[07:15:06]
<phinero> many times ( After reboot have the same result
I suppose the problem is in certificate
```host not found in OCSP responder "r3.o.lencr.org" in the certificate```
[07:15:36]
<phinero> many times ( After reboot have the same result
I suppose the problem is in certificate
`nginx: [warn] "ssl_stapling" ignored, host not found in OCSP responder "r3.o.lencr.org" in the certificate `
[07:15:37]
<phinero> many times ( After reboot have the same result
I suppose the problem is in the certificate
`nginx: [warn] "ssl_stapling" ignored, host not found in OCSP responder "r3.o.lencr.org" in the certificate `
[07:24:07]
<phinero> many times ( After reboot have the same result
I suppose the problem is in the certificate
```nginx: [warn] "ssl_stapling" ignored, host not found in OCSP responder "r3.o.lencr.org" in the certificate ```
Maybe
[08:36:56]
<Guillaume Bouzige> > <@phinero:matrix.org> many times ( After reboot have the same result
> I suppose the problem is in the certificate
> `nginx: [warn] "ssl_stapling" ignored, host not found in OCSP responder "r3.o.lencr.org" in the certificate `
> Maybe the connection to **r3.o.lencr.org:80** is blocked (how to check it?)
> or DNS setting is brocken (how to check?)
if you do ping yunohost.org and you have a correct response then it is likely your DNS works and is well configured
[08:36:57]
<Guillaume Bouzige> if you have ssh access maybe you can try to regenerate the conf with `yunohost tools regen-conf` see if it can reconfigure your certificates correctly. you might want to give us more info about your context, are you in a VPS or at home behind a router for example.
[09:11:51]
<phinero> ````ping
ping: yunohost.org: Temporary failure in name resolution```
````
Installed on a VPS/ Debian 11
https://paste.yunohost.org/amidaqutib.rb
[09:12:15]
<Guillaume Bouzige> do you have firewall at your VPS ?
[09:13:21]
<Guillaume Bouzige> if you do have one, make sure it is configured accordingly.
[09:13:22]
<Guillaume Bouzige> is it amazon cloud or digitalOcean or else ?
[09:13:22]
<Guillaume Bouzige> no. VPS = the company that provide you this server, right?
[09:13:22]
<phinero> ```systemctl status firewalld Unit firewalld.service could not be found```
[09:13:23]
<phinero> https://aeza.net/en
[09:13:23]
<Guillaume Bouzige> > <@phinero:matrix.org> https://aeza.net/en
there you go, I guess you must have like a login or account there right ?
[09:13:23]
<Guillaume Bouzige> https://www.abuseipdb.com/check/aeza.net
[09:13:23]
<Guillaume Bouzige> is there a mention of firewall anywhere in there, have you looked ?
[09:13:24]
<Guillaume Bouzige> are you experienced with this provider for long time ?
[09:13:24]
<phinero> > are you experienced with this provider for long time ?
No, I'm a newbee )
[09:14:43]
<phinero> Got a recomendation from the support to use certbot
`apt-get install certbot python3-certbot-nginx && sudo systemctl reload nginx && sudo certbot --nginx -d домен.ком && sudo systemctl restart nginx`
[09:14:45]
<phinero> Got a recomendation from the support to use certbot
`apt-get install certbot python3-certbot-nginx && sudo systemctl reload nginx && sudo certbot --nginx -d domain.com && sudo systemctl restart nginx`
[09:18:54]
<Aleks (he/him/il/lui)> Ogod...
[09:19:06]
<Aleks (he/him/il/lui)> Nope, nope, nope, big nope
[09:20:09]
<Aleks (he/him/il/lui)> Gonna add this shit to the goddam conflicts
[09:20:26]
<Guillaume Bouzige> > <@phinero:matrix.org> No, I'm a newbee )
you might want to look at another provider if this one is already blacklisted...
[09:21:28]
<Guillaume Bouzige> just to start with it will save you loads of hassle
[09:22:48]
<phinero> > <@Alekswag:matrix.org> Nope, nope, nope, big nope
even can't install it
https://paste.yunohost.org/kahuvajuyu.sql
also can't update the system
[12:29:43]
<Karl (AT)> Has somebody found a workaround to make ActiveSync working on Yunohost with SOGo?
https://github.com/YunoHost-Apps/sogo_ynh/issues/7
I suggested Yunohost to some friends for self hosting their e-mail, but now they complain that without active sync its kinda unusable. :-(
Any hint is greatly appreciated.
[12:42:18]
<tituspijean> You can gather any logs describing why it would not work from the clients, as well as SoGo and NGINX logs as per the issue you linked, and post them over there 🙂
[12:45:47]
<Karl (AT)> The clientys are mostly Outlook 2016. There is simply this can not login error. I will try to get the SOGo/Nginx logs from one of these server.
[13:32:29]
<Karl (AT)> Preety interesting, github is unreachable for me currently..... My connectivity is fine, looks like they have problems, so I post the test here:
[13:32:55]
<Karl (AT)> # Test using Windows 11 with Outlook 2016 Pro
SOGO:Domain: sogo.MYDOMAIN.com
Mail Domain: MYDOMAIN.com
User: tester5678
E-Mail: tester5678@MYDOMAIN.com
Pass: xxxxxxxxxxx
# Trying to setup ActiveSync Account for tester5678@MYDOMAIN.com using Exchange in Outlook accesses the main MYDOMAIN.com:
I general looks like the MS is accessing the account using their 52.125.140.0 and not the laptop direct. This can not be in the sense of GDPR???????
```
52.125.140.0 - - [07/Feb/2023:14:03:04 +0100] "GET /.well-known/autoconfig/mail/config-v1.1.xml HTTP/1.1" 200 668 "-" "-"
52.125.140.0 - - [07/Feb/2023:14:03:05 +0100] "POST /autodiscover/autodiscover.xml HTTP/1.1" 302 5 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
52.125.140.0 - - [07/Feb/2023:14:03:05 +0100] "POST /autodiscover/autodiscover.xml HTTP/1.1" 302 5 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
52.125.140.0 - - [07/Feb/2023:14:03:05 +0100] "POST /de/autodiscover/autodiscover.xml HTTP/1.1" 404 43884 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
52.125.140.0 - - [07/Feb/2023:14:03:05 +0100] "POST /de/autodiscover/autodiscover.xml HTTP/1.1" 404 43877 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
LAPTOPIP - - [07/Feb/2023:14:04:18 +0100] "POST /autodiscover/autodiscover.xml HTTP/2.0" 302 0 "-" "Microsoft Office/16.0 (Windows NT 10.0; Microsoft
Outlook 16.0.16026; Pro)"
LAPTOPIP - - [07/Feb/2023:14:04:18 +0100] "POST /de/autodiscover/autodiscover.xml HTTP/2.0" 404 43824 "-" "Microsoft Office/16.0 (Windows NT 10.0; Mic
rosoft Outlook 16.0.16026; Pro)"
```
This porbably can not work, because Sogo is on sogo.MYDOMAIN.com
# Trying to setup ActiveSync Account for tester5678@sogo.MYDOMAIN.com using Exchange in Outlook accesses the main MYDOMAIN.com:
```
52.125.140.0 - - [07/Feb/2023:14:09:05 +0100] "GET /.well-known/autoconfig/mail/config-v1.1.xml HTTP/1.1" 200 668 "-" "-"
52.125.140.0 - - [07/Feb/2023:14:09:06 +0100] "POST /autodiscover/autodiscover.xml HTTP/1.1" 302 5 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
52.125.140.0 - - [07/Feb/2023:14:09:06 +0100] "POST /autodiscover/autodiscover.xml HTTP/1.1" 302 5 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
52.125.140.0 - - [07/Feb/2023:14:09:06 +0100] "POST /de/autodiscover/autodiscover.xml HTTP/1.1" 404 43884 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
52.125.140.0 - - [07/Feb/2023:14:09:06 +0100] "POST /de/autodiscover/autodiscover.xml HTTP/1.1" 404 43884 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
```
and also accesses the sogo.MYDOMAIN.com
```
52.125.140.0 - - [07/Feb/2023:14:09:04 +0100] "POST /autodiscover/autodiscover.xml HTTP/1.1" 302 138 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
52.125.140.0 - - [07/Feb/2023:14:09:04 +0100] "POST /autodiscover/autodiscover.xml HTTP/1.1" 302 138 "-" "OutlookMobileCloudService-Autodetect/1.0.0"
52.125.140.0 - - [07/Feb/2023:14:09:04 +0100] "GET /.well-known/autoconfig/mail/config-v1.1.xml HTTP/1.1" 200 688 "-" "-"
LAPTOPIP - - [07/Feb/2023:14:11:32 +0100] "POST /autodiscover/autodiscover.xml HTTP/2.0" 302 138 "-" "Microsoft Office/16.0 (Windows NT 10.0; Microsof
t Outlook 16.0.16026; Pro)"
```
The error on Outlook shows is: Something has not worked, Outlook could not setup the account.
If you add the account manually via Account Settings -> Add Account you can set:
Name, E-Mail tester5678@MYDOMAIN.com, E-Mail Server sogo.MYDOMAIN.com, Username (tried name and email) and Password it accesses sogo.MYDYNIP.com:
```
LAPTOPIP - tester5678@selfhostervps.com [07/Feb/2023:14:20:57 +0100] "OPTIONS /Microsoft-Server-ActiveSync HTTP/1.1" 301 162 "-" "Outlook/16.0 (16.0.1
6026.20006; x64)"
LAPTOPIP - tester5678@selfhostervps.com [07/Feb/2023:14:20:57 +0100] "OPTIONS /Microsoft-Server-ActiveSync/ HTTP/1.1" 302 138 "-" "Outlook/16.0 (16.0.
16026.20006; x64)"
```
and finally says Server was not found, after these 2 requests.
The Sogo log does not say to much:
```
Feb 07 12:58:20 sogod [39164]: version 5.0.1 -- starting
Feb 07 12:58:20 sogod [39164]: vmem size check enabled: shutting down app when vmem > 384 MB. Currently at 84 MB
Feb 07 12:58:20 sogod [39164]: <0x0x5562c46a3f20[SOGoProductLoader]> SOGo products loaded from '/usr/lib/GNUstep/SOGo':
Feb 07 12:58:20 sogod [39164]: <0x0x5562c46a3f20[SOGoProductLoader]> SchedulerUI.SOGo, Appointments.SOGo, Mailer.SOGo, Contacts.SOGo, MailerUI.SOGo, Comm
onUI.SOGo, MainUI.SOGo, AdministrationUI.SOGo, PreferencesUI.SOGo, MailPartViewers.SOGo, ContactsUI.SOGo
Feb 07 12:58:20 sogod [39164]: All products loaded - current memory usage at 92 MB
Feb 07 12:58:20 sogod [39164]: <0x0x5562c46fd840[WOWatchDog]> listening on 127.0.0.1:20000
Feb 07 12:58:20 sogod [39164]: <0x0x5562c46fd840[WOWatchDog]> watchdog process pid: 39164
Feb 07 12:58:20 sogod [39164]: <0x0x7f819a14a360[WOWatchDogChild]> watchdog request timeout set to 10 minutes
Feb 07 12:58:20 sogod [39164]: <0x0x5562c46fd840[WOWatchDog]> preparing 3 children
Feb 07 12:58:20 sogod [39164]: <0x0x5562c46fd840[WOWatchDog]> child spawned with pid 39165
Feb 07 12:58:20 sogod [39164]: <0x0x5562c46fd840[WOWatchDog]> child spawned with pid 39166
Feb 07 12:58:20 sogod [39164]: <0x0x5562c46fd840[WOWatchDog]> child spawned with pid 39167
Feb 07 12:58:20 sogod [39165]: <0x0x5562c47cd240[WOHttpAdaptor]> notified the watchdog that we are ready
Feb 07 12:58:20 sogod [39166]: <0x0x5562c47b58f0[WOHttpAdaptor]> notified the watchdog that we are ready
Feb 07 12:58:20 sogod [39167]: <0x0x5562c47b58f0[WOHttpAdaptor]> notified the watchdog that we are ready
Feb 07 13:20:05 sogod [39167]: <0x0x5562c46582e0[SOGoCache]> Cache cleanup interval set every 300.000000 seconds
Feb 07 13:20:05 sogod [39167]: <0x0x5562c46582e0[SOGoCache]> Using host(s) 'localhost' as server(s)
```
Things breaks kinda early as it looks like.
[13:37:27]
<Karl (AT)> Now I was able to post it on the issue too
[17:14:55]
<evon> It's not clear who is refusing the connection? Is it Dyndns or is it my server?
[17:24:32]
<phinero> > <@phinero:matrix.org> even can't install it
> https://paste.yunohost.org/kahuvajuyu.sql
> also can't update the system
still trying to solve my problem
https://paste.yunohost.org/uqalequlid.css
[17:48:00]
<Aleks (he/him/il/lui)> > <@phinero:matrix.org> still trying to solve my problem
> https://paste.yunohost.org/uqalequlid.css
what problem exactly ...
[17:48:01]
<Aleks (he/him/il/lui)> what's the content of `/etc/resolv.conf`
[18:01:39]
<evon> Aleks (he/him/il/lui) any ideas about my problem?
[18:07:14]
<Aleks (he/him/il/lui)> no idea, looks like i'm missing some of your messages, I only see « It's not clear who is refusing the connection? Is it Dyndns or is it my server? »
[18:10:57]
<evon> I get this error https://paste.yunohost.org/raw/zoleviwivu when I try to update my dyndns.
[18:13:41]
<Aleks (he/him/il/lui)> 😬
[18:15:43]
<phinero> Guys, I lost the connection to the webadmin after I tried to check for updates via the webadmin page. Now I'm getting **PR\_CONNECT\_RESET\_ERROR** every time I try to connect the webadmin.. Have connection only via SSH. Checked nginx status
https://paste.yunohost.org/xeherukuza.rb
https://paste.yunohost.org/amidaqutib.rb
https://paste.yunohost.org/egabutiham.vbs
[18:15:46]
<phinero> Guys, I lost the connection to the webadmin after I tried to check for updates via the webadmin page. Now I'm getting **PR\_CONNECT\_RESET\_ERROR** every time I try to connect the webadmin. Also can't connect . Have connection only via SSH. Checked nginx status
https://paste.yunohost.org/xeherukuza.rb
https://paste.yunohost.org/amidaqutib.rb
https://paste.yunohost.org/egabutiham.vbs
[18:15:47]
<phinero> > <@Alekswag:matrix.org> what problem exactly ...
> Guys, I lost the connection to the webadmin after I tried to check for updates via the webadmin page. Now I'm getting **PR_CONNECT_RESET_ERROR** every time I try to connect the webadmin. Also can't connect SSO. Have connection only via SSH. Checked nginx status
> https://paste.yunohost.org/xeherukuza.rb
> https://paste.yunohost.org/amidaqutib.rb
> https://paste.yunohost.org/egabutiham.vbs
can't start nginx after trying to get system update from the webadmin yesterday
[18:16:39]
<phinero> > <@Alekswag:matrix.org> what's the content of `/etc/resolv.conf`
It contents only one line
```nameserver 127.0.0.1```
[18:20:34]
<Aleks (he/him/il/lui)> hmkay and dnsmasq is running i guess
[18:20:35]
<Aleks (he/him/il/lui)> so not sure what the hell is wrong with dns resolving
[18:20:36]
<Aleks (he/him/il/lui)> what's your setup, is there anything specific to your network ?
[18:20:36]
<Aleks (he/him/il/lui)> what kind of hardware are you running ?
[18:23:38]
<phinero> VPS
https://paste.yunohost.org/heselukipo.go
[18:24:16]
<Aleks (he/him/il/lui)> does `dig +short yunohost.org @8.8.8.8` works ?
[18:24:36]
<Aleks (he/him/il/lui)> (it should display the IP of the yunohost server, 80.67.172.144 )
[18:25:31]
<phinero> > <@Alekswag:matrix.org> does `dig +short yunohost.org @8.8.8.8` works ?
https://paste.yunohost.org/utetiyobac.swift
[18:26:48]
<Aleks (he/him/il/lui)> this is not `dig +short ...` ...
[18:27:13]
<phinero> Yes, it works
``` dig +short yunohost.org @8.8.8.8
80.67.172.144
```
[18:27:26]
<Aleks (he/him/il/lui)> wokay so let's try with another random DNS resolver from the "free/open/ethical" DNS resolver list included in yunohost, for example: `dig +short yunohost.org @89.233.43.71`
[18:28:10]
<Aleks (he/him/il/lui)> ah actually that one seems laggy / timing out
[18:28:39]
<Aleks (he/him/il/lui)> hmmm what about `dig +short yunohost.org @80.67.169.12` ?
[18:29:55]
<phinero> > <@Alekswag:matrix.org> hmmm what about `dig +short yunohost.org @80.67.169.12` ?
connection time out; no servers could be reached
[18:31:32]
<Aleks (he/him/il/lui)> hmkay well that one is not good, it should work ...
[18:31:34]
<Aleks (he/him/il/lui)> does `ping -c3 80.67.169.12` works ?
[18:31:35]
<Aleks (he/him/il/lui)> and does `nc -zv 80.67.169.12 53` succeeds too ?
[18:32:17]
<phinero> > <@Alekswag:matrix.org> hmkay and dnsmasq is running i guess
https://paste.yunohost.org/jugesinetu.sql
[18:33:25]
<phinero> > <@Alekswag:matrix.org> does `ping -c3 80.67.169.12` works ?
it works
[18:33:47]
<phinero> > <@Alekswag:matrix.org> and does `nc -zv 80.67.169.12 53` succeeds too ?
nc -zv 80.67.169.12 53
Connection to 80.67.169.12 53 port [tcp/domain] succeeded!
[18:35:23]
<Aleks (he/him/il/lui)> 😐️
[18:35:57]
<phinero> https://aria.im/_matrix/media/v1/download/matrix.org/DfDVmHkqxUSyrXfLLJhwodfN
[18:36:08]
<phinero> can it be the same case?
[18:36:12]
<Aleks (he/him/il/lui)> well I guess try to `echo 'nameserver 8.8.8.8' > /etc/resolv.conf` as an ugly workaround maybe
[18:36:39]
<Aleks (he/him/il/lui)> no, this is not ubuntu, we ain't using NetworkManager nor systemd-resolved
[18:38:45]
<phinero> > <@Alekswag:matrix.org> no, this is not ubuntu, we ain't using NetworkManager nor systemd-resolved
Yeah, checked it already )
[18:41:34]
<phinero> > <@Alekswag:matrix.org> well I guess try to `echo 'nameserver 8.8.8.8' > /etc/resolv.conf` as an ugly workaround maybe
no changes, all the same (
[18:44:09]
<Aleks (he/him/il/lui)> wtf :|
[18:44:40]
<Aleks (he/him/il/lui)> and can you double check that `cat /etc/resolv.conf` now displays `nameserver 8.8.8.8` ? x_x
[18:45:27]
<phinero> > <@Alekswag:matrix.org> and can you double check that `cat /etc/resolv.conf` now displays `nameserver 8.8.8.8` ? x_x
Yes
[18:45:51]
<Aleks (he/him/il/lui)> and then `dig +short yunohost.org` doesnt work ?
[18:48:26]
<phinero> Please, wait a minute - diagnosis is in progress...
[18:49:18]
<phinero> Please, wait a minute - diagnosis is in progress...
https://paste.yunohost.org/akinehimid.sql
[18:51:36]
<phinero> it works witn `nameserver 8.8.8.8`
[18:51:38]
<Aleks (he/him/il/lui)> so what doesnt work now ?
[18:54:24]
<phinero> > <@Alekswag:matrix.org> so what doesnt work now ?
nginx.service doesn't work, can't access the webadmin **PR_CONNECT_RESET_ERROR**
[18:54:39]
<Aleks (he/him/il/lui)> then let's try `systemctl restart nginx` now that the DNS resolving issue is fixed
[18:58:17]
<ynhuser1212> How do I add a DNS Record to a nohost.me domain?
[18:58:30]
<phinero> OMG!!! I got access to my server again! The issue was solved, many thanks to you! 👍️😀 What was the problem? (I mean for the future 😀)
[19:04:48]
<phinero> > <@Alekswag:matrix.org> then let's try `systemctl restart nginx` now that the DNS resolving issue is fixed
another question )
Every time (when I get main update for yunohost) I can't access server via SSH (permission denied). I found that the problem is Permission 770 for my admin folder. If I change it ```chmod 0700 /home/admin``` I'm able to get access again. Any idea?
[19:05:41]
<ynhuser1212> https://paste.yunohost.org/raw/tuqapikiqi
[20:17:22]
<alex__> Bonjour, je n'arrive plus a me connecter à mon serveur yunohost depuis la version 11.1. Je n'avais pas d'utilisateur admin et les 2 dont je disposais avant ne me permettent pas de me connecter à la webmin. Il existe une commande ssh qui me permettrait de mettre un user en admin ? Merci.
[20:23:28]
<alex__> la commande "yunohost user group list" me retourne groups: all_users: members: - alex - gb visitors: members:
[20:24:54]
<phinero> Hmm, after update to 11.1.5.6 got the same issue ( and ```nameserver 8.8.8.8``` solved this issue again but I still have some errors and warnings after diagnosis
https://paste.yunohost.org/ocidacodob.sql
[20:28:14]
<phinero> Hmm, after update to 11.1.5.6 got the same issue ( and `nameserver 8.8.8.8` is the right solution for this issue again but I still have some errors and warnings after diagnosis
https://paste.yunohost.org/ocidacodob.sql
[20:41:18]
<phinero> And got this error
```yunohost dyndns update --force
Error: Failed to resolve IPv4/IPv6 for ['ns0.yunohost.org', 'ns1.yunohost.org'] ?
```
[20:42:29]
<phinero> And got this error
**yunohost dyndns update --force
Error: Failed to resolve IPv4/IPv6 for ['ns0.yunohost.org', 'ns1.yunohost.org'] ?
**
[20:44:49]
<kaonashi696> Hey, does someone managed to install Invidious in the past weeks?
[20:52:19]
<tane> Can someone confirm a tiny bug for me? Go to the Webadmin, then apps, then an install of my\_webapp that is not the first one and (eg my\_webapp\_\_5) and at the bottom of the operations page open up links and mouse over the link to the forum. Does the link say something like https://forum.yunohost.org/tag/my\_webapp\_\_5 because I am pretty sure it should just say my\_webapp at the end without the number. There is no tag on the forum called my\_webapp\_\_5.
[20:52:45]
<tituspijean> kaonashi696: if you have an issue, share your logs.
[20:53:11]
<kaonashi696> > <@titus:pijean.ovh> kaonashi696: if you have an issue, share your logs.
https://paste.yunohost.org/raw/ijajulusud
[20:58:27]
<tane> > <@taneharre:matrix.org> Can someone confirm a tiny bug for me? Go to the Webadmin, then apps, then an install of my\_webapp that is not the first one and (eg my\_webapp\_\_5) and at the bottom of the operations page open up links and mouse over the link to the forum. Does the link say something like https://forum.yunohost.org/tag/my\_webapp\_\_5 because I am pretty sure it should just say my\_webapp at the end without the number. There is no tag on the forum called my\_webapp\_\_5.
Actually, scrap that, It seems to effect all the external links on the page. I'll post to the forum with my specs.
[21:25:58]
<evon> I get this error https://paste.yunohost.org/raw/zoleviwivu when I try to update my dyndns. Can someone help?
[21:50:42]
<tituspijean> kaonashi696: ok got it. I'll report the issue to the app repo. Keep posted for a fix tomorrow.
[22:18:43]
<phinero> I think it's the same issue
https://forum.yunohost.org/t/domain-name-resolution-fails/9145
[23:05:58]
<nachoLIBRE> Can i do tor xmpp on yunohost
[23:06:09]
<nachoLIBRE> Can i do tor private service xmpp on yunohost
[23:06:40]
<nachoLIBRE> Not a big deal if not, once raspi is back in stock I'll use that for xmpp
[23:07:36]
<nachoLIBRE> https://yunohost.org/oc/torhiddenservice
[23:07:58]
<nachoLIBRE> If I do this will all my apps be under the hidden service