14:54:34 RRSAgent has joined #webid 14:54:34 logging to http://www.w3.org/2011/06/27-webid-irc 14:54:36 RRSAgent, make logs world 14:54:38 Zakim, this will be WEBID 14:54:38 ok, trackbot; I see INC_WEBID(WEBID)11:00AM scheduled to start in 6 minutes 14:54:39 Meeting: WebID Incubator Group Teleconference 14:54:39 Date: 27 June 2011 14:54:52 RRSAgent, draft minutes 14:54:52 I have made the request to generate http://www.w3.org/2011/06/27-webid-minutes.html bblfish 14:55:40 INC_WEBID(WEBID)11:00AM has now started 14:55:47 +??P8 14:55:55 Zakim, I am ??P8 14:55:55 +Deiu; got it 15:00:21 +??P11 15:00:36 Zakim, I am ??P11 15:00:36 +bblfish; got it 15:01:10 what is on the agenda 15:01:18 zakim, what is on the agenda 15:01:18 I don't understand 'what is on the agenda', bblfish 15:01:32 zakim, agenda? 15:01:32 I see 2 items remaining on the agenda: 15:01:33 2. "Review Berlin and Identity in Browser workshops: http://www.w3.org/2005/Incubator/webid/wiki/Berlin_meetup_2011" [from bblfish] 15:01:36 3. "Fixing the main schedule for the next 3-6 months" [from bblfish] 15:02:16 agenda- 15:02:22 agenda- 2 15:02:25 agenda- 3 15:02:46 domel has joined #webid 15:02:53 agenda +"Accept minutes of previous meeting http://www.w3.org/2011/06/20-webid-minutes.html" 15:03:18 +bergi 15:03:34 zakim, who is here? 15:03:34 On the phone I see Deiu, bblfish, bergi 15:03:54 +??P14 15:04:22 zakim, I am ??P14 15:04:22 +domel; got it 15:04:28 agendum next 15:04:41 next agendum 15:05:42 +OpenLink_Software 15:05:49 Zakim, OpenLink_Software is temporarily me 15:05:49 +MacTed; got it 15:05:54 Zakim, mute me 15:05:54 MacTed should now be muted 15:06:17 zakim, who is here? 15:06:17 On the phone I see Deiu, bblfish, bergi, domel, MacTed (muted) 15:06:31 +1 15:06:34 +1 15:06:36 +1 15:06:37 +1 15:06:48 +0 (I was apsent) 15:06:57 RESOLVED: Minutes approved 15:07:39 agenda +"Go over what happened in the last week" 15:07:44 agendum next 15:07:53 next agendum 15:09:06 http://www.w3.org/wiki/WebID_and_Crawlers <- this one? 15:09:37 So as a result of last weeks discussion on LinedData Mailing list 15:10:04 Zakim, unmute me 15:10:04 MacTed should no longer be muted 15:13:50 http://www.w3.org/2005/Incubator/webid/wiki/Test_Suite 15:13:58 the tests suite wiki page 15:14:33 webid is easy to use curl -H "Accept: application/rdf+xml" --cert your-WebID-cert:password https://bblfish.net:8443/test/WebId 15:15:06 any news from anybody else? 15:15:22 bergi, started with tests suite, and found some issues 15:17:50 bergi we talked about criticial certificate extensions in Berlin 15:18:10 can you add info about that in http://www.w3.org/2005/Incubator/webid/wiki/Berlin_meetup_2011 15:18:52 bergi was Apache in front of a java server 15:20:22 mike has joined #webid 15:20:32 all the ssl layers if very that client certificate public decodes the private key encoded token from server 15:20:42 then it can pass the certificate on to the servelet, or php 15:20:44 code 15:21:29 +??P10 15:22:04 just in via sip -- on mute -- sorry late 15:22:26 yes 15:23:50 agenda +"Implementors session." 15:23:55 next agendum 15:24:01 we were already in there 15:27:36 the default apache implementations drop certificate that have critical extensions 15:27:44 If a server doesn't understand critical it MUST not authenticate 15:28:32 we should client test suites, and of the servers that are more flexible, to tell a problematic certificate 15:29:16 yes agreed! for the test service 15:30:20 Can we submit a feature request to Apache to request more flexibility? Or maybe some sort of verbose option? 15:30:56 +1 15:31:06 +1 15:31:10 +1 15:31:14 +1 15:31:29 are you testing it on nginx or lighttpd servers? 15:31:50 On standard Apache servers 15:31:51 if you can find the mail that explains how one can get Apache to be more flexible, then if it is a compilation option we should ask them to make it a configurable one 15:33:15 how much detail is there in the SSL Alert messages? 15:33:48 I think they just send a number back 15:33:58 and there are 4 messages or so 15:36:06 http://www.w3.org/2005/Incubator/webid/wiki/Test_Suite 15:36:08 -domel 15:36:16 http://dvcs.w3.org/hg/WebID/file/55f18239ed1a/tests/earl 15:36:26 http://dvcs.w3.org/hg/WebID/file/55f18239ed1a/tests/earl/test.n3 15:37:06 my feeling that SSL alert should be handled better by the browsers rathern that forcing service software to allow failed authn to continue inorder to show info on why SSL layer failed (notwithstanding test services which we can do what we like) so -1 for earlier Apache 15:37:12 wit:certificateCriticalExtensionsOk a earl:TestRequirement; 15:37:13 50 dct:title "The certificate contains no unecessary critical extension"; 15:37:14 51 dct:description "Critical Extensions are not a direct problem for WebID, but can cause many servers to reject the certificate before the WebID code gets to see the certificate. These tests should not generate errors but only warnings" . 15:37:14 52 15:37:48 for testing yes 15:38:22 Zakim, mute me 15:38:22 MacTed should now be muted 15:39:13 yes browser side interpretation, but don't break SSL protocol? 15:39:53 harder to get buyin if promoting use of diviation from SSL standard 15:39:58 https://github.com/bblfish/TLS_test 15:40:17 that will allow set different tLS responses and see the how browsers react 15:42:42 here are the error response messages https://github.com/bblfish/TLS_test/blob/master/src/main/java/net/bblfish/test/SSLTestServer.java 15:43:02 looking. 15:44:02 http://en.wikipedia.org/wiki/Transport_Layer_Security 15:44:20 under Alert protocol 15:44:25 many errors 15:45:18 no indeed ... 15:49:30 http://openid4.me/ 15:50:00 for shibboleth 15:50:06 mike is writer enhancer for shiboleth 15:51:53 what is the issue with WebID on https://webid.fcns.eu/ when using Safari on OSX 15:51:55 ? 15:54:02 not at the mo 15:54:08 need to understand the issue more 15:54:56 which webid provider is breaking with fcns? 15:55:14 +??P13 15:55:19 any webid then 15:55:23 Connecting With Safari on OSX 15:55:47 not got a safari to hand 15:56:54 domel has joined #webid 15:57:05 zakim, who is here? 15:57:05 On the phone I see Deiu, bblfish, bergi, MacTed (muted), ??P10, ??P13 15:57:25 Should be able to see this on the wire then (I thought with SNI) 15:58:29 zakim, who is talking? 15:58:40 domel, listening for 10 seconds I heard sound from the following: Deiu (62%) 15:58:51 zakim, who is talking? 15:59:02 domel, listening for 10 seconds I heard sound from the following: bblfish (94%), ??P13 (5%) 15:59:21 zakim, I am ??P13 15:59:21 +domel; got it 15:59:34 zakim, who is talking? 15:59:46 domel, listening for 11 seconds I could not identify any sounds 16:03:11 https://github.com/WebID-Tools/CertGen 16:04:41 http://www.w3.org/wiki/Foaf%2Bssl#Implementation_Links 16:04:57 http://www.w3.org/2005/Incubator/webid/wiki/Implementations 16:07:49 mischat? 16:08:45 bblfish: When we plan to rebuild the specification? I mean ontology etc? http://www.w3.org/2005/Incubator/webid/wiki/images/3/3e/20110306_3d_webid.jpg 16:09:34 I can do it :) 16:10:27 OK 16:10:57 I can do also some small part like http://www.w3.org/2005/Incubator/webid/spec/#in-rdf-xml 16:11:44 -Deiu 16:12:33 bye everybody 16:12:41 ttfn 16:12:43 -MacTed 16:12:53 -domel 16:12:54 -??P10 16:12:59 -bergi 16:13:16 RRSAgent, make minutes public 16:13:16 I'm logging. I don't understand 'make minutes public', bblfish. Try /msg RRSAgent help 16:13:26 trackbot, end meeting 16:13:26 Zakim, list attendees 16:13:26 As of this point the attendees have been Deiu, bblfish, bergi, domel, MacTed 16:13:27 RRSAgent, please draft minutes 16:13:27 I have made the request to generate http://www.w3.org/2011/06/27-webid-minutes.html trackbot 16:13:28 RRSAgent, bye 16:13:28 I see no action items 16:13:53 RRSAgent has joined #webid 16:13:53 logging to http://www.w3.org/2011/06/27-webid-irc 16:14:01 RRSAgent, make logs public 16:14:52 RRSAgent, bye 16:14:52 I see no action items