08:41:46 <ErCiccione> Alright. When emulating mobile phones on desktop i would see the desktop layout of the page. If it works on people's phone good. I'll leave mobile support as it is and just fix where needed
09:40:45 <binaryFate> How are users going to authenticate the generator page?
09:42:00 <binaryFate> If compromised, it presents a similar catastrophic risk as using compromised binaries.
09:42:09 <binaryFate> But all binaries are signed
09:43:36 <binaryFate> And if they use a hash to download the generator page, verify and run it, is it realistically doable on a phone?
09:47:33 <ErCiccione> Good point. I was thinking to not include the signature for the page (for the verification), but if it's preferred for security reasons it can be done. Only downside i see is that it will need to be signed again at every edit
09:53:41 <binaryFate> Hmm I think it's too much blindly trusting that getmonero.org server is never compromised. I don't think it's a sensible risk design. Compromised entropy in generator could go unnoticed for a long time and be a disaster
09:54:08 <binaryFate> But I don't think me signing for every little edit is doable in practice either
09:55:18 <binaryFate> How often do we want to edit this? If we don't beautify it at all, we probably don't need to touch it ever?
10:04:22 <monerobull[m]> website has problem
10:04:58 <plowsof11> resolving to a prohibited ip? 
10:06:20 <monerobull[m]> yes
10:09:28 <plowsof11> ccs is fine though. reg the generator - the original file was modified 2 years ago, seems to be 'set in stone' 
10:28:54 <binaryFate> checking
10:42:14 <binaryFate> cloudflare complaining, but we haven't changed any conf recently. I don't see anything particular.
10:42:26 <binaryFate> fluffypony should be able to have a look in an hour
10:42:33 <plowsof11> thanks!
10:49:28 <plowsof11> seems fine now 
10:50:46 <binaryFate> yeah looks good for me too. Might have been a cloudflare hickup
11:19:19 <fluffypony> weird
11:19:22 <fluffypony> yeah must have been
12:12:11 <ErCiccione> <binaryFate> "How often do we want to edit..." <- yeah we would mostly only lose the possibility of making it multilingual.
12:13:35 <ErCiccione> so, i'm updating the text, fixing some minor css issues and adding other things like headers and links back to getmonero.
12:14:49 <ErCiccione> the only thing that might need to be changed would the links, so the problem of edits should be avoided
12:17:54 <binaryFate> no multilingual is ok. I'd prefer a barebone tool that does the job and can be deployed and used securely, rather than a more good looking security nightmare...
12:19:39 <binaryFate> maybe an alternative would be to host it at github monero-project and simply link to it from getmonero.org/generator. With signed commits.
12:59:01 <ErCiccione> agree. We can also have a dedicated repo if that's seen as useful, but adding the standalone page to jekyll is not an issue
13:00:27 <ErCiccione> it's not about being "good looking" btw (i would also be the worst choice for working on it in that case), more about making it more accessible as possible, but yeah i see how for security reasons is better to keep it barebone.
14:00:22 <ErCiccione> <plowsof11> "ErC i did not think about this..." <- Opening the link from mobile now. Looks the same of what i was seeing on desktop. I does work, but it's not really mobile friendly. Text and buttons are very small
15:35:32 <ofrnxmr[m]> The issue right now isnt presentation, but a fast removal/replacement of the bad link 
15:35:51 <ofrnxmr[m]> Shouldn't have had links on website being blocked by ____
15:38:22 <ofrnxmr[m]> Bad* links
17:24:34 <ErCiccione> anyone is free to already pr the removal of the old references if deemed urgent. Since this is something that needs to be stable and changed as little as possible, better do it once but do it right
17:25:58 <ErCiccione> i don't consider changing the link so urgent because they point to mymonero, not a random website
18:43:20 <ofrnxmr[m]> I had started a pr to remove. Planned to link to only the zip. Since its intended to be used offline anyway, I didnt care about the online HTML link. And easier for translations.... (full message at <https://libera.ems.host/_matrix/media/v3/download/libera.chat/b8a3e5a2cbada14f9355f577577bd002b42a46f3>)
18:45:14 <ofrnxmr[m]> Moneroaddress.org or whatever isnt anybody we know, and mymonero isnt a paper wallet.
18:45:14 <ofrnxmr[m]> That link should not be there. Mymonero being the destination is a terrible justifcstion for someone who is reading an "official" source for how to _securely store monero_