[02:07:31]
<luke> Hi, I'm simply trying to get a cert for my domain name and keep getting an error:
https://paste.yunohost.org/raw/vupovajeca
[05:00:57]
<Charles P.> > <@Alekswag:matrix.org> No idea what ECH is ...
Tag https://support.mozilla.org/fr/kb/understand-encrypted-client-hello
[05:00:57]
<tituspijean> luke:
> DNS problem: looking up CAA for domain2.tld: DNSSEC: DNSKEY Missing
Can you check that your server Diagnosis does not report issues for DNS records?
[05:04:39]
<tituspijean> Actually it looks like DNSSEC is wrongly configured. Can you check your registrar configuration?
[05:08:57]
<luke> > Actually it looks like DNSSEC is wrongly configured. Can you check your registrar configuration?
Yeah I've checked that, I recently transferred it to a new registrar but the transfer is complete, all records are good as I have another domain with the same registrar and it works fine.
I might just wait another day or two and see if things iron themselves out as I can't figure it.
[05:22:49]
<luke> http://www.kloth.net/services/dig.php seems to work fine
[06:36:06]
<ChriChri> @luke, did you try https://dnssec-analyzer.verisignlabs.com/ ? It is recommended by desec.io and showed very useful information when I moved my domain to desec.io .
[07:53:35]
<luke> Thanks I’ll check it out.
[07:59:43]
<saebaryo.xyz> Morning Team 👋
Can you please assist in **an error updating Nextcloud?**
I checked in the long log and the only error that stands out is this one:
"This version of Nextcloud is not compatible with PHP>=8.2.<br/>You are currently running 8.2.11.+ ynh_exit_properly"
Full logs: https://paste.yunohost.org/raw/meduqejagu
Do I need to edit anything?
Thanks!
[08:03:13]
<luke> > @luke, did you try https://dnssec-analyzer.verisignlabs.com/ ? It is recommended by desec.io and showed very useful information when I moved my domain to desec.io .
I get No DNSKEY records found and also No RSIGs found.
Is that normal I haven’t enabled dnssec
[08:05:36]
<Mateusz Szymański> > <@saebaryo.xyz:matrix.org> Morning Team 👋
> Can you please assist in **an error updating Nextcloud?**
> I checked in the long log and the only error that stands out is this one:
>
> "This version of Nextcloud is not compatible with PHP>=8.2.<br/>You are currently running 8.2.11.+ ynh_exit_properly"
> Full logs: https://paste.yunohost.org/raw/meduqejagu
>
> Do I need to edit anything?
> Thanks!
try updating through 26.x
1. **make full backup**
2. **make sure you have backup**
[08:06:06]
<Mateusz Szymański> 3. `sudo yunohost app upgrade nextcloud -u https://github.com/YunoHost-Apps/nextcloud_ynh/tree/5dcd677159a94b048da40ffbe6abfa0c07893244`
[08:06:19]
<Mateusz Szymański> 4. .....
5. profit?
[08:06:51]
<Mateusz Szymański> (then if this works you'll have 26.0.3, then **back up again** and perform regular update)
[08:13:46]
<saebaryo.xyz> Thanks Mateusz Szymański is this to update to Beta or Dev version then to regular one later?
[08:14:51]
<Mateusz Szymański> > <@saebaryo.xyz:matrix.org> Thanks Mateusz Szymański is this to update to Beta or Dev version then to regular one later?
it's an update to previous stable 26.x release, you mentioned you're on 25.x now, right?
[08:16:52]
<saebaryo.xyz> > <@orhtej2:matrix.org> it's an update to previous stable 26.x release, you mentioned you're on 25.x now, right?
Yes, 25.06 indeed. So after I upgrade to 26.X then there will be another update to 27?
[08:17:25]
<ChriChri> > <luke> > @luke, did you try https://dnssec-analyzer.verisignlabs.com/ ? It is recommended by desec.io and showed very useful information when I moved my domain to desec.io .
>
> I get No DNSKEY records found and also No RSIGs found.
>
> Is that normal I haven’t enabled dnssec
Uhm, I didn't look into the role dnssec takes for Let's encrypt in detail, yet. But I suppose that trust for giving you a certificat is established like this: root-nameservers to authoritive nameserver for you domain do have a **chain of trust** via dnssec. Let's encrypt looks at your zone to find information about whether they are supposed to issue a certificate for any of the names in the zone.
If the chain of trust from the root nameservers to Let's encrypt is broken, this might be an issue. I guss that's why tituspijean asked you to look at your dnssec configuration.
[08:31:19]
<luke> > Uhm, I didn't look into the role dnssec takes for Let's encrypt in detail, yet. But I suppose that trust for giving you a certificat is established like this: root-nameservers to authoritive nameserver for you domain do have a **chain of trust** via dnssec. Let's encrypt looks at your zone to find information about whether they are supposed to issue a certificate for any of the names in the zone.
> If the chain of trust from the root nameservers to Let's encrypt is broken, this might be an issue. I guss that's why tituspijean asked you to look at your dnssec configuration.
I’ll have to research more. Thanks for your help
[08:38:10]
<ChriChri> > <luke> > Uhm, I didn't look into the role dnssec takes for Let's encrypt in detail, yet. But I suppose that trust for giving you a certificat is established like this: root-nameservers to authoritive nameserver for you domain do have a **chain of trust** via dnssec. Let's encrypt looks at your zone to find information about whether they are supposed to issue a certificate for any of the names in the zone.
> > If the chain of trust from the root nameservers to Let's encrypt is broken, this might be an issue. I guss that's why tituspijean asked you to look at your dnssec configuration.
>
> I’ll have to research more. Thanks for your help
If you find information about that assumptive chain of trust, I'd be intersted to read it, also :) ...
[12:16:10]
<cgman7> Hello,
I have a nexcloud AIO set up and running.
I have got email account from my yunohost.
i just added that email in nextcloud mail.
everything is fine and perfect when sending and receiving email.
But i cannot delete email from nextcloud but only from rainloop installed in yunohost .
Do you have any idea why?
[12:41:06]
<saebaryo.xyz> Hi, do you get any errors maybe?
[12:46:10]
<Salamandar> OK, you know i said my nextcloud DB was 6GB a few days ago ?
[12:47:54]
<Aleks (he/him/il/lui)> oopsies
[12:48:00]
<cgman7> i dont have error in diagnosis.
i dont trust users of the emails. (employees).
Now they cant delete email from nextcloud email. Which is good for me.
they dont have access yunohost app rainloop.
outside of yuhost app we cant delete email,
so that i can check what they sent and what they receive.
[12:49:15]
<cgman7> i thought this scenario is default.
[12:49:18]
<Salamandar> how is it even possible
[12:49:28]
<Salamandar> i have like 3GB of files in nextcloud
[12:51:48]
<Charles P.> Oh, by default they're able to delete from Nextcloud Client, but you wan't them not to, right ?
[12:52:12]
<saebaryo.xyz> Tbh with I am not entirely sure this is the way to be or an issue.
[12:52:20]
<Charles P.> That's a bit concerning about employees privacy though
[12:52:54]
<saebaryo.xyz> No hidden folders/files?
[12:53:15]
<Charles P.> > <@saebaryo.xyz:matrix.org> Tbh with I am not entirely sure this is the way to be or an issue.
By default you should be able to delete your own mail from any client, not just locally installed clients
[12:54:15]
<cgman7> > <@charlesp:stratus.family> Oh, by default they're able to delete from Nextcloud Client, but you wan't them not to, right ?
by default they cant delete from nextcloud. i want exactly that. but is it default? or its an error?
[12:54:21]
<saebaryo.xyz> maybe related to Trash Imap folder missing?
[12:54:52]
<Charles P.> Oh, you're right ! I remember, I had the same error, that's an error because no Trash folder is created by default
[12:55:14]
<saebaryo.xyz> So you might need to add it
[12:55:20]
<Charles P.> They simply have to create a folder and set it as trash in settings to be able to delete messages
[13:02:09]
<cgman7> in rainloop? or where?
[13:04:10]
<cgman7> > <@saebaryo.xyz:matrix.org> So you might need to add it
could you please explain? where to and how to create.
[13:09:24]
<cgman7> https://aria.im/_matrix/media/v1/download/matrix.org/aOLUjilAzxtaSFthxGuRfpEr
[13:11:22]
<cgman7> this notification comes in when i try to delete email from nextcloud.
[13:12:33]
<Salamandar> not that I know of…
[13:17:48]
<orhtej2> > <@Salamandar:matrix.org> how is it even possible
Perform vacuum analysis perhaps?
[13:18:59]
<Salamandar> kecessé ?
[13:20:27]
<Aleks (he/him/il/lui)> #VaccumAnalysisButtonWouldBeAniceAdditionToNextcloudConfigPanel :D
[13:21:43]
<orhtej2> > <@Salamandar:matrix.org> kecessé ?
Occ should be already able to do that x_x
[13:21:52]
<orhtej2> Mysql?
[13:22:59]
<Salamandar> yes, mysql
[13:34:42]
<jorgeluis> > if it's a home internet IP,attempting removal is pointless since so many places share it,plus rDNS is setup for the ISP branding
It is a VPS hosted by Hetzner
[13:37:19]
<Charles P.> https://aria.im/_matrix/media/v1/download/stratus.family/ReYYxRNPMxyTORZnJglgjAQh
[13:37:23]
<Charles P.> Just create a folder
[13:38:18]
<Charles P.> Then select it as trash folder
[13:38:20]
<Charles P.> https://aria.im/_matrix/media/v1/download/stratus.family/iaqxfWIUmzQyYYYxkfewWRzd
[13:38:23]
<Charles P.> In account parameters
[14:02:53]
<Mateusz Szymański> smth like
```
$ sudo -u nextcloud php8.2 --define apc.enable_cli=1 occ files:cleanup
$ mysqlcheck -o nextcloud
```
Should clean up Nextcloud file cache, then run `OPTIMIZE TABLE` on all nextcloud tables
[14:33:57]
<Tag> > <jorgeluis> How is it possible that I can't sent emails from one ynh server to another because Zen spamhaus is blacklisting the IP?
Maybe your IP is blacklisted
[14:34:13]
<Tag> Usually you can check this on spamhaus website
[17:57:11]
<Paprika> Hello, I've recently noticed that it's impossible to login with SSO into Element as of lately. I've no idea when this has started, but I don't see errors in logs. Once I try to "Continue with SSO" or "Continue with CAS", it redirects me to the user panel on yunohost, login and am presented the app catalog in user panel. No redirection back to the app or web. Any ideas?
[18:04:39]
<orhtej2> > <@botagiuks:tiesiog.lt> Hello, I've recently noticed that it's impossible to login with SSO into Element as of lately. I've no idea when this has started, but I don't see errors in logs. Once I try to "Continue with SSO" or "Continue with CAS", it redirects me to the user panel on yunohost, login and am presented the app catalog in user panel. No redirection back to the app or web. Any ideas?
That's a sign of 404, can you see what URL gives 302 in inspector?
[18:05:19]
<orhtej2> Element+synapse on ynh, right?
[18:05:49]
<orhtej2> > <@tag:lostpod.me> Usually you can check this on spamhaus website
I believe spamhaus bans show in diagnostics
[18:11:20]
<Paprika> > Element+synapse on ynh, right?
matrix-synapse only, the client isn't on ynh
[18:12:15]
<Paprika> > That's a sign of 404, can you see what URL gives 302 in inspector?
Cross-Origin Resource Sharing policy: Origin https://app.element.io is not allowed by Access-Control-Allow-Origin. Status code: 302
[18:16:41]
<Paprika> Cross-origin redirection to **domain.tld/yunohost/sso/?r=...** denied by **subdomain.domain.tld/.well-known/matrix/client**
[18:52:30]
<Paprika> I've added a header for /\_matrix/client/ in nginx config
After successfully browsing to the page, I've indeed been greeted with a 404. However, Synapse doesn't seem to work with Access-Control-Allow-Origin for some reason.
[18:52:57]
<orhtej2> Beats me 🤷
[18:53:06]
<Paprika> I've added a header for /\_matrix/client/ in nginx config
After successfully browsing to the page, I've indeed been greeted with a 404. However, Synapse doesn't seem to be reachable with Access-Control-Allow-Origin for some reason.
[21:13:50]
<jorgeluis> > Usually you can check this on spamhaus website
Is there a way to get off the list?
[21:15:13]
<Tag> Yes, usually there's a procedure somewhere on spamhaus website
[21:23:29]
<orhtej2> > <jorgeluis> > Usually you can check this on spamhaus website
> Is there a way to get off the list?
https://check.spamhaus.org/ <- here but they'll most likely reject you request asking instead of VPS provider to apply for removal