Language:
switch to room list switch to menu My folders
Go to page: 1 2 3 4 [5] 6 7 8 9 ... Last
[#] Thu Mar 22 2018 14:13:38 EDT from IGnatius T Foobar @ Uncensored

Subject: Re: Force HTTPS

[Reply] [ReplyQuoted] [Headers] [Print]

Is there a way to make WebCit redirect everything to the secure page?

Nope. Use a regular web server for that.

[#] Thu Mar 22 2018 15:12:08 EDT from warbaby @ Uncensored

Subject: Re: TLS/SSL/ encryption?

[Reply] [ReplyQuoted] [Headers] [Print]

You have 3 seperate tasks:

CERT FOR CITADEL

Copy the files from /etc/letsencrypt/live/<domain> to the citadel keys directory (/usr/local/citadel/keys for ezinstall)  A link won't work because root owns the files in /etc/letsencrypt ..citadel will hang/die.  I wrote a tutorial on this a while ago, posted here, don't see it at the moment.   I believe fullchain.pem -> citadel.csr and privkey.pem -> citadel.key.  But you should look at the content of those files to be sure.  There was some valid reason for using the fullchain, probabily to prevent an error in T-bird when letsencrypt was getting started.   This is for authentication from a mail client for SMTP, not SMTP smarthost setup. 

CERT FOR WEBCIT

If you're using webcit, do something similar in /usr/local/webcit/keys/ (those are ezinstall locations, yours may vary), which is used for the SSl on 443 for webcit.  I don't use it as a daily thing, but it's handy to have it up for configuration changes.  You can run webcit it with ssl on an alternate port (2000), while still running some other mail client (roundcube, whatever) on 443 on the same box. 

CONFIGURE A CLIENT

If you are sending okay on 25, you just have to bang around until you find the SSL settings which work.  After you have setup the cert & key for citadel, open the firewall for anthing like a SMTP port, 587 465 (ufw allow 587/tcp etc)  then use something like Thunderbird to auto configure itself on your email address.  The problem may not be SSL/TLS it could be sending the full email address instead of just the username. Cit wants plaintext auth, username only.  Also, check your mx records.  I'm using mail as a host name but it's not a bad idea to setup CNAMEs for imap. and smtp. some clients look for that.

To see what is going on all the while, tail the log file while you are working 

tail -f /var/log/mail.info

(mail.log, whereever you are logging)

USING A 3rd PARTY SMARTHOST

For auth from citadel to a smarhost, it doesn't require those keys,  it's handled by the open-ssl lib/pkg just make sure it's installed. Get the exact auth string from your provider.

 

Mon Mar 05 2018 07:07:36 PM EST from trundle @ Uncensored Subject: TLS/SSL/ encryption?

Hi Gang,

Been a lurker for quite sometime. Wanted to join in conversations but  I wanted to successfully deploy citadel mainly to use for spice works ticket system.

After going through the docs and googling, I feel like i know nothing about servers/networking/linux, even tho I have been a tech for a couple a years.

I can receive mail only if I open port 25, but curious how to get ssl/tls. I understand(or thought I did) that a tls session is wrapped around the message. 

I have applied a cert via letsencypt.

I would like to verify encryption is happening and not plain auth.

My ultimate goal is to stop gmail/yahoo/office365 to not saying my message was not encrypted or is that beacsue of my free cert from  letsencrypt?

I am sure someone has asked this, but failing to search for those posts. 

Is it possible to get some insight, suggestions, or link to search the support more thoroughly.

Willing to bang head and get through the headaches.

IF I am missing something easy, please slap me.

Thank you

<KnoNothingTech>



 



[#] Thu Mar 22 2018 15:21:03 EDT from warbaby @ Uncensored

Subject: Re: TLS/SSL/ encryption?

[Reply] [ReplyQuoted] [Headers] [Print]

Also, just to be clarify.. what I described is encryption on the connection (data-in-motion), not encrypted email (data-at-rest). That is normally done with your client, and probably GNU PGP, some plugins, jthings like that.   I mention this because you said "saying my message was not encrypted" which may be an idiomatic way of saying they wouldn't like your lack of an encrypted connection (which really only applies in a smarthost situation), but literally meaning encryption of the email message itself. 

Not trying to pick you apart here, just want to make sure we're communicating.

 

Mon Mar 05 2018 07:07:36 PM EST from trundle @ Uncensored Subject: TLS/SSL/ encryption?

Hi Gang,

Been a lurker for quite sometime. Wanted to join in conversations but  I wanted to successfully deploy citadel mainly to use for spice works ticket system.

After going through the docs and googling, I feel like i know nothing about servers/networking/linux, even tho I have been a tech for a couple a years.

I can receive mail only if I open port 25, but curious how to get ssl/tls. I understand(or thought I did) that a tls session is wrapped around the message. 

I have applied a cert via letsencypt.

I would like to verify encryption is happening and not plain auth.

My ultimate goal is to stop gmail/yahoo/office365 to not saying my message was not encrypted or is that beacsue of my free cert from  letsencrypt?

I am sure someone has asked this, but failing to search for those posts. 

Is it possible to get some insight, suggestions, or link to search the support more thoroughly.

Willing to bang head and get through the headaches.

IF I am missing something easy, please slap me.

Thank you

<KnoNothingTech>



 



[#] Thu Mar 22 2018 17:36:39 EDT from warbaby @ Uncensored

Subject: Having fun with Delta Chat & Citadel

[Reply] [ReplyQuoted] [Headers] [Print]

So I've been playing with the DeltaChat "Chat via email" android app through my phone/citadel box and finding it a handy little thing, particularly for friends/family who can't or won't cope with any complexity.  DC is touted as "the ease of chat with the ubiquity of email" and I have to say it it's pretty much that.  It is an GPL 3 licensed pkg available through F-droid.  https://delta.chat/  

It's not a full-featured email client (and won't replace one), it's a chat app running over email (IMAP/SMTP) that accepts inline attachments and looks frighteningly like .. a chat app.   It's pretty neat.  Anybody running a citadel box should try it for work/home/play.  It works with any incoming mail, provided you "accept the request" (whitelist) the account to chat with you.

There are two minor rubs with Citadel: the auto config requires intervention, and DeltaChat occasionally complains about not being able to change to <main_floor>.  I did some renaming of floors, trying 'All' and a few other standard IMAP names, but there was no change, logs reveal no issues. Not really deal-breakers, but it would be nice to have things working seamlessly.

I'm going to speak with the Delta Chat developers about handling multiple root level folders (eg, floors) and  mailing list folders (public rooms) and work with them to get Citadel's folder/floor layout supported.  Also the auto config.  It will be good for both projects to have DeltaChat auto-configure any Citadel box based on email address and password with a proper MX record for the domain.  

If we can accomplish those things it will keep Citadel solidly in the "private chat server" space regardless of the future of XMPP.  This is my rational for enlisting the support of the community here. 

Take a look at it.  Try the client. https://delta.chat/en/download  Look at the code..  https://github.com/deltachat/deltachat-android  Also, F-droid (https://f-droid.org/) is a nice repository of FOSS apps for your android device. Also available on Google Play.

 

 

 

 

 



[#] Thu Mar 22 2018 20:01:27 EDT from userT @ Uncensored

Subject: attendees in calendar

[Reply] [ReplyQuoted] [Headers] [Print]

Hi

Installed latest citadel with easy install script in centos 7.

I tried creating an event in the calendar in webcit. In the attendees tab I tried adding some users, but to my surprise citadel's user list is empty! Only my user's personal contacts appear.
Still when saving the event the attendees are never saved at all. I tried modifying and saving again and still no luck.

Also the 'check attendee availability' button doesn't work, and I can't delete selected attendees if I make a mistake.

Any help is appreciated.

Regards.

(I still need to try the thunderbird connectors, hope they still work)



[#] Sat Mar 24 2018 00:25:56 EDT from gooder @ Uncensored

Subject: Security problem

[Reply] [ReplyQuoted] [Headers] [Print]


I found a problem with citadel.

For exemple for that site, if we are not registered on that site and we put that sentence :

http://uncensored.citadel.org/webcit/do_template?template=user_list

We see all registered name.  Is it possible to put some restriction about that ?

Thanks

 

 



[#] Mon Mar 26 2018 09:34:36 EDT from alex007 @ Uncensored

Subject: Re: Citadel on Debian Stretch??

[Reply] [ReplyQuoted] [Headers] [Print]

 

It doesn't work for me via apt-get from official Debian sources.
It ends up with segmentation fault.

See
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862300

It does work with the easy install script, rather use this.

Tue Mar 20 2018 20:57:12 EDT from citadel4dje @ Uncensored Subject: Citadel on Debian Stretch??

Does it install easily without problems??



 



[#] Mon Mar 26 2018 10:33:20 EDT from alex007 @ Uncensored

Subject: Re: Installing citadel on raspberry pi running jessie

[Reply] [ReplyQuoted] [Headers] [Print]

Better use the easy-install script, see instructions on

citadel.org

Wed Feb 21 2018 12:51:00 EST from nbewhm4 @ Uncensored Subject: Installing citadel on raspberry pi running jessie

The installation seemed to go ok, without any visible errors, but when I try and login as the new admin, I have to click the login button 3 times before anything happens, then I just get the clocking circle icons.

 

I ran the following:

sudo apt-get update

sudo apt-get upgrade

sudo apt-get install citadel-suite

 

I am running Raspbian 9.3, codename stretch

Then I also tried changing my sources.list to:

deb http://debian.citadel.org/debian/jessie main 

I get the following error:
E: Malformed entry 4 in list file /etc/apt/sources.list (Component)
E: The list of sources could not be read.
 
 
Any helpful suggestions would be appreciated!
 
Regards,
Andrew.


 



[#] Mon Mar 26 2018 10:36:46 EDT from alex007 @ Uncensored

Subject: Re: Installing citadel on raspberry pi running jessie

[Reply] [ReplyQuoted] [Headers] [Print]

So you have Debian stretch?

Better use the easy-install script as described on citadel.org

 

Wed Feb 21 2018 12:51:00 EST from nbewhm4 @ Uncensored Subject: Installing citadel on raspberry pi running jessie

The installation seemed to go ok, without any visible errors, but when I try and login as the new admin, I have to click the login button 3 times before anything happens, then I just get the clocking circle icons.

 

I ran the following:

sudo apt-get update

sudo apt-get upgrade

sudo apt-get install citadel-suite

 

I am running Raspbian 9.3, codename stretch

Then I also tried changing my sources.list to:

deb http://debian.citadel.org/debian/jessie main 

I get the following error:
E: Malformed entry 4 in list file /etc/apt/sources.list (Component)
E: The list of sources could not be read.
 
 
Any helpful suggestions would be appreciated!
 
Regards,
Andrew.


 



[#] Mon Mar 26 2018 10:59:48 EDT from Anthony @ Uncensored

Subject: Citadel Easy Install

[Reply] [ReplyQuoted] [Headers] [Print]

Hello All I am attempting to install citadel on a closed system with no access to the internet is there anywhere to download the easy install package of citadel for redhat?



[#] Mon Mar 26 2018 11:23:30 EDT from IGnatius T Foobar @ Uncensored

Subject: Re: Citadel Easy Install

[Reply] [ReplyQuoted] [Headers] [Print]

Hello All I am attempting to install citadel on a closed system with
no access to the internet is there anywhere to download the easy
install package of citadel for redhat?

You can probably fake it this way:

1. Download the script from http://easyinstall.citadel.org/install to your local machine
2. Edit the script, changing all of the download URL's to local references
3. Download all of the components it references
4. Put all of that stuff onto the server you want to install.

[#] Mon Mar 26 2018 11:38:50 EDT from the-cox @ Uncensored

Subject: could anybody update the citadel website

[Reply] [ReplyQuoted] [Headers] [Print]

Hi all,

ran into the issue:

OpenLDAP development headers are missing during install of citadel server

Solution was pased here in the forum:

apt-get install libldap2-dev

 

Could this be placed into the

http://www.citadel.org/doku.php/installation:easyinstall:prereq-debian.html

Prerequisites for Debian and Ubuntu systems:

Would help for new debian and raspian installations ;-)

 

Cheers,

Jan

PS: I always enjoy installing Citadel on raspberry - new model 3B+ rocks



[#] Mon Mar 26 2018 17:47:29 EDT from bgerum @ Uncensored

Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

[Reply] [ReplyQuoted] [Headers] [Print]

 

Wed Mar 07 2018 03:47:24 EST from bgerum @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

Wed Feb 28 2018 10:33:08 EST from bgerum @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

Mon Feb 26 2018 16:45:41 EST from bgerum @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

Sun Feb 25 2018 21:46:41 EST from IGnatius T Foobar @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

checking for libical/ical.h... yes
checking for icaltimezone_set_tzid_prefix in -lical... yes
checking sieve2.h usability... yes
checking sieve2.h presence... yes
checking for sieve2.h... yes
checking for sieve2_license in -lsieve... no
configure: error: libsieve was not found and is required.  More info: http://www.citadel.org/doku.php/installation:start
Operating system: Linux 4.4.104-39-default( 4.4.104-39-default x86_64)

According to that log, it couldn't link to libsieve, even though libsieve had clearly been installed.  That is quite weird.

Can you attach the full log please?  We need to see what happened during the libsieve build.

 

unfortunately the 2nd try has overwritten the original log. I also did some updates overnight... but attached you find the current EasyInstall Log

 

How can I trigger a complete recompilation?

 



(, 0 bytes) [View| Download]

 



(, 0 bytes) [View| Download]

 

I just did a fresh install of OpenSuSE 42.3 on a different machine - standard install and then installed citadel-9.01-13.19.x86_64 from

https://download.opensuse.org/repositories/home:/stefjakobs:/citadel-testing

and guess what, I got the same error as before on the other machine:

bdb(): cursor still in progress on cdb 04: can't begin transaction during r/o cursor


see my post from Feb 19th for the other details.

I did not put any data files on that machine so I guess it must be something different, not related to the database files at all.

Maybe there is some dependency missing that is not listed in the rpm? It was already the same error for citadel 8.24 on openSuSE 42.3

 

 

 

 



(, 0 bytes) [View| Download]

Ok, now I tried the EasyInstall on that second openSuSE 42.3 machine.

It stopped at that point:

checking libical/ical.h usability... yes
checking libical/ical.h presence... yes
checking for libical/ical.h... yes
checking for icaltimezone_set_tzid_prefix in -lical... no
configure: error: libical was not found and is required.  More info: http://www.citadel.org/doku.php/installation:start
Operating system: Linux 4.4.76-1-default( 4.4.76-1-default x86_64)

But this time I preserved the full log, see the latest attachment

 



citadel-install-log2.txt (text/plain, 768162 bytes) [View| Download]
[#] Mon Mar 26 2018 18:04:49 EDT from alex007 @ Uncensored

Subject: Subject: migration from 8.22 to 9.17

[Reply] [ReplyQuoted] [Headers] [Print]

No success with ctdlmigrate,

the old installation was a LHFS Installation on Debian with deb's

the new one I made with easyinstall.

The ctdlmigrate script started and it seems that the whole data were transfered (60 minutes, about 8GB that is the probably the space for the data).

Please find atached the syslog file with the respective output.

do I have a chance or should I better migrate the IMAP folder by hand?

 

Mon Mar 19 2018 17:36:49 EDT from alex007 @ Uncensored Subject: Re: [Citadel Support]

Hi Peter,

ah, there is the info, thanks a lot. I will read and try to migrate...

Best regards

Alex

 

Mon Mar 19 2018 16:54:26 EDT from "fedorowp" <fedorowp@driveforge.org> Subject: Re: [Citadel Support]
Hi Alex,

See
http://www.citadel.org/doku.php/documentation:system_administration_manual#importingexportingyourcitadeldatabase

The database has the majority of the configuration.

In the event you have customized messages and things like that, you can
probably find them in one of:
/etc/citadel
/var/lib/citadel
/usr/local/citadel

Regards,
Peter


On 2018-03-19 04:23 PM, Citadel Support wrote:

------------------------------------------------------------------------------
From: alex007 <alex007@uncensored.citadel.org>
Subject: migration from 8.22 to 9.17

Hi all,

I've installed a fresh citadel 9.17 (arm on raspberrypi stretch) with easy
install.

I want to migrate my Data from a 8.22 install (LHS).

Is that possible or would you rather shout : no!

I think, there is a

1. config

and

2. data

that have to recover.

Any help would be great

Alex
------------------------------------------------------------------------------
You are subscribed to the 'Citadel Support' list.
To post to the list: room_citadel_support@citadel.org

 



 



syslog_ctdlmigrate_goes_wrong.txt (text/plain, 67524 bytes) [View| Download]
[#] Mon Mar 26 2018 19:23:35 EDT from bgerum @ Uncensored

Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

[Reply] [ReplyQuoted] [Headers] [Print]

 

Mon Mar 26 2018 17:47:29 EDT from bgerum @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

Wed Mar 07 2018 03:47:24 EST from bgerum @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

Wed Feb 28 2018 10:33:08 EST from bgerum @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

Mon Feb 26 2018 16:45:41 EST from bgerum @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

Sun Feb 25 2018 21:46:41 EST from IGnatius T Foobar @ Uncensored Subject: Re: citadel refuses to start after OpenSuSE upgrade - now with Easyins

 

checking for libical/ical.h... yes
checking for icaltimezone_set_tzid_prefix in -lical... yes
checking sieve2.h usability... yes
checking sieve2.h presence... yes
checking for sieve2.h... yes
checking for sieve2_license in -lsieve... no
configure: error: libsieve was not found and is required.  More info: http://www.citadel.org/doku.php/installation:start
Operating system: Linux 4.4.104-39-default( 4.4.104-39-default x86_64)

According to that log, it couldn't link to libsieve, even though libsieve had clearly been installed.  That is quite weird.

Can you attach the full log please?  We need to see what happened during the libsieve build.

 

unfortunately the 2nd try has overwritten the original log. I also did some updates overnight... but attached you find the current EasyInstall Log

 

How can I trigger a complete recompilation?

 



(, 0 bytes) [View| Download]

 



(, 0 bytes) [View| Download]

 

I just did a fresh install of OpenSuSE 42.3 on a different machine - standard install and then installed citadel-9.01-13.19.x86_64 from

https://download.opensuse.org/repositories/home:/stefjakobs:/citadel-testing

and guess what, I got the same error as before on the other machine:

bdb(): cursor still in progress on cdb 04: can't begin transaction during r/o cursor


see my post from Feb 19th for the other details.

I did not put any data files on that machine so I guess it must be something different, not related to the database files at all.

Maybe there is some dependency missing that is not listed in the rpm? It was already the same error for citadel 8.24 on openSuSE 42.3

 

 

 

 



(, 0 bytes) [View| Download]

Ok, now I tried the EasyInstall on that second openSuSE 42.3 machine.

It stopped at that point:

checking libical/ical.h usability... yes
checking libical/ical.h presence... yes
checking for libical/ical.h... yes
checking for icaltimezone_set_tzid_prefix in -lical... no
configure: error: libical was not found and is required.  More info: http://www.citadel.org/doku.php/installation:start
Operating system: Linux 4.4.76-1-default( 4.4.76-1-default x86_64)

But this time I preserved the full log, see the latest attachment

 

did an online update, icaltimezone problem solved, but now there is the libsieve problem again, see attachedcitadel-install-log3.txt

 



(, 0 bytes) [View| Download]

 



citadel-install-log3.txt (text/plain, 12665 bytes) [View| Download]
citadel-install-log2.txt (text/plain, 768162 bytes) [View| Download]