<?xml version="1.0" encoding="utf-8"?><feed xmlns="http://www.w3.org/2005/Atom" ><generator uri="https://jekyllrb.com/" version="4.3.0">Jekyll</generator><link href="https://libera.chat/atom.xml" rel="self" type="application/atom+xml" /><link href="https://libera.chat/" rel="alternate" type="text/html" /><updated>2025-02-17T18:16:00+00:00</updated><id>https://libera.chat/atom.xml</id><title type="html">Libera Chat</title><subtitle>A next-generation IRC network for FOSS projects collaboration!</subtitle><entry><title type="html">A belated state of the network</title><link href="https://libera.chat/news/belated-state-of-the-network" rel="alternate" type="text/html" title="A belated state of the network" /><published>2025-02-17T00:00:00+00:00</published><updated>2025-02-17T00:00:00+00:00</updated><id>https://libera.chat/news/belated-state-of-the-network</id><content type="html" xml:base="https://libera.chat/news/belated-state-of-the-network">Happy 2025 everyone! We’re now a month and a half into the new year (and a quarter of the way into this century?!) and realized that we are overdue for a periodic state of the network. After a tumultuous 2023 where we <a href="https://libera.chat/guides/matrix">parted ways</a> with the official Matrix bridge, 2024 was much quieter on the bridges front. Over the course of the year, many projects and communities stood up their own Matrix bridges. This has proven to be a far more stable and sustainable arrangement, and we sincerely appreciate their work and cooperation. In July we were looped into a coordinated security response, involving various networks and IRC software maintainers, to mitigate a <a href="https://libera.chat/news/zncpsa">potentially nasty exploit</a>. We appreciated the collaboration of our peers on other networks in ensuring that the word got out, and hope to use this incident as guidance for responding to similar incidents in the future. Sable development is also continuing, albeit slowly. We are of course interested in welcoming new contributors to the project, so if you’re curious, check out <a href="https://github.com/Libera-Chat/sable">the repository</a> and drop into <code class="language-plaintext highlighter-rouge">#libera-dev</code>. We also managed to deliver some long-awaited improvements to our current stack for our users: <ul> <li>Account auto-cloaking. On a rather infamous day at the start of April, we finally delivered auto-cloaking upon registration verification.</li> <li>Deprecated certificate expiry verification. As of early July, <a href="https://libera.chat/news/retiring-certfp-expiries">we no longer check the expiration of certificates</a> used for logging in. Now you won’t get locked out if you forget to make a new certificate in time.</li> </ul> To celebrate the arrival of the auto-cloaking feature, we also had some fun with a <a href="https://web.archive.org/web/20240401000834/https://libera.cat/">temporary rebranding</a> of the network. If you missed out on the limited-time novelty cloak, you can still get a meowmento of the prank with <a href="https://www.freewear.org/Libera.Chat">our freewear.org merch</a>! Every purchase of merch from that freewear.org page generates a donation to help the network remain sustainable. We also have a <a href="https://liberapay.com/liberachat/donate">liberapay</a> if you want to help us without buying gear. While most of our resources are donated, some are not. This includes costs that ensure we will remain an independent and non-commercial platform. In this current social media climate, we think that is very important and likewise encourage the use and support of other community-run social protocols. Like numerous other projects, we have retired our use of Twitter/X and Facebook, now posting only to <a href="https://fosstodon.org/@liberachat">the Fediverse</a> and <a href="https://bsky.app/profile/libera.chat">Bluesky</a>.</content><author><name>el</name></author><summary type="html">Happy 2025 everyone!</summary></entry><entry><title type="html">Establishing an etiquette for LLM use on Libera.Chat</title><link href="https://libera.chat/news/llm-etiquette" rel="alternate" type="text/html" title="Establishing an etiquette for LLM use on Libera.Chat" /><published>2024-11-22T00:00:00+00:00</published><updated>2024-11-22T00:00:00+00:00</updated><id>https://libera.chat/news/llm-etiquette</id><content type="html" xml:base="https://libera.chat/news/llm-etiquette">Greetings fellow humans! For better or for worse, controversially perhaps, we are now immersed in an online landscape laden with LLMs. This may be a fact that brings you great joy. However, not everyone feels the same way about LLMs. Some folks dislike them for privacy or ethical reasons. Some people just don’t feel good about talking to LLMs without knowing. We want folks in all camps to feel welcome on Libera.Chat. We believe that the best way to make this happen is to ensure that people are not caught unaware. As such, building on the principles of our <a href="https://libera.chat/policies/#public-logging">public logging policy</a>, staff would appreciate cooperation with these simple guidelines: <ul> <li>LLMs are allowed on Libera.Chat. They may both take input from Libera.Chat and output responses to Libera.Chat.</li> <li>Training LLMs on channel content or logs is subject to the <a href="https://libera.chat/policies/#public-logging">public logging policy</a> and therefore requires permission before that content can be used for training.</li> <li>As soon as possible, people should be made aware if they are interacting with, or their activity is being seen by, a LLM. Consider using line prefixes, channel topics, or channel entry messages.</li> <li>People who operate interactive LLM scripts or bots in channels they don’t run must obtain permission from the channel founders and operators.</li> <li>LLM scripts and bots are not exempt from <a href="https://libera.chat/policies/#unwanted-content-and-behaviour">our network policies</a>. People running LLM scripts and bots are responsible for what they output.</li> <li>Other people may be responsible for what a LLM script or bot outputs based on their prompts.</li> </ul> While these guidelines are not final, nor enshrined as <a href="https://libera.chat/policies/">network policy</a> with exception of training LLMs on channel content, we do have <a href="https://libera.chat/policies/#unwanted-content-and-behaviour">a broad prohibition on antisocial behaviour</a>. We encourage folks to consider whether their application of LLMs is reasonably prosocial or antisocial.</content><author><name>staff</name></author><summary type="html">Greetings fellow humans!</summary></entry><entry><title type="html">Retiring CertFP Expiration Verification</title><link href="https://libera.chat/news/retiring-certfp-expiries" rel="alternate" type="text/html" title="Retiring CertFP Expiration Verification" /><published>2024-07-09T00:00:00+00:00</published><updated>2024-07-09T00:00:00+00:00</updated><id>https://libera.chat/news/retiring-certfp-expiries</id><content type="html" xml:base="https://libera.chat/news/retiring-certfp-expiries">Here is some good news for folks who use <a href="https://libera.chat/guides/certfp">CertFP</a> to log in to <code class="language-plaintext highlighter-rouge">NickServ</code>: we have rolled out a change that means SaslServ will no longer reject expired certificates when used for identifying to accounts. Why are we doing this? We don’t have a rotation policy on passwords, which are generally less secure, so it makes no sense for certificates to have one. Meanwhile, certificate expiries are quite disruptive, particularly for folks who use our <a href="https://libera.chat/guides/connect#accessing-liberachat-via-tor">tor hidden service</a> which does not allow other forms of authentication. Respecting the expiry of the certificate provides no benefit but does cause annoyance for both users and staff. We do still recommend that you practice good certificate hygiene, such as cycling your certificates, using unique certificates for each network, and keeping your <code class="language-plaintext highlighter-rouge">CERT LIST</code> clean.</content><author><name>el</name></author><summary type="html">Here is some good news for folks who use CertFP to log in to NickServ: we have rolled out a change that means SaslServ will no longer reject expired certificates when used for identifying to accounts.</summary></entry><entry><title type="html">PSA: Critical vulnerability in ZNC’s modtcl</title><link href="https://libera.chat/news/zncpsa" rel="alternate" type="text/html" title="PSA: Critical vulnerability in ZNC’s modtcl" /><published>2024-07-03T00:00:00+00:00</published><updated>2024-07-03T00:00:00+00:00</updated><id>https://libera.chat/news/zncpsa</id><content type="html" xml:base="https://libera.chat/news/zncpsa">TL;DR - If you are using a version of modtcl that is NOT from <a href="https://wiki.znc.in/ChangeLog/1.9.1">ZNC 1.9.1</a> (distribution versions may differ) or newer, update or unload it immediately. In coordination with other IRC networks and ZNC providers, we’re sending out a global notice today about a vulnerability in a non-default core ZNC module, modtcl. Please unload this module until it can be upgraded to a patched version. You can unload this module by running <code class="language-plaintext highlighter-rouge">/quote ZNC unloadmod modtcl</code>. Modtcl in ZNC versions prior to 1.9.1 contains an injection vulnerability (<a href="https://www.cve.org/CVERecord?id=CVE-2024-39844">CVE-2024-39844</a>) that allows channel operators to run arbitrary TCL code on ZNC instances present in their channel. This exploit can be used to compromise NickServ accounts, channels, or the system user account that is running ZNC. Luckily, modtcl is not loaded by default. To check if you have modtcl loaded, run <code class="language-plaintext highlighter-rouge">/quote ZNC listmods</code> to see the list of loaded modules. If you have access to the ZNC’s config file, you may additionally search for the line <code class="language-plaintext highlighter-rouge">LoadModule = modtcl</code>. Prior to this announcement, to protect folks who are idle, Libera’s servers were patched to reduce the impact of this vulnerability on Libera. Our mitigation will result in some kick messages being blanked out. Other networks have undertaken their own mitigations as they see fit. Please ask them directly if you have questions. We appreciate your help in ensuring that everyone gets updated as soon as possible! We encourage you to contact ZNC-using friends who are idle. Please also keep us informed in <code class="language-plaintext highlighter-rouge">#libera-hotline</code> about folks trying to take advantage of this vulnerability.</content><author><name>She, el</name></author><summary type="html">TL;DR - If you are using a version of modtcl that is NOT from ZNC 1.9.1 (distribution versions may differ) or newer, update or unload it immediately.</summary></entry><entry><title type="html">Three!</title><link href="https://libera.chat/news/three" rel="alternate" type="text/html" title="Three!" /><published>2024-05-19T00:00:00+00:00</published><updated>2024-05-19T00:00:00+00:00</updated><id>https://libera.chat/news/three</id><content type="html" xml:base="https://libera.chat/news/three">Hello everyone! When we opened Libera Chat three whole years ago, we were not sure how things would play out. There were definitely doubts that we would still be here today, working hard to provide you all with a stable collaboration platform. But here we are! Besides standing up a whole darn network in the blink of an eye, we are also very proud of the various other things we have accomplished in the past 36 months. We have: <ul> <li> Made it <a href="https://libera.chat/news/new-and-upcoming-features">easier to manage your channels</a> including <a href="https://libera.chat/news/new-and-upcoming-features-2#extban-improvements">improvements to ban masks</a>. </li> <li> Added several privacy improvements <a href="https://libera.chat/news/new-and-upcoming-features-2#user-mode-i-disable-idle-time-display">such as hiding idle time</a> and <a href="https://libera.chat/news/autocloaking">autocloaking new accounts</a>. </li> <li> Added <a href="https://libera.chat/news/new-and-upcoming-features-2#new-commands-for-group-contacts">features that expanded autonomy for Group Contacts</a>, allowing them to self-manage their namespaces without waiting for staff. </li> <li> Worked out <a href="https://libera.chat/news/login-failure-notice">a solution to login failure spam</a>, which was a common complaint. </li> </ul> We are also still actively working on our next generation IRCd, called Sable. You can <a href="https://github.com/Libera-Chat/sable">check out the repository</a> or pop in to <code class="language-plaintext highlighter-rouge">#libera-dev</code> for more information about that. Finally, starting some time next month, our <a href="https://www.freewear.org/Libera.Chat">freewear shop</a> will start carrying a new design; the libera.cat logo from this year’s April Fools prank! Keep an eye on our <a href="https://bsky.app/profile/libera.chat">bluesky</a> or <a href="https://fosstodon.org/@liberachat">fosstodon</a> social accounts for an announcement about that. In the mean time, please join us in <code class="language-plaintext highlighter-rouge">#libera-birthday</code> to celebrate!</content><author><name>el</name></author><summary type="html">Hello everyone!</summary></entry><entry><title type="html">Account Auto-Cloaking</title><link href="https://libera.chat/news/autocloaking" rel="alternate" type="text/html" title="Account Auto-Cloaking" /><published>2024-04-02T00:00:00+00:00</published><updated>2024-04-02T00:00:00+00:00</updated><id>https://libera.chat/news/autocloaking</id><content type="html" xml:base="https://libera.chat/news/autocloaking">Hello Libera.Chat users! Starting now, newly-verified accounts will automatically get a <a href="/guides/cloaks">cloak</a>. No more need to join <code class="language-plaintext highlighter-rouge">#libera-cloak</code> and say <code class="language-plaintext highlighter-rouge">!cloakme</code>! As usual, if you want a bot cloak for an account or don’t want a cloak so that you can show off your cool rDNS, you can <a href="/guides/faq#how-to-find-libera-chat-staff">contact a member of Libera.Chat staff</a>. Accounts without cloaks will remain uncloaked. Additionally, we will be closing <code class="language-plaintext highlighter-rouge">#libera-cloak</code> in one week from the day this post goes live. If you would like a generic user cloak after it closes, please contact staff. The new generic cloak format is mostly the same as the old format, but it is slightly different if your nickname contains characters that are not valid in a cloak. The old format looked like <code class="language-plaintext highlighter-rouge">user/&lt;name&gt;/x-&lt;number&gt;</code>. The new format is <code class="language-plaintext highlighter-rouge">user/&lt;name&gt;:&lt;number&gt;</code>. If you have a user cloak with an <code class="language-plaintext highlighter-rouge">x-&lt;number&gt;</code>, you may request a cloak change to the new format if you prefer. At this time, users connecting to Libera.Chat without accounts will remain uncloaked. We are evaluating methods of improving guest privacy while still allowing channel operators to restrict access from frequently-abused hosts and ranges. That’s all. Have a good day!  <details> <summary>April Fools' Note</summary> During the 1st of April 2024, we gave out vanity cloaks to anyone who registered an account that day. If you have one of these vanity cloaks and do not want it, you may request a cloak change to the new generic user cloak format, which we will grant no-questions-asked. Note that your vanity cloak will be permanently lost. </details></content><author><name>She</name></author><summary type="html">Hello Libera.Chat users!</summary></entry><entry><title type="html">New And Upcoming Features</title><link href="https://libera.chat/news/new-and-upcoming-features-2" rel="alternate" type="text/html" title="New And Upcoming Features" /><published>2023-12-04T00:00:00+00:00</published><updated>2023-12-04T00:00:00+00:00</updated><id>https://libera.chat/news/new-and-upcoming-features-2</id><content type="html" xml:base="https://libera.chat/news/new-and-upcoming-features-2">Hello Libera.Chat users, As we look towards the end of the year, we thought we’d put together an update on what we have been up to behind the scenes. <h2 id="new-features">New Features</h2> <h3 id="user-mode-i-disable-idle-time-display">User mode <code class="language-plaintext highlighter-rouge">I</code>: Disable idle time display</h3> This was an upcoming feature on <a href="https://libera.chat/news/new-and-upcoming-features#user-mode-i">our previous New And Upcoming Features blog post</a>, and it’s finally here! Your idle time is the number of seconds since the last time you sent a message. It is shown by <code class="language-plaintext highlighter-rouge">/whois</code> and <code class="language-plaintext highlighter-rouge">/who %l</code> queries that are sent to the server you are on. This can be useful for people to determine if you are available, but can also be a privacy concern. User mode <code class="language-plaintext highlighter-rouge">I</code> hides your idle time, displaying a time of 0 seconds wherever it would otherwise be displayed. Additionally, responses to <code class="language-plaintext highlighter-rouge">/whois</code> queries about you will explicitly indicate that you are hiding your idle time. To keep things fair, however, setting user mode <code class="language-plaintext highlighter-rouge">I</code> will also prevent you from seeing others’ idle times, regardless of whether they have <code class="language-plaintext highlighter-rouge">I</code> set or not. Note that staff will always be able to see users’ idle times. <h3 id="new-commands-for-group-contacts">New commands for Group Contacts</h3> We have added a bunch of nice things to the <code class="language-plaintext highlighter-rouge">ProjectServ</code> service that we use to manage and document project and community registrations. These new features are aimed at enabling peace of mind by providing information that allows groups to audit their registered namespaces without needing to wait for staff assistance: <ol> <li> <code class="language-plaintext highlighter-rouge">ChanServ LISTGROUPCHANS</code> lets Group Contacts list all registered channels in their namespaces. </li> <li> <code class="language-plaintext highlighter-rouge">NickServ LISTGROUPCLOAKS</code> lets Group Contacts list all users with cloaks belonging to their projects. </li> <li> Group contacts now receive a notification whenever a new channel is registered in one of their channel namespaces. The notifications look like this: <pre><code class="language-irc"> -ProjectServ- The user veryrealbob (account name fakebob) has registered the channel #bobsproject-hates-kittens which is within the namespace (#bobsproject) of a project that you are a group contact for (bobsproject) </code></pre> </li> <li> When Group Contacts of a namespace do <code class="language-plaintext highlighter-rouge">ChanServ INFO</code> for a channel registered in their namespace, they will now see a full list of both public and unlisted/private Group Contacts assigned to their project. Others will still only see public contacts when they use <code class="language-plaintext highlighter-rouge">ChanServ INFO</code> </li> </ol> <h3 id="extban-improvements">Extban improvements</h3> The existing <code class="language-plaintext highlighter-rouge">$x</code> extban has been improved. This extban allows the GECOS string (also known as realname) to be matched in addition to the standard nick, user, and host fields. The improvement is that the host component of these masks will now also match against IP addresses if that address is publicly visible. While matching both hosts and IP addresses was standard behaviour for normal masks, it was previously not implemented for <code class="language-plaintext highlighter-rouge">$x</code> bans. GECOS matches are generally most useful when matching bridged users where the GECOS value is fixed by the bridge. Help text: <code class="language-plaintext highlighter-rouge">$x:&lt;mask&gt;</code> - Bans all users with matching <code class="language-plaintext highlighter-rouge">nick!user@host#gecos</code> Example: <code class="language-plaintext highlighter-rouge">$x:*!*@192.0.2.0/24#suspicious-gecos-here</code> The new <code class="language-plaintext highlighter-rouge">$g</code> extban extends <code class="language-plaintext highlighter-rouge">$x</code> by only matching unidentified users. This could be useful if unidentified bots or other undesirable connections were coming from a specific service and a channel did not want to restrict chat from all unidentified users. When a <code class="language-plaintext highlighter-rouge">#</code> character is present in the mask, this ban works like <code class="language-plaintext highlighter-rouge">$x</code> to match GECOS as well. Help text: <code class="language-plaintext highlighter-rouge">$g:&lt;mask&gt;</code> - Matches as a normal ban but excludes identified users Example: <code class="language-plaintext highlighter-rouge">$g:*!*@undesirable.host.name</code> For documentation on all the extbans, please visit our <a href="https://libera.chat/guides/channelmodes#available-extban-types">channel mode documentation</a>. <h2 id="upcoming-features">Upcoming features</h2> <h3 id="easier-account-creation-and-verification">Easier account creation and verification</h3> This was announced <a href="https://libera.chat/news/new-and-upcoming-features#easier-account-creation-and-verification">late last year</a>, and an initial iteration of this feature is finally complete. We are currently working on an automated build and deployment pipeline for it, which we should also be able to use for our other projects written in Rust. <h3 id="sable-update">Sable update</h3> We’ve continued to work in the background on Sable, our experimental next-generation server platform. It is currently possible to create a network of Sable servers, connect to it, and use it for basic chat. While <a href="https://github.com/orgs/Libera-Chat/projects/2/views/1?sortedBy%5Bdirection%5D=desc&amp;sortedBy%5BcolumnId%5D=Status">there’s a long way to go yet</a>, Sable will allow us to offer a greatly improved user experience, including persistent presence and history without the need for bouncers and much better resilience to network interruptions. If you’d like to get involved in this effort, or just observe how we’re progressing, come and join us in <code class="language-plaintext highlighter-rouge">#libera-dev</code>. <h2 id="documentation-updates">Documentation updates</h2> We were asked in the <code class="language-plaintext highlighter-rouge">#libera-communities</code> channel if we could provide a quick reference to help operators know when and how to set various types of access control measures for their channels. This has been asked and attempted several times in the past, but this time we did manage to pull a simple guide together! You can now find a <a href="/guides/quickops">Quick Ops Guide</a> in the <a href="/guides">guides area of this site</a>. In the future we hope to supplement this guide another more comprehensive reference text that summarises some of the more advanced features and practices available. If there are any other guides you would like to see, let us know. We have also updated our <a href="/chanreg">channel registration</a> guide which explains channel namespaces, what is considered on-topic, and the formal group registration process. The previous guide was quite confusing in many respects, leading people to be unsure where their channels belong or whether or not they were allowed to register channels with <code class="language-plaintext highlighter-rouge">ChanServ</code> without also going through a formal group registration process for their projects. We hope that the new guide clears up all of this confusion and becomes a more useful point of reference. <h2 id="libera-merch">Libera merch</h2> As a reminder, we have a lineup of <a href="https://www.freewear.org/Libera.Chat">Libera.Chat merch at FreeWear.org</a> including shirts, mugs, and stickers. We get a small cut of every purchase made on the platform, so it is a good way to show your support in addition to repping the network in real life. If that’s not quite your thing but you’d like to show your support in other ways, you can give us a <a href="/contributing/donate">donation</a> or contribute to the <a href="/contributing/development">many open source projects</a> that Libera.Chat relies on.</content><author><name>el, glguy, moonmoon, She, spb</name></author><summary type="html">Hello Libera.Chat users,</summary></entry><entry><title type="html">Official Matrix bridge farewell</title><link href="https://libera.chat/news/official-matrix-bridge-farewell" rel="alternate" type="text/html" title="Official Matrix bridge farewell" /><published>2023-11-28T00:00:00+00:00</published><updated>2023-11-28T00:00:00+00:00</updated><id>https://libera.chat/news/official-matrix-bridge-farewell</id><content type="html" xml:base="https://libera.chat/news/official-matrix-bridge-farewell">Hello, I am the bearer of unfortunate news. Following the <a href="https://libera.chat/news/matrix-bridge-disabled-retrospective">disabling of the official Element Matrix Services (EMS) operated bridge</a> between the Matrix network and Libera.Chat IRC network, staff of Libera Chat met with staff from The Matrix.org Foundation in mid October to discuss the future of the bridge. Due to various constraints, The Foundation informed us that it cannot take on the obligation of the needed modifications in a timely manner, nor can it commit to operating the official bridge going forward. Upon receiving this information we requested that The Foundation and EMS arrange a graceful sunset of the bridge, a clean-up of bridged rooms so that users are no longer misled or confused due to the presence of non-functional ghosts, and to take accountability for the delay in wrapping things up. You can <a href="https://matrix.org/blog/2023/11/28/shutting-down-bridge-to-libera-chat">read about their plan on their blog</a>. We have written a <a href="https://libera.chat/guides/matrix">new FAQ about Matrix</a> to address this sunset and give more information about the future of Matrix use on Libera.Chat. We would also like to extend to our communities a sincere apology; it has taken far too long to coordinate communications with EMS and The Foundation to clarify the fate of the bridge, and we regret any inconvenience the delay of this information has caused.</content><author><name>el</name></author><summary type="html">Hello, I am the bearer of unfortunate news.</summary></entry><entry><title type="html">Matrix Bridge Temporary Shutdown, a Retrospective</title><link href="https://libera.chat/news/matrix-bridge-disabled-retrospective" rel="alternate" type="text/html" title="Matrix Bridge Temporary Shutdown, a Retrospective" /><published>2023-08-10T00:00:00+00:00</published><updated>2023-08-10T00:00:00+00:00</updated><id>https://libera.chat/news/matrix-bridge-disabled-retrospective</id><content type="html" xml:base="https://libera.chat/news/matrix-bridge-disabled-retrospective"><blockquote> Update: We no longer have an official Matrix bridge. Please see our <a href="https://libera.chat/guides/matrix">FAQ about Matrix</a> for more information about using Matrix on Libera.Chat. </blockquote> Hello Libera users, Some people have requested transparency into how Libera came to the conclusion that we needed to take the drastic action of requesting that Element Matrix Services (EMS) <a href="https://matrix.org/blog/2023/07/postponing-libera-chat-deportalling/">deactivate the portalling bouncer-like feature of the Matrix bridge</a> and limit it to explicitly opted-in plumbed rooms, and then escalate to more serious action in <a href="https://matrix.org/blog/2023/08/libera-bridge-disabled/">requesting the bridge be disabled fully</a>. We have been reluctant to go into detail before now because the last thing we wanted was to put our communities through another public dispute with a for-profit company. However we believe you, our users, deserve to know the circumstances of our decision, so this post is an attempt to satisfy your expectation of transparency from us as an organisation. It is going to be a long one, so fetch a snack or beverage and settle in. There is also a quick tl;dr<a href="#fn:1" class="footnote" rel="footnote">1</a> if you want that instead. Back when we first launched Libera.Chat in May 2021, we did not have hopes of becoming a large network, and we honestly did not care if we did or not. We quickly exceeded expectations on that front because of the trust that you all have placed in us to have the best interests of your communities as our guiding principle. Several of these communities requested a bridge that would allow their channels to be accessible from Matrix. We were initially vocally reluctant due to prior experiences with the bridge on another network. However, at the end of a very hectic May we sat down with EMS and came up with some baseline expectations. One of our requirements included <a href="https://github.com/matrix-org/matrix-appservice-irc/pull/1337">the rollout of the privacy filter</a> which prevents Matrix users being able to invisibly watch IRC conversation or engage in abusive behaviour on the Matrix side without being seen in that room’s respective IRC channel. While this might seem like double standards compared to “one to many” bridging in which one bot acts as a puppet for many individuals, such bridges are observable and typically only serve one community each. The agreement also included the statement <a href="https://libera.chat/news/temporarily-disabling-the-matrix-bridge">we quoted previously</a>: <blockquote> the bridge may be subject to temporary closure (on your side or ours) in the event of future privacy issues, dependent on severity and predicted resolution timeframes, with honest public-facing explanations.” </blockquote> As 2021 progressed, we worked with EMS to address the bridge’s instability, often notifying them of pending allowance or service disruption issues before their own monitoring did. We also kept watch for double-bridges which would expose other networks to potential abuse by bridging their services to us. We also found ourselves needing to prompt EMS to respond to the concerns of some projects they hosted. Within a few months after welcoming the bridge, we were routinely dealing with a sizable and often automated abuse load from the bridge that made use of easy anonymous registration and the protocol’s persistent and distributed archiving of files, including images, videos, and long messages converted to pastebins. The abuse was targeted at both plumbed and portalled channels. In February 2022, Matrix was chosen to host a major open source event that went online-only during the pandemic. The event rooms were bridged to Libera. Throughout that event, Libera’s abuse mitigation folk responded to a massive spike in bot waves whose impact favored but was not limited to the event’s channels. Late nights were spent monitoring for bots, temporarily toggling a drastic anti-abuse measure that bounced any Matrix puppets, processing connection data logs, manually screening for obvious false positives, and issuing many thousands of network bans targeting individual puppets or open-registration homeservers respectively. We provided EMS a list of homeservers that were involved and asked that they help with outreach to get them configured correctly and cleaned up. Rather unexpectedly, the bot abuse continued to be bridged to Libera long after it had ceased on the Matrix side. Some of our abuse mitigation stopped the bots from bridging to begin with. Operating under assurances that failed connection and messaging attempts would not be bridged, we began to relax our abuse mitigation measures, only for some of those bots’ puppets (on homeservers that had not been cleaned up) to reconnect to Libera, join channels, and send “federation delayed” spam even half a year later. Furthermore, these returning bots were consuming a portion of the bridge’s connection limit, and also contributed to some misconfigured Matrix rooms filling channels to the point of overloading some clients because the idle puppet cleanup process could not work. After the event ended, we arranged to meet with EMS in early March 2022 to debrief and negotiate a path forward where the workload of managing bridged abuse by Libera staff would be reduced. It was at this meeting that we first raised the idea of disabling portalling. As EMS agreed to work on a homeserver blocklist and actually did implement it for us, we did not pursue deportalling at this time. This meeting also had promises from EMS that reductions in bridge restart noise and reliable removal of media could be expected some time later in 2022. Currently, we do not believe there is a reliable way to quickly remove abusive hosted media without homeserver admin intervention. Through 2022 and into 2023 we were made aware of <a href="https://matrix.org/category/security/">various security vulnerabilities</a> and privacy leaks in the bridge. At least one issue this year, for a recurring privacy leak, needed us to advocate for a fix that was then released without a transparent announcement <a href="https://github.com/matrix-org/matrix-appservice-irc/pull/1700">until that oversight was pointed out</a> causing third party bridges and the bridge of at least one other network to lag in getting fixed. As a result of all this, we feel we are unable to be confident that reported issues have been acknowledged or addressed, and some folks have expressed a lack of motiviation to report issues due to past experiences. Our confidence in EMS’s capacity to respond to future issues was further eroded with the <a href="https://matrix.org/blog/2022/12/25/the-matrix-holiday-update-2022/#trust-safety">“reset” of their trust and safety team</a> during layoffs at the end of last year. We acknowledge that the security concerns were the least visible issue for you, our users. There have also been several serious outages this year which EMS failed to notice until Libera staff put substantial effort into documenting the symptoms in the coordination channel, often needing to find alternative ways to make contact when no response was forthcoming. We likewise continuously forwarded reports of spam originating from the Matrix network to varying success and also requested Matrix developers find a solution to avoid IRC users being listed in the Matrix network’s expansive user directory, which was causing some people to receive unwanted attention and problematic spam in private messages. After many discussions among staff and with frustrated channel operators about the overall situation, we decided to put an item on the agenda for our <a href="https://libera.chat/minutes/2023-02-24-public">February 2023 Monthly General Meeting (MGM)</a> to discuss our options for reducing the negative impacts arising from the bridge instability, the company’s ongoing communication deficits regarding security and privacy flaws, and the difficulty in getting things addressed long term. We acknowledged that some communities are locked into using Matrix due to their workflows and thus ought to be able to opt-in explicitly to using the platform while we scaled back the bridge’s reach. Those attending that MGM concluded that we should first consult the <code class="language-plaintext highlighter-rouge">#libera-communities</code> channel to which all <a href="https://libera.chat/chanreg/">Group Contacts</a> on the network have standing invites. Additionally, we committed to reaching out to some of the key communities that originally requested Matrix bridging. During these consultations we explained the deportalling option, and the responses we received were ambivalent to positive. At the <a href="https://libera.chat/minutes/2023-03-31-public">March MGM</a> we reviewed the responses and decided to proceed with asking EMS to disable portalling on the official Libera bridge that they operate. EMS were informed that same day (March 31st, 2023) and were asked to communicate with us on a plan for going forward. At the end of May 2023, we noticed a bot named “<code class="language-plaintext highlighter-rouge">archive[m]</code>” joining a large number of channels unsolicited, including portalled channels such as <code class="language-plaintext highlighter-rouge">#libera</code>. After disconnecting the bot and investigating its origins, we became aware of the <a href="https://github.com/matrix-org/matrix-viewer/">Matrix Public Archive, now known as Matrix Viewer</a>. Given previous privacy incidents involving Matrix leaking channel info, we became deeply concerned that this archive was violating our public logging or scraping policies for a large number of portalled channels. Further investigation was difficult since the archive was very clearly a work-in-progress, often returning cryptic errors for basic operations or just being slow to respond. EMS later assured us that the archive was mostly benign from a privacy standpoint, and renamed it to indicate that the bot itself didn’t archive but accessed already archived data. Given it was assumed this behaviour was opted into based on room configurations which did not disclose that they applied to the Matrix Viewer publishing logs to the web, we remained skeptical and unhappy that it could roam into channels without warning or explanation. The lack of proactive communication surrounding this bot only served to reinforce the lack of confidence we felt we could afford to EMS on such matters. By this point, EMS appear to have assumed the cause of the deportalling request was entirely about stability issues, and set about working on the previously promised measures to reduce the connection noise caused by the bridge. This resulted in a feature known as seamless restarts, where connections over the bridge are maintained through the bridge restart process by a proxy, which landed earlier in 2023. Unfortunately this has led to many new problems; message drops, which had occurred previously but were mostly manageable, skyrocketed. The bridge began silently dropping ranges of messages, resulting in roughly one out of every five messages being dropped during periods of high bridge activity. These issues were often undetectable by the average user on either side, and we have no doubt that they caused breakdowns in communication that harmed people’s relationships with projects and frustrated their support volunteers. At our <a href="https://libera.chat/minutes/2023-06-30-public">June MGM</a> we discussed if we would enforce the decision of the March MGM and set a deadline for deportalling. That deadline was originally July 31st, but at EMS’s request we extended it for two weeks to August 11th. During this transition period, the bridge management bot was unresponsive for several days while channels tried fruitlessly to set up plumbing. After we granted the deadline extension, the bridge was fully restarted in order to implement an attempted fix for the silent message drops.Shortly before midnight UTC on the 31st, almost all the bridge’s connections timed out. The bridge was not brought back online until more than 24 hours later, further disrupting people’s ability to arrange plumbing for their channels. As mentioned in the <a href="https://libera.chat/news/temporarily-disabling-the-matrix-bridge">previous blog post</a>, on August 2nd we noticed a serious regression and immediately notified EMS. That regression was that the privacy filter feature, the earlier mentioned prerequisite for the bridge’s access to the network, was somehow not functioning. A Libera.Chat staff member was able to see IRC channel comments on their Matrix account while their Matrix puppet was not connected to the Libera.Chat network at all. EMS informed us that this flaw could not be remedied quickly. Meanwhile the symptoms were being mentioned by concerned users in public channels so it became clear that it was only a matter of time before this would be noticed and employed by bad actors; a <a href="https://github.com/matrix-org/matrix-appservice-irc/pull/1755">recently discovered bug in the blocklist</a> mechanism had been noticed because problematic content had been bridged as a result. As portal removal was not yet ready for rollout, we could not reduce the vulnerability to opted-in channels. As a result of this network-level risk, staff consensed that the responsible course of action was to escalate our request and asked that the whole EMS Matrix bridge be shut down as soon as possible, until this and other critical issues have been addressed. We gave them 36 hours to do so. At 1400UTC on August 5th 2023, EMS shut down their Libera.Chat Matrix bridge at our request. This is not a choice we wanted to have to make on the behalf of our users, and we’ve held off as long as we could to avoid this disruption in your communities. Throughout this whole process the employees of EMS have engaged with us professionally with the limited resources afforded to them, and we would like to acknowledge their efforts and thank them for their work and patience, in particular Halfy, Thib, and Neil. We are genuinely sorry that this is where we have ended up. Third party bridges will remain unaffected and are not subject to the request for shutting down. As with any bridging on the Libera.Chat network, third party bridges will be judged on a case by case basis if problems arise. We are hoping that this will be a temporary measure. We anticipate the official EMS bridge will return plumbed-only, depending on the issues addressed by EMS, at some point in the future. As per the our prior post, staff are available for questions and concerns about this decision in private message or in the <code class="language-plaintext highlighter-rouge">#libera-matrix</code> IRC channel. Regards, el, She, Allie, Ben, and the rest of the Libera.Chat staff body. <div class="footnotes" role="doc-endnotes"> <ol> <li id="fn:1" role="doc-endnote"> tl;dr: We asked for portalling to be disabled due to compounding concerns such as abuse mitigation workload, various privacy and security issues, and overall stability. We escalated to the temporary shutdown due to a recurring privacy issue where Matrix users not connected to Libera.Chat could see channel content. The issue could not be addressed quickly or limited to opted-in channels. Third party bridges remain welcome and will be judged individually if concerns arise. Questions? PM staff or ask in <code class="language-plaintext highlighter-rouge">#libera-matrix</code>. <a href="#fnref:1" class="reversefootnote" role="doc-backlink">&#8617;</a> </li> </ol> </div></content><author><name>el, She, Allie, Ben</name></author><summary type="html">Update: We no longer have an official Matrix bridge. Please see our FAQ about Matrix for more information about using Matrix on Libera.Chat.</summary></entry><entry><title type="html">Temporarily disabling the Matrix Bridge</title><link href="https://libera.chat/news/temporarily-disabling-the-matrix-bridge" rel="alternate" type="text/html" title="Temporarily disabling the Matrix Bridge" /><published>2023-08-05T00:00:00+00:00</published><updated>2023-08-05T00:00:00+00:00</updated><id>https://libera.chat/news/temporarily-disabling-the-matrix-bridge</id><content type="html" xml:base="https://libera.chat/news/temporarily-disabling-the-matrix-bridge"><blockquote> Update: We no longer have an official Matrix bridge. Please see our <a href="https://libera.chat/guides/matrix">FAQ about Matrix</a> for more information about using Matrix on Libera.Chat. </blockquote> Hello Libera users, As you know per <a href="https://libera.chat/news/">previous blogs</a>, we have been liasing with Element Matrix Services (EMS) as they transition the Matrix bridge to an opt-in configuration that aims to allow plumbed channels (channels that opted in to being accessed by Matrix) while deactivating portalled channel access (where Matrix users could roam freely on the network). This process was undertaken at our request due to various security and privacy concerns that EMS have been unable to address to our satisfaction due to time constraints. During this transition period, a number of new issues have arisen, and we have already <a href="https://libera.chat/news/deportalling-delay">extended the deadline</a> for the deportalling transition by two weeks, at the request of EMS. Some of these issues are specific to the bridge operated for Libera.Chat and may not affect bridges on other networks. When we agreed to accept the Matrix bridge onto Libera.Chat at the request of a few projects early in 2021 part of that agreement was the following clause: <blockquote> the bridge may be subject to temporary closure (on your side or ours) in the event of future privacy issues, dependent on severity and predicted resolution timeframes, with honest public-facing explanations. </blockquote> On August 2nd, we notified EMS of a serious regression in our coordination channel after close of business London, UK time (where EMS is based). After no response we requested acknowledgement 24 hours later on the 3rd. At this point we were informed that no attention had been or could be given to the issue. Having subsequently investigated and confirmed the issue was still occuring, today, Friday August 4th at the start of business hours, we notified EMS that they had until 1400UTC Saturday August 5th to address the issue. Unfortunately, EMS have informed us that they cannot satisfy this deadline. In order to protect our users and our IRC-first communities from mounting stability, security, and privacy issues, we requested that EMS remove the Matrix bridge from Libera.Chat until this serious regression can be fixed, and all other outstanding issues are likewise resolved. EMS agreed to <a href="https://matrix.org/blog/2023/08/libera-bridge-disabled/">shut the bridge down</a> by 1400UTC Saturday August 5th. We cannot anticipate a timeline for the bridge’s return, but we hope it will be soon. We will put together a more complete retrospective for publication in the near future, and we invite projects to make <a href="https://libera.chat/guides/faq#are-bridges-allowed">alternative bridging arrangements</a> in the meantime. There are various options available, such as <a href="https://github.com/whitequark/catircservices.org/">catircservices</a> and <a href="https://github.com/hifi/heisenbridge">heisenbridge</a>. As always, Libera.Chat staff will be on hand via PMs, and in <code class="language-plaintext highlighter-rouge">#libera-matrix</code> to answer any questions. Regards, Allie &amp; el on behalf of the entire Libera.Chat staff body</content><author><name>Allie and el</name></author><summary type="html">Update: We no longer have an official Matrix bridge. Please see our FAQ about Matrix for more information about using Matrix on Libera.Chat.</summary></entry></feed>

CINXE.COM