Monday, October 16, 2023
support@conference.yunohost.org
October
Mon Tue Wed Thu Fri Sat Sun
            1
2
 3
 4
 5
 6
 7
 8
9
 10
 11
 12
 13
 14
 15
16
 17
 18
 19
 20
 21
 22
23
 24
 25
 26
 27
 28
 29
30
 31
          

[00:59:26] <Aleks (he/him/il/lui)> Mokay mais du coup ce qui aurait été interessant c'est de partager le log de l'upgrade échouée et pas la tentative de reinstall......
[10:22:09] <ChriChri> eric_G, is there a way to see some kind of changelog for the snappymail update? I looked around, but the only source I found so far (which is not closely related to a release) are the commits in the snappymail_ynh repository. Is there somewhere a description what changes should be expected and which issues might be affected?
[10:28:43] <eric_G> you are talking about changes in snappymail_ynh script and not upstream app, right?
[10:30:18] <ChriChri> I mean this:
```
apps:
current_version: 2.29.1~ynh1
name: SnappyMail
new_version: 2.29.1~ynh2
```
Tried to find some more information about changes.
[10:31:24] <ChriChri> Started following the repo more closely, because it is a core app for me. But if there'd be some place to read about new releases it'd be nice.
[10:34:59] <eric_G> commit history is your best bet
[10:56:03] <Tag> ChriChri: IIRC we added php-ldap extension as dependecies, I don't know why for sure tho'
[10:56:19] <Tag> It was used by rainloop to populate the contact book
[10:57:10] <ChriChri> > <@tag:lostpod.me> It was used by rainloop to populate the contact book

Is that the plugin ldap-identities?
[10:57:29] <Tag> souds familiar, it might be
[11:01:18] <ChriChri> Different issue: rspamd complains about not being able to use redis. Redis seems unconfigured. Is redis for something else than rspamd used? There is a `dump.rdb` in `/var/lib/redis/`...
[11:01:49] <Tag> usually redis doesn't need much condifuration
[11:02:32] <Tag> Do you have any other issue with rspamd ? Does it fail to start ?
[11:02:43] <Tag> Do you have any other issue with rspamd ? Does it fail to start or this is just a warning ?
[11:02:59] <ChriChri> ```
# rspamadm configdump -m
[....]
Modules disabled (no Redis): greylist, url_redirector, replies, neural, ratelimit, history_redi
```
[11:04:01] <ChriChri> Greylist would be nice...
[11:04:28] <Tag> ratelimit too
[11:04:43] <Tag> Can you open an issue on github ? I'll have a look this week
[11:05:43] <ChriChri> > <@tag:lostpod.me> Can you open an issue on github ? I'll have a look this week

sure.
[11:05:50] <Tag> thanks :)
[11:07:35] <ChriChri> > <@tag:lostpod.me> thanks :)

Uhm, no worry, already looking into it. I'd like to learn about it. BTW: I thought that learning spam and ham (bayes?) would rely on redis also, because
```
# grep -i bayes /var/log/rspamd/rspamd.log | tail
2023-10-16 12:39:42 #890320(normal) <jwhxhu>; cfg; rspamd_redis_init: cannot init redis backend for BAYES_SPAM
2023-10-16 12:39:42 #890320(normal) <jwhxhu>; cfg; rspamd_stat_init: added backend redis for symbol BAYES_SPAM
2023-10-16 12:39:42 #890320(normal) <jwhxhu>; cfg; rspamd_stat_cache_redis_init: cannot init redis cache for BAYES_SPAM
2023-10-16 12:39:42 #890320(normal) <jwhxhu>; cfg; rspamd_stat_init: error adding cache redis for symbol BAYES_SPAM
2023-10-16 12:39:42 #890320(normal) <jwhxhu>; cfg; rspamd_stat_init: cannot init backend redis for statfile BAYES_SPAM
```
[11:12:17] <Tag> Ok so just create `redis.conf` at `etc/rspamd/local.d` and restart rspamd
```
# cat /etc/rspamd/local.d/redis.conf
read_servers = "127.0.0.1";
write_servers = "127.0.0.1";
```
[11:14:08] <Tag> ```
# rspamadm configdump -m
both auth_only (true) and sign_authenticated (true) for dkim_signing are specified, prefer auth_only
Modules enabled: maillist, hfilter, phishing, trie, dkim_signing, asn, settings, regexp, arc, replies, bayes_expiry, force_actions, rbl, history_redis, metadata_exporter, chartable, dkim, mid, multimap, ratelimit, mime_types, once_received, fuzzy_check, emails, greylist, dmarc, forged_recipients, milter_headers, whitelist, neural, spf
Modules disabled (explicitly): external_relay, mx_check, aws_s3, dcc, p0f, spamtrap, rspamd_update, http_headers, bimi
Modules disabled (unconfigured): spamassassin, clickhouse, maps_stats, metric_exporter, dynamic_conf, reputation, clustering, url_redirector, antivirus, fuzzy_collect, external_services, ip_score, elastic
Modules disabled (no Redis):
Modules disabled (experimental):
Modules disabled (failed):
```
[11:14:26] <ChriChri> > <@tag:lostpod.me> Ok so just create `redis.conf` at `etc/rspamd/local.d` and restart rspamd
> ```
> # cat /etc/rspamd/local.d/redis.conf
> read_servers = "127.0.0.1";
> write_servers = "127.0.0.1";
> ```

That's what I already thought, also. I was just looking into it, because I was wondering why unix sockets would not be used.

https://rspamd.com/doc/faq.html#how-to-run-rspamd-using-unix-sockets
[11:14:56] <ChriChri> https://github.com/YunoHost/issues/issues/2266
[11:15:21] <Tag> Default redis config is like this I suppose
[11:15:36] <Tag> Do you want to try to make a PR for this ?
[11:16:06] <ChriChri> ...and while we're at it: What is the `dump.rdb` for and how would I find that out if I wouldn't know it? (basic redis knowledge missing and needs to be filled in ;-) )
[11:16:25] <ChriChri> > <@tag:lostpod.me> Do you want to try to make a PR for this ?

I can try.
[11:17:40] <ChriChri> Why did you use the same value for `read_servers` and `write_servers` instead of just `servers` once?
[11:18:39] <Tag> It's just a copy pasta from rspamd documentation ^^
[11:18:53] <ChriChri> My long term goal is to have rspamd learn from existing junk folders - or is that already configured somewhere?
[11:18:55] <Tag> using servers is better
[11:19:49] <ChriChri> Do you have a github nick to mention?
[11:19:58] <Tag> > <@chrichri:librem.one> My long term goal is to have rspamd learn from existing junk folders - or is that already configured somewhere?

I don't know much about that, I would start to read rspamd documentation.
[11:20:12] <Tag> this is me : https://github.com/Tagadda
[11:22:36] <Tag> ChriChri: do you know the name of the module that would do such learning ?
[11:24:01] <ChriChri> I guess it is bayes. I'm only used to spamassassin somewhat, so I have to do some learning. But I know for sure I need to improve my spam filtering...
[11:24:58] <Tag> It doesn't look like it https://rspamd.com/doc/modules/bayes_expiry.html
[11:27:11] <ChriChri> https://www.baeldung.com/linux/unix-vs-tcp-ip-sockets#unix-sockets-vs-tcpip-sockets

I guess it would be worth looking into changing the ip socket to unix socket. Not only for performance, but also for security. A unix-socket is hard to share over network inadvertently...
[11:28:05] <ChriChri> Maybe `neural`
[11:28:27] <ChriChri> ...or `fuzzy`.
[11:28:48] <ChriChri> Gotta go for lunch... I'll be around later.
[11:29:26] <ChriChri> ( uhm, open question - what else beside rspamd might be using redis? )
[11:30:23] <Tag> It might be the only thing :x And it was miss-configured /o

Some apps use it too (mastodon...)
[11:57:47] <mrflos> > <@Alekswag:matrix.org> zblerg yup but i'm not sure the yunohost admin group is configured as nextcloud admins, cf titus's remark (I'm a bit surprised this hasnt been brought on the table before tho)

To give some feedback about how to solve it for colibris clic/yunohost instances, ping @jeey:tchat.colibris-outilslibres.org :
i had to add ` 'allow_local_remote_servers' => true,` in the config file of nextcloud to be able to see other than local apps from the nextcloud catalog from the nextcloud interface.

[12:00:36] <mrflos> > <@mrfloss:matrix.org> To give some feedback about how to solve it for colibris clic/yunohost instances, ping @jeey:tchat.colibris-outilslibres.org :
> i had to add ` 'allow_local_remote_servers' => true,` in the config file of nextcloud to be able to see other than local apps from the nextcloud catalog from the nextcloud interface.

i also had to add my user to admin group, but @jeey:tchat.colibris-outilslibres.org who installed the instance was already in the admin group
[12:09:02] <Aleks (he/him/il/lui)> `local_remote_server` ? wtf x_X what does "local" yet "remote" means x_X
[12:11:20] <mrflos> > <@Alekswag:matrix.org> `local_remote_server` ? wtf x_X what does "local" yet "remote" means x_X

>> Allow remote servers with local addresses e.g. in federated shares, webcal services and more

cf.
https://docs.nextcloud.com/server/stable/admin_manual/configuration_server/config_sample_php_parameters.html?highlight=allow_local_remote_servers%20true#proxy-configurations
[12:11:38] <mrflos> seems little unsecure
[12:11:59] <mrflos> but it solves the problem
[12:13:54] <mrflos> there must be some other workarounds, maybe adding the nextcloud app catalog url to some trusted domains, but not time to investigate more atm
[12:49:26] <ChriChri> > <@tag:lostpod.me> It doesn't look like it https://rspamd.com/doc/modules/bayes_expiry.html

https://en.wikipedia.org/wiki/Naive_Bayes_spam_filtering I guess it is the bayes filter. Redis seems to be needed for it https://www.rspamd.com/doc/configuration/statistic.html
[12:58:16] <ChriChri> Uahah, the dump.rdb is a leftover of my mastodon tests...
[20:38:33] <orhtej2> douwe: are you still here by any chance?
[20:53:46] <Fritjof> so I'm trying to move my yunohost server home from a vps. Everything is working fine. I have made a backup and restored from it on the new server. However I'm having some issues with synapse. Is there anything one should pay special attention to when moving a synapse instance?
[20:59:06] <Fritjof> like, if all else fails, can I just make a fresh install on the same domain name on my new server, redirect the DNS to my new server and keep using matrix? Or will I loose everything by doing that?