Friday, December 11, 2020
yunohost@conference.lightwitch.org
December
Mon Tue Wed Thu Fri Sat Sun
  1
2
3
4
5
6
7
8
9 10 11
12
13
14
15
16
17
18
19 20
21
22 23 24 25 26 27
28 29 30 31      
             
YunoHost support room | Don't ask to ask, just ask ! | Be patient and stay polite with everybody (this is a free software project ran by volunteers) | No answer? Post on the forum: https://forum.yunohost.org | This room is mirrored via Echo1 | Donate: https://liberapay.com/YunoHost

[09:27:23] <irc> <ynhuser> a quick question is it possible to publish on a different port? default installation listens on port 80 and 443
[09:33:57] <irc> <ni_nomatrixorg[m> <ynhuser "hello. I updated my wordpress us"> not with that much information, a bit more specific please. also search your error literally in a search engine
[10:30:34] <irc> <ni_nomatrixorg[m> is downgrading from 4.1 to 4.0.8.3 possible?
[10:30:51] <irc> <ni_nomatrixorg[m> perhaps if you follow a certain order, like first moulinette, then x then y then yunohost package?
[10:32:11] <irc> <ni_nomatrixorg[m> or something like
[10:32:11] <irc> <ni_nomatrixorg[m> `apt install yunohost=4.0.8.3 --allow-downgrades`
[11:48:33] <irc> <ynhuser> hello
[17:38:14] <irc> <freechelmi:matrix.org> Hi di dyou had this problem ? WARNING: [pool nextcloud] server reached pm.max_children setting (16), consider raising it
[17:38:19] <irc> <freechelmi:matrix.org> weird as there is only one user
[17:57:17] <irc> <freechelmi:matrix.org> Nextcloud just stopped working without any reason ....
[18:06:20] <irc> <lopeztel:matrix.org> Hello, I just got redirected from Mastodon
[18:08:30] <irc> <lopeztel:matrix.org> looks like nuking my whole installation is too much to solve xmpp-upload issues is a bit excessive, here's a link to the info I've gathered and things I've tried so far: https://forum.yunohost.org/t/ssl-certificates-expired-challenge-did-not-pass-for-xmpp-upload-maindomain-tld/13508/9
[18:09:35] <irc> <lopeztel:matrix.org> looks like nuking my whole installation to solve xmpp-upload issues is a bit excessive, here's a link to the info I've gathered and things I've tried so far: https://forum.yunohost.org/t/ssl-certificates-expired-challenge-did-not-pass-for-xmpp-upload-maindomain-tld/13508/9
[18:16:24] <irc> <Aleks[m]> hey there !
[18:16:40] <irc> <Aleks[m]> it's more comfortable if you join #freenode_#yunohost:matrix.org (instead of #yunohost:matrix.org)
[18:17:15] <irc> <Aleks[m]> soooooo if i understood correctly, one of your domain is a nohost.me and the other you have manual control over it ?
[18:17:44] <irc> <lopeztel:matrix.org> just joined the other channel
[18:18:50] <irc> <novice_person43> Hi all, I am trying to setup a mail-server for our suburbs security cameras. I need all the events to be emailed, from where I can parse it with a python script and send to the relevant location. The cameras uses the person at that location's internet. Each camera's email alerts will thus come from different IP addresses, and on my yunohost server
[18:18:52] <irc> <novice_person43> I see connection coming in but keeps receiving lost connection after AUTH from unknown[ipaddress]. Not sure how I can set to allow from nearly any IP as long as it authenticates
[18:19:20] <irc> <Aleks[m]> lopeztel: heythere o/
[18:19:39] <irc> <Aleks[m]> "a mail server for security cameras"
[18:19:41] <irc> <novice_person43> Hey
[18:19:43] <irc> <Aleks[m]> what
[18:19:47] <irc> <Aleks[m]> wat
[18:20:07] <irc> <lopeztel[m]> <Aleks[m] "lopeztel: heythere o/"> 👋 Hi, I appreciate the help
[18:20:55] <irc> <Aleks[m]> <Aleks[m] ""a mail server for security came"> https://gifimage.net/wp-content/uploads/2017/01/But-Why-GIF-Image-Download-2.gif
[18:21:46] <irc> <novice_person43> Our area is rife with crime (South Africa), and I want to get the 'images' to verify for persons with object detection
[18:21:55] <irc> <lopeztel[m]> Aleks: to answer your previous question, yes one of the domains is a noho.st and I have control over the other one
[18:22:08] <irc> <novice_person43> I have issues with FTP between certain camera models and firmwares
[18:22:29] <irc> <Aleks[m]> sooo for the domain you have control over, you manually defined the xmpp-upload DNS entry i guess ?
[18:22:40] <irc> <Aleks[m]> oh wokay
[18:22:41] <irc> <Aleks[m]> sounds like an actually legit use case
[18:22:41] <irc> <lopeztel[m]> <Aleks[m] "sooo for the domain you have con"> yes
[18:23:00] <irc> <Aleks[m]> but are you sure about sending info using email ...? (well i'm questionning your technical design but maybe you actually have good reason for this;...)
[18:24:06] <irc> <novice_person43> I have set the DNS, but my registrar's panel had issues doing some of the records. I did email support and hoping to get that sorted soon
[18:24:07] <irc> <Aleks[m]> lopeztel: soooo i would suggest removing that DNS entry, then wait like ~1 hour (usually) for the deletion to propagate, then re-run yunohost's diagnosis
[18:24:51] <irc> <novice_person43> Most camera models and between firmware basically only allows email/ftp
[18:24:58] <irc> <novice_person43> Most of the people dont want VPN's
[18:25:03] <irc> <Aleks[m]> which should in turn disable the certificate renewal for xmpp-upload so that it works for the root domain ... (dunno if that makes sense for you but yeah)
[18:25:28] <irc> <novice_person43> logistical issues and costs involved (and when mentioning what a VPN is, they worry about the privacy
[18:25:30] <irc> <Aleks[m]> (also all this assuming that you don't care so much about xmpp-upload)
[18:26:54] <irc> <novice_person43> I am not sure what most of the records are for, so I just add what is 'recommended' but this exercise so far was not easy
[18:27:02] <irc> <lopeztel[m]> <Aleks[m] "(also all this assuming that you"> I kind of get it, this xmpp-upload thing became relevant just for the SSL cert renewal
[18:27:53] <irc> <Aleks[m]> <novice_person43 "I see connection coming in but k"> not sure what's the issue ...? do you have the ~full log to understand why exactly the connection is lost ? is it just lost or actually refused ?
[18:28:16] <irc> <lopeztel[m]> Aleks: I can try this for my manually controlled domain, anything I can do for the noho.st domain?
[18:28:34] <irc> <Aleks[m]> i gotta think about it but yeah
[18:29:26] <irc> <Aleks[m]> lopeztel: i'm trying to think about something that doesn't involve too much technical tweaking ... also alternatively, you could share your domain name (in private if you want) so i can try to reproduce the issue
[18:29:38] <irc> <novice_person43> Aleks[m] I will paste what I see in the mail.log
[18:29:58] <irc> <Aleks[m]> 👍️
[18:31:07] <irc> <novice_person43> Uploaded file: https://uploads.kiwiirc.com/files/5fe338e7bf2fa9b7ee31d32a2be0591a/WindowsTerminal_QlOVAFrn26.png
[18:31:50] <irc> <Aleks[m]> so it looks like the client did not authenticate
[18:31:53] <irc> <Aleks[m]> it it configured with a proper username/password ?
[18:32:29] <irc> <Aleks[m]> also are you aware that only yunohost-registered user may authenticate to the SMTP server ? (or to put it another way : how did you create the corresponding users on your server ?)
[18:32:53] <irc> <novice_person43> I did that yes, I am sure about my credentials used
[18:33:29] <irc> <novice_person43> my user used for authentication is the only user configured
[18:35:45] <irc> <novice_person43> I tried iRedmail as well and got the same issue basically, so I assumed its a postfix thing, tried exim also, but I am to noob to really know what I am doing
[18:36:10] <irc> <novice_person43> I did it with Gmail address initially but they limit you these days
[18:36:19] <irc> <novice_person43> and some times the email takes days to show
[18:38:55] <irc> <Aleks[m]> ugh
[18:40:06] <irc> <Aleks[m]> are you sure it's using the appropriate protocol ? it should be STARTTLS (port 587)
[18:40:19] <irc> <Aleks[m]> also the login is just the username, not username@domain.tld
[18:40:23] <irc> <novice_person43> Uploaded file: https://uploads.kiwiirc.com/files/02eaefafa1c43be40abb95f1cd04844c/msedge_ELAAvW12Ex.png
[18:41:54] <irc> <freetux[m]> Hello. J’ai l’impression que je me fais gentiment spammer sur sshd & co, fail2ban à 100 % de CPU. Je voulais durcir les règles de jail.conf, je peux directement éditer le fichier où y’a une autre solution ?
[18:44:10] <irc> <Aleks[m]> tu peux directement éditer le fichier
[18:44:22] <irc> <Aleks[m]> tu n'aurais pas par hasard changé le port SSH sans le propager sur la conf fail2ban ?
[18:45:07] <irc> <Aleks[m]> novice_person43: alrighty that sounds legit - and for the login you confirm that you're using the username and not username@domain.tld ?
[18:45:32] <irc> <novice_person43> I am using username@domain
[18:46:19] <irc> <Aleks[m]> soooo just use the username
[18:46:46] <irc> <novice_person43> I will try that quick
[18:48:49] <irc> <novice_person43> still exact same error message
[18:48:50] <irc> <Aleks[m]> NB in that kind of log https://uploads.kiwiirc.com/files/5fe338e7bf2fa9b7ee31d32a2be0591a/WindowsTerminal_QlOVAFrn26.png if it worked you should see auth=1/1 instead of 0/1
[18:49:14] <irc> <novice_person43> Uploaded file: https://uploads.kiwiirc.com/files/0355c4833d02e0e7e6874c86ab24c3e6/WindowsTerminal_O2TQl4BYfm.png
[18:49:49] <irc> <Aleks[m]> zblerg
[18:50:44] <irc> <freetux[m]> <Aleks[m] "tu n'aurais pas par hasard chang"> C’est à dire ? J’ai jamais retouché à la conf depuis un bail..
[18:51:09] <irc> <novice_person43> I am going to create another user and try that one also to auth against
[18:55:40] <irc> <Aleks[m]> freetux: est-ce que tu as changé le port de connexion en SSH pour utiliser un autre port que le port 22 ?
[18:57:01] <irc> <freetux> oui
[18:57:52] <irc> <novice_person43> still same error... :(
[18:59:40] <irc> <Aleks[m]> é_è
[19:01:39] <irc> <Aleks[m]> naively i would try with another more "usual" mail client like thunderbird or something
[19:15:49] <irc> <novice_person43> using outlook I can connect succesfully
[19:39:19] <irc> <novice_person> sorry..i disconnected..load shedding is back