Language:
switch to room list switch to menu My folders
Go to page: 1 2 3 4 5 [6] 7 8 9 10 ... Last
[#] Wed Jan 27 2016 13:46:04 EST from "Panagiotis Palias" <panagos81@gmail.com> to citadel_support@citadel.org

Subject: Re: [Citadel Support] letsencrypt SSL

[Reply] [ReplyQuoted] [Headers] [Print]

Hello Ver,
which format do you have?

On 27 January 2016 at 19:35, Ver ndert <Ver_ndert@uncensored.citadel.org> wrote:

Hi and, first of all, thanks for this beautiful software. I run Apache on Debian Jessie alongside Citadel. For my Apache server, i have working letsencrypt keys which i would love to use for Citadel, too. Maybe i'm just tired, but i'm somewhat lost here. I'm able to locate those keys of course and i know where i'd have to put them for Citadel. But they're in a different format. Do i need to convert them ? Anybody who can point me to a solution here ? Thanks in advance.




--
-p


[#] Wed Jan 27 2016 13:59:11 EST from dothebart @ Uncensored

Subject: Re: Possible to run webcit as non-root user?

[Reply] [ReplyQuoted] [Headers] [Print]

 

Tue Jan 26 2016 20:03:09 EST from jackdeth @ Uncensored Subject: Possible to run webcit as non-root user?

Was just wondering if webkit can be configured to run as non-root like citserver can.  It doesn't prompt for the option in the "setup" program, and I didn't see any command line options I could set in /etc/rc.d/init.d/webcit, but figured I would ask.



webcit will drop root privileges and swap to the userid you specified with -u

The watcher process  however will remain running as root, since it may need the privileges to bind a port below 1024 when having to respawn a crashed work process.

The only permission webcit needs at runtime is either access to the citadel unix domain socket, or tcp port 504 plus read access on its static files.



[#] Wed Jan 27 2016 14:00:38 EST from dothebart @ Uncensored

Subject: Re: No STARTTLS option on port 25?

[Reply] [ReplyQuoted] [Headers] [Print]

 

Tue Jan 26 2016 20:07:36 EST from jackdeth @ Uncensored Subject: No STARTTLS option on port 25?

When I connect to my citadel server on port 25, I do not get the STARTTLS option, but it is present on port 587 (see transcript below).

Is it possible to get Citadel to accept e-mail using TLS on port 25?

220 test ESMTP Citadel server ready.
ehlo localhost
250-Hello localhost (localhoswt [127.0.0.1])
250-HELP
250-SIZE 10485760
250-AUTH LOGIN PLAIN
250-AUTH=LOGIN PLAIN
250 8BITMIME

this may have been due to some ancient outlook version misbehaving.

In general we encurage usage of port 587.



[#] Wed Jan 27 2016 14:03:57 EST from dothebart @ Uncensored

Subject: Re: WebCit resetting highest message read counter?

[Reply] [ReplyQuoted] [Headers] [Print]

 

Wed Jan 27 2016 03:16:10 EST from jackdeth @ Uncensored Subject: WebCit resetting highest message read counter?

Can anyone give me some insight into why WebCit is sending "SLRP HIGHEST" commands when I just list the messages in my Inbox?  This clears all my "unread" flags and I don't know which emails I have read and which ones I haven't.  

Seems like an odd feature, am I missing something on how this is supposed to work?

 



hm, you're probably right,

rooms.c

        if (WC->CurRoom.view != VIEW_MAILBOX) { /* dotgoto acts like dotskip when we're in a mailbox view */
                slrp_highest();
        }
^^^ should also check for VIEW_JSON_LIST



[#] Wed Jan 27 2016 14:07:42 EST from dothebart @ Uncensored

Subject: Re: letsencrypt SSL

[Reply] [ReplyQuoted] [Headers] [Print]

well,

Whats their format?

you neeth the .cer format that looks like this:

root@citserver:/etc/ssl/citadel# cat citadel.cer

-----BEGIN CERTIFICATE-----
<base654 stuff here>

-----END CERTIFICATE-----

 

Wed Jan 27 2016 13:35:13 EST from Ver ndert @ Uncensored Subject: letsencrypt SSL

Hi and, first of all, thanks for this beautiful software. I run Apache on Debian Jessie alongside Citadel. For my Apache server, i have working letsencrypt keys which i would love to use for Citadel, too. Maybe i'm just tired, but i'm somewhat lost here. I'm able to locate those keys of course and i know where i'd have to put them for Citadel. But they're in a different format. Do i need to convert them ? Anybody who can point me to a solution here ? Thanks in advance.





[#] Wed Jan 27 2016 14:37:55 EST from Ver ndert @ Uncensored

[Reply] [ReplyQuoted] [Headers] [Print]

Thanks for helping me. I have .pem files: cert.pem chain.pem fullchain.pem privkey.pem

[#] Wed Jan 27 2016 14:44:05 EST from lol @ Uncensored

Subject: CalDAV CalDAV!

[Reply] [ReplyQuoted] [Headers] [Print]

CalDav / CardDav Support would be the most awesome thing...



[#] Wed Jan 27 2016 14:44:38 EST from Ver ndert @ Uncensored

[Reply] [ReplyQuoted] [Headers] [Print]

Thanks for helping me. I have .pem files: cert.pem chain.pem fullchain.pem privkey.pem

[#] Wed Jan 27 2016 16:18:33 EST from toysareforboys @ Uncensored

[Reply] [ReplyQuoted] [Headers] [Print]

I'm on Arch Linux. I ran Pacman -Syu this morning and after it updated a bunch of stuff and rebooted now Citadel doesn't start :(

 

This is the error I get when I run "systemctl status citadel.service"

citadel.service - Citadel Groupware Server
Loaded: loaded (/etc/systemd/system/citadel.service; enabled; vendor preset: disabled)
Active: failed (Result: exit-code) since Wed 2016-01-27 16:10:12 EST; 35s ago
Process: 13111 ExecStart=/usr/local/citadel/citserver -d -l syslog (code=exited, status=127)

No idea where to troubleshoot from here :(

 

-Jamie M.



[#] Wed Jan 27 2016 16:25:10 EST from "Panagiotis Palias" <panagos81@gmail.com> to citadel_support@citadel.org

Subject: Re: [Citadel Support] (no subject)

[Reply] [ReplyQuoted] [Headers] [Print]

That format should be fine. https://www.sslshopper.com/ssl-converter.html
However you need to rename (or make symbolic links) the files and place them in the proper folder.
http://www.citadel.org/doku.php/faq:systemadmin:how_to_install_a_certificate_signed_by_a_recognized_certificate_authority

Στις 27 Ιαν 2016 8:45 μ.μ., ο χρήστης "Ver ndert" <Ver_ndert@uncensored.citadel.org> έγραψε:
Thanks for helping me. I have .pem files: cert.pem chain.pem fullchain.pem privkey.pem


[#] Wed Jan 27 2016 17:42:01 EST from jackdeth @ Uncensored

Subject: Re: No STARTTLS option on port 25?

[Reply] [ReplyQuoted] [Headers] [Print]

Hmm... I'd like to have my internet-facing mail server negotiate an TLS session (if the sender supports it), and most server-to-server communication is over port 25.  Is there no way to have Citadel offer STARTTLS on port 25?

 

Wed Jan 27 2016 14:00:38 EST from dothebart @ Uncensored Subject: Re: No STARTTLS option on port 25?

 

Tue Jan 26 2016 20:07:36 EST from jackdeth @ Uncensored Subject: No STARTTLS option on port 25?

When I connect to my citadel server on port 25, I do not get the STARTTLS option, but it is present on port 587 (see transcript below).

Is it possible to get Citadel to accept e-mail using TLS on port 25?

220 test ESMTP Citadel server ready.
ehlo localhost
250-Hello localhost (localhoswt [127.0.0.1])
250-HELP
250-SIZE 10485760
250-AUTH LOGIN PLAIN
250-AUTH=LOGIN PLAIN
250 8BITMIME

this may have been due to some ancient outlook version misbehaving.

In general we encurage usage of port 587.



 



[#] Wed Jan 27 2016 17:44:14 EST from jackdeth @ Uncensored

Subject: Re: Possible to run webcit as non-root user?

[Reply] [ReplyQuoted] [Headers] [Print]

Not sure how I missed the "-u" parameter.  It's working now, thank you for your help!

Wed Jan 27 2016 13:59:11 EST from dothebart @ Uncensored Subject: Re: Possible to run webcit as non-root user?

 

Tue Jan 26 2016 20:03:09 EST from jackdeth @ Uncensored Subject: Possible to run webcit as non-root user?

Was just wondering if webkit can be configured to run as non-root like citserver can.  It doesn't prompt for the option in the "setup" program, and I didn't see any command line options I could set in /etc/rc.d/init.d/webcit, but figured I would ask.



webcit will drop root privileges and swap to the userid you specified with -u

The watcher process  however will remain running as root, since it may need the privileges to bind a port below 1024 when having to respawn a crashed work process.

The only permission webcit needs at runtime is either access to the citadel unix domain socket, or tcp port 504 plus read access on its static files.



 



[#] Wed Jan 27 2016 19:51:20 EST from Robert Wolfe @ Neptune

Subject: Testing

[Reply] [ReplyQuoted] [Headers] [Print]

Ok, just the standard test posting :)



[#] Thu Jan 28 2016 01:04:35 EST from jackdeth @ Uncensored

Subject: Re: WebCit resetting highest message read counter?

[Reply] [ReplyQuoted] [Headers] [Print]

I guess I should just comment this out of the code.  

It looks like it occurs in 3 places in the webcit code (list below just using grep on a clone of the latest git repo).  

I'm just not sure why this would be desirable behavior..am I missing something? 

webcit/roomops.c:slrp_highest();
webcit/marchlist.c:slrp_highest();
webcit/who.c:slrp_highest();
 
Wed Jan 27 2016 14:03:57 EST from dothebart @ Uncensored Subject: Re: WebCit resetting highest message read counter?

 

Wed Jan 27 2016 03:16:10 EST from jackdeth @ Uncensored Subject: WebCit resetting highest message read counter?

Can anyone give me some insight into why WebCit is sending "SLRP HIGHEST" commands when I just list the messages in my Inbox?  This clears all my "unread" flags and I don't know which emails I have read and which ones I haven't.  

Seems like an odd feature, am I missing something on how this is supposed to work?

 



hm, you're probably right,

rooms.c

        if (WC->CurRoom.view != VIEW_MAILBOX) { /* dotgoto acts like dotskip when we're in a mailbox view */
                slrp_highest();
        }
^^^ should also check for VIEW_JSON_LIST



 



[#] Thu Jan 28 2016 02:42:08 EST from dothebart @ Uncensored

Subject: Re: WebCit resetting highest message read counter?

[Reply] [ReplyQuoted] [Headers] [Print]

If you're using the "goto next" button, and go through rooms with bulletin board view, you usually only read the newest messages. Most of the other room formats (addressbook, ...) don't care much about read / unread anyways.

Thu Jan 28 2016 01:04:35 EST from jackdeth @ Uncensored Subject: Re: WebCit resetting highest message read counter?

I guess I should just comment this out of the code.  

It looks like it occurs in 3 places in the webcit code (list below just using grep on a clone of the latest git repo).  

I'm just not sure why this would be desirable behavior..am I missing something? 

webcit/roomops.c:slrp_highest();
webcit/marchlist.c:slrp_highest();
webcit/who.c:slrp_highest();
 
Wed Jan 27 2016 14:03:57 EST from dothebart @ Uncensored Subject: Re: WebCit resetting highest message read counter?

 

Wed Jan 27 2016 03:16:10 EST from jackdeth @ Uncensored Subject: WebCit resetting highest message read counter?

Can anyone give me some insight into why WebCit is sending "SLRP HIGHEST" commands when I just list the messages in my Inbox?  This clears all my "unread" flags and I don't know which emails I have read and which ones I haven't.  

Seems like an odd feature, am I missing something on how this is supposed to work?

 



hm, you're probably right,

rooms.c

        if (WC->CurRoom.view != VIEW_MAILBOX) { /* dotgoto acts like dotskip when we're in a mailbox view */
                slrp_highest();
        }
^^^ should also check for VIEW_JSON_LIST



 



 



[#] Thu Jan 28 2016 09:13:17 EST from hubertus @ Uncensored

Subject: Re: CalDAV CalDAV!

[Reply] [ReplyQuoted] [Headers] [Print]

Oh yes, it would !

Wed Jan 27 2016 14:44:05 EST from lol @ Uncensored Subject: CalDAV CalDAV!

CalDav / CardDav Support would be the most awesome thing...



 



[#] Thu Jan 28 2016 09:35:27 EST from lachman @ Uncensored

Subject: citadel restarts as root and c_port_number set invalid

[Reply] [ReplyQuoted] [Headers] [Print]

For some reason, I have been seeing citserver crashes.  I see following messages after the crash:

Message from syslogd@citadel at Wed Jan 27 14:33:21 2016 ...
citadel citserver[5322]: citadel should not be configured to run as root! Check the value of c_ctdluid

Message from syslogd@citadel at Wed Jan 27 14:33:21 2016 ...
citadel citserver[5322]: configuration setting c_port_number is not -1 (disabled) or a valid TCP-Port - check your config! Default setting is: 504

 

when i rerun citadel setup to change the user back to citadel, I see that citadel sees the user as root and the c_port_number has been set to zero.  I set them back and cross my fingers.

 

1) what are the concequences of running citadel as root?  (I saw someone else mention it in a "bug report" posted here, too)

2)  assuming citadel doesn't keep crashing, is this stable?

 

I haven't isolated the crashes, yet.  Im running a slackware current using a recent easy_install (which i ran as the root user).  I am migrating from an old citadel via imapsync (~400k messages 60gb). This is my second attempt.  In my first attempt I butchered the imapsync lines, and probably made a mess of things.  When I started pushing this server with ~12 clients syncing up devices, I noticed the above crashes becoming so frequent that the server was not usable. 

So far on the second attempt, the imapsync went clean, and I've only seen this crash twice. I thought for a while the crashes were from using an improperly formatted email address in the journalling feature.  This second crash overnight has me a bit puzzled.  I have yet to really push it with clients and figured I should post on this forum.  I am still performing imapsyncs regularly to keep the new server synced.

 

Thanks in advance, I love this project.

lachman

 



[#] Thu Jan 28 2016 10:11:16 EST from Robert Wolfe @ Neptune

Subject: Telnet Connections

[Reply] [ReplyQuoted] [Headers] [Print]

Good morning all.

I am having an issue with users not being able to access the BBS via telnet.  I cannot even access it that way if I telnet to localhost.  Is there something I need to do with Citadel in order to make the ANSI side of the system accept inbound telnet connections?



[#] Thu Jan 28 2016 10:20:57 EST from robert @ Neptune

Subject: Re: Telnet Connections

[Reply] [ReplyQuoted] [Headers] [Print]

2016-01-28 09:11 from Robert Wolfe @neptune
Subject: Telnet Connections
Good morning all.

I am having an issue with users not being able to access the BBS via
telnet.  I cannot even access it that way if I telnet to localhost.
 Is there something I need to do with Citadel in order to make the
ANSI side of the system accept inbound telnet connections?

Ok, looks like I was able to get telnet working by installing telnetd and by creating a user with /usr/local/citadel/citadel as their shell. Something, however, tells me that this is NOT the correct way to do this. Is there something else that I need to be doing instead in order to enable inbound telnet connections to the Citadel server directly instead of going through telnetd?

[#] Thu Jan 28 2016 14:06:44 EST from jame @ Rocasa Mail System

Subject: Re: Testing

[Reply] [ReplyQuoted] [Headers] [Print]

 

Wed Jan 27 2016 19:51:20 EST from Robert Wolfe @ Neptune Subject: Testing

Ok, just the standard test posting :)

That seems to have gotten around...<g>

Btw; which Citadel version did you install?  On which OS version?  (I'm using Debian for my Citadel installs...)

 

 

Jame

 

 



Go to page: 1 2 3 4 5 [6] 7 8 9 10 ... Last