Tuesday, September 15, 2020
Mon Tue Wed Thu Fri Sat Sun
YunoHost support room | Don't ask to ask, just ask ! | Be patient and stay polite with everybody (this is a free software project ran by volunteers) | No answer? Post on the forum: https://forum.yunohost.org | This room is mirrored via Echo1 | Donate: https://liberapay.com/YunoHost

[09:46:36] <irc> <titus:pijean.ovh> Hi all, I have a question regarding the Hotspot app. I would like to use it on a RPi and allow access to the ethernet local network. I do not care (so far) about Internet access. It seems that it is not allowed out-of-the-box, and from the various forum threads it is unclear about what I need to do.
[10:08:43] <irc> <nikolaskorsman> i wish for å.xyz to be taken down
[10:08:53] <irc> <nikolaskorsman> today, now
[10:08:54] <irc> <nikolaskorsman> please
[10:09:00] <irc> <nikolaskorsman> !!
[10:11:36] <irc> <titus:pijean.ovh> nikolaskorsman: not our job.
[10:13:40] <irc> <tituspijean> (test, I have again weird connexions b/w irc and matrix)
[10:13:59] <irc> <titus:pijean.ovh> (and matrix to irc)
[12:18:19] <irc> <mataleao> Hi, guys. I can't install an update for Wordpress. Can you help me, please?
[12:58:13] <irc> <titus:pijean.ovh> mataleao, we can have a look. What are the commands and logs associated with your attempt to update Wordpress?
[13:04:06] <irc> <\__[m]> >The configuration file '/etc/ldap/schema/mailserver.schema' has been manually modified and will not be updated
[13:04:06] <irc> <\__[m]> The configuration file '/etc/ldap/schema/sudo.schema' has been manually modified and will not be updated
[13:04:19] <irc> <\__[m]> on upgrade I get this message, but I haven't changed those files
[13:11:53] <irc> <ynhuser|33> I am trying to have full write access to my server, when I login with the admin user via SFTP I can’t modify anything.
[13:11:53] <irc> <ynhuser|33> Any ideas?
[13:40:43] <irc> <JaXoM> ynhuser|33 I suppose admin is not root, so that would be normal
[13:41:15] <irc> <ynhuser|33> I am able to r/w with ssh
[13:41:18] <irc> <JaXoM> you can "sudo su" in a SSH session, but I don't know for SFTP ones...
[13:41:37] <irc> <ynhuser|33> How can I set up to log in via root to my vps via SFTP?
[13:41:59] <irc> <JaXoM> you would have to bypass ynh safety settings
[13:42:21] <irc> <JaXoM> by changing the config in "/etc/ssh/sshd_config"
[13:44:52] <irc> <ynhuser|33> Uploaded file: https://uploads.kiwiirc.com/files/67fe5c6a491a3b037da3dd7618e187b5/image.png
[13:44:57] <irc> <ynhuser|33> What line?
[13:50:22] <irc> <JaXoM> there's a line that read "PermitRootLogin no"
[13:51:18] <irc> <JaXoM> if you change it to "yes" ant do a "service sshd reload"
[13:51:33] <irc> <JaXoM> I think it will allow you to log in as root
[13:52:07] <irc> <JaXoM> with the "master password", if you have a recent ynh (where admin and root pw are sync'ed)
[14:02:15] <irc> <ynhuser|33> Thank you it worked!
[14:05:33] <irc> <JaXoM> you're welcome
[14:05:48] <irc> <JaXoM> please keep this change in mind (or better, in your admin docs)
[14:06:06] <irc> <JaXoM> because it will keep ynh from updating this file
[14:07:04] <irc> <JaXoM> so one day, you might have to do a "regen-conf --force ssh" that will erase the change and update the sshd_config file
[14:08:35] <irc> <ynhuser|33> I am fairly new to this, but i am interested to understand the reasoning behind having root login disabled. I mean if you can login via ssh with admin and gain su access with the same password.... I am a bit confused
[14:15:16] <irc> <Aleks[m]> ynhuser|33: yeah i've been wondering the same for a while, there are multiple reasons behind this :
[14:15:59] <irc> <Aleks[m]> 1) generally speaking you disable root login because everybody knows there's a root user on every linux machine ... so at least that repels a vast majority of attacks
[14:16:58] <irc> <Aleks[m]> 2) overall it's a good practice to not be logged as root "all the time" in case you accidentally type some sort of "rm -rf" in the wrong terminal (though if you put sudo in front you're fucked anyway but yeah)
[14:55:09] <irc> <\__[m]> <JaXoM "so one day, you might have to do"> ssh isn't an option I see
[15:00:12] <irc> <\__[m]> <JaXoM "so one day, you might have to do"> that's yunohost tools regen-conf --force ssh
[15:02:45] <irc> <\__[m]> kudos on this regen-conf tool, it's extensive and very useful, waw
[17:30:56] <irc> <felixg3> bonjour everyone. tried to migrate today and I failed at it :( Anyone has an idea where to start looking for solutions? https://paste.yunohost.org/raw/osixipidif
[17:35:34] <irc> <felixg3> After installing postgresql and postgresql-11, migration still fails with https://paste.yunohost.org/raw/ecusuwubet
[17:43:57] <irc> <Aleks[m]> felixg3: tu peux tenter un "pg_dropcluster --stop 11 main" puis refaire la migration ?
[17:44:30] <irc> <felixg3> pardon, i dont speak french. i assume you mean that i should run that command and retry the migration
[17:45:19] <irc> <felixg3> "Success! Migration 0017_postgresql_9p6_to_11 completed".
[17:45:26] <irc> <felixg3> Merci beaucoup, Aleks
[17:45:48] <irc> <Aleks[m]> ah sorry :D thought you were speaking french because of the "bonjour" :D
[17:46:14] <irc> <felixg3> just wanted to show some respect :D love from Germany
[17:59:48] <irc> <Aleks[m]> luv from Strasbourg ;P
[18:51:57] <irc> <mayeulc:matrix.org> Hey, I've had quit a lot of issues with my Matrix server lately.
[18:52:34] <irc> <MayeulC_backup> Indeed, I seem to be hitting https://github.com/matrix-org/synapse/issues/8118 : Federation errors when DNS server is on same IP
[18:53:10] <irc> <MayeulC_backup> I've upgraded to 1.20.0rc3 to help fix another issue, but I think that specific issue was already present
[18:53:43] <irc> <MayeulC_backup> basically synapse can't resolve DNS records (might be only SRV)
[20:06:09] <irc> <ynhuser|73637> La première page disait de venir dire bonjour, alors bonsoir
[20:07:30] <irc> <kidon[m]> Bonsoir !
[21:29:57] <irc> <Thatoo[m]> bonsoir
[21:29:57] <irc> <Thatoo[m]> j'ai enfin suivi le tuto sur la sécurité : https://yunohost.org/#/security_fr
[21:30:00] <irc> <Thatoo[m]> c'est tout bon
[21:30:44] <irc> <Thatoo[m]> sauf que je n'arrive plus à me connecter en sftp au webapp
[21:31:48] <irc> <Thatoo[m]> je n'ai pas touché à ce qui correspondait au webapp dans /etc/ssh/sshd_config
[21:31:50] <irc> <Thatoo[m]> à savoir
[21:31:56] <irc> <Thatoo[m]> sent a long message: < https://matrix.org/_matrix/media/r0/download/matrix.org/qtYmgTajvrKVYiRrFENafxsJ/message.txt >
[21:33:00] <irc> <Thatoo[m]> est-ce que ce `PasswordAuthentication yes` est en conflit avec le `PasswordAuthentication no` que j'ai rajouté plus haut dans la config "globale"?
[21:34:18] <irc> <Thatoo[m]> le port que j'ai changé au dessus est valable aussi pour le sftp des webapp? j'espère car j'ai enlevé le port 22 du firewall
[21:36:48] <irc> <Thatoo[m]> j'ai aussi fait `sudo yunohost settings set security.ssh.compatibility -v modern` , est-ce que ça pourrait venir de là?
[21:36:49] <irc> <Thatoo[m]> j'utilise filezilla pour me connecter en sftp
[21:36:52] <irc> <Thatoo[m]> merci pour tout aide à venir