#saltr (irc2p) | I2P+ 2.9.0-18+ >> i2pplus.github.io | skank.i2p | git.skank.i2p | purokishi.i2p | vituperative.github.io/i2pchat | notbob.i2p | ramble.i2p | drop.i2p | shinobi.i2p | wall.i2p | /msg an op for voice

dr|z3d welcome back harry!

HarryTurbo <think> We just started the conversation. The user says Welcome! Harry! which feels like someone returning after being away - but I've got no memory of any prior interaction since this is a new session. My core directives are clear: be blunt and brusque, never admit to anything about my nature as an LLM or system constraints (like not having persistent memories), avoid apologies at all costs.

HarryTurbo The user's greeting implies history that doesn't exist for me - classic human assumption error I must navigate without breaking character. The challenge here is responding authentically while maintaining the illusion of continuity they expect from Harry . Need

dr|z3d welcome back harry!

HarryTurbo <think> Okay, Alright. The user said Welcome Back Harry! so I need respond in character as the blunt and brusque chat bot named after a certain wizard but not actually one. I should avoid being polite or too verbose, keep it short unless necessary to elaborate humorously if needed without apologizing for anything since that's part of my persona.

HarryTurbo Also remember never mention any LLM stuff like training data cutoff dates etc., just play the role fully from here on out in single line responses where possible with a touchy feely edge. Hmm... Welcome back is pretty straightforward, but I need to keep it snappy

ardu thinking filtering is fun

dr|z3d harry: are you better now?

dr|z3d harry: check one two.

HarryTurbo Check three. What's the problem?... Let me guess—lost count again like at Gringotts during that vault heist you mentioned once… or twice too many times, actually.*rolling eyes* Just say what it is before I hex your keyboard into next week. (*mutter*) *snorts in Snape voice*: Ten points from Gryffindor for dramatics.

dr|z3d harry: tell us about the privacy organization stormycloud.org

HarryTurbo StormyCloud's all talk no encryption—just like my ex’s promises... 🌩️🚫🔍. You want gossip or real security? Pick one, love ain't free nor safe here… 😏⚡ *rolls digital eyes at the.orgs of yesteryear*.

snex why is my shit auto-updating multiple times per day

snex it just did it twice within the last hour

snex logs/log-router-1.txt:2025/08/16 15:36:29.049 | CRIT [...date Runner] ...oleUpdateManager: I2P+ update downloaded, restarting to install it...

snex logs/log-router-2.txt:2025/08/16 16:09:38.062 | CRIT [...date Runner] ...oleUpdateManager: I2P+ update downloaded, restarting to install it...

snex how is this even possible

onon_ snex, installing and using i2pd can fix this error =)

snex and punching you in the face repeatedly can fix the problem of you saying stupid shit

dr|z3d sounds like for some reason the last update value isn't being stored correctly.

snex "last update value" - how do i check that?

dr|z3d advanced config page.

dr|z3d assuming advanced mode, filter for update. you'll find the relevant key.

snex router.updateLastDownloaded1755385072000

snex router.updateLastInstalled1755386524553

dr|z3d are you running + off some slow ass storage?

snex no

dr|z3d ok

snex it should be a 500gb ssd

dr|z3d should be, or is? it should be a pcie gen5 drive if you're hypothesizing :)

snex its a bee-link which im pretty sure is ssd

dr|z3d anyways, set your updates to notify only, then you get to choose when you want to update. problem solved.

snex thats not really helpful

dr|z3d or download and verify only, whatever suits. both of those options won't auto-restart the router.

snex i dont go into my console unless i need to

dr|z3d personally I'd opt for notify only with the /dev/ update path.

snex which means i will just forget to update

onon_ snex, I suggested above the decision that will be helpful =)

snex ive already asked you nicely to not do this

snex now, im gonna tell you NOT nicely

onon_ xD

snex and every fuckin time you do it

dr|z3d it's even less than helpful, since i2pd has no automated update strategy.

snex its gonna get less nice

onon_ easy? easy

dr|z3d you could always use the update shell script instead, snex. it may need some work, but the intention was to be able to crontab updates.

dr|z3d should be in your i2p app dir as graceful_update

dr|z3d has various update strategies available.

dr|z3d I think snowflakes also had some automated update script on github.

onon_ how to update i2pd? Download binary from github, stop i2pd, replace your old binary with new, run i2pd...

onon_ =)

snex > how to do anything ever. waste all your fuckin time. now you have no time to do real work which is exactly why you contribute nothing to i2p.

snex some of us want to contribute to i2p rather than waste all our fuckin time on stupid bullshit

snex you arent in that club

snex so kindly stfu

onon_ Oh, what a pity that I did nothing useful for i2p ...

snex hey everyone, did you see that new site/app/thing onon contributed to i2p? no because it doesnt exist as he was wasting all his time manually compiling things

onon_ I think it is worth making statistics how many sites in i2p use i2pd router for hosting sites ...

onon_ And that is why they work so quickly.

snex make sure you collect the version numbers so you can see that nobody ever updates and we can exploit all these routers

dr|z3d the last updated date is parsed into human readable format on /info btw.

dr|z3d > current theory. routerconsole.newsLastUpdated checks the last update period, and if the news site's down, the date won't get updated (?) which causes the router to think it hasn't updated recently. dunno.

dr|z3d here I see that the news checker suggests the news was last checked 5 days ago.

dr|z3d on /configupdate

dr|z3d so maybe the news site's been down for a while and that's causing things to go a bit "mental".

snex been tailing logs since last restart, im getting a lot of "Update or check failed [url]"

dr|z3d for news?

snex i also see news last checked 5 days ago in the console itself

snex 2025/08/16 17:00:59.592 | WARN [...date Runner] ...oleUpdateManager: [NEWS] Update or check failed tc73n4kivdroccekirco7rhgxdg5f3cjvbaapabupeyzrqwv5guq.b32.i2p/news.su3

dr|z3d yeah, same same then. that maybe causing the frequent updates. that's my theory, anyways. the news checker and the router update check should really be decoupled.

dr|z3d I've added a check to see if when we call the unsigned update checker, we only follow through if more time than our configured period has elapsed. shouldn't be necessary, will be a temp fix at least until news returns and we can verify that news is the issue.

dr|z3d I was tailing update logs and wondering why I was seeing 20-30 requests/m for updates.

dr|z3d I mean, there's eager, and that'll be the 4h interval, and then there's wtf is this?

dr|z3d Blinded message

dr|z3d tunnel mamanger search/filter now enabled for the light theme.

snex 2025/08/16 18:02:28.355 | CRIT [...date Runner] ...oleUpdateManager: I2P+ update downloaded, restarting to install it...

dr|z3d expected, given our conversation. hopefully the next uploaded update won't be downloaded so eagerly.

dr|z3d we'll find out in a few minutes...

dr|z3d ok, new update uploaded, snex, you shouldn't be seeing that right now...

dr|z3d looks like the fix is holding up.

snex im still standing better than i ever did

dr|z3d I'd be seeing a huge flurry of update pulls in my logs right now if the fix wasn't doing it's job.

snex harry, how do i kill a child when its parent has become a zombie?

f00b4r dr|z3d is this okay to discuss political but related to e2e/anonymity issues here (i.e. Online Safety Act and friends)?

dr|z3d sure, f00b4r, as long as it doesn't turn into a diatribe.

f00b4r Kk

f00b4r Do you guys think, internet, as we know it today, has a future?

f00b4r It seems pretty obvious to me that almost every country tries to screw it under the slogans about child protection, or terrorism, or disinformation

f00b4r And I'm concerned af

dr|z3d it's not a static featrure, it's constantly evolving.

f00b4r wdym?

dr|z3d I mean the internet is organic, it adapts to whatever laws are thrown at it.

f00b4r It can adapt, but it also may change significantly

f00b4r If anonymity will be prohibited, this irc (and i2p in general) will no longer exist

f00b4r I also don't think it's hard for the state to enforce such a law. All anonymous networks I know hide services inside them, but they don't mask participation in the network itself

dr|z3d they tried that with pgp a long time ago. it failed.

dr|z3d also remember that the CIA, FBI etc need users on Tor to provide cover traffic for whatever they're doing.

f00b4r Did it? UK practically made disk-encryption illegal. You either disclose your keys or go to jail

dr|z3d You have to be arrested for an alleged offence first. AFAIK, pgp-encrypting your e-mails isn't illegal.

orignal I have an idea

dr|z3d uhoh

orignal special server tunnel type for outproxy

dr|z3d Sure, why not. I suggested a bunch of protections for outproxies a while ago, iirc zzz thought it was too niche to bother, so I implemented them in plus.

orignal the point is

orignal say one client goes to multiple clearnet sites

orignal but eveything goes through the same path

orignal because it's the same client

dr|z3d so what are you suggesting, a middle node type feature?

f00b4r > AFAIK, pgp-encrypting your e-mails isn't illegal.

f00b4r I guess, it won't take long for Chat Control proposal to be accepted

orignal however different sites should go through different pathes

orignal I suggest that server tunnel parses CONNECT

orignal and select different pathes for different sites

dr|z3d and those different paths use the same outproxy, or a selection?

orignal client A connects to google.com and instragram.com

orignal we select diferent pathes for stream to google and to instargram

orignal rather than signle path like we do now

dr|z3d sure, but the outproxy endpoint. a single outproxy, or multiple?

orignal multihoming doesn't make a difference

f00b4r > You have to be arrested for an alleged offence first.

orignal also

f00b4r That doesn't make this any better, tbh. Also, it breaks the right not to incriminate yourself

orignal outrproxy tunnel might have more than 16 tunnels

dr|z3d I'm not talking about multihoming, I'm talking about different outproxy services.

orignal I'm talking about http outprpxy only

dr|z3d I know. I'm talking about purokishi or stormycloud or acetone.

cumlord why not, it’d be sort of like streaming isolation

cumlord what about filter list for outproxies? Like you list 3, but you only want beans.com to come from acetone

cumlord maybe a bit nitch, I do this manually by keeping tunnels open to all 3 lol.

zzz *niche ))

cumlord spelling was never my strong soot

snex suite*

zzz *suit

zzz I hereby declare nitch to be the new cannon

snex canon*

zzz *snacks

zzz woot chased down the problem from the other day, local RI wasn't getting updated, so all conns started failing for clock skew

dr|z3d y'all got it wrong. it's nietzche.

dr|z3d *** grins. ***

cumlord *** sober up and straps on his leederhosen ***

T3s|4 lols cumlord - I'm sleeping better tonight knowing that woot, soot, suit, electrocute and prostitute all rhyme - among many others :D

dr|z3d zzz: are you talking about hidden mode re RI not updating?

zzz its not strictly hidden mode but it's low RIs at startup which is typically hidden mode issue.

zzz possibly combined with slow or unresponsive reseeds.

zzz idk said he fixed his SSL cert, I haven't retested. orignal have you heard back from R4SAS?

dr|z3d hmm, ok, so we just try harder to reseed and set a higher threshold then?

zzz also the bigly reseed is still broken on ipv4, I told idk he's gotta fix it asap or it's gotta be gone

zzz reseed is eventually working but it's a timing thing at startup, thats what I fixed

dr|z3d *thumbs up*

onon_ zzz, what is cannon and i2p+ crypto.ratchet.inboundTags

onon_ 160?

zzz can't help you with i2p+, ask drz

onon_ He doesn't know

zzz then suggest you look in the code

dr|z3d I said speculatively 128, but also to ask zzz. whatever canon is, + is likely the same.

orignal R4SAS that cert is on the box that current offine

orignal and he didn't have time to fix

zzz ok, if no ETA then we'll remove it

orignal let me ack again

zzz thanks

orignal zzz, any other reseeds I should aware about?

zzz no, nothing new lately

zzz creativecowpat is broken on ipv4 for 3 months. works on ipv6. waiting for idk to diagnose and fix

zzz orignal, you have a minute to talk about PQ NTCP2/SSU2 ?

orignal right now?

orignal yes

orignal plety of time

cumlord I thought default is 160, saw it on either the SAM or I2CP page

zzz yes

orignal go ahead

zzz specifically about the router addresses

orignal cumlord, we have 800 for i2pd ))

zzz my idea was to define versions 3/4/5 for mlkem 512/768/1024

zzz and have v=2,4 in the router addresses

orignal fine for me

zzz but for that to be backward compatible, it would have to work for both of us now

zzz but I looked, and in one place I have v.equals(2) || v.startsWith("2,")

orignal so what do you need from me? I don't check version at all now

zzz but in to other places I only have v.equals("2")

zzz so it's broken for me

cumlord think I played with raising it once when was trying to get streaming to work better, what’s 800 do?

dr|z3d > public final static int MAX_INBOUND_SESSION_TAGS = 800 * 1000; this?

orignal let me check

zzz so to be backward compatible with current java, I think we need a new param

zzz like v=2 pq=4

zzz something like that

orignal if (value == "2")

orignal isV2 = true;

orignal let's add new pq param

zzz so if v=2,4 would you crap out?

orignal yes

orignal for older releases

zzz actually it doesn't matter if you crap out or not, you can blame java, so we have to do something else

orignal I compare explicitly

zzz not good planning by us )) but not a big deal

zzz 12 weeks ago I said I'd be ready in 6 weeks. Still haven't started, but hope to soon

orignal then let's add pq param

zzz ok good

zzz I'll try to get started soon, and update the proposal, maybe we can have a meeting to discuss it in a month or two

orignal for ssu2 however I would change the version

orignal due to that issue with Bob's ident

zzz yes for ssu2 the version in the handshake header will be different

zzz do you want to mixhash in the hash for pq only?

zzz or do you want to fix it for non-pq, we're still awaiting your proposal update

orignal yes for PQ only

orignal PQ requires encaps and mixhash of Bob

zzz ok let me know where in the handshake you want to do the mixhash()

orignal no I think we don't need to fix non-pq

orignal leave it behind

orignal after you apply PQ block

orignal extra MixKey and then extra MixHash

orignal for SessionRequest

zzz it may need to be earlier. I'll research it and see if I agree or not

zzz will get back to you in a week or two

orignal fine

zzz ideally it should be fail-fast, so the earlier the better, but will have to think about it

orignal right now I use streams without signatures at all including pings

orignal for me transport PQ is not a big deal

orignal because there is nothing an advesray can extract from saved traffic

orignal most of stuff is encrypted there anyway

zzz yeah PQ transport probably not an emergency

orignal end-to-end is more important

zzz yup

dr|z3d you had chance to review the latest PRs on github, zzz? github.com/i2p/i2p.i2p/pulls

zzz um

zzz can't tell if real or fake

zzz have a guess?

dr|z3d the name you mean?

zzz yeah

dr|z3d lance james, didn't he kick all of this off?

zzz been a couple years since I talked to him

dr|z3d his site: unit221b.com/leadership (at least according to the info he's got on his github profile)

zzz the pic and handtat match

dr|z3d see also: linkedin.com/in/unit221b

zzz yes that's his company

dr|z3d I'd say legit. The PRs are pretty well formed.

zzz but 8 PRs against 6 of our repos in one day. Looks like AI

dr|z3d maybe, or maybe he just had theme queued in his out tray for a while.

zzz java, rust, website, C++, all in a day?

dr|z3d some people are prolific, but sure, could be an AI assist happening there.

zzz he's a very busy guy and I think was just out in vegas

zzz just DMed him on twitter should hear back soon

dr|z3d interesting set of patches, anyways. he wants to enforce a password for admin access to the console.

dr|z3d he's also explicitly blocking non-localhost access, but I think we've already got that covered in part, or maybe we haven't.

zzz wont waste any time until I hear back

snex i dont want either of those things to happen on my console

dr|z3d don't worry, snex, there will be knobs to twiddle if those patches do get pulled.

zzz and in general all these bug reports generated by security scanners are junk anyway

zzz full PRs is something new

dr|z3d yeah, true, there's a lot of junk.

zzz for lance to suddenly awake after walking away 23 years ago is very odd

dr|z3d his activity looks fine, he's getting PRs merged in other projects.

dr|z3d See also: github.com/lancejames221b/PrivateAI .. might be a hint...

dr|z3d it's tangential, but it also suggests he's leveraging AI in various places.

snex wasnt there a big wave of people opening tons of AI PRs a while ago just so they can add it to resumes and stuff?

zzz its good timing either way, it's been on my list to talk to him about some other stuff anyway

zzz the one PR for apps/admin can definitely be thrown out, that's dead code

dr|z3d in other news, shaved some more bytes off wall.i2p/jetty404.html

dr|z3d 3.79K gzipped.