Comments (4)
sualko
commented on June 2, 2024
1
You can find my key on the federated pgp keyservers (e.g. https://keyserver.ubuntu.com/), keybase, or on the release page of this application.
Adding the key in this repo, would make no sense, since an attacker could just replace it and I think I published it to any common pgp authority. If you have another one, please let me know.
from jsxc.
the-rocinante
commented on June 2, 2024
That's all well and good for someone who knows their way around github and uses it routinely, but it's definitely not obvious that you need to click the little green arrow and read a popup menu. Nor is it clear that there are specific keyservers to query apart from simply gpg --recv-key .... on it's own. While I appreciate the heads up, that information wasn't clear at the time it was needed. What would make sense is to make that information more clearly and readily available in a place your users will actually know to look, such as in the installation instructions on the JSXC website, or in the README.md of this github repo.
from jsxc.
sualko
commented on June 2, 2024
You can just use gpg --keyserver https://keyserver.ubuntu.com/ --search-keys [email protected] which is a quite common pattern to find keys. Nonetheless, have fun with JSXC.
from jsxc.
the-rocinante
commented on June 2, 2024
Klaus, I already got the key from your website before I submitted the feature request to start with. It simply took longer than was ideal given the importance of that detail in the context of a security product. So, I wasn't asking this for my own sake, but to encourage you to provide the information more prominently in the install instructions so that others wouldn't experience the same frustration I did in trying to verify their downloads. It literally would have taken you less time to update the HTML with that info than it did to equivocate in this ticket.
The above notwithstanding, I have JSXC already installed for some time now and am grateful for your work on the project.
from jsxc.
Related Issues (20)
- OMEMO messages from MAM won't be decrypted HOT 5
- Avatars not loading on reconnect
- Creating a common headless JSXC package with pazznetwork/ngx-chat HOT 1
- Nextcloud unknown error on registration
- Registration failed Managed (Beta service) HOT 6
- [To delete]
- cross domain request was not possible. Either your BOSH server does not send any Access-Control-Allow-Origin header or the content-security-policy (CSP) blocks your request. The safest way is still to use Apache ProxyRequest or Nginx proxy_pass. HOT 1
- Clicking online in Nextcloud JSXC with Activate time-limited tokens (beta) enabled causes JSXC to refresh quickly and not do anything except create a new BOSH session in prosody HOT 1
- JSXC chat menu covers up Nextcloud Dashboard icons on Nextcloud 24.0.1 with Dashboard 7.4.0 on Google Chrome v102 HOT 1
- no-request-id and HTTP 405 from nextcloud instance when registering for beta external server HOT 2
- does this lib. supports end-to-end encryption for group chat(muc).
- Invalid XML received. Maybe https://xxx.xxx.xxx/http-bind/ was redirected. You should use an absolute url.
- Use Transifex for continuous translation please HOT 5
- xmpp.org: Host doap file for client presenation
- video call in from different networks doesn't work HOT 1
- Cannot send to existing MUC if MUC is on another domain HOT 1
- Edit GitHub Repository
- Failed to decrypt OMEMO message HOT 1
- Cross domain request was not possible. Either your BOSH server does not send any Access-Control-Allow-Origin header or the content-security-policy (CSP) blocks your request. The safest way is still to use Apache ProxyRequest or Nginx proxy_pass.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jsxc.