Ig - After Lunduke's coverage of Nextcloud 9 I was mildly annoyed at the available options on their site. Went looking for alternatives and most of the ones suggested were merely for file hosting, then I remembered Citadel is a broader groupware thing as well. But https://citadel.org/download.html doesn't appear to have any links for Docker or otherwise, and unlike most times I'm using a browser with pretty much everything enabled. What are my current options to install and run Cit? Sorry if I missed something obvious - it wouldn't be the first time.
The objective is to have Citadel Webmail throught https which the port is usually open in firewalls. Usually other ports used by Webcit are blocked in firewalls. This is for using when Apache coexists with Citadel in the same server.
Now, I will explain how I done without missing any information.
In ssl.conf: This is for IPv6. There is a Virtual Host also for IPv4. This must work as it is with only changing where says "changed". You may/can put this in Citadel Faq.
****************************************
<VirtualHost [xxxx:xxx:xxxx:xxx::x]:443> #changed
DocumentRoot "/xxxxx/html" #changed
SSLEngine on
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
SSLCipherSuite ALL:!ADH:!EXPORT:+SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /xxxx/ssl/xxxxxx.crt #changed
SSLCertificateKeyFile /xxxx/ssl/xxxxxxx.key #changed
SSLCACertificateFile /xxxx/ssl/xxxxxx.cer #changed
LogLevel warn
ErrorLog logs/ipv6_ssl_error_log
CustomLog logs/ipv6_ssl_access_log \
"%h %a %l %I %O %u %t %X %T %D \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %{SSL_PROTOCOL}x %{SSL_CIPHER}x"
SSLProxyEngine on
ProxyPass /courrier/ http://[::1]:xxxx/ #changed
ProxyPassReverse /courrier/ http://[::1]:xxxx/ #changed
</VirtualHost>
************************************
I access the site as:
https://mydomain.net/courrier/ #changed
Thanks,
Luís.
Fri Sep 20 2024 16:37:21 EDT from IGnatius T Foobar Subject: Re: Ask for correction in WebCit software.I implemented with VirtualHost+ProxyPass. I did not used the Key
word "Alias" but:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
If you are using a VirtualHost you should proxy the root, not "/courrier".
Just push the whole site through unchanged.
the 2 i would use
Ig - After Lunduke's coverage of Nextcloud 9 I was mildly annoyed at the available options on their site. Went looking for alternatives and most of the ones suggested were merely for file hosting, then I remembered Citadel is a broader groupware thing as well. But https://citadel.org/download.html doesn't appear to have any links for Docker or otherwise, and unlike most times I'm using a browser with pretty much everything enabled. What are my current options to install and run Cit? Sorry if I missed something obvious - it wouldn't be the first time.
Dear All,
Can a Server Side Filter Rule have more than a recipient email in a forward (or other operations)?
e.g.
Can I forward as:
dummy1@domain1.net,dummy2@domain2.net
or I have to do 2 rules, one for each recipient email?
Thanks,
Luís.
as well. But https://citadel.org/download.html doesn't appear to
have any links for Docker or otherwise, and unlike most times
Ummm...? Docker is the very first option on the page. I think I am not understanding your question?
dummy1@domain1.net,dummy2@domain2.net
or I have to do 2 rules, one for each recipient email?
Good question! I don't know off hand, but try it and see.
Dear All,
I found a problem with this setting that I think it must be solved by the maintainers/developers of Citadel.
The emails accessed this way though proxy and WebCit, the timezone presented is from the server (Centos/Ubuntu etc) that hosts Citadel and not from the operating system of the browser. I think this must be solved someway.
I think because the WebCit is called within the server.
Thanks,
Luis.
The objective is to have Citadel Webmail throught https which the port is usually open in firewalls. Usually other ports used by Webcit are blocked in firewalls. This is for using when Apache coexists with Citadel in the same server.
Now, I will explain how I done without missing any information.
In ssl.conf: This is for IPv6. There is a Virtual Host also for IPv4. This must work as it is with only changing where says "changed". You may/can put this in Citadel Faq.
****************************************
<VirtualHost [xxxx:xxx:xxxx:xxx::x]:443> #changed
DocumentRoot "/xxxxx/html" #changed
SSLEngine on
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
SSLCipherSuite ALL:!ADH:!EXPORT:+SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /xxxx/ssl/xxxxxx.crt #changed
SSLCertificateKeyFile /xxxx/ssl/xxxxxxx.key #changed
SSLCACertificateFile /xxxx/ssl/xxxxxx.cer #changed
LogLevel warn
ErrorLog logs/ipv6_ssl_error_log
CustomLog logs/ipv6_ssl_access_log \
"%h %a %l %I %O %u %t %X %T %D \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %{SSL_PROTOCOL}x %{SSL_CIPHER}x"
SSLProxyEngine on
ProxyPass /courrier/ http://[::1]:xxxx/ #changed
ProxyPassReverse /courrier/ http://[::1]:xxxx/ #changed
</VirtualHost>
************************************
I access the site as:
https://mydomain.net/courrier/ #changed
Thanks,
Luís.
Fri Sep 20 2024 16:37:21 EDT from IGnatius T Foobar Subject: Re: Ask for correction in WebCit software.I implemented with VirtualHost+ProxyPass. I did not used the Key
word "Alias" but:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
If you are using a VirtualHost you should proxy the root, not "/courrier".
Just push the whole site through unchanged.
Dear All,
Sugestion:
It may put as configuration in "Advanced" -> "Change your preferences and settings" a parameter that is the timezone used by WebCit for each user.
Thanks,
Luis.
Dear All,
I found a problem with this setting that I think it must be solved by the maintainers/developers of Citadel.
The emails accessed this way though proxy and WebCit, the timezone presented is from the server (Centos/Ubuntu etc) that hosts Citadel and not from the operating system of the browser. I think this must be solved someway.
I think because the WebCit is called within the server.
Thanks,
Luis.
The objective is to have Citadel Webmail throught https which the port is usually open in firewalls. Usually other ports used by Webcit are blocked in firewalls. This is for using when Apache coexists with Citadel in the same server.
Now, I will explain how I done without missing any information.
In ssl.conf: This is for IPv6. There is a Virtual Host also for IPv4. This must work as it is with only changing where says "changed". You may/can put this in Citadel Faq.
****************************************
<VirtualHost [xxxx:xxx:xxxx:xxx::x]:443> #changed
DocumentRoot "/xxxxx/html" #changed
SSLEngine on
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
SSLCipherSuite ALL:!ADH:!EXPORT:+SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /xxxx/ssl/xxxxxx.crt #changed
SSLCertificateKeyFile /xxxx/ssl/xxxxxxx.key #changed
SSLCACertificateFile /xxxx/ssl/xxxxxx.cer #changed
LogLevel warn
ErrorLog logs/ipv6_ssl_error_log
CustomLog logs/ipv6_ssl_access_log \
"%h %a %l %I %O %u %t %X %T %D \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %{SSL_PROTOCOL}x %{SSL_CIPHER}x"
SSLProxyEngine on
ProxyPass /courrier/ http://[::1]:xxxx/ #changed
ProxyPassReverse /courrier/ http://[::1]:xxxx/ #changed
</VirtualHost>
************************************
I access the site as:
https://mydomain.net/courrier/ #changed
Thanks,
Luís.
Fri Sep 20 2024 16:37:21 EDT from IGnatius T Foobar Subject: Re: Ask for correction in WebCit software.I implemented with VirtualHost+ProxyPass. I did not used the Key
word "Alias" but:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
If you are using a VirtualHost you should proxy the root, not "/courrier".
Just push the whole site through unchanged.
Please.. I really need help on this.. additional headers I add to local.cnf are also not being shown in the email header.. I've tried lots of different things but no matter what I do, subject or headers do not get amended or added.
same problem here - https://forum.ubuntuusers.de/topic/spamassassin-aender-subject-und-fuegt-headers-/
thx
Craig.
Tue Sep 17 2024 10:07:31 EDT from cjonlineHi, I need help with spamassassin.. It marks the spam correct but is not adding the ** SPAM ** flag to the subject.. please help.. this has never worked since day 1.
Craig.
SAMPLE EMAIL-
Subject: You have been selected to win a Chanel Perfume from Boots! Message-ID: <138431787230895.8.PZH1682504663@marketstandard.click> From: "Boots" <Chanel.Perfume-hwp@marketstandard.click> X-Spam-Level: ******* X-Spam-Status: True, score=7.4 required=2.0CONFIG -# Add *****SPAM***** to the Subject header of spam e-mails # rewrite_header Subject [***** SPAM _SCORE_ *****] # Save spam messages as a message/rfc822 MIME attachment instead of # modifying the original message (0: off, 2: use text/plain instead) # report_safe 0 # Set which networks or hosts are considered 'trusted' by your mail # server (i.e. not spammers) # # trusted_networks 212.17.35. # Set file-locking method (flock is not safe over NFS, but is faster) # # lock_method flock # Set the threshold at which a message is considered spam (default: 5.0) # required_score 2.0 # Use Bayesian classifier (default: 1) # use_bayes 1 # Bayesian classifier auto-learning (default: 1) # bayes_auto_learn 1
Hi,
is Citadel supoorting telnet by standard install or is there something to configure ?
Greetings form Germany
Please.. I really need help on this.. additional headers I add
to local.cnf are also not being shown in the email header..
I've tried lots of different things but no matter what I do,
subject or headers do not get amended or added.
That is correct. Citadel Server does not ingest email headers modified by SpamAssassin. It sends the message over to `spamd` and requests a scan. If the message is identified as spam it is either rejected (the default setting) or marked with the `X-Spam-Status` header.
Also ... please do not post example spam to the support forum, not even the headers. We distribute the contents of this forum as a mailing list and posting spam snippets makes it trigger other recipients' spam filters.
is Citadel supoorting telnet by standard install or is there
something to configure ?
The standard install includes a text mode client installed into /usr/local/citadel/citadel
There are instructions at [ https://www.citadel.org/how_do_i_get_citadel.html ] which outline the steps required to make your system answer telnet connections with the Citadel client.
is Citadel supoorting telnet by standard install or is there
something to configure ?
The standard install includes a text mode client installed into /usr/local/citadel/citadel
There are instructions at [ https://www.citadel.org/how_do_i_get_citadel.html ] which outline the steps required to make your system answer telnet connections with the Citadel client.
Thanks for your help. Do i need to start this text mode client separated ?
Thanks for your help. Do i need to start this text mode client
separated ?
I'm afraid I don't understand what you mean by "separated".
It's included with the Easy Install distribution. If you're running Citadel in a container you'll need to run a command to execute it inside the container.
I running Citadel under docker:
sudo docker run -d --restart=unless-stopped ==network host --volume=/home/citadel:/citadel-data citadeldotorg/citadel
Trying to add an SSL cert to citadel, but it not working as I do not know what the web-root path is.
sudo certbot certonly --agree-tos --non-interactive --test --rsa-key-size 4096 --email admin@domain.local --webroot-path /home/citadel -d mail.domain.local
Getting:
Type: unauthorized
Detail: IP.Address: Invalid response form http://mail.domain.local/.well-knownd/acme-challenge/xyz_abc: 404
So need to know what to put down as the webroot to get this to work.
So need to know what to put down as the webroot to get this to
work.
This is kind of a hack, but you could try installing and running certbot inside the container to expose /usr/local/webcit to it.
You've kind of pointed out a real issue that we need to address, so thank you for that.
Is there a resource or recommended starting point for integrating Citadel and Keycloak?
HI all
New to running Citadel but it was always my favorite BBS software back in the late 80s/early 90s.
I have a docker installation running and things seem to be working well for the most part.
I am having an issue when I attempt to upload either a login or logout logo.
I get the following (this example is for the logout, the login is the same except images/hello):
Cannot open images/uimg 1: No such file or directory
There is no "images" directory in my citadel-data directory. I tried making files/images and that didn't help.
Any pointers would be great .
Thanks!
Is there a resource or recommended starting point for
integrating Citadel and Keycloak?
I'm afraid I don't know anything about Keycloak. What is it?