Language:
switch to room list switch to menu My folders
Go to page: First ... 21 22 23 24 [25] 26 27
[#] Mon Oct 04 2021 14:47:02 EDT from IGnatius T Foobar

Subject: Re: Ongoing issue with Citserver crashing

[Reply] [ReplyQuoted] [Headers] [Print]


Citadel 939 fixes an issue that has plagued a number of sites (including this one) for a long time. It was kind of an embarrassing problem, too: if a client attempted to STARTTLS on a session that was already encrypted, you would get a segfault inside the OpenSSL library, just like your example suggests.
Normal clients don't act this way, but there are malicious scanners out there that are looking for bugs to exploit.

Upgrade to 939 and the problem goes away. However, the database should *not* be corrupted by the server crashing in this way. We had this site's server crash hundreds of times and it's never harmed the database. I wonder if there is something else going on on your system? Disk full? Filesystem problem?
Database logs being deleted too early?

Definitely do the upgrade, but until we figure out the database problem, I would suggest putting your Citadel installation on a btrfs filesystem and backing it up using nightly snapshots. btrfs snapshots are awesome for backups.

[#] Tue Oct 05 2021 10:12:50 EDT from wintpe

[Reply] [ReplyQuoted] [Headers] [Print]

i guessed that and have generated in /citadel-data webcit.* and citadel.*

if ive missread this somewhere then please correct me

but currently no ssl connections work

regards peter 



[#] Tue Oct 05 2021 10:14:07 EDT from wintpe

[Reply] [ReplyQuoted] [Headers] [Print]

 

Tue Oct 05 2021 10:12:50 EDT from wintpe

i guessed that and have generated in /citadel-data webcit.* and citadel.*

if ive missread this somewhere then please correct me

but currently no ssl connections work

regards peter 



sorry that was in replay to 

 

When you generate new key and certificate, you need to give them the same file names as the automatically generated ones, and then restart the server.



[#] Tue Oct 05 2021 10:24:13 EDT from wintpe

Subject: Re: Docker container of Citadel is now ready to download

[Reply] [ReplyQuoted] [Headers] [Print]

you might have posted that on the forum, in the announcement, but thats not what you see if you go direct to the download page or the documentation.
 
from the download page or documentation the docker build looks like an official release
 

 

regards peter 
Fri Oct 01 2021 05:52:12 EDT from wintpe Subject: Re: Docker container of Citadel is now ready to download

 

Sat Aug 21 2021 19:08:24 EDT from IGnatius T Foobar Subject: Docker container of Citadel is now ready to download

Docker images are ready for testing :)

Go to https://www.citadel.org/docker.html to learn more. So far, this is working way better than the AppImage distribution was, and most of the work we did on that has translated very nicely to the container. It's extremely stable and should be compatible with any host system on which Docker will run.

We have 64-bit AMD/Intel and 32-bit ARM containers available.

It is currently considered a test build, but our intention is to make it the primary way people run the Citadel system, both on your own hardware and in the cloud.

hi, i posted a couple of messages in the support forum, re the docker images.

the download site did not mension it was for testing only, or maybe it was not obvious.

i have no prob running on test release if it works though so moving on.....

im now running the docker image as my home system, and its very stable, only thing that did not work, and whats not 

obvious , a way to fix was the generation of the keys.

 

im running it on rocky linux 8, essentialy centos/redhat.

 

i ran the three openssl commands to generatev the 3 keys for webcit and citadel in the citadel-data directory, and restarted

 

but i still cant enable non strict ssl or starttls on thunderbird or access webcit through https, whereas i could on my old citadel 8 rpm version.

any pointers?

 

regards peter

 

you might have posted that on the forum, in the announcement, but thats not what you see if you go direct to the download page or the documentation.
 
from the download page or documentation the docker build looks like an official release
 
regards peter 

 



[#] Thu Oct 07 2021 15:58:35 EDT from cfriend

Subject: Re: Ongoing issue with Citserver crashing

[Reply] [ReplyQuoted] [Headers] [Print]

 

Mon Oct 04 2021 14:47:02 EDT from IGnatius T Foobar Subject: Re: Ongoing issue with Citserver crashing

Citadel 939 fixes an issue that has plagued a number of sites (including this one) for a long time. It was kind of an embarrassing problem, too: if a client attempted to STARTTLS on a session that was already encrypted, you would get a segfault inside the OpenSSL library, just like your example suggests.
Normal clients don't act this way, but there are malicious scanners out there that are looking for bugs to exploit.

Upgrade to 939 and the problem goes away. However, the database should *not* be corrupted by the server crashing in this way. We had this site's server crash hundreds of times and it's never harmed the database. I wonder if there is something else going on on your system? Disk full? Filesystem problem?
Database logs being deleted too early?

Definitely do the upgrade, but until we figure out the database problem, I would suggest putting your Citadel installation on a btrfs filesystem and backing it up using nightly snapshots. btrfs snapshots are awesome for backups.

I did the upgrade that afternoon and I just finished setting up and mounting a BTRFS partition. Database has been moved into the new location. I have a CRON job set to run btrfs-snap at Midnight daily and keep 10 snapshots.  We will see if there are any more issues with DB corruption, so far, so good.

Thank you for the help.

 



[#] Fri Oct 15 2021 04:24:22 EDT from lotharea

Subject: Setting up DKIM - using Submission protocol for outbound

[Reply] [ReplyQuoted] [Headers] [Print]

Hi guys!

I am looking at the possible setup to add DKIM verification to my citadel server. I've looked at the instructions found under: https://www.citadel.org/dspam.html
Given that citadel supports both 25 (SMTP) and 587 (Submission) - would it be possible to set the dkimproxy to use the Submission protocol as it's outbound SMTP server like this:

  # specify what address/port DKIMproxy should listen on
  listen    127.0.0.1:10027
  
  # specify what address/port DKIMproxy forwards mail to
  relay     127.0.0.1:587

Eliminating the need to use an external SMTP provider or a separate mail server installation locally?



[#] Sat Oct 16 2021 12:29:22 EDT from IGnatius T Foobar

Subject: Re: Setting up DKIM - using Submission protocol for outbound

[Reply] [ReplyQuoted] [Headers] [Print]

Yes, you absolutely can configure Citadel to deliver outbound mail through any proxy you want. The "smart-host" box in the Internet configuration section will accept *any* valid SMTP URL.

For example: http://username:password@127.0.0.1:10027

[#] Sat Oct 30 2021 06:53:09 EDT from sciens

[Reply] [ReplyQuoted] [Headers] [Print]

Anyone come across this?

 

Oct 30 03:43:18 mailsrv01 systemd[1]: Started Citadel Server.
Oct 30 03:43:18 mailsrv01 citserver[2174]:
Oct 30 03:43:18 mailsrv01 citserver[2174]:
Oct 30 03:43:18 mailsrv01 citserver[2174]: *** Citadel server engine ***
Oct 30 03:43:18 mailsrv01 citserver[2174]: Version 939 (build 60d08101d) ***
Oct 30 03:43:18 mailsrv01 citserver[2174]: Copyright (C) 1987-2021 by the Citadel development team.
Oct 30 03:43:18 mailsrv01 citserver[2174]:
Oct 30 03:43:18 mailsrv01 citserver[2174]: This program is open source software: you can redistribute it and/or
Oct 30 03:43:18 mailsrv01 citserver[2174]: modify it under the terms of the GNU General Public License, version 3.
Oct 30 03:43:18 mailsrv01 citserver[2174]:
Oct 30 03:43:18 mailsrv01 citserver[2174]: This program is distributed in the hope that it will be useful,
Oct 30 03:43:18 mailsrv01 citserver[2174]: but WITHOUT ANY WARRANTY; without even the implied warranty of
Oct 30 03:43:18 mailsrv01 citserver[2174]: MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
Oct 30 03:43:18 mailsrv01 citserver[2174]: GNU General Public License for more details.
Oct 30 03:43:18 mailsrv01 citserver[2174]:
Oct 30 03:43:18 mailsrv01 citserver[2174]: libcitadel(unnumbered)
Oct 30 03:43:18 mailsrv01 citserver[2174]: main: running in data directory /usr/local/citadel
Oct 30 03:43:18 mailsrv01 citserver[2174]: citserver[2174]: Checking directory access
Oct 30 03:43:18 mailsrv01 citserver[2174]: Checking directory access
Oct 30 03:43:18 mailsrv01 citserver[2174]: citserver[2174]: Opening databases
Oct 30 03:43:18 mailsrv01 citserver[2174]: Opening databases
Oct 30 03:43:18 mailsrv01 citserver[2174]: citserver[2174]: db: mounting databases
Oct 30 03:43:18 mailsrv01 citserver[2174]: db: mounting databases
Oct 30 03:43:18 mailsrv01 citserver[2174]: citserver[2174]: Initializing configuration system
Oct 30 03:43:18 mailsrv01 citserver[2174]: Initializing configuration system
Oct 30 03:43:18 mailsrv01 citserver[2174]: Your system is configured for LDAP authentication,
Oct 30 03:43:18 mailsrv01 citserver[2174]: but you are running a server built without OpenLDAP support.
Oct 30 03:43:18 mailsrv01 systemd[1]: citadel.service: Main process exited, code=exited, status=107/n/a
Oct 30 03:43:18 mailsrv01 systemd[1]: citadel.service: Failed with result 'exit-code'.
Oct 30 03:43:18 mailsrv01 systemd[1]: citadel.service: Service RestartSec=100ms expired, scheduling restart.
Oct 30 03:43:18 mailsrv01 systemd[1]: citadel.service: Scheduled restart job, restart counter is at 5.
Oct 30 03:43:18 mailsrv01 systemd[1]: Stopped Citadel Server.
Oct 30 03:43:18 mailsrv01 systemd[1]: citadel.service: Start request repeated too quickly.
Oct 30 03:43:18 mailsrv01 systemd[1]: citadel.service: Failed with result 'exit-code'.
Oct 30 03:43:18 mailsrv01 systemd[1]: Failed to start Citadel Server.

Fresh install using the easy script and tried to configure the instance for LDAP 2307 auth.



[#] Sat Oct 30 2021 11:34:09 EDT from IGnatius T Foobar

[Reply] [ReplyQuoted] [Headers] [Print]

Try installing the OpenLDAP development libraries (apt install libldap2-dev , or yum install openldap-devel , depending on your Linux distribution) then wipe the Citadel build and try it again.

I'm happy to see you're using LDAP authentication. It really integrates well!

[#] Sun Oct 31 2021 04:44:27 EDT from sciens

[Reply] [ReplyQuoted] [Headers] [Print]

 

Sat Oct 30 2021 11:34:09 EDT from IGnatius T Foobar
Try installing the OpenLDAP development libraries (apt install libldap2-dev , or yum install openldap-devel , depending on your Linux distribution) then wipe the Citadel build and try it again.

I'm happy to see you're using LDAP authentication. It really integrates well!

I installed openldap-devel after the fact. Ill try to rerun the install and add the openldap-devel package before running the easy script.

[root@mailsrv01 ~]# yum list installed | grep ldap
openldap.x86_64                                                    2.4.46-17.el8_4                           @anaconda
openldap-clients.x86_64                                            2.4.46-17.el8_4                           @baseos
openldap-devel.x86_64                                              2.4.46-17.el8_4                           @baseos

 



[#] Sun Oct 31 2021 06:52:07 EDT from sciens

[Reply] [ReplyQuoted] [Headers] [Print]

Yep. Same result...

Centos-8 Stream wouldn't be the problem would it?

 



[#] Mon Nov 01 2021 09:40:42 EDT from IGnatius T Foobar

[Reply] [ReplyQuoted] [Headers] [Print]

Are you sure Easy Install built a new server? Normally it doesn't rebuild unless it sees we released a new version. If you delete all of the *.sum files in /usr/local/ctdlsupport/etc and /usr/local/citadel, it will force Easy Install to recompile everything on the next run.

If that doesn't work, we'll try to get you going using the Docker version.,

[#] Tue Nov 02 2021 03:04:07 EDT from sciens

[Reply] [ReplyQuoted] [Headers] [Print]

I did a whole OS reinstall verified the openldap packages were installed and reran the easy install. (yum install -y openldap* *ldap) just to be sure nothing was missing.

Id prefer to run on an OS since I have an all virtualized environment.

I know the easy script compiles some things but didnt know it did the entire compilation process. I presume manual compiling wouldn't give a different result.



[#] Sun Nov 07 2021 05:44:56 EST from meta.selfcruzio.com

[Reply] [ReplyQuoted] [Headers] [Print]

How do we delete our accoun?

-- 
Meta Self
Santa Cruz
USA



[#] Sun Nov 07 2021 14:02:19 EST from IGnatius T Foobar

[Reply] [ReplyQuoted] [Headers] [Print]


Hi meta,

You could just abandon the account and start another one. Or if you want we can change the name of the one you have; just let me know what to change it to. Alternatively, if you set the password to "deleteme" it will do that overnight.

[#] Mon Nov 08 2021 20:04:09 EST from DaleDew

Subject: Need help starting Citadel

[Reply] [ReplyQuoted] [Headers] [Print]

I read the installation thing, made a big deal about it taking a long time, it didn't.

I do not know how to use Linux at all, but nonetheless I am determined to set up my own BBS so I can avoid the dweebs and sheep that are infesting the internet.

 

See, the problem I have is that the installation instructions made a HUGE deal about the process of installing Citadel, which was VERY easy and did not require instructions, but then they said:

 

After Installation

After installing Citadel, log in and create an account using the name you gave Easy Install. Although most of the settings for the server come with sensible defaults, you will probably want to use the web based administration functions to customize your system somewhat. Information on these settings and what they do can be found in the online documentation.

Have Fun!

 

Now, what can tell me what is wrong here? There are excruciating instructions for everything before and after this which I know I cab figure out, but NOWHERE does it say how to actually run citadel. I can't even find the files that are supposedly on my computer pertaining to it.

How the hell do I start the program? How am I supposed to log in if there is nothing to log in to? Who shit out these instructions, satin? I need to know.



[#] Mon Nov 08 2021 20:50:13 EST from ParanoidDelusions

Subject: Re: Need help starting Citadel

[Reply] [ReplyQuoted] [Headers] [Print]

So... 

I'm pretty competent in Linux - but nowhere near the level of the guys you'll encounter here on the BBS. But based on those facts, I'm going to warn you that you've got a real steep learning curve ahead of you. 

Are you an IT professional? That will help. 

Citadel is most likely already running. There isn't any program that you access, in the manner that you're probably thinking of it. You either point your web browser to it, or you set it up so that a Telnet or SSH session launches Citadel and then Telnet into it. 

What variant of Linux are you running? Debian, Redhat, Ubuntu, Raspberry OS? 

Your citadel binaries all sit in /usr/local/citadel. You can go there to verify that they're installed. 

sudo journalctl -r|grep cit |more


Will filter out just messages from citadel in the log (space for more, ctrl-c to end viewing the log before reaching the end). 


ps -aux |grep cit

and 

ps -aux grep webcit

Will show you that the Citadel services are running. 

You probably need to point your web browser at http://127.0.0.1 to get to Citadel. Unless you installed Apache with your default install - in which case, did you put Citadel on a different port than Apache? If not - Citadel probably is going to fail to start because the port is already assigned to Apache. 

Learning Linux is the more difficult part of running Citadel. The easy install generally just works. If things aren't working, that is almost always a Linux issue... Linux fanatics would say it is usually an OPERATOR issue, and they wouldn't be completely wrong - but Linux goes out of its way to make it likely that if you don't know exactly what you're doing, things won't work. 





Mon Nov 08 2021 20:04:09 EST from DaleDew Subject: Need help starting Citadel

I read the installation thing, made a big deal about it taking a long time, it didn't.

I do not know how to use Linux at all, but nonetheless I am determined to set up my own BBS so I can avoid the dweebs and sheep that are infesting the internet.

 

See, the problem I have is that the installation instructions made a HUGE deal about the process of installing Citadel, which was VERY easy and did not require instructions, but then they said:

 

After Installation

After installing Citadel, log in and create an account using the name you gave Easy Install. Although most of the settings for the server come with sensible defaults, you will probably want to use the web based administration functions to customize your system somewhat. Information on these settings and what they do can be found in the online documentation.

Have Fun!

 

Now, what can tell me what is wrong here? There are excruciating instructions for everything before and after this which I know I cab figure out, but NOWHERE does it say how to actually run citadel. I can't even find the files that are supposedly on my computer pertaining to it.

How the hell do I start the program? How am I supposed to log in if there is nothing to log in to? Who shit out these instructions, satin? I need to know.



 



[#] Mon Nov 08 2021 20:58:47 EST from ParanoidDelusions

[Reply] [ReplyQuoted] [Headers] [Print]

You're welcome to visit my Citadel at http://www.wallofhate.com

I stared on a Raspbian Pi, then I moved it to an i5 NUC, now I run it in Proxmox as a VM on an i5 NUC. 


I've got it to a place where it runs so good I've forgotten most of what I had to do to set it up. But I ran it for over a year getting there. 








[#] Tue Nov 09 2021 17:22:03 EST from Nurb432

[Reply] [ReplyQuoted] [Headers] [Print]

Agreed with the above, 'how to login' will depend a lot on the answers to the install questions..  

 

One can assume port 80, but you may have chosen differently. And we assume you installed webcit too. ( i think its optional. .. i cant remember now as i wouldn't leave it off )



[#] Wed Nov 10 2021 22:12:12 EST from ParanoidDelusions

[Reply] [ReplyQuoted] [Headers] [Print]

And I'd also add, don't let this discourage you. You're wanting to run it for all the right reasons, and we want to help you succeed, for the same reasons. We're all on the same page here, and Citadel is the perfect mechanism for achieving what you're after. 

Which is why you should become a regular here, and on my Citadel, and invite people who think alike to follow you to both places. 

And if *I* can do it... you can.

 

 



Go to page: First ... 21 22 23 24 [25] 26 27