[09:26:01]
<phlip> Can YNH run on a 64bits server? Nextcloud support of 32bits server will stop soon?
[09:42:11]
<leandro> > <phlip> Can YNH run on a 64bits server? Nextcloud support of 32bits server will stop soon?
Ynh runs over Debian so its "preferred" platform is amd64
[10:33:58]
<Chris> I made changes to the values of the Debian environment variables by deleting the values of the following two variables: https_proxy http_proxy. The values were taken into account on the terminal but when I open a new terminal the values are not taken into account. How can we apply these values to the entire system?
[11:16:32]
<shadowstorm1> The audiobookshelf configuration file which allows you to redefine the listening IP address should normally be in this location: `/etc/default/audiobookshelf`
But I can't find it with the yunohost installation, where could I find it?
[11:16:50]
<shadowstorm1> https://aria.im/_matrix/media/v1/download/matrix.org/oFzGYmzEOHHJpIQOxCnfKxFS
[11:32:23]
<tonton> um, If I want to install small utilities on my yunohost box that are not currently part of yunohost (like mosh or tree) should I use apt install or aptitude or some other method?
[11:33:36]
<Aleks (he/him/il/lui)> apt is fine for system utils like mosh or tree
[11:35:19]
<tonton> awesome. Can I set a range in firewall? (I haven't looked in the docs but couldn't see it in the interface)
[11:38:43]
<Aleks (he/him/il/lui)> yes, from the command line, cf yunohost firewall add --help
[11:39:19]
<tonton> Awesome! thanks! :D
[11:48:12]
<Mateusz Szymański> > <@shadowstorm1:matrix.org> The audiobookshelf configuration file which allows you to redefine the listening IP address should normally be in this location: `/etc/default/audiobookshelf`
>
> But I can't find it with the yunohost installation, where could I find it?
https://github.com/YunoHost-Apps/audiobookshelf_ynh/blob/96a9e73cd7de0a5ce6291234702738de964483af/scripts/install#L72
I guess `/var/www/audiobookshelf/.env`
Remember that all the changes you make will be likely overwritten next time the app updates
[11:53:40]
<shadowstorm1> > <@orhtej2:matrix.org> https://github.com/YunoHost-Apps/audiobookshelf_ynh/blob/96a9e73cd7de0a5ce6291234702738de964483af/scripts/install#L72
>
> I guess `/var/www/audiobookshelf/.env`
> Remember that all the changes you make will be likely overwritten next time the app updates
The .env folder does not exist in my ABS installation
[11:54:00]
<shadowstorm1> Should we create it?
[12:03:14]
<Mateusz Szymański> it's a file and it should be there, are you running `ls -a`? Files/folders whose name start with `.` are hidden and excluded from normal `ls` output
[12:52:29]
<tonton> Hi again, So I'd like to have a local caching dns resolver with blocking working on my whole routers network.
I installed adguard on my box, I've set the router to send dns first to the yunohost box. nslookup on the yunohost gives me responses from 127.0.0.1#53. But nslookup on a different machine on the routers lan gives me three ";; communications error to 192.168.1.39#53: connection refused" (the ip is the yunohost box). I've set adguard to be accessible for visitors.
[12:54:31]
<Mateusz Szymański> > <@tonton:envs.net> Hi again, So I'd like to have a local caching dns resolver with blocking working on my whole routers network.
> I installed adguard on my box, I've set the router to send dns first to the yunohost box. nslookup on the yunohost gives me responses from 127.0.0.1#53. But nslookup on a different machine on the routers lan gives me three ";; communications error to 192.168.1.39#53: connection refused" (the ip is the yunohost box). I've set adguard to be accessible for visitors.
is the port 53 open on YNH firewall?
[12:55:56]
<tonton> yes, upnp is off, but both tcp and udp 53 are open
[12:57:20]
<tonton> I can't see anything about firewall/dropped packets/connections or '53' (apart from timestamps) in journalctl
[13:04:56]
<tonton> I can't see any new lines on nslookup being added to neither of kern.log fail2ban.log messages syslog
Makes me think it might be outside of ynh. I'm going to check if my router does something fishy. That box has been nothing but trouble.
Is there some way of enabling firewall logging?
[13:15:04]
<tonton> sorry for maybe double posting, not used to matrix's threads and stuff.
I can't see any new lines on nslookup being added to neither of kern.log fail2ban.log messages syslog
Makes me think it might be outside of ynh. I'm going to check if my router does something fishy. That box has been nothing but trouble.
Checked: So I can hit port 53 from my client:
"Nmap scan report for 192.168.1.39
53/tcp closed domain"
Is there some way of enabling firewall logging?
[13:17:56]
<Aleks (he/him/il/lui)> debugging network stuff is hard, but if you mean "logging every network packet" or even just "logging every packet network that gets denied" then uuuuuuuh nope
[13:18:18]
<Aleks (he/him/il/lui)> let's check instead what exactly listen on port 53 with `netstat -tulpn | grep 53`
[13:18:58]
<Aleks (he/him/il/lui)> and what iptables rules for port 53 with `iptables-save | grep 53`
[13:19:07]
<tonton> ok, if I close port 53 in the firewall in the webinterface I get nmap: 53/tcp filtered domain
Nice. Will check netstat
[13:22:08]
<tonton> so iptables: "-A INPUT -p tcp -m tcp --dport 53 -j ACCEPT" and same line but with udp
[13:28:39]
<tonton> ok, so dnsmasq is using port 53
[13:29:46]
<Aleks (he/him/il/lui)> but does it listens to 0.0.0.0:53 or 127.0.0.1:53
[13:29:47]
<Aleks (he/him/il/lui)> and what about tcp vs udp
[13:37:31]
<tonton> udp UNCONN 0 0 [::1]:53 [::]:* users:(("dnsmasq",pid=15511,fd=6))
and same for tcp. And a bunch of 127.0.0.1:53. [::1] is ipv6 for localhost right? I also see rspamd and some others in there
So non of them are binding out to lan.
I have to go out for a moment, but will be back and see any input and continue later.
And, as I'm going, I have to say in the short time I've been here I'm pleasantly surprised at how helpfull and friendly this space has been so far. :) Thank you.
[13:39:05]
<Aleks (he/him/il/lui)> "UNCONN" o.O
[13:39:28]
<Aleks (he/him/il/lui)> hm i guess you used other options than -tulpn, whatever
[13:40:25]
<Aleks (he/him/il/lui)> not sure how you're getting that 😅
[13:41:18]
<Aleks (he/him/il/lui)> anyway, yes, [::1] is IPv6 for localhost, or to be pedantic, localhost usually resolves to ::1 in ipv6 (but not necessarily, this defined in /etc/hosts, but that's overly pedantic)
[16:40:26]
<gamaaim> I want a command or script to run automatically if there is a change in a specific folder (add, delete, modify...)
[16:41:05]
<gamaaim> How to do this ?
[16:49:36]
<Aleks (he/him/il/lui)> i guess you could use inotifywait or a systemd service/path thingy https://unix.stackexchange.com/questions/708286/automatically-restart-a-systemd-service-when-a-file-is-modified-on-disk
[18:40:05]
<lapineige> Oh, funny, I did 2 Let's encrypt certificate install in parallel, and guess what, the first screen showed the let's install install of… the second domain, started a second after 😁
[19:51:47]
<lapineige> And in the end the page wasn't updated, it shown that no certificate is installed (and allow to force install it again). Reloading the page fix it.
[20:13:30]
<lapineige> While trying to install Peertube, I have the following error:
`error An unexpected error occurred: "https://registry.yarnpkg.com/rxjs/-/rxjs-7.8.1.tgz: ESOCKETTIMEDOUT".`
At the step where it try to download yarn dependencies.
A `wget https://registry.yarnpkg.com/rxjs/-/rxjs-7.8.1.tgz` works.
What could cause that network error ?
Also it seems that the server has a very high load at that point, but not process uses the CPU much.
[20:16:46]
<Aleks (he/him/il/lui)> could be a temporary issue, are you able to reproduce it ?
[20:17:20]
<lapineige> twice
[20:23:24]
<Aleks (he/him/il/lui)> ¯\_(ツ)_/¯ theeeen full looogs
[20:28:21]
<lapineige> https://paste.yunohost.org/raw/upijacikiz
[20:31:03]
<Aleks (he/him/il/lui)> could it be that your network is unstable for some reason
[20:43:49]
<lapineige> It's working now, after 4 attempts… strange
[21:10:15]
<lapineige> And failing in another step (after 30min of installation and building -_-) `An unexpected error occurred: "https://registry.yarnpkg.com/@angular/common/-/common-16.0.3.tgz: ESOCKETTIMEDOUT"`.
Seems unstable indeed
[21:19:43]
<lapineige> I'll try to run a `ping` command in another terminal, during all the installation, to see if there is any network interruption...
[22:11:55]
<lapineige> Well… it failed. Only 4 paquets losts in 30min, it can't be this... the timeout is at 900seconds
[23:04:12]
<gamaaim> > <@Alekswag:matrix.org> i guess you could use inotifywait or a systemd service/path thingy https://unix.stackexchange.com/questions/708286/automatically-restart-a-systemd-service-when-a-file-is-modified-on-disk
Thank you for the answer. Finally I will use the incron tool which allows you to program actions in relation to activities on the disk, it seems very complete and simple to use.