[00:06:01]
<marcus> Hello, why is the VPN ZeroTier listed in the yunohost catalog even though its code is proprietary?
https://alternativeto.net/software/zerotier-one/about/
[02:47:20]
<Jeff> https://pasteboard.co/FwBvWOtTP8Ve.jpg
[02:50:51]
<Jeff> https://pasteboard.co/FwBvWOtTP8Ve.jpg
Anyone ever run into this issue when using XMPP chat option with yunhost
[05:48:16]
<tituspijean> > <@mavric34:matrix.org> Is there an rss feed or other way to be notified of new updates and additions to the yunohost catalog so you don't miss anything?
Not yet. Meanwhile you can keep an eye on https://dash.yunohost.org/appsobservatory/news
[05:51:06]
<tituspijean> > <@marcus78:matrix.org> Hello, why is the VPN ZeroTier listed in the yunohost catalog even though its code is proprietary?
>
> https://alternativeto.net/software/zerotier-one/about/
Because we decided to include licenses that are "not totally free", and pointing it out with the antifeatures flags: https://github.com/YunoHost/apps/blob/53027ff76a22daf1a9b0dae89c962166c736e81a/apps.toml#L4123
[05:52:42]
<tituspijean> In the case of Zerotier, if I recall correctly their management interface is closed-sourced. Good thing we have an FOSS alternative with ztncui
[05:54:52]
<tituspijean> The inclusion of Business Source Licenses or similar licensed apps will not be automatic, please have a talk with packaging team to assess together if the license is open enough.
[06:13:58]
<lapineige> > Apparently there is a soft limit around a few megabytes… I don't understand it. Any idea where to search ?
Ok the reply didn't pass... It was about my WordPress issue
[06:15:44]
<lapineige> > <@narf_narf:matrix.org> Will the backup restore overwrite whatever I do during the post-install setup?
You could allow ssh root login for a short while, the backup restore of system config should disable it again anyway
[06:20:52]
<lapineige> > <@mavric34:matrix.org> Is there an rss feed or other way to be notified of new updates and additions to the yunohost catalog so you don't miss anything?
On github, you can watch the directory where the community.json file is present, that the list of these apps
[06:21:28]
<lapineige> > Ok the reply didn't pass... It was about my WordPress issue
Here is the previous message :
[06:22:40]
<lapineige> > But another person trying had a failure ☹️
WordPress uploading issue, in search for help 🙏 ⬆️
[06:58:42]
<tao> salut:) having issues with my_webapp, config panel doesnt seem to function and can't connect throu sftp. no idea since which update. tried regen conf to no effect, please your help
[07:03:14]
<tituspijean> Logs? :)
[07:06:21]
<tao> > <@titus:pijean.ovh> Logs? :)
https://paste.yunohost.org/raw/zusiwutuna
[07:51:10]
<Westbam> Salut
[08:12:42]
<tituspijean> > <@nomads-land:matrix.org> https://paste.yunohost.org/raw/zusiwutuna
Did you change a setting? Which one?
[08:35:34]
<tituspijean> What about the SFTP error too? :)
[08:35:36]
<tao> > <@titus:pijean.ovh> Did you change a setting? Which one?
tried changing password and foodprint from config panel, didnt change. then changed pass and regen-conf from ssh
[08:36:24]
<tao> Status: Using username "my_webapp".
Command: Pass: **********
Error: FATAL ERROR: Connection reset by peer
Error: Could not connect to server
Status: Waiting to retry...
Status: Connecting to ******.org...
Response: fzSftp started, protocol_version=11
Command: open "my_webapp@****.org" 22
Command: Trust new Hostkey: Once
Status: Using username "my_webapp".
Command: Pass: **********
Error: FATAL ERROR: Connection reset by peer
Error: Could not connect to server
[08:38:13]
<tituspijean> Let's focus on the SFTP issue, what's the output of `sudo groups my_webapp` ?
[08:39:26]
<tao> my_webapp : my_webapp sftp.app
[08:40:14]
<tituspijean> Mmmh... and the regen-conf is fine? You did not change the SSH password?
[08:40:36]
<tituspijean> *port I mean
[08:40:54]
<tao> seem fine, no port change
[08:41:05]
*tituspijean confusion increases
[08:41:49]
<tituspijean> Let's try something to debug. `sudo usermod -aG ssh.app my_webapp`
[08:42:06]
<tituspijean> That will allow you to SSH in as my_webapp user
[08:42:53]
<tituspijean> Try `ssh my_webapp@yourdomain.tld -vvv` to see if the SSH server rejects it and why
[08:43:38]
<tituspijean> At the same time you can have a look to
`sudo tail -f/var/log/auth.log`
[08:47:00]
<tituspijean> To see the login attempt and reason for rejection
[08:47:00]
<tituspijean> At the same time you can have a look to
`sudo tail -f /var/log/auth.log`
[08:48:37]
<tao> this? nologin: Attempted login by my_webapp (UID: 992) on /dev/pts/2
Aug 17 10:45:30 ********* sshd[9416]: Received disconnect from *************e port 54626:11: disconnected by user
[08:52:04]
<tituspijean> Interesting. What's the output of `sudo grep my_webapp /etc/passwd` ?
[08:52:52]
<tao> > <@titus:pijean.ovh> Interesting. What's the output of `sudo grep my_webapp /etc/passwd` ?
my_webapp:x:992:992::/var/www/my_webapp:/usr/sbin/nologin
[08:53:08]
<tituspijean> And `sudo grep with_sftp /etc/yunohost/apps/my_webapp/settings.yml`
[08:53:29]
<tituspijean> I'm feeling it boils down to the faulty config panel
[08:53:36]
<tao> with_sftp: '1'
[08:54:19]
<tituspijean> Yup...
Can you try disabling the sftp access from the config panel again? And run the last command again?
[08:55:36]
<tituspijean> (I have to go AFK, back in 15min)
[08:55:37]
<tao> with_sftp: '0'
[08:55:58]
<tao> > <@titus:pijean.ovh> (I have to go AFK, back in 15min)
merci:)
[09:04:14]
<tituspijean> > <@titus:pijean.ovh> Interesting. What's the output of `sudo grep my_webapp /etc/passwd` ?
And now this one again?
[09:04:45]
<tituspijean> Hum sorry, enable it again before.
[09:05:59]
*tituspijean doing the equivalent of "have you tried turning it off and on" with config panels
[09:11:00]
<mavric34> > <@titus:pijean.ovh> Not yet. Meanwhile you can keep an eye on https://dash.yunohost.org/appsobservatory/news
Thanks, but this page is incomplete because it doesn't show the recent integration of the Deluge application!
[09:14:00]
<tituspijean> ah, interesting... It's updated every 15 days, but Deluge was added a week ago and last update was two days ago. It should not have slipped through.
[09:15:45]
<tao> > <@titus:pijean.ovh> Hum sorry, enable it again before.
stuck here
[09:16:11]
<tao> Waiting for the server's response...
[09:18:11]
<mavric34> > On github, you can watch the directory where the community.json file is present, that the list of these apps
I haven't found the directory containing the community.json file!
[09:19:50]
<tituspijean> That file has been replaced a long time ago 😅 I think lapineige meant https://github.com/YunoHost/apps/blob/master/apps.toml
[09:22:47]
<mavric34> > <@titus:pijean.ovh> That file has been replaced a long time ago 😅 I think lapineige meant https://github.com/YunoHost/apps/blob/master/apps.toml
Between the apps.toml file and the appsobservatory page, I prefer the page but unfortunately not all updates and additions are listed :/
[09:22:52]
<tituspijean> > <@nomads-land:matrix.org> Waiting for the server's response...
still waiting ? :o
[09:24:19]
<tao> > * <@titus:pijean.ovh> doing the equivalent of "have you tried turning it off and on" with config panels
now 1 - and works, merci tituspijean ! but now need to remove from ssh right?
[09:26:14]
<tituspijean> yup! `sudo gpasswd --delete my_webapp ssh.app`
[09:28:26]
<tao> > <@nomads-land:matrix.org> Status: Using username "my_webapp".
> Command: Pass: **********
> Error: FATAL ERROR: Connection reset by peer
> Error: Could not connect to server
> Status: Waiting to retry...
> Status: Connecting to ******.org...
> Response: fzSftp started, protocol_version=11
> Command: open "my_webapp@****.org" 22
> Command: Trust new Hostkey: Once
> Status: Using username "my_webapp".
> Command: Pass: **********
> Error: FATAL ERROR: Connection reset by peer
> Error: Could not connect to server
hmm.. now it doesn again.. same output
[09:28:47]
<marcus> > <@titus:pijean.ovh> Because we decided to include licenses that are "not totally free", and pointing it out with the antifeatures flags: https://github.com/YunoHost/apps/blob/53027ff76a22daf1a9b0dae89c962166c736e81a/apps.toml#L4123
It's not a good idea to integrate proprietary code applications from yunohost, otherwise you might as well use Unraid!
[09:35:29]
<tituspijean> This has been debated within the core and app packaging teams and we concluded this was the best approach. For example, MongoDB now has "not totally free" license, and that would fuck up *a lot* of apps that depend on it.
[09:36:50]
<tituspijean> If you don't want to use these, you just have to glance to the "not totally free" warning in the app page description. If you run a business, it's up to you to make your due diligence and check the licenses of the software you run. :)
[09:42:22]
<tao> > <@nomads-land:matrix.org> hmm.. now it doesn again.. same output
tituspijean: que en pense tu?
[09:43:24]
<marcus> > <@titus:pijean.ovh> If you don't want to use these, you just have to glance to the "not totally free" warning in the app page description. If you run a business, it's up to you to make your due diligence and check the licenses of the software you run. :)
The problem is that from now on I won't be able to trust Yunohost, I'll have to check every application before installing it!
[09:46:08]
<tituspijean> I do not know what to answer to that. Don't be an apps collector? 😅
[09:46:50]
<orhtej2> https://aria.im/_matrix/media/v1/download/circledsquareroot.ovh/a724ac87639fa41948fc0793c5f6c45990468705e3ff97026afa21607ef995e0
[09:46:50]
<orhtej2> > <@marcus78:matrix.org> The problem is that from now on I won't be able to trust Yunohost, I'll have to check every application before installing it!
It literally lists all antifeatures prior to installation
[09:47:02]
<tituspijean> In any case, the decision was made after much discussion, and we found this middle ground. No further debate is needed.
[09:49:15]
<tituspijean> Was SFTP working before you removed `my_webapp` from the `ssh.app` group?
[09:50:55]
<marcus> > It literally lists all antifeatures prior to installation
The warning message should be at the very top of the application page, or even a request to reconfirm the installation by opening a modal when the "Install" button is clicked.
[09:51:14]
<marcus> > <@titus:pijean.ovh> In any case, the decision was made after much discussion, and we found this middle ground. No further debate is needed.
Because on some applications, the warning message hides at the very bottom of the screenshot and is not very visible to everyone!
[09:52:42]
<tituspijean> Feel free to open an issue and suggest a better page organization. :)
[09:53:13]
<marcus> Why not provide a feature to filter out proprietary applications when reloading the catalog?
That would be so much simpler!
[09:53:29]
<tao> > <@titus:pijean.ovh> Was SFTP working before you removed `my_webapp` from the `ssh.app` group?
yes but, in filezilla i could see all root - but didnt have permissions to access my_webapp
[09:53:59]
<orhtej2> > <@marcus78:matrix.org> The warning message should be at the very top of the application page, or even a request to reconfirm the installation by opening a modal when the "Install" button is clicked.
It's open source software, feel free to suggest such improvements [here](https://github.com/yunohost/issues/issues) or even better implement it [here](https://github.com/YunoHost/yunohost-admin/blob/dev/app/src/views/app/AppInstall.vue)
[09:54:39]
<tituspijean> > <@marcus78:matrix.org> Why not provide a feature to filter out proprietary applications when reloading the catalog?
>
> That would be so much simpler!
That is an excellent suggestion. 👍️
[09:55:31]
<marcus> Yunohost lets you filter applications by quality level: "satisfactory quality", "good quality"... It should also be possible to filter them by "Open-Source/Proprietary".
[09:56:46]
<tituspijean> It should rather be a filter on the antifeatures. We will never allow "proprietary" software in the catalog.
[09:57:22]
<tituspijean> > <@nomads-land:matrix.org> yes but, in filezilla i could see all root - but didnt have permissions to access my_webapp
Root, as in `/`, with `/home`, `/etc` and so on? :o
[09:57:41]
<tao> yes
[09:58:06]
<marcus> > <@titus:pijean.ovh> It should rather be a filter on the antifeatures. We will never allow "proprietary" software in the catalog.
even if a very small part of the code in an application is proprietary, the entire application can be considered proprietary!
[09:58:25]
<tituspijean> > <@nomads-land:matrix.org> yes
What the heck... What's your my_webapp package version?
[09:59:34]
<tao> btw, PRed l[ibreerp with oca](https://github.com/YunoHost-Apps/libreerp_ynh/pull/42) a while ago - how do we make it reviewed and merged?
[09:59:57]
<tao> > <@titus:pijean.ovh> What the heck... What's your my_webapp package version?
i forced upgraded it today
[10:00:15]
<tao> Installed version: 1.0~ynh14
[10:03:31]
<tituspijean> > <@marcus78:matrix.org> even if a very small part of the code in an application is proprietary, the entire application can be considered proprietary!
***Please*** make your due diligence. That is not the case of Zerotier. Its BSL license makes it completely open source but restricts your freedom to operate a competing business to ZeroTier (the company). The "non free network" anti-feature is due to the fact that your FOSS zerotier client will contact -by default- a closed-source server to find other clients. It can be bypassed IIRC, namely with ztncui.
[10:04:45]
<tituspijean> Are your BIOS/UEFI/firmware/router/modem open source?
[10:06:27]
<tituspijean> Anyways, this not the place for a yet very interesting hardcore librism debate. YunoHost made a choice, if you are not happy with the UX/UI, you are most welcome to help us improve the software. :) (and I mean ***help***, not dictate us what to do. I have a strong *déjà-vu* feeling.)
[10:07:39]
<marcus> > <@titus:pijean.ovh> Are your BIOS/UEFI/firmware/router/modem open source?
Yes "BIOS = DASHARO / UEFI = EDK2 / router = OpenWRT..."
[10:07:49]
<marcus> > <@titus:pijean.ovh> ***Please*** make your due diligence. That is not the case of Zerotier. Its BSL license makes it completely open source but restricts your freedom to operate a competing business to ZeroTier (the company). The "non free network" anti-feature is due to the fact that your FOSS zerotier client will contact -by default- a closed-source server to find other clients. It can be bypassed IIRC, namely with ztncui.
This is not true, because ztncui depends on non-free tools.
[10:08:14]
<marcus> https://aria.im/_matrix/media/v1/download/matrix.org/WBPwqlrTemNMSvLZqsKWHgph
[10:08:43]
<tituspijean> I flagged it as such because it promotes the use of... ZeroTier. :)
[10:09:52]
<tituspijean> Debate is closed. You have all the information you need on the matter.
Next message will result in a ban.
[10:11:16]
<marcus> I'm sorry to have embarrassed you with questions you didn't necessarily have the answers to.
[10:12:00]
<tituspijean> Well, it's a support room. We give support as long as it is reasonable.
[10:12:00]
<marcus> The ban remains your only means of winning the debate
[10:12:28]
<tituspijean> (Coming back to you @tao... i'm trying to replicate the issue)
[10:12:58]
<tituspijean> > <@nomads-land:matrix.org> i forced upgraded it today
dang I was about to suggest that :(
[10:14:25]
<tao> merci tituspijean , aussi pour me faire marrer, quel patience:)
[10:18:44]
<tao> at the past i mounted echoed and setfacl it to a user folder - could that be the culprit?
[10:18:49]
<tituspijean> when you try to log in with SFTP, what does /var/log/auth.log display?
[10:19:26]
<tituspijean> > <@nomads-land:matrix.org> at the past i mounted echoed and setfacl it to a user folder - could that be the culprit?
it shouldn't, I guess? the issue is that it doesn't even allow you to log in :/
[10:19:44]
<tituspijean> can you just try installing a second my_webapp and see if this one works?
[10:21:08]
<tao> fatal: bad ownership or modes for chroot directory component "/var/www/"
[10:21:37]
<tituspijean> ooooh that rings a bell
[10:22:33]
<tao> yey:)
[10:22:59]
<tituspijean> what's `ls -l /var/www` ? (you may remove lines not related to the my_webapp, but keep `.` and `..`
[10:23:26]
<Aleks (he/him/il/lui)> (protip you can use `ls -ld /var/www` to get permissions for /var/www itself)
[10:24:18]
<tituspijean> ^ what he said (nice tip thanks)
[10:24:56]
<tao> drwxrwxr-x+ 10 root root 4096 Jul 20 12:35 /var/www
[10:25:46]
<tituspijean> and `getfacl /var/www`?
[10:26:28]
<tao> getfacl: Removing leading '/' from absolute path names
# file: var/www
# owner: root
# group: root
user::rwx
group::rwx
group:all_users:---
mask::rwx
other::r-x
[10:26:48]
<Aleks (he/him/il/lui)> (protip you can even use `namei -l /some/path/to/stuff` to get the full detail of permissions for a patch + their parent folders)
[10:27:15]
<tituspijean> > <@Alekswag:matrix.org> (protip you can even use `namei -l /some/path/to/stuff` to get the full detail of permissions for a patch + their parent folders)
stahp overloading my miiiiiind with awesome shortcuts
[10:27:46]
<tituspijean> tao: try `sudo chmod g-w /var/www`
[10:28:17]
<tituspijean> (and trying to find how to change the mask too)
[10:28:48]
<tituspijean> for reference mine is
```
➜ titus ls -ld /var/www
drwxr-xr-x+ 24 root root 4096 Aug 16 15:39 /var/www
➜ titus getfacl /var/www
getfacl: Removing leading '/' from absolute path names
# file: var/www
# owner: root
# group: root
user::rwx
group::r-x
group:all_users:---
mask::r-x
other::r-x
```
[10:30:55]
<tao> > <@titus:pijean.ovh> tao: try `sudo chmod g-w /var/www`
after this i now see group::rwx #effective:r-x
group:all_users:---
mask::r-x
other::r-x
[10:31:34]
<tao> and yuppi!
[10:32:26]
<tao> cimer tituspijean ! you're awesome:)
[10:32:26]
<tituspijean> it worked? :o
[10:32:45]
<tituspijean> great 🚀
[10:32:55]
<tao> yes:)
[10:34:02]
<tao> last question - if i want to change my_webapp user/name?
[10:34:55]
<tituspijean> don't 🥲
[10:35:11]
<tituspijean> (issue reported in https://github.com/YunoHost-Apps/my_webapp_ynh/issues/123)
[10:35:44]
<tituspijean> > <@nomads-land:matrix.org> last question - if i want to change my_webapp user/name?
it's totally dependent on the app name, and would be a mess to tweak
[10:38:58]
<guitch> Hello,
I cannot access my Nextcloud instance anymore (I had a failed upgrade due lack of disk space was able to complete after making space and upgrade again - to NC-27.0.2~ynh1 on Yunohost 11.2.3).
I only get 403 responses from nginx with the kind of following log from nginx (no log from NC) :
2023/08/17 10:33:52 [error] 1376#1376: *126 "/var/www/nextcloud/index.php" is forbidden (13: Permission denied), client: [x.x.x.x], server: [SubDomain of NC], request: "GET / HTTP/2.0", host: "[SubDomain of NC]", referrer: "https://[Main domain]/"
Can anyone help please ?
[10:39:14]
<guitch> (or point me in a direction to investigate)
[10:39:28]
<tituspijean> Have you resolved your lack of space?
[10:40:00]
<guitch> > <@titus:pijean.ovh> Have you resolved your lack of space?
Yes. I deleted some log files and git enough space to run the upgrade again...
[10:41:51]
<guitch> (which has been "successful" : the process succeeded : https://paste.yunohost.org/raw/tufiquvude but NC can no longer be accessed :/ )
[10:42:14]
<tituspijean> Try force-upgrading the app then, it should reinstate the files permissions: `yunohost app upgrade nextcloud -F`
[10:42:36]
<guitch> > <@titus:pijean.ovh> Try force-upgrading the app then, it should reinstate the files permissions: `yunohost app upgrade nextcloud -F`
I did that already :/
[10:43:21]
<tituspijean> can you run `sudo -u www-data ls /var/www/nextcloud/index.php` ?
[10:44:04]
<guitch> > <@titus:pijean.ovh> can you run `sudo -u www-data ls /var/www/nextcloud/index.php` ?
answer is : ls: cannot access '/var/www/nextcloud/index.php': Permission denied
[11:06:56]
<guitch> Here is what I get in terms of permissions on the nextcloud folder :
/var/www# ls -ld nextcloud/
drwxr-x---+ 14 nextcloud www-data 4096 Aug 15 19:24 nextcloud/
/var/www# getfacl nextcloud/
# file: nextcloud/
# owner: nextcloud
# group: www-data
user::rwx
user:nextcloud:rw- #effective:r--
group::---
mask::r-x
other::---
default:user::rwx
default:user:nextcloud:rw-
default:group::---
default:mask::rw-
default:other::---
[11:07:05]
<guitch> I do not know how to deal with acl permissions though :/
[11:09:25]
<mavric34> https://aria.im/_matrix/media/v1/download/matrix.org/XVcXbEtYvODecyoBXSpgndqD
[11:09:30]
<mavric34> After installing transmission I get the following page instead of the application !
[11:11:05]
<mavric34> eric_G Deluge doesn't work either because it's not even available in the yunohost portal after installation! Did you check Deluge before adding it to the catalog?
[11:16:33]
<mavric34> I managed to display Deluge in the yunohost portal, but I get the same nginx message when opening the application!
[11:20:14]
<mavric34> Why is this message displayed instead of the application?
[11:20:31]
<tituspijean> guitch: what about `ls -d /var/www/nextcloud/index.php` ?
[11:26:53]
<mavric34> Here are the Tansmission installation logs: https://paste.yunohost.org/raw/biyiribiwe
And here are the Deluge installation logs: https://paste.yunohost.org/raw/nojiwodozo
[11:29:26]
<mavric34> Deluge doesn't immediately give permission to users in the admins group, so I had to add permission manually for it to show up in the portal. But both these applications display the NGINX error above!
[11:34:24]
<mavric34> Restarting the server solved the problem, I think that when installing these two applications, the NGINX server doesn't restart correctly!
[11:36:01]
<guitch> > <@titus:pijean.ovh> guitch: what about `ls -d /var/www/nextcloud/index.php` ?
sudo -u www-data ls -d /var/www/nextcloud/index.php
ls: cannot access '/var/www/nextcloud/index.php': Permission denied
[11:36:26]
<tituspijean> without the sudo -u :)
[11:36:45]
<guitch> sorry :)
[11:36:52]
<guitch> ls -d /var/www/nextcloud/index.php
/var/www/nextcloud/index.php
[11:37:20]
<tituspijean> sorry, ls -l
[11:37:40]
<guitch> ls -s /var/www/nextcloud/index.php
4 /var/www/nextcloud/index.php
[11:38:12]
<tituspijean> l as in uncapitalized L 😅
[11:38:37]
<guitch> sorry sorry !!
[11:38:50]
<guitch> ls -l /var/www/nextcloud/index.php
-rw-r--r--+ 1 nextcloud www-data 3456 Aug 8 10:21 /var/www/nextcloud/index.php
[11:39:34]
<tituspijean> Weird, what's that ACL: `getfacl /var/www/nextcloud/index.php`
[11:40:20]
<guitch> getfacl /var/www/nextcloud/index.php
getfacl: Removing leading '/' from absolute path names
# file: var/www/nextcloud/index.php
# owner: nextcloud
# group: www-data
user::rw-
user:nextcloud:rw- #effective:r--
group::---
mask::r--
other::r--
[11:40:59]
<guitch> (I really don't get this acl permission system... group seems to lose it all...)
[11:41:24]
<tituspijean> you should not have an ACL here... yup indeed `www-data` has no access due to it
[11:41:56]
<guitch> I don't know how that has happened...
[11:42:27]
<guitch> Can I simply remove all the acl on the nextcloud folder (and subfolder) ?
[11:44:20]
<tituspijean> (had to do it, sorry)
[11:44:40]
<tituspijean> https://aria.im/_matrix/media/v1/download/pijean.ovh/1b55290bc39dbd847c88c3dc90e8bde184d30933910389ba29dae6d25d52f976
[11:45:21]
<guitch> ??
[11:45:22]
<tituspijean> > <@guitch:matrix.org> Can I simply remove all the acl on the nextcloud folder (and subfolder) ?
I think so. let me check the code
[11:46:24]
<tituspijean> > <@guitch:matrix.org> ??
nevermind, I saw an opportunity for a meme.
[11:46:27]
<tituspijean> so yup you can remove it
[11:47:15]
<guitch> > <@titus:pijean.ovh> so yup you can remove it
how can I do that ?
[11:47:26]
<tituspijean> `sudo setfacl -R -b /var/www/nextcloud`
[11:51:11]
<guitch> > <@titus:pijean.ovh> `sudo setfacl -R -b /var/www/nextcloud`
I did that but now I have :
ls -ld nextcloud/
drwx------ 14 nextcloud www-data 4096 Aug 15 19:24 nextcloud/
[11:51:25]
<guitch> I should also do a chmod here no ?
[11:57:05]
<guitch> would a sudo chmod -R g+o /var/www/nextcloud do the trick ? How can I know if some files or folder inside nextcloud would require a different one ?
[11:57:55]
<Westbam> Salut, j'ai Etherpad qui est en carafe, je pense depuis l'update, j'ai relancé le service ainsi que le service nginx mais pas mieux pour l'instant
[11:58:33]
<Westbam> j'ai une erreur 502 Bad Gateway qui s'affiche
[11:59:23]
<Aleks (he/him/il/lui)> il y a sans doute un service qui s'appelle Etherpad-kekchose dans Outils>Service, si il est en status genre "cassé"/rouge, il faudrait partager le log avec le bouton "Partager les logs avec Yunopaste"
[12:01:49]
<Westbam> https://paste.yunohost.org/yaqifepuce
[12:02:51]
<Westbam> Salut Aleks (he/him/il/lui)
[12:02:55]
<Aleks (he/him/il/lui)> >mnpm ERR! peer dep missing: eslint@^2 || ^3 || ^4 || ^5 || ^6 || ^7.2.0 || ^8, required by eslint-plugin-import@2.28.0
[12:03:02]
<Aleks (he/him/il/lui)> Par contre je connais pas assez etherpad pour savoir debugger cette erreur
[12:04:02]
<guitch> > <@guitch:matrix.org> would a sudo chmod -R g+o /var/www/nextcloud do the trick ? How can I know if some files or folder inside nextcloud would require a different one ?
actually folders will probably need to g+x too...
[12:05:21]
<Westbam> Ok, pour ce qui est de conf j'ai tout laissé d'origine, pas d'ajout de plugin ou autre
[12:11:58]
<mavric34> eric_G: Strange, but the `/var/www/deluge` folder doesn't contain any files!
[12:12:05]
<mavric34> Where are the Deluge files stored?
[12:15:38]
<mavric34> The .conf folder is indeed present in `/var/www/deluge`but it was invisible!
[12:24:26]
<guitch> tituspijean: any idea on how to properly set the group permissions on the nextcloud folders and files ?
[12:27:17]
<guitch> At the moment I have reset all the group permission to none :
ls -ld /var/www/nextcloud
drwx------ 14 nextcloud www-data 4096 Aug 15 19:24 /var/www/nextcloud
ls -al /var/www/nextcloud/
total 184
drwx------ 14 nextcloud www-data 4096 Aug 15 19:24 .
drwxr-xr-x+ 12 root root 4096 Aug 13 01:58 ..
drwx---r-x 45 nextcloud www-data 4096 Aug 8 10:23 3rdparty
drwx---r-x 73 nextcloud www-data 4096 Aug 13 01:58 apps
-rw----r-- 1 nextcloud www-data 23796 Aug 8 10:21 AUTHORS
drwx---r-x 2 nextcloud www-data 4096 Aug 13 01:59 config
-rw----r-- 1 nextcloud www-data 4095 Aug 8 10:21 console.php
-rw----r-- 1 nextcloud www-data 34520 Aug 8 10:21 COPYING
drwx---r-x 24 nextcloud www-data 4096 Aug 8 10:24 core
-rw----r-- 1 nextcloud www-data 6317 Aug 8 10:21 cron.php
drwx---r-x 2 nextcloud www-data 12288 Aug 8 10:21 dist
-rw----r-- 1 nextcloud www-data 3255 Aug 14 00:36 .htaccess
-rw----r-- 1 nextcloud www-data 156 Aug 8 10:21 index.html
-rw----r-- 1 nextcloud www-data 3456 Aug 8 10:21 index.php
drwx---r-x 6 nextcloud www-data 4096 Aug 8 10:21 lib
-rw----r-- 1 nextcloud www-data 283 Aug 8 10:21 occ
drwx---r-x 2 nextcloud www-data 4096 Aug 8 10:21 ocm-provider
drwx---r-x 2 nextcloud www-data 4096 Aug 8 10:21 ocs
drwx---r-x 2 nextcloud www-data 4096 Aug 8 10:21 ocs-provider
-rw----r-- 1 nextcloud www-data 3187 Aug 8 10:21 public.php
-rw----r-- 1 nextcloud www-data 5597 Aug 8 10:21 remote.php
drwx---r-x 4 nextcloud www-data 4096 Aug 8 10:21 resources
-rw----r-- 1 nextcloud www-data 26 Aug 8 10:21 robots.txt
-rw----r-- 1 nextcloud www-data 2452 Aug 8 10:21 status.php
-rw----r-- 1 nextcloud www-data 44 Aug 15 13:28 test.html
drwx---r-x 3 nextcloud www-data 4096 Aug 8 10:21 themes
drwx---r-x 2 nextcloud www-data 4096 Aug 8 10:22 updater
-rw----r-- 1 nextcloud www-data 101 Aug 8 10:21 .user.ini
-rw----r-- 1 nextcloud www-data 383 Aug 8 10:23 version.php
[12:40:58]
<tituspijean> guitch: try force-upgrading: `sudo yunohost app upgrade nextcloud -F`
[12:41:53]
<Chatpitaine Caverne> guitch: You can find the proper permission for Nextcloud in the install script of the app :
https://github.com/YunoHost-Apps/nextcloud_ynh/blob/0f16f720bd6bfdd98e9634692e0acfc70e986192/scripts/install#L330)
But also, tituspijean offer a solution also.
[12:46:20]
<tituspijean> (mine being the lazy one 😅)
[12:48:18]
<guitch> Thank you tituspijean and Chatpitaine Caverne ! I went the "lazy way" :)
[12:49:07]
<guitch> I got rid of my nginx 403 response !! Sadly, I now have a nextcloud problem :/
[12:50:16]
<guitch> Nextcloud log gives me :
{"reqId":"iYSN9L9jtHeGyaWgox2t","level":3,"time":"2023-08-17T12:47:35+00:00","remoteAddr":"x.x.x.x","user":"guitch","app":"PHP","method":"POST","url":"/login","message":"tempnam(): file created in the system's temporary directory at /var/www/nextcloud/lib/private/TempManager.php#91","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/116.0","version":"27.0.2.1","data":{"app":"PHP"}}
[12:50:19]
<guitch> any idea ?
[12:51:10]
<guitch> (the nextcloud upgrade completed with success)
[12:55:51]
<Chatpitaine Caverne> > <@guitch:matrix.org> any idea ?
Don't know much. First I'd try a CTRL+F5 in Firefox.
[12:57:49]
<guitch> I did that... same result..
[13:00:36]
<MrDonz> hello, i have a problem with synapse on a new (and my first yunohost installation). everything works from android, via schildchat and elemement, but i can't log in to the server from web interface with any browser. it gives me this error "unexpetcted error resolving homeserver configuration"
i only have the console log to be able to see, can it help?
[13:03:51]
<Aleks (he/him/il/lui)> hmmmyeah maybe you can try sharing a screenshot of the console if there's any relevant info/error message
[13:04:03]
<Aleks (he/him/il/lui)> (i don't have much technical knowledge about synapse tho)
[13:08:01]
<tituspijean> > <@guitch:matrix.org> I did that... same result..
The log does not look like an error. Anything relevant around that?
[13:08:53]
<MrDonz> > <@mrdonz:sticavoli.top> hello, i have a problem with synapse on a new (and my first yunohost installation). everything works from android, via schildchat and elemement, but i can't log in to the server from web interface with any browser. it gives me this error "unexpetcted error resolving homeserver configuration"
> i only have the console log to be able to see, can it help?
https://paste.yunohost.org/xagipacini.sql
[13:09:21]
<guitch> Yes, there was actually a second log entry (a bit longer than the first one) :
{"reqId":"iYSN9L9jtHeGyaWgox2t","level":3,"time":"2023-08-17T12:47:35+00:00","remoteAddr":"195.68.7.37","user":"guitch","app":"index","method":"POST","url":"/login","message":"file\_put\_contents(): Argument #1 ($filename) must be of type string, bool given in file '/var/www/nextcloud/apps/suspicious\_login/lib/Service/ModelStore.php' line 148","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/116.0","version":"27.0.2.1","exception":{"Exception":"Exception","Message":"file\_put\_contents(): Argument #1 ($filename) must be of type string, bool given in file '/var/www/nextcloud/apps/suspicious\_login/lib/Service/ModelStore.php' line 148","Code":0,"Trace":\[{"file":"/var/www/nextcloud/lib/private/AppFramework/App.php","line":183,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->"},{"file":"/var/www/nextcloud/lib/private/Route/Router.php","line":315,"function":"main","class":"OC\\AppFramework\\App","type":"::"},{"file":"/var/www/nextcloud/lib/base.php","line":1071,"function":"match","class":"OC\\Route\\Router","type":"->"},{"file":"/var/www/nextcloud/index.php","line":36,"function":"handleRequest","class":"OC","type":"::"}\],"File":"/var/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","Line":169,"Previous":{"Exception":"TypeError","Message":"file\_put\_contents(): Argument #1 ($filename) must be of type string, bool given","Code":0,"Trace":\[{"file":"/var/www/nextcloud/apps/suspicious\_login/lib/Service/ModelStore.php","line":148,"function":"file\_put\_contents"},{"file":"/var/www/nextcloud/apps/suspicious\_login/lib/Service/ModelStore.php","line":95,"function":"load","class":"OCA\\SuspiciousLogin\\Service\\ModelStore","type":"->"},{"file":"/var/www/nextcloud/apps/suspicious\_login/lib/Service/EstimatorService.php","line":60,"function":"loadLatest","class":"OCA\\SuspiciousLogin\\Service\\ModelStore","type":"->"},{"file":"/var/www/nextcloud/apps/suspicious\_login/lib/Service/LoginClassifier.php","line":111,"function":"predict","class":"OCA\\SuspiciousLogin\\Service\\EstimatorService","type":"->"},{"file":"/var/www/nextcloud/apps/suspicious\_login/lib/Listener/LoginListener.php","line":77,"function":"process","class":"OCA\\SuspiciousLogin\\Service\\LoginClassifier","type":"->"},{"file":"/var/www/nextcloud/apps/suspicious\_login/lib/Listener/LoginListener.php","line":65,"function":"handleClassification","class":"OCA\\SuspiciousLogin\\Listener\\LoginListener","type":"->"},{"file":"/var/www/nextcloud/lib/private/EventDispatcher/ServiceEventListener.php","line":86,"function":"handle","class":"OCA\\SuspiciousLogin\\Listener\\LoginListener","type":"->"},{"file":"/var/www/nextcloud/3rdparty/symfony/event-dispatcher/EventDispatcher.php","line":251,"function":"\_\_invoke","class":"OC\\EventDispatcher\\ServiceEventListener","type":"->"},{"file":"/var/www/nextcloud/3rdparty/symfony/event-dispatcher/EventDispatcher.php","line":73,"function":"callListeners","class":"Symfony\\Component\\EventDispatcher\\EventDispatcher","type":"->"},{"file":"/var/www/nextcloud/lib/private/EventDispatcher/EventDispatcher.php","line":94,"function":"dispatch","class":"Symfony\\Component\\EventDispatcher\\EventDispatcher","type":"->"},{"file":"/var/www/nextcloud/apps/suspicious\_login/lib/AppInfo/Application.php","line":75,"function":"dispatch","class":"OC\\EventDispatcher\\EventDispatcher","type":"->"},{"file":"/var/www/nextcloud/lib/private/legacy/OC\_Hook.php","line":105,"function":"handle","class":"class@anonymous\\u0000/var/www/nextcloud/apps/suspicious\_login/lib/AppInfo/Application.php:59$9b","type":"->"},{"file":"/var/www/nextcloud/lib/private/Server.php","line":628,"function":"emit","class":"OC\_Hook","type":"::"},{"function":"OC\\{closure}","class":"OC\\Server","type":"->","args":\["\*\*\* sensitive parameters replaced _**"\]},{"file":"/var/www/nextcloud/lib/private/Hooks/EmitterTrait.php","line":105,"function":"call\_user\_func\_array"},{"file":"/var/www/nextcloud/lib/private/Hooks/PublicEmitter.php","line":40,"function":"emit","class":"OC\\Hooks\\BasicEmitter","type":"->"},{"file":"/var/www/nextcloud/lib/private/User/Session.php","line":401,"function":"emit","class":"OC\\Hooks\\PublicEmitter","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/CompleteLoginCommand.php","line":43,"function":"completeLogin","class":"OC\\User\\Session","type":"->","args":\["**_ sensitive parameters replaced _**"\]},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/ALoginCommand.php","line":39,"function":"process","class":"OC\\Authentication\\Login\\CompleteLoginCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/LoggedInCheckCommand.php","line":60,"function":"processNextOrFinishSuccessfully","class":"OC\\Authentication\\Login\\ALoginCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/ALoginCommand.php","line":39,"function":"process","class":"OC\\Authentication\\Login\\LoggedInCheckCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/EmailLoginCommand.php","line":68,"function":"processNextOrFinishSuccessfully","class":"OC\\Authentication\\Login\\ALoginCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/ALoginCommand.php","line":39,"function":"process","class":"OC\\Authentication\\Login\\EmailLoginCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/UidLoginCommand.php","line":53,"function":"processNextOrFinishSuccessfully","class":"OC\\Authentication\\Login\\ALoginCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/ALoginCommand.php","line":39,"function":"process","class":"OC\\Authentication\\Login\\UidLoginCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/UserDisabledCheckCommand.php","line":57,"function":"processNextOrFinishSuccessfully","class":"OC\\Authentication\\Login\\ALoginCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/ALoginCommand.php","line":39,"function":"process","class":"OC\\Authentication\\Login\\UserDisabledCheckCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/PreLoginHookCommand.php","line":52,"function":"processNextOrFinishSuccessfully","class":"OC\\Authentication\\Login\\ALoginCommand","type":"->"},{"file":"/var/www/nextcloud/lib/private/Authentication/Login/Chain.php","line":107,"function":"process","class":"OC\\Authentication\\Login\\PreLoginHookCommand","type":"->"},{"file":"/var/www/nextcloud/core/Controller/LoginController.php","line":326,"function":"process","class":"OC\\Authentication\\Login\\Chain","type":"->"},{"file":"/var/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":230,"function":"tryLogin","class":"OC\\Core\\Controller\\LoginController","type":"->","args":\["**_ sensitive parameters replaced \*\*\*"\]},{"file":"/var/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":137,"function":"executeController","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->"},{"file":"/var/www/nextcloud/lib/private/AppFramework/App.php","line":183,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->"},{"file":"/var/www/nextcloud/lib/private/Route/Router.php","line":315,"function":"main","class":"OC\\AppFramework\\App","type":"::"},{"file":"/var/www/nextcloud/lib/base.php","line":1071,"function":"match","class":"OC\\Route\\Router","type":"->"},{"file":"/var/www/nextcloud/index.php","line":36,"function":"handleRequest","class":"OC","type":"::"}\],"File":"/var/www/nextcloud/apps/suspicious\_login/lib/Service/ModelStore.php","Line":148},"CustomMessage":"--"}}
[13:09:31]
<tituspijean> MrDonz: can you also check the Matrix federation tester? https://federationtester.matrix.org/
[13:09:55]
<tituspijean> guitch: for long logs, please use https://paste.yunohost.org
[13:10:16]
<tituspijean> No actual human can read that in a chat client
[13:10:19]
<MrDonz> > <@titus:pijean.ovh> MrDonz: can you also check the Matrix federation tester? https://federationtester.matrix.org/
No problem at all with that. I'm here with that client
[13:12:13]
<guitch> > <@titus:pijean.ovh> guitch: for long logs, please use https://paste.yunohost.org
Oups, sorry ! Here it is : https://paste.yunohost.org/akaheminox.json
[13:13:04]
<orhtej2> > <@mrdonz:sticavoli.top> hello, i have a problem with synapse on a new (and my first yunohost installation). everything works from android, via schildchat and elemement, but i can't log in to the server from web interface with any browser. it gives me this error "unexpetcted error resolving homeserver configuration"
> i only have the console log to be able to see, can it help?
what 'web interface'?
[13:16:19]
<orhtej2> > <@mrdonz:sticavoli.top> https://paste.yunohost.org/xagipacini.sql
judging from this log server is running OK, federation tester is able to hit it
[13:17:52]
<orhtej2> can you try with matrix-hosted Element web? https://app.element.io/#/welcome
[13:29:16]
<mavric34> There's a problem with the PYLOAD application: the application's default configuration settings reapply as soon as the pyload service is restarted, despite prior backups.
[13:29:17]
<mavric34> For example, the default download folder: `/home/yunohost.app/pyload` is redefined each time the service is restarted (even if I change the hard parameters directly in the `var/www/pyload/.pyload/settings/pyload.cfg` file).
[13:29:45]
<mavric34> How can I apply the settings permanently to the Pyload application?
[13:31:17]
<MrDonz> > can you try with matrix-hosted Element web? https://app.element.io/#/welcome
This is what i mean by web interface. On Android app no problem at all. Just on desktop. In differenti pc and from different locations
[13:32:43]
<tituspijean> mavric34: try stopping the service, then altering the config file, then restarting the service
[13:34:01]
<tituspijean> > <@mrdonz:sticavoli.top> https://paste.yunohost.org/xagipacini.sql
there's a bug in the path (twice `/_matrix`), as to why it's bugging...
[13:34:39]
<orhtej2> > <@mrdonz:sticavoli.top> This is what i mean by web interface. On Android app no problem at all. Just on desktop. In differenti pc and from different locations
At which point you're getting an error? I'm able to type `sticavoli.top` as home server there?
[13:35:01]
<tituspijean> are you using the server name feature? (as in, your username ending is different than the domain where synapse is installed?)
[13:35:33]
<tituspijean> basically, what's the server name you input in Element?
[13:37:26]
<MrDonz> > At which point you're getting an error? I'm able to type `sticavoli.top` as home server there?
Got it
[13:38:19]
<mavric34> I've also modified the theme, which is not redefined by default by the service, only the download directory parameter is redefined by default every time!
[13:38:19]
<mavric34> > <@titus:pijean.ovh> mavric34: try stopping the service, then altering the config file, then restarting the service
I've done it, but it doesn't work, the `/home/yunohost.app/pyload` folder always comes back in the parameters, the service redefines this parameter by default every time!
[13:38:20]
<MrDonz> > <@mrdonz:sticavoli.top> Got it
I used sticavoli.top/_matrix that workes on Android
[13:40:21]
<tituspijean> mavric34: ah I see, it's due to https://github.com/YunoHost-Apps/pyload_ynh/blob/b1e7c9136d464fd35c14fea6ab7c16718952e469/conf/systemd.service#L10
[13:40:50]
<MrDonz> thank you very much guys :) i lost 1 day triyng and retring :)
[13:40:54]
<tituspijean> If you are 100% sure not to use the datadir, then I guess you can hack the app with `yunohost app setting `
[13:41:44]
<tituspijean> `yunohost app setting pyload datadir -v "yourpath"`
[13:42:01]
<tituspijean> then force-upgrade the app
[13:44:04]
<tituspijean> > <@guitch:matrix.org> Oups, sorry ! Here it is : https://paste.yunohost.org/akaheminox.json
Try disabling "Suspicious login" app
[13:48:16]
<mavric34> > <@titus:pijean.ovh> `yunohost app setting pyload datadir -v "yourpath"`
Thanks for the command, but it didn't work. when executing the command i got a return to the line without logs. when restarting the pyload service the same folder was still applied `/home/yunohost.app/pyload`!
[13:50:32]
<tituspijean> mavric34: what's the output of `sudo yunohost app setting pyload datadir`
[13:54:16]
<tituspijean> and did you force-upgrade the app? `yunohost app upgrade pyload -F`
[13:54:19]
<mavric34> > <@titus:pijean.ovh> mavric34: what's the output of `sudo yunohost app setting pyload datadir`
The command `sudo yunohost app setting pyload datadir` returns the folder I defined myself `/home/Downloads`.
[13:54:26]
<mavric34>
No application updates are available in YunoHost. How can I force an update?
[13:54:40]
<tituspijean> (command added in my message above)
[13:59:56]
<guitch> tituspijean: thanks for your help to get my NC instance back and running, especially with the Nginx permissions...
Regarding the last problem that raised the "suspicious login" I got a hint in a log talking about a temporary file problem... when I had my disk full, I actually moved the /tmp to a different partition and created a symbolink link to it... somehow NC did not like it... I moved back the /tmp on the initial partition and NC now works fine !
Thanks again for your help !
[14:00:41]
<mavric34> > <@titus:pijean.ovh> and did you force-upgrade the app? `yunohost app upgrade pyload -F`
I've forced it to update, but the system hasn't responded for over two minutes!
[14:01:19]
<mavric34> https://aria.im/_matrix/media/v1/download/matrix.org/gMfohpIogsaSoaZZseJSwpZk
[14:01:46]
<tituspijean> in another terminal, try `systemctl status pyload`
[14:03:20]
<mavric34> It finally unblocked itself, but with a few minor errors
[14:03:35]
<mavric34> https://aria.im/_matrix/media/v1/download/matrix.org/JSSzeLQDeAEHdLEcTYEjbSfR
[14:06:10]
<mavric34> tituspijean: The folder is now taken into account, even after the server has been restarted :)
[14:06:24]
<mavric34> Will I have to do this every time there's a new PYLOAD update?
[14:07:04]
<Westbam> Pourtant le service semble tourner correctement
[14:08:14]
<tituspijean> > <@mavric34:matrix.org> Will I have to do this every time there's a new PYLOAD update?
nope, since you altered the setting :)
[14:10:22]
<Westbam> en fait j'ai l'impression qu'il n'arrive pas à lancer le service, il boucle en continu
[14:12:53]
<mavric34> > <@titus:pijean.ovh> nope, since you altered the setting :)
All right. Thank you 👍️
[14:20:41]
<mavric34> The version of the installed Deluge application available in Yunohost is 2.0.3 (This version dates from 2018), while the latest version of Deluge is 2.1.1!
[14:20:47]
<mavric34> Why integrate an old version of Deluge that surely contains security holes?
[14:21:16]
<Aleks (he/him/il/lui)> Westbam: for the love of god please don't use Matrix threads, everything just becomes a huge mess between regular replies, replies in threads, then the room is flagged as "unread messages" and nobody understands why until they figure out that they have to click on the "thread" icon in top right corner etc ...
[14:22:22]
<orhtej2> > <@mavric34:matrix.org> The version of the installed Deluge application available in Yunohost is 2.0.3 (This version dates from 2018), while the latest version of Deluge is 2.1.1!
[because that's the one shipped with Debian bullseye](https://packages.debian.org/bullseye/deluge-web)
[14:22:51]
<orhtej2> it's autoresolve itself once bookworm/ynh 12 is here
[14:24:03]
<mavric34> Is there a date for bookworm?
[14:24:46]
<Aleks (he/him/il/lui)> same date as Half Life ³
[14:24:46]
<tituspijean> there never will be a date :)
[14:25:36]
<orhtej2> > it's autoresolve itself once bookworm/ynh 12 is here
wait no, bookworm also ships 2.0.3, 2.1.x is in sid
[14:26:40]
<mavric34> > <@Alekswag:matrix.org> same date as Half Life ³
It's a question of security. Half Life is all about fun and entertainment, but yunohost runs production servers with it. Security updates are of paramount importance!
[14:26:45]
<tituspijean> I can't wait for Debian to publish Sid, btw 🙃
[14:27:20]
<Aleks (he/him/il/lui)> "Running the latest Debian stable" is neither necessary nor sufficient to have anything qualifying as "secure"
[14:27:38]
<Aleks (he/him/il/lui)> oldstable receives security updates for like at least 2 years
[14:28:30]
<mavric34> > wait no, bookworm also ships 2.0.3, 2.1.x is in sid
So how do I update the application?
[14:29:08]
<orhtej2> > <@mavric34:matrix.org> So how do I update the application?
good question, either unpack docker image and hope glibc is compatible or build from source :/
[14:30:07]
<mavric34> > <@Alekswag:matrix.org> oldstable receives security updates for like at least 2 years
Okay, but independent applications have their own updates.
[14:30:09]
<Westbam> En cherchant un peu à propos du plugin eslint
[14:30:33]
<Westbam> j'ai regardé pour le mettre à jour avec la commande npm -i eslint-plugin-import
[14:30:48]
<Westbam> sauf qu'en retour il me dit que npm n'est plus à jour du tout
[14:31:07]
<Westbam> je peux le mettre à jour sans risque pour mes autres apps ?
[14:31:09]
<Westbam> npm i eslint-plugin-import
added 175 packages, and audited 176 packages in 7s
79 packages are looking for funding
run `npm fund` for details
found 0 vulnerabilities
npm notice
npm notice New major version of npm available! 8.19.4 -> 9.8.1
npm notice Changelog: https://github.com/npm/cli/releases/tag/v9.8.1
npm notice Run npm install -g npm@9.8.1 to update!
npm notice
[14:31:55]
<tituspijean> Westbam: il faut charger la bonne version de node
[14:32:15]
<tituspijean> utilise `yunohost app shell etherpad_mypads` 🤞
[14:32:47]
<tituspijean> (time to shine, or to cry)
[14:33:51]
<tituspijean> mais si c'est bien ça le problème, c'est plutôt la faute au package.json d'etherpad
[14:34:29]
<Aleks (he/him/il/lui)> > <@mavric34:matrix.org> Okay, but independent applications have their own updates.
indendent applications have their own updates, but Debian folks care about security and will patch security stuff if it's important, otherwise we should just ditch Debian entirely and never install anything with it and let every developers have their own custom release/upgrade process ... which in fact tends to be a security disaster (cf Windows)
[14:35:06]
<Aleks (he/him/il/lui)> but hey yeah, you're right in some sense, we could probably install the upstream's latest tarball, but that's not about security, it's just about running the latest version
[14:36:06]
<Aleks (he/him/il/lui)> in terms of pure security, i'd rather trust whatever the Debian folks are shipping even if it's an old version, rather than running the latest top-notch version from the upstream, which would be completely unreviewed by Debian (or whichever) community
[14:37:32]
<Aleks (he/him/il/lui)> (sorry for the wall of text, but i easily get triggered when people try to bring up "Security" as a magic word to justify stuff)
[14:37:53]
<Westbam> j'ai bien envie de repartir sur un backup d'etherpad avant l'update ....
[14:38:19]
<Westbam> c'est conseillé de supprimer le package actuel pour faire la restauration ?
[14:38:44]
<Westbam> ou la restauration du backup le fera d'office ?
[14:38:52]
<tituspijean> oui, il y aura un conflit de toute manière
[14:39:35]
<Westbam> ok Go Go 🤞
[14:41:40]
<Westbam> je vais passer de la version 1.91 à la 1.8.18 d'Etherpad, on verra bien
[15:08:12]
<Westbam> Restauration Backup OK, vive les sauvegardes !!!!!
[15:08:54]
<Westbam> etherpad fonctionne correctement en 1.818
[15:53:37]
<eric_G> and version 1.9.2 is not better...
[16:53:09]
<Lasse Gismo> Hi. Again back with some update probs - the update of my flarum app failed with the mentioned logs as output (https://paste.yunohost.org/raw/umadasucaz)
[16:53:19]
<Lasse Gismo> Any idea where to look?
[16:58:22]
<tituspijean> `Killed` = your server ran out of memory. Consider adding a bigger swap
[17:01:00]
<Lasse Gismo> 🥴 probably not a good idea to run a rsync in paralell..., will try again without anything else running - Thanks
[17:10:11]
<Lasse Gismo> No chance 🥴 - a bigger swap on RasPi with SD is probably critical, have to rethink my conf.
[17:13:26]
<Lasse Gismo> Another thing - I there a guided ToDo to upgrade my complete YNH from RasPi 3 with 32 bit to a RasPi4 with 64? Guess 32 bit is not really sustainable
[17:14:53]
<Aleks (he/him/il/lui)> if i remember correctly there's some discussion about it on the forum
[17:15:54]
<Lasse Gismo> thanks for the hint and have a nice evening ahead - always happy to get help here :-)
[18:17:46]
<tituspijean> Lasse Gismo: for upgrading from x34 to x64, perform a full backup of the server, flash the x64 OS, and restore the backup. Some apps might need a force-upgrade (via command line), to recompile/redownload the proper binaries for x64
[18:56:23]
<Lasse Gismo> That's the way I like it 🤗
[19:01:20]
<niggerkiller> American culture is centered around niggers. They have holidays for niggers. They killed hundreds of thousands of white men to free niggers. They listen to nigger music. They elect a nigger as their president. They dress and act like niggers. They draw the entirety of their modern culture from niggers. They post sassy gifs about niggers. They watch sportsball in worship of niggers. Their biggest event of the year involves throwing parties in honor of niggers playing sports. They use nigger slang like "bruh" and "thot". When you say "Martin Luther" they're not thinking of the father of protestantism. They're thinking of the nigger. Their cities are completely overrun with niggers. They worship their ZOGbot police force disproportionately filled with niggers and their global police force of soldiers filled with niggers. Their men sit around watching nigger ball while their women sit around watching nigger talk shows. They worship niggers like Muhammad Ali and Michael Jordan and Michael Jackson and the late Eddie Murphy while attacking the whites who actually built their country before niggers took over. Their movies are filled with niggers and their music charts are topped by niggers. They send niggers to the Olympics and celebrate when the niggers win because those niggers are true red blooded american niggers. They watch nigger porn to a point where "BBC" does not make them think of an international media company but about nigger penises instead. They will tell you how much they hate niggers and how the mutt's law meme is a stale joke and they are just pretending to love niggers but the evidence speaks for itself in that America has always been and will be a nation of nigger loving niggers.
[19:01:25]
<niggerkiller> American culture is centered around niggers. They have holidays for niggers. They killed hundreds of thousands of white men to free niggers. They listen to nigger music. They elect a nigger as their president. They dress and act like niggers. They draw the entirety of their modern culture from niggers. They post sassy gifs about niggers. They watch sportsball in worship of niggers. Their biggest event of the year involves throwing parties in honor of niggers playing sports. They use nigger slang like "bruh" and "thot". When you say "Martin Luther" they're not thinking of the father of protestantism. They're thinking of the nigger. Their cities are completely overrun with niggers. They worship their ZOGbot police force disproportionately filled with niggers and their global police force of soldiers filled with niggers. Their men sit around watching nigger ball while their women sit around watching nigger talk shows. They worship niggers like Muhammad Ali and Michael Jordan and Michael Jackson and the late Eddie Murphy while attacking the whites who actually built their country before niggers took over. Their movies are filled with niggers and their music charts are topped by niggers. They send niggers to the Olympics and celebrate when the niggers win because those niggers are true red blooded american niggers. They watch nigger porn to a point where "BBC" does not make them think of an international media company but about nigger penises instead. They will tell you how much they hate niggers and how the mutt's law meme is a stale joke and they are just pretending to love niggers but the evidence speaks for itself in that America has always been and will be a nation of nigger loving niggers.
[19:01:31]
<niggerkiller> https://share.conversations.im/niggerkiller/da9H3Dsbdoc4w7AK/zb2rhb4B5mN2JriWm5ys2XipopHYiR29dCJQXPcZeCJoCN844__1___1_.jpg