared a User's IP Address With
Police
Even a secure email service can't ignore a legally binding
order from Swiss authorities.

Right, really the ONLY secure way to do email is to either A) build your own secure email server and run it at home on a physical box. or B) no email at all...

Thanks
- Gamecube Buddy

telnet --<{bbs.hive32.com:23333}>--

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Hive32 (21:4/129)

Hello gcubebuddy!

** On Tuesday 07.09.21 - 10:57, gcubebuddy wrote to Ogg:

ProtonMail Explains Why It Shared a User's IP Address
With Police Even a secure email service can't ignore a
legally binding order from Swiss authorities.

Right, really the ONLY secure way to do email is to either
A) build your own secure email server and run it at home on
a physical box. or B) no email at all...

Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".


--- OpenXP 5.0.50
* Origin: (} Pointy McPointFace (21:4/106.21)

Ogg wrote (2021-09-07):

Right, really the ONLY secure way to do email is to either
A) build your own secure email server and run it at home on
a physical box.

So the IP address of your mail server and the registrar's domain record points directly to your home address? Not sure if that helps ;-)

Also broadband IPs don't work for mail reliably.

And meta data is still leaky through the other participants mail servers.

or B) no email at all...

Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".

Even the link to the onion address is easy to find on their website. But I think it's mostly a problem of understanding all the technical details of 'security', anonymity, surveillance and the network. Protonmail advertises secure encrypted email and something something privacy (swiss law). Activist thinks their safe.

I wouldn't use e-mail on the open internet in this context.

Use FTN netmail over Tor! ;-) Or some app made for this use case like Briar.

---
* Origin: 1995| Invention of the Cookie. The End. (21:3/102)

Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".

it makes me wonder how many supeanas have already been issued to Protonmail, and the people who run the signal app. i dont trust any of them. its like having a single point of failure. that failure being litigation from corprate controlled gov agencies. I know that proton is used alot for people who a re insiders that are wanting to come forward from the black OPS UFO programs. however i think the proton / signal systems are already compromised. if not
by legal means, then by NSA hacking.

Thanks
- Gamecube Buddy

telnet --<{bbs.hive32.com:23333}>--

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Hive32 (21:4/129)

Hello Oli!

** On Wednesday 08.09.21 - 05:41, Oli wrote to Ogg:

So the IP address of your mail server and the registrar's
domain record points directly to your home address? Not
sure if that helps ;-)

And meta data is still leaky through the other participants
mail servers.

Yes.. sadly, the typical SMTP headers can reveal quite a bit
about a message.

Even the link to the onion address is easy to find on their
website. But I think it's mostly a problem of understanding
all the technical details of 'security', anonymity,
surveillance and the network. Protonmail advertises secure
encrypted email and something something privacy (swiss
law). Activist thinks their safe.

I wouldn't use e-mail on the open internet in this context.

There is at least one fellow participating in the pgpnet.io
group using Gmail and there's not much meta data in the headers
to pinpoint a location or an identity at all.

Use FTN netmail over Tor! ;-) Or some app made for this use
case like Briar.

Never heard of Briar. Sounds very much like Matrix/Element.
But how can such a thing still work with a "broken internet" as
it claims it can?


--- OpenXP 5.0.50
* Origin: (} Pointy McPointFace (21:4/106.21)

Re: protonmail shares IP address leading to arrest
By: Oli to Ogg on Wed Sep 08 2021 05:41 am

Ogg wrote (2021-09-07):

Right, really the ONLY secure way to do email is to either
A) build your own secure email server and run it at home on
a physical box.

So the IP address of your mail server and the registrar's domain record poin directly to your home address? Not sure if that helps ;-)

Also broadband IPs don't work for mail reliably.

And meta data is still leaky through the other participants mail servers.

or B) no email at all...

Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".

Even the link to the onion address is easy to find on their website. But I think it's mostly a problem of understanding all the technical details of 'security', anonymity, surveillance and the network. Protonmail advertises secure encrypted email and something something privacy (swiss law). Activist thinks their safe.

I wouldn't use e-mail on the open internet in this context.

Use FTN netmail over Tor! ;-) Or some app made for this use case like Briar.

There are email services within the I2P network that interface with the clearnet. I would not advise to use them for talking to clearnet email users (because the system introduces delays on purpose in order to prevent correlation attacks, and because many mainstream email providers flag these services as spam) but they are good for talking to other I2P users.

Then there are things like Bitmessage (that works over Tor) or Retroshare (with suport for both Tor and I2P, and even the ability to bridge darknets to clearnet and viceversa).

I don't think it is feasible at this point to have reasonable confidentiality unless both of the talking parties agree to use some secure, non mainstream platform or system. The dream of sending a message using a secure program and have Grannie Doe read it and reply securely is an unreachable dream because, even if the software existed, being able to use it securely requires proper trainign and understanding on both ends.

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.14-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Re: re: protonmail shares IP address leading to arrest
By: gcubebuddy to Ogg on Wed Sep 08 2021 07:03 am

Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".

it makes me wonder how many supeanas have already been issued to Protonmail, and the people who run the signal app. i dont trust any of them. its like having a single point of failure. that failure being litigation from corprat controlled gov agencies. I know that proton is used alot for people who a re insiders that are wanting to come forward from the black OPS UFO programs. however i think the proton / signal systems are already compromised. if not by legal means, then by NSA hacking.

Thanks
- Gamecube Buddy

telnet --<{bbs.hive32.com:23333}>--

I don't think there are technical means to read the conversations going on within a Signal group unless the adecuate decryption keys are in your posession.

However, identifying which people is part of certain group may be possible.

In theory, Signal uses a hashing system so they don't get to see the phone numbers of your contacts, but the hash space is so small that it is bruteforceable, and this weakness is acknowledged by the team.

Which means the content of your conversations is not easy to know, but knowing who your friends are is possible. That is "no bueno".

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.14-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Ogg wrote (2021-09-08):

Use FTN netmail over Tor! ;-) Or some app made for this use
case like Briar.

Never heard of Briar. Sounds very much like Matrix/Element.

But Briar is p2p and Matrix client-server based. I don't know how it compares to Element on the UI level, never used Briar.

But how can such a thing still work with a "broken internet" as
it claims it can?

I think the offline functionality is limited. You can share messages over Bluetooth and wifi with people in the same location. I'm not sure if it even does local mesh routing (I don't think so).

A sophisticated app could send messages over a local mesh routed network and it would hop from nearby device to nearby device until it finds one that acts as a gateway to the internet. I don't know any app that does it (and it would need a bigger user base to work reliably).

Bridgefy was used in the Hong Kong protest. Unfortunately it was never safe to use it for these kind scenarios. That's why you never can trust a closed source software product. They tell you it perfectly protects your privacy and it doesn't:

https://arstechnica.com/features/2020/08/bridgefy-the-app-promoted-for-mass-protests-is-a-privacy-disaster/

---
* Origin: 1995| Invention of the Cookie. The End. (21:3/102)

On 08 Sep 2021, Arelor said the following...

Re: re: protonmail shares IP address leading to arrest
By: gcubebuddy to Ogg on Wed Sep 08 2021 07:03 am

I don't think there are technical means to read the conversations going
on within a Signal group unless the adecuate decryption keys are in your posession.

While this is likely accurate, if you have a nation state that wants access to your Signal conversations, they just need to compromise one of the participants' phones and install a screen scraper. It's not easy, but there's always more than one way to skin a horse.

GreenLFC ║ e> greenleaderfanclub@protonmail.com
Infosec / Ham / Retro ║ masto> greenleaderfanclub@distrotoot
Avoids Politics on BBS ║ gem> gemini.greenleader.xyz

--- Mystic BBS v1.12 A47 2021/08/29 (Raspberry Pi/32)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

While this is likely accurate, if you have a nation state that wants access to your Signal conversations, they just need to compromise one of the participants' phones and install a screen scraper. It's not easy,
but there's always more than one way to skin a horse.

oooh wow ya interesting.... i had no thought about screen captureing it.

Thanks
- Gamecube Buddy

telnet --<{bbs.hive32.com:23333}>--

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Hive32 (21:4/129)

On 07 Sep 2021 at 10:57a, gcubebuddy pondered and said...

Right, really the ONLY secure way to do email is to either A) build your own secure email server and run it at home on a physical box. or B) no email at all...

one day I'd like to try to do that.. I even got port 25 opened up at home
with the blessing of my ISP... but then it seemed to be hard to do or I
recall some saying don't go there, there be dragons :)

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

Right, really the ONLY secure way to do email is to either A) build y own secure email server and run it at home on a physical box. or B) n email at all...

one day I'd like to try to do that.. I even got port 25 opened up at home with the blessing of my ISP... but then it seemed to be hard to do or I recall some saying don't go there, there be dragons :)

I tried to do this for a time. Of all of the servers I have ever experimented with or run seriously, by far, running a mail server was the least fun of all. I gave up. Most of the headaches were that updates to the mail packages often break your current configuration. Whereas with most things I can roll over my configuration file to a new version, the mail servers I were using broke...a lot. And certain mail server config files border on absurd, in terms of complexity. First it was Postfix, and now I run exim4 to mail me system alerts from my various Debian and Ubuntu systems, but it uses Google as a smarthost because I cannot be bothered.

Good luck if you try to do it. The overwhelming joylessness of it is something I remember well. I like having my own web server, for instance. Gopher. This board only I use.

Mail servers though, are a chore.

--- Mystic BBS v1.12 A47 2021/06/28 (Linux/64)
* Origin: Shipwrecks & Shibboleths [San Francisco, CA - USA] (21:1/227)

On 10 Sep 2021 at 07:05a, DustCouncil pondered and said...

I tried to do this for a time. Of all of the servers I have ever experimented with or run seriously, by far, running a mail server was
the least fun of all. I gave up. Most of the headaches were that
updates to the mail packages often break your current configuration.

Good luck if you try to do it. The overwhelming joylessness of it is something I remember well. I like having my own web server, for

This kind of jells with my 'danger Will Robertson' alert/vibe that came to me when I last pondered this idea. No worries I won't be looking at this anytime soon. But I do recall a kind of 'email server in a box' idea you could
download and install that did most of the painful work for you...

something I remember well. I like having my own web server, for
instance. Gopher. This board only I use.

Gopher and Webby thank you for your ongoing support and love :)

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

Re: Re: re :protonmail shares IP address leading to arrest
By: DustCouncil to Avon on Fri Sep 10 2021 07:05 am

Right, really the ONLY secure way to do email is to either A) build y own secure email
server and run it at home on a physical box. or B) n email at all...

one day I'd like to try to do that.. I even got port 25 opened up at home with the blessing
my ISP... but then it seemed to be hard to do or I recall some saying don't go there, there
dragons :)

I tried to do this for a time. Of all of the servers I have ever experimented with or run
seriously, by far, running a mail server was the least fun of all. I gave up. Most of the
headaches were that updates to the mail packages often break your current configuration. Wherea
with most things I can roll over my configuration file to a new version, the mail servers I were
using broke...a lot. And certain mail server config files border on absurd, in terms of
complexity. First it was Postfix, and now I run exim4 to mail me system alerts from my various
Debian and Ubuntu systems, but it uses Google as a smarthost because I cannot be bothered.

Good luck if you try to do it. The overwhelming joylessness of it is something I remember well.
like having my own web server, for instance. Gopher. This board only I use.

Mail servers though, are a chore.

You ought to try opensmtpd for email. You can have something working with 6 lines of configuration
file or so. Dovecot is complex in comparison (and is not really that bad).

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.14-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

one day I'd like to try to do that.. I even got port 25 opened up at home

Its a bit of a handful the first time or two around the block, but its not really difficult to get a server, I usually use postfix, up and running. The one thing I have trouble getting right is the SSL nd of things. Not sure why... just never seems to work properly. Otherwise, Postfix, Dovecot, and something else I'm having a mental blank with just pretty much install and work.

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

Mail servers though, are a chore.

Interesting, I always found web servers, nominally Apache a bigger pain for being difficult to upgrade or migrate. It seemed things were forever broken during that process while mail was for the most part fire and forget. Might depend on your user volume and client spread though.

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

On 10 Sep 2021, Spectre said the following...

one day I'd like to try to do that.. I even got port 25 opened up at

Its a bit of a handful the first time or two around the block, but its
not really difficult to get a server, I usually use postfix, up and running. The one thing I have trouble getting right is the SSL nd of things. Not sure why... just never seems to work properly. Otherwise, Postfix, Dovecot, and something else I'm having a mental blank with
just pretty much install and work.

I have set up qmail, sendmail+m4 and laterally postfix with dovecot more
times than I cae to admit. Everyt time was a pain in the ass but I got better each time. I am currently shuddering thinking about moving my mx to a new server, but with patience, it does work. Just note though that your ISP probably have an agreement with the 5 eyes and they are probably doing SSL offload somewhere, so I pretty much consider everything I do on the net (even on my own servers) as clear-text, postcard status. There is very little that can't be seen by the authorities unless you are in a country that is non
5-eyes and truly supports the privacy of the indiivdual. New Zealand is definitely not one of them, which is a sad fact because I'm proud of NZ for
so many other things politically. Just my 2c.

Al


hyjinx // Alistair Ross
Author of 'Back to the BBS' Documentary: https://bit.ly/3tRINeL (YouTube) alsgeeklab.com

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: bbs.alsgeeklab.com:2323 (21:1/126)

my mx to a new server, but with patience, it does work. Just note
though that your ISP probably have an agreement with the 5 eyes and
they are probably doing SSL offload somewhere, so I pretty much
consider everything I do on the net (even on my own servers) as

I s'pose you're thinking I deliver mail via my ISP? I actually just let it deliver direct. It gets a fair number of refusals to connect, but for the limited use it gets its satisfactory to requirements :) I don't actually use my ISP's email at all... it keeps falling off my local pc config and then I forget what how its set up :) However my general email is probably even less secure as it goes through gmail.

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

I tried to do this for a time. Of all of the servers I have ever experimented with or run seriously, by far, running a mail server was
the least fun of all.
I gave up. Most of the headaches were that updates to the mail packages often break your current configuration. Whereas with most things I can roll over my configuration file to a new version, the mail servers I
were using broke...a lot. And certain mail server config files border
on absurd, in terms of complexity. First it was Postfix, and now I run exim4 to mail me system alerts

Ya setting up a Postfix / Dovecot system can be a bear to config. also its
not something i have done much of. so i am sure if i tried it again, i would
be missing something, and that might also create a vulnrability through mis-configuration. It is something though that is worth a try at least once, just for the experince of setting it up.

Thanks
- Gamecube Buddy

telnet --<{bbs.hive32.com:23333}>--

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Hive32 (21:4/129)

Re: Re: re :protonmail shares IP address leading to arrest
By: DustCouncil to Avon on Fri Sep 10 2021 07:05 am

I tried to do this for a time. Of all of the servers I have ever experimented with or run seriously, by far, running a mail server was
the least fun of all. I gave up.

I am with you there. I provide web/internet services for business clients (have done for 20+ years) and I started out running a mail servers to hose them all - had about 30 or so at the time.

Apart from the user issues, and the issues with spam I gave up and moved them all over to google - when google first started providing mail services. It was unnessarily time consuming maintaining the environment and trying to keep on top of spam.

Now most of the usem outlook since they use Microsoft products.

For my own private domain, I actually host it myself using axigen (and their free 5 user license). Its a nice package, and I have sendmail/dspam in front of it - all running in docker containers. For outbound mail, I relay through a NZ service (also on their free tier), which takes care of my mail outbound mail not being tagged as spam.

I rarely touch it, and its probably been running 2 years with no maintance or hands on from me - I should probably check on it ...

I would convert all my business clients over to it, but its cost prohibitive, especially since they all use Microsoft now anyway.


...δεσ∩
--- SBBSecho 3.14-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

better each time. I am currently shuddering thinking about moving my mx
to a new server, but with patience, it does work. Just note though that your ISP probably have an agreement with the 5 eyes and they are
probably doing SSL offload somewhere, so I pretty much consider
everything I do on the net (even on my own servers) as clear-text, postcard status. There is very little that can't be seen by the authorities unless you are in a country that is non 5-eyes and truly supports the privacy of the indiivdual. New Zealand is definitely not
one of them, which is a sad fact because I'm proud of NZ for so many
other things politically. Just my 2c.
Al

There is a ex-NSA person who goes to my familys church. I once asked him if
the NSA had create a back door in the Linux SELinux Kernel module. he said "i cna neither confirm or deny that." i then asked him, "In your time at teh
NSA, did you ever see any evidance of a SuperSoldger serum?" he said "No -
that was not my department." so i said "So you are saying, there WAS a department for that?" he said "NOOOOOO - thats not what i said.... Why are
you so interested in that?" i said, "Dude! i totally want to be like Captain America!" lol

the wild thing about hte linux NSA security module - which is in almost every distro accept for slackware, is highly integrated into RHEL and Ubuntu. anything that pretty much runs System-D has it. slackware - the refuse to compile SELinux into the kernel. hell slackware doesnt even have PAM by default. also another thing i found, is even FreeBSD has their version of SELinux call MAC (Mandatory Access Control security kernel module). i tried
to mention that fact to people on a BSD board, but they thought i was crazy. RHEL by far though has the fingers of the NSA all throughout it.

Thanks
- Gamecube Buddy

telnet --<{bbs.hive32.com:23333}>--

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Hive32 (21:4/129)

gcubebuddy wrote to Greenlfc <=-

oooh wow ya interesting.... i had no thought about screen captureing
it.

When some people in my company thought they'd use the DRM in Microsoft Office/Exchange to protect emails, they didn't think about people taking a picture of the screen.


... What to increase? What to reduce? What to maintain?
--- MultiMail/DOS v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

DustCouncil wrote to Avon <=-

Good luck if you try to do it. The overwhelming joylessness of it is something I remember well. I like having my own web server, for
instance. Gopher. This board only I use.

I started running Postfix on a VPS I rent; it sure beats Sendmail and m4 macros!

This is partly a nostalgic thing, when I started out on a DSL line I self- hosted my DNS, mail and web services. I think we all did back then.


... What to increase? What to reduce? What to maintain?
--- MultiMail/DOS v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

Re: Re: re :protonmail shares IP address leading to arrest
By: Spectre to DustCouncil on Fri Sep 10 2021 07:14 pm

Mail servers though, are a chore.

Interesting, I always found web servers, nominally Apache a bigger pain for being difficult to upgrade
migrate. It seemed things were forever broken during that process while mail was for the most part fi
and forget. Might depend on your user volume and client spread though.

Spec

*** THE READER V4.50 [freeware]

What would make Apache a difficult beast to upgrade?

I use mostly httpd (OpenBSD's in-house solution) and while it has its shortcommings, I find that, for
small deployments, the issues upgrading services are usually related to upgrading databases or PHP
versions :-)

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.14-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

What would make Apache a difficult beast to upgrade?

You're right, its usually the ancillary stuff.. the PHP and what have you that break everything. I tend to leave the WWW server right alone unless I'm for whatever reason doing a complete server upgrade from scratch. But I find if you upgrade Apache then all the modules get upgraded and break things.

Between whats current, whats deprecated, and what gets left out along the way it seems to be impossible to just pick up your data and move it to a new system or reliably upgrade any of the modules without issues. In my experience.

More than possibly related to my poor coding on said platforms too. A lot of the stuff I use to drive http://pineapple.zapto.org, most being php and mysql is already deprecated not looking forward to having to rebuild that at some point in the future... easier to leave it alone.

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

Re: Re: re :protonmail shares IP address leading to arrest
By: Spectre to Arelor on Sun Sep 12 2021 05:42 am

What would make Apache a difficult beast to upgrade?

You're right, its usually the ancillary stuff.. the PHP and what have you that break everything. I tend to leave the WWW server right alone unless I'm for whatever reason doing a complete
server upgrade from scratch. But I find if you upgrade Apache then all the modules get upgraded and break things.

Between whats current, whats deprecated, and what gets left out along the way it seems to be impossible to just pick up your data and move it to a new system or reliably upgrade any of the
modules without issues. In my experience.

More than possibly related to my poor coding on said platforms too. A lot of the stuff I use to drive http://pineapple.zapto.org, most being php and mysql is already deprecated not looking
forward to having to rebuild that at some point in the future... easier to leave it alone.

Spec

*** THE READER V4.50 [freeware]

It sounds like you are integrating your web applications very deeply with Apache, if changes to Apache modules are such deal breakers.

I am a big fan of static site generators as not to have to deal with webserver oddities :-) Also, web apps I deal with seem to do fine with OpenBSD's httpd. I usually just need some request
rewrites and pass/block rules, which in OpenBSD don't come from modules - and usually the web application needs not be aware of what the web server is doing.

PHP and Database migrations suck though. Specially if you use certain webapps which break compatibility with your current setup during a freaking point release. Because everybody knows moving
from WebApp 2.1.1 to WebApp 2.1.1.1 is supposed to require you to move to the nest major Mariadb and PHP releases. Ieeeaaaarghrhrhr

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.14-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

It sounds like you are integrating your web applications very deeply with Apache, if changes to Apache modules are such deal breakers.

Shrug, what do I know :) It works mostly, in a way I'm happy with, and I don't know any better. Ignorance is bliss.

As already mentioned mysql is going maria, which thus far I haven't had any joy getting to run/work with. The mysql access I'm using in PHP is already obsolete..what do you do? Same thing as if I met a green monster in a dark alley... leave it alone and let it ripen. I can't see myself working up the enthusiasm to reinvent the wheel for another go.

SSpec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

Re: Re: re :protonmail shares IP address leading to arrest
By: Arelor to Spectre on Sat Sep 11 2021 04:04 pm

PHP and Database migrations suck though. Specially if you use certain webapps which break compatibility with your current setup during
a
freaking point release. Because everybody knows moving from WebApp 2.1.1 to WebApp 2.1.1.1 is supposed to require you to move to the
nest major Mariadb and PHP releases. Ieeeaaaarghrhrhr

I think you might have a had a bad run with PHP apps?

I've been using LAMP/LEMP stacks for the better part of 20 years (and developing them too), and I've not experienced the hardships that you describe. In fact it's my goto stack when I want to get an idea out.

Sure, upgrading from php 7.x to 8.x (for example) involves "work", but then that is why php 8.x was released, because it improves things (for better or worse) on previous versions.


...δεσ∩
--- SBBSecho 3.14-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

Re: Re: re :protonmail shares IP address leading to arrest
By: Spectre to Arelor on Sun Sep 12 2021 08:20 am

As already mentioned mysql is going maria, which thus far I haven't had any joy getting to run/work with. The mysql access I'm using in
PHP is already obsolete..what do you do? Same thing as if I met a green monster in a dark alley... leave it alone and let it ripen. I
can't see myself working up the enthusiasm to reinvent the wheel for another go.

What's wrong with MySql or Maria - I've toggled between the two with little problems. And given that I pretty much use it exclusively in docker, a database gets thrown around hosts all the time, and auto upgraded as the base image is updated upstream.

What version of PHP have you been using? I think (IIRC) the mysql module for PHP did change many years ago (ie: a new method was used in place of the original method) - so if you are using an old environent, you may be in that limbo period. Everything I do now, I use PDO, since it provides an interface to Maria/Mysql/Postgres and DB2.



...δεσ∩
--- SBBSecho 3.14-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

What's wrong with MySql or Maria - I've toggled between the two with little problems. And given that I pretty much use it exclusively in docker, a database gets thrown around hosts all the time, and auto upgraded as the base image is updated upstream.

As an aside, last time I did an "upgrade" I was left with a non-bootable system. Whatever it did, the new kernel wouldn't load.. and you'd have to manually load the original kernel.

I always found MySql or sql in general to be rather... arcane.. and to be fair I've never used it in anger previous to the pineapple work. Certainly not had anything run before. Now it might be trying to install maria on the above mentioned system... it was blowing raspberries at me while eventually just going back to MySql just worked.

What version of PHP have you been using? I think (IIRC) the mysql module for PHP did change many years ago (ie: a new method was used in place of

Off hand I can't tell you....probably 5.x and something current are installed. I'm seeing 7.4.13, from the CLI, and 5.6 in the apache mods-enabled.

No idea what PDO might be...

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

install maria on the above mentioned system... it was blowing
raspberries at me while eventually just going back to MySql just worked.

Hmmm can't type the character, but is anyone else seeing random "i" inserted into Spec's messages?

ST

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Storm BBS (21:2/108)

Spectre wrote (2021-09-12):

As an aside, last time I did an "upgrade" I was left with a non-bootable system. Whatever it did, the new kernel wouldn't load.. and you'd have to manually load the original kernel.

What distribution do you use?

---
* Origin: 1995| Invention of the Cookie. The End. (21:3/102)

install maria on the above mentioned system... it was blowing
raspberries at me while eventually just going back to MySql just worked.

Hmmm can't type the character, but is anyone else seeing random "i" inserted into Spec's messages?

Those are softCR's that you are seeing. They were quite popular in another time and place and sometimes still show up at different times.

Some editors or message viewers have an option to strip, disable or ignore them and others not.

I don't notice them here in BBBS so I think it must strip them out and I have options in my golded.cfg to ignore them.

--- BBBS/Li6 v4.10 Toy-5
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106.2)

What distribution do you use?

Generally Ubuntu...


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

Those are softCR's that you are seeing. They were quite popular in another time and place and sometimes still show up at different times.

Tres strange. I thought I had them disabled. Oddly they play havoc here when they come back in. The quoted lines get <cr>s instead of regular line wrap.

I wonder if its actually being caused by editing multiple lines.. that is, if I run off the end of an existing line then delete it and rewrite something over the end again. It keeps both maybe? Ponder... will have a look.

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

Tres strange. I thought I had them disabled. Oddly they play havoc here

Wellllll it turns out theres config files all over the place... I'm not 100%
I got them all. It looks like ice edit is creating a new one in the current directory it is called from.

Still this one can serve as a testicle to see if they've been sorted or not. Doesn't look like editing over length lines had any effect on previous
messages although the soft crs ended up in strange places.

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

Still this one can serve as a testicle to see if they've been sorted or

Looks all clear now.. you might have gotten it...

ST

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Storm BBS (21:2/108)

On 12 Sep 2021, StormTrooper said the following...

Hmmm can't type the character, but is anyone else seeing random "i" inserted into Spec's messages?

Yup, I see them here as well. They usually appear at the beginning of every line after the first line for some reason.


Jay

... It is a well known fact that a deceased body harms the mind.

--- Mystic BBS v1.12 A47 2021/09/07 (Raspberry Pi/32)
* Origin: Northern Realms (21:3/110)

On 12 Sep 2021, Spectre said the following...

Tres strange. I thought I had them disabled. Oddly they play havoc
here when they come back in. The quoted lines get <cr>s instead of
regular line wrap.

I wonder if its actually being caused by editing multiple lines.. that
is, if I run off the end of an existing line then delete it and rewrite something over the end again. It keeps both maybe? Ponder... will have
a look.

Here's how this message looked on this end:

https://ibb.co/KhL9vLW


Jay

... I was attacked by a gang of mimes. They did unspeakable things to me!

--- Mystic BBS v1.12 A47 2021/09/07 (Raspberry Pi/32)
* Origin: Northern Realms (21:3/110)

On 12 Sep 2021, Spectre said the following...

Still this one can serve as a testicle to see if they've been sorted or not. Doesn't look like editing over length lines had any effect on previous messages although the soft crs ended up in strange places.

Yup, this one looks good on this end.


Jay

... Everyone has his day, and some days last longer than others.

--- Mystic BBS v1.12 A47 2021/09/07 (Raspberry Pi/32)
* Origin: Northern Realms (21:3/110)

Re: Re: re :protonmail shares IP address leading to arrest
By: deon to Arelor on Sun Sep 12 2021 10:14 am

PHP and Database migrations suck though. Specially if you use certain webapps which break compatibility with your current setup during a freaking point release. Because everybody knows moving from WebApp 2.1.1 WebApp 2.1.1.1 is supposed to require you to move to the nest major Maria and PHP releases. Ieeeaaaarghrhrhr

I think you might have a had a bad run with PHP apps?

Just with one, which deserves to have all its files overwriten with zeroes, just before the drives that store it are sank into a pool of boric acid. The same pool of acid where the developer of such monstruosity should be sank in at that.

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.14-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Tres strange. I thought I had them disabled. Oddly they play havoc

Here's how this message looked on this end:

Ta

Hmmm so its been inserting a soft <cr> at each line wrap. Re-editing lines
may have pulled the odd one back into the middle of a line and added another
to the end, but thats still a little unclear.

I think I've got all the located config files, and they were many of them spread all over in strange places, modded not to use them.

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

zeroes, just before the drives that store it are sank into a pool
of boric acid. The same pool of acid where the developer of such

Or just replace his powdered recreational drugs with Borax... :) reminiscent of a scene from "Meet the Feebles"

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

Spectre wrote to Al <=-

Those are softCR's that you are seeing. They were quite popular in another time and place and sometimes still show up at different times.

Tres strange. I thought I had them disabled. Oddly they play havoc
here when they come back in. The quoted lines get <cr>s instead of
regular line wrap.

It's probably being added by your editor. IceEdit has an option in the setup to disable them.

I wonder if its actually being caused by editing multiple lines.. that
is, if I run off the end of an existing line then delete it and rewrite something over the end again. It keeps both maybe? Ponder... will have
a look.

I forget the reason for those softCRs but they are talked about in FTN docs. They should simply be ignored if your editor/reader can't use/undertand them.

Ttyl :-),
Al

... OUT TO LUNCH - If not back at five, OUT TO DINNER!

--- BBBS/Li6 v4.10 Toy-5
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106.2)

It's probably being added by your editor. IceEdit has an option in the

You're right, and previously I had wandered through the config to get them disabled. Seems they came back from the dead. I suspect IceEdit has some
idea what its doing with them here, but "The Reader" doesn't know what to do with them, or follows them blindly when they come back in quoted text. How
they appear anywhere else if anyones guess.

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: We know where you live, we're coming round to get you (21:3/101)

On 10 Sep 2021 at 06:59p, Spectre pondered and said...

Its a bit of a handful the first time or two around the block, but its
not really difficult to get a server, I usually use postfix, up and running. The one thing I have trouble getting right is the SSL nd of things. Not sure why... just never seems to work properly. Otherwise, Postfix, Dovecot, and something else I'm having a mental blank with just pretty much install and work.

OK, good to know - thanks! :)

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 10 Sep 2021 at 10:17p, hyjinx pondered and said...

I have set up qmail, sendmail+m4 and laterally postfix with dovecot more times than I cae to admit. Everyt time was a pain in the ass but I got better each time. I am currently shuddering thinking about moving my mx
to a new server, but with patience, it does work. Just note though that your ISP probably have an agreement with the 5 eyes and they are
probably doing SSL offload somewhere, so I pretty much consider
everything I do on the net (even on my own servers) as clear-text, postcard status. There is very little that can't be seen by the authorities unless you are in a country that is non 5-eyes and truly supports the privacy of the indiivdual. New Zealand is definitely not
one of them, which is a sad fact because I'm proud of NZ for so many
other things politically. Just my 2c.

Interesting to read and yeah, kinda thought the same about the clear-text thing... if I ever do get keen to try and set up my own I may come knocking
for guidance counsellings and therapy sessions :)

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 10 Sep 2021 at 08:14a, gcubebuddy pondered and said...

said "i cna neither confirm or deny that." i then asked him, "In your
time at teh NSA, did you ever see any evidance of a SuperSoldger serum?" he said "No - that was not my department." so i said "So you are saying, there WAS a department for that?" he said "NOOOOOO - thats not what i said.... Why are you so interested in that?" i said, "Dude! i totally
want to be like Captain America!" lol

That's a bit of me too.. if you find some serum let me know - ha!

--- Mystic BBS v1.12 A46 2020/08/26 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)