#social 2020-08-12

2020-08-12 UTC
sl007, pukkamustard and rzr joined the channel
# 13:24 
djangz[m] Question about inbox forwarding:
# 13:24 
BradKoehn[m] This question exposes a flaw in the current implementations of AP: there is no mechanism to allow forwarded messages to be verified. In email, DKIM can be used to guarantee that forwarded messages are authentic; no such capability exists in AP, and http-signatures can only be used to insure that the forwarder is valid, not that the original message is valid.
# 13:24 
djangz[m] I understand the concept, but the implementation details are scant.
# 13:24 
djangz[m] Should my server resend the original Create activity,  what would http signature be based on?
# 13:24 
BradKoehn[m]  * This question exposes a flaw in the current implementations of AP: there is no mechanism to allow forwarded messages to be verified. In email, DKIM can be used to guarantee that forwarded messages are authentic; no such capability exists in AP, and http-signatures can only be used to insure that the forwarder is valid, and cannot insure the forwarded message is valid.
# 13:32 
djangz[m] right
# 13:32 
djangz[m] so the current implementations use their own signatures in the header, even though it conflicts with the activity sig?
# 13:32 
BradKoehn[m] Implementations have no choice but to generate their own signatures, as http-signatures are time-based, and re-using a signature from another system would only work as a race condition.
# 13:33 
BradKoehn[m] A brief search for an alternative yielded JSF, but I've no idea if it's practicable. https://cyberphone.github.io/doc/security/jsf.html
# 13:35 
BradKoehn[m] Using something like JSF, an implementation could preserve the signature from the originating system, wrap that message in a new `Create` or `Forward` activity and sign that from the forwarding system, and both could co-exist in the same message.
# 13:36 
BradKoehn[m] (`Forward` being a new, non-AP activity)
# 14:02 
nightpool[m] Brad Koehn: djangz isn't this just what ld-signatures are currently used for?
# 14:05 
djangz[m] That would make sense!
# 14:05 
BradKoehn[m] nightpool (IRC): it looks to be about the same; I haven't seen them in use.
# 14:07 
nightpool[m] mastodon uses ld-signatures for inbox forwarding currently
# 14:08 
nightpool[m] Pleroma does not sign forwarded messages at all, it expects the receiving server to dereference the message to ensure its validity
sl007 and tantek joined the channel
# 16:21 
djangz[m] thanks @nigh
# 16:21 
djangz[m]  * thanks nightpool !
# 16:26 
tantek Logs: https://chat.indieweb.org/social/
Test and lain_soykaf joined the channel