Re: Issues with OM 5.0.1
Look at "about" on the login page. Am 13.10.2020 18:00, schrieb K. Kamhamea: you can check the signature I have no idea how I can do that. Where is the signature stored? any chance your requests to new server are routed to some older one? No, as I can follow the log (tail -f ./logfile) and and I see exactly my requests there. Am Di., 13. Okt. 2020 um 17:54 Uhr schrieb Maxim Solodovnik : you can check the signature any chance your requests to new server are routed to some older one? Or something cashed in the browser (I doubt it is possible ...) On Tue, 13 Oct 2020 at 22:51, K. Kamhamea wrote: That's interesting. I downloaded the file from sudo wget https://downloads.apache.org/openmeetings/5.0.1/bin/apache-openmeetings-5.0.1.tar.gz as described in Alvaro's tutorial. And the file downloaded that still resides in the folder says /opt # dir apache-openmeetings-5.0.1.tar.gz Is exactly that. I also can rule out the possibility that some older version resided on that server because it is a fresh new server. Did someone hack into that file? Best K Am Di., 13. Okt. 2020 um 17:35 Uhr schrieb Maxim Solodovnik : Hello K. well, your screen-shots are not from 5.0.1 :( please check the latest UI here https://om.alteametasoft.com/openmeetings/ (it has the latest release installed) I can't reproduce both of your issues :( have you customized your OM? Any details on your installation? On Tue, 13 Oct 2020 at 22:29, K. Kamhamea wrote: Second, when I press this button The USER and FILES tabs disappear for ever. In M4 there was a button with arrows pointing in the opposite direction that restored these tabs. This button has miraculously disappeared. Am Di., 13. Okt. 2020 um 17:25 Uhr schrieb K. Kamhamea : Thank you for this quick response. Sorry for the first problem. It is a typo not "errors" but "arrows". I hope the picture is instructive and makes it clear. Am Di., 13. Okt. 2020 um 17:18 Uhr schrieb Maxim Solodovnik : Hello K On Tue, 13 Oct 2020 at 22:06, K. Kamhamea wrote: I just installed the new version on a test server following Alvaro's instruction (without Coturn and Letsencrypt) on Ubuntu 20.04. I had the version M4 running before with much less issues. 1. First thing that annoyed me was the fact that I cannot restore the USERS and FILES tab once removed the to the right. this make no sense, please provide steps to reproduce 2. The FILES tab shows folders with moving errors only. I suppose this signals some failure. Upload is impossible too. Though I can see the file in the folder, an exclamation mark signals some error, and I cannot drag it on to the whiteboard. same here what is "moving errors? since upload is impossible what in the logs/browser console? I'm afraid no one can help you with this level of details :( I suppose the reason is some problem with permissions. I set the whole OM folder to chown -R nobody:nogroup ./OM-Folder But nothing changed. Best K. -- Best regards, Maxim -- Best regards, Maxim -- Best regards, Maxim
Call for Logo
https://openmeetings.apache.org/CallForLogo.html Dear All, I would like to get the discussion about the logos going a bit. In general, I think the logos should be kept as simple as possible while at the same time having a high recognition factor. Numbers 1, 5, 6, 8, 9 of the big and most of the square logos I like in this respect. Also, matching pairs of large and square logos would be good. Like some others, in my sketch I tried to include the colors of the Apache feather. This is quite good for corporate identity, although a blue/yellow version might look good, too. I tried to show the "openness" of OpenMeetings through the transparency of the circles and the "meeting" through the overlapping circles. Apart from my own suggestion, I really like the current logo by Denis Kandrov. However, for the square version, one might find something with more similarity to the big version. What do you think? Many greetings, Thomas @Maxim Thanks for uploading my corrected logo
Re: branding page header
Hi Ali, the favicon is located in your openmeetings folder under /webapps/openmeetings/public/favicon.png Regards, Thomas Am 28.10.2020 14:35, schrieb Ali Alhaidary: any advice on how to change om logo in page header (small icon on page browser tab) ?
Re: branding page header
Maybe you also have to change the favicon.svg file in that folder. Also try to clear the browser cache. Or close the browser completely and open open meetings in a private tab. Am 28.10.2020 16:59, schrieb Ali Alhaidary: Thank you, however, I did change it, restarted the service, the server, but it still shows the om logo :-( On 10/28/20 5:17 PM, Thomas Scholzen wrote: Hi Ali, the favicon is located in your openmeetings folder under /webapps/openmeetings/public/favicon.png Regards, Thomas Am 28.10.2020 14:35, schrieb Ali Alhaidary: any advice on how to change om logo in page header (small icon on page browser tab) ?
Re: branding page header
For me it works by changing the favicon.png. You just have to clear the browser cache.
Re: Download whiteboard file
Hi Robert, I just checked and I also can not download documents from the folder view. However, I can download the content of the whiteboard by using "actions" from the menu and "download as PDF". Regards, Thomas Am 27.10.2020 08:58, schrieb Robert Savickas: Dear friends, I am sure the question below has already been asked, and probably falls into the category of silly questions. Nevertheless, I will ask, as I need to use this feature in a meeting that occurs in just a few hours... I did some work in the whiteboard and saved it in a pdf file, which appears in the list of files for the given meeting room. However, when I try to download it to the local disk of my Ubuntu 20.04 laptop, the download button seems disabled. I have been trying to figure it out, but seems in vain. I am the administrator; so, have all the rights... Could anyone suggest what I might be doing wrong? Thank you very much. Robert
Re: Download whiteboard file
I checked in detail. I can download .jpg, .pdf, .rtf. and .doc files after I uploaded them. I can not download .avi files (even after fresh upload) and .pdf files generated by saving the whiteboard. Am 27.10.2020 13:30, schrieb Thomas Scholzen: Hi Robert, I just checked and I also can not download documents from the folder view. However, I can download the content of the whiteboard by using "actions" from the menu and "download as PDF". Regards, Thomas Am 27.10.2020 08:58, schrieb Robert Savickas: Dear friends, I am sure the question below has already been asked, and probably falls into the category of silly questions. Nevertheless, I will ask, as I need to use this feature in a meeting that occurs in just a few hours... I did some work in the whiteboard and saved it in a pdf file, which appears in the list of files for the given meeting room. However, when I try to download it to the local disk of my Ubuntu 20.04 laptop, the download button seems disabled. I have been trying to figure it out, but seems in vain. I am the administrator; so, have all the rights... Could anyone suggest what I might be doing wrong? Thank you very much. Robert
Re: Download whiteboard file
Yes, after upload I can download a PDF. But not a PDF that was generated from the whiteboard. Am 27.10.2020 14:57, schrieb Maxim Solodovnik: just have tested on https://om.alteametasoft.com:8443/next uploaded PDF is downloadable as "PDF" and "Original" On Tue, 27 Oct 2020 at 20:27, Maxim Solodovnik wrote: hello, by design downloadable types are: images, documents and recordings Whiteboard saved as PNG or PDF should be downloadable, will try to double-check On Tue, 27 Oct 2020 at 19:57, Thomas Scholzen wrote: I checked in detail. I can download .jpg, .pdf, .rtf. and .doc files after I uploaded them. I can not download .avi files (even after fresh upload) and .pdf files generated by saving the whiteboard. Am 27.10.2020 13:30, schrieb Thomas Scholzen: Hi Robert, I just checked and I also can not download documents from the folder view. However, I can download the content of the whiteboard by using "actions" from the menu and "download as PDF". Regards, Thomas Am 27.10.2020 08:58, schrieb Robert Savickas: Dear friends, I am sure the question below has already been asked, and probably falls into the category of silly questions. Nevertheless, I will ask, as I need to use this feature in a meeting that occurs in just a few hours... I did some work in the whiteboard and saved it in a pdf file, which appears in the list of files for the given meeting room. However, when I try to download it to the local disk of my Ubuntu 20.04 laptop, the download button seems disabled. I have been trying to figure it out, but seems in vain. I am the administrator; so, have all the rights... Could anyone suggest what I might be doing wrong? Thank you very much. Robert -- Best regards, Maxim -- Best regards, Maxim
Re: Login loop when using hash invitation
Hi Maxim, thanks for your help. The problem is that by using a link a second time within the valid period (or endless link) there is no login possible. If the "access denied" page would appear, the user could logoff. But instead the circling login icon is going on endlessly. Only when shortening the link to the domain without the hash, the user can logout and subsequently login with the complete invitation link. Best regards, Thomas Am 29.12.20 um 12:24 schrieb Maxim Solodovnik: Hello Thomas, On Tue, 29 Dec 2020 at 02:05, Thomas Scholzen <mailto:tschol...@buche17.de>> wrote: Dear all, if external users enter via an invitation hash they can only logoff by closing the browser (tab). When trying to relogin using the same invitation What do you mean by "relogin using the same invitation"? The invitation is endless or period? the login hangs at the circling icon. Only when going to domain.org/openmeetings <http://domain.org/openmeetings> an „access denied“ warning is shown and the user can press „logoff“. After this the user can use the invitation to login again. Is there a misconfiguration in my OM setup? I appreciate any help with this. Best regards, Thomas -- Best regards, Maxim
Re: Login loop when using hash invitation
I am using Version5.1.0 Revision 6691181 Builddate2020-12-01T15:49:37Z. I could not reproduce the problem on the test server. Best regards, Thomas Am 29.12.20 um 14:37 schrieb Maxim Solodovnik: What version are you using? Is it reproducible for at om.alteametasoft** demo servers? from mobile (sorry for typos ;) On Tue, Dec 29, 2020, 20:33 Thomas Scholzen <mailto:tschol...@buche17.de>> wrote: Hi Maxim, thanks for your help. The problem is that by using a link a second time within the valid period (or endless link) there is no login possible. If the "access denied" page would appear, the user could logoff. But instead the circling login icon is going on endlessly. Only when shortening the link to the domain without the hash, the user can logout and subsequently login with the complete invitation link. Best regards, Thomas Am 29.12.20 um 12:24 schrieb Maxim Solodovnik: Hello Thomas, On Tue, 29 Dec 2020 at 02:05, Thomas Scholzen mailto:tschol...@buche17.de>> wrote: Dear all, if external users enter via an invitation hash they can only logoff by closing the browser (tab). When trying to relogin using the same invitation What do you mean by "relogin using the same invitation"? The invitation is endless or period? the login hangs at the circling icon. Only when going to domain.org/openmeetings <http://domain.org/openmeetings> an „access denied“ warning is shown and the user can press „logoff“. After this the user can use the invitation to login again. Is there a misconfiguration in my OM setup? I appreciate any help with this. Best regards, Thomas -- Best regards, Maxim
Re: Remote control
Hi Maxim, that explains why it did not work ;-). Thanks for you fast reply, Thomas Am 30.11.2020 10:31, schrieb Maxim Solodovnik: Hello Thomas, remote controlling is not implemented yet for 5.x it should work for 4.x :) On Mon, 30 Nov 2020 at 16:07, Thomas Scholzen wrote: Hi all, I read that it is possible to remote control the mouse when a screen is shared and would like to use this feature. However, I can not find out how to do this. When searching for documentation about openmeetings remote control, I only found information about how to give users the rights to do this. Is remote controlling the screen of the sharing host really possible by a client or did I misunderstood the feature? I am on Version 5.0.1, Revision3628ad7, Builddate 2020-09-19T04:50:54Z. Is there any dependency I might miss? I would be grateful for help and explanations, best regards, Thomas -- Best regards, Maxim
Remote control
Hi all, I read that it is possible to remote control the mouse when a screen is shared and would like to use this feature. However, I can not find out how to do this. When searching for documentation about openmeetings remote control, I only found information about how to give users the rights to do this. Is remote controlling the screen of the sharing host really possible by a client or did I misunderstood the feature? I am on Version 5.0.1, Revision3628ad7, Builddate 2020-09-19T04:50:54Z. Is there any dependency I might miss? I would be grateful for help and explanations, best regards, Thomas
Password check
Hi all, in the configuration I have "user.pass.check.special" set to false. However, when using the password "ABkaF+JT8vG" I get the message, that the password is unsafe without a special character. OpenMeetings 5.0.1Revision 3628ad7Builddate 2020-09-19T04:50:54Z Any ideas? Best regards, Thomas Am 30.10.20 um 16:23 schrieb Maxim Solodovnik: some SIP related nothing to worry about On Fri, 30 Oct 2020 at 19:13, Ali Alhaidary mailto:ali.alhaid...@the5stars.org>> wrote: kindly advice if there is any change in openmeetings.properties (or any other) in build#129 -- Best regards, Maxim
Re: Password check
Thanks a lot! Am 31.10.20 um 17:44 Schrieffer Ali Alhaidary: it is OK in 5.1.0 snapshot On 10/31/20 7:06 PM, Ali Alhaidary wrote: I thought that was resolved, a jira is needed then :-) On 10/31/20 6:12 PM, Thomas Scholzen wrote: Hi all, in the configuration I have "user.pass.check.special" set to false. However, when using the password "ABkaF+JT8vG" I get the message, that the password is unsafe without a special character. OpenMeetings 5.0.1Revision 3628ad7Builddate 2020-09-19T04:50:54Z Any ideas? Best regards, Thomas Am 30.10.20 um 16:23 schrieb Maxim Solodovnik: some SIP related nothing to worry about On Fri, 30 Oct 2020 at 19:13, Ali Alhaidary mailto:ali.alhaid...@the5stars.org>> wrote: kindly advice if there is any change in openmeetings.properties (or any other) in build#129 -- Best regards, Maxim
Re: branding page header
Are we talking about favicon or logo? The favicon is shown in the attachment. Am 28.10.2020 17:44, schrieb Ali Alhaidary: Thank you, did hat as well along with logo.svg, but, still there :-( On 10/28/20 7:33 PM, Denis Noctor wrote: I think you're looking for this... If you want to set up your logo in Openmeetings header you can do the following: * create your logo image as PNG 40px height * replace /opt/om/webapps/openmeetings/css/images/logo.png with your logo file https://openmeetings.apache.org/WebappNamePath.html Sent from my iPhone On Oct 28, 2020, at 9:59 AM, Ali Alhaidary wrote: Thank you, however, I did change it, restarted the service, the server, but it still shows the om logo :-( On 10/28/20 5:17 PM, Thomas Scholzen wrote: Hi Ali, the favicon is located in your openmeetings folder under /webapps/openmeetings/public/favicon.png Regards, Thomas Am 28.10.2020 14:35, schrieb Ali Alhaidary: any advice on how to change om logo in page header (small icon on page browser tab) ?
Login loop when using hash invitation
Dear all, if external users enter via an invitation hash they can only logoff by closing the browser (tab). When trying to relogin using the same invitation the login hangs at the circling icon. Only when going to domain.org/openmeetings an „access denied“ warning is shown and the user can press „logoff“. After this the user can use the invitation to login again. Is there a misconfiguration in my OM setup? I appreciate any help with this. Best regards, Thomas
Re: Login loop when using hash invitation
Just testet this https://om.alteametasoft.com/openmeetings/
<https://om.alteametasoft.com/openmeetings/>
Shall I will test the other, too?
Am 30.12.20 um 12:16 schrieb Maxim Solodovnik:
Just to clarify
https://om.alteametasoft.com:8443/next/
<https://om.alteametasoft.com:8443/next/> has more or less latest
6.0.0-SNAPSHOT installed
https://om.alteametasoft.com/openmeetings/
<https://om.alteametasoft.com/openmeetings/> has 5.1.0 with few fixes
from 6.0.0
both work for you as expected?
On Tue, 29 Dec 2020 at 21:04, Thomas Scholzen <mailto:tschol...@buche17.de>> wrote:
I am using Version5.1.0 Revision 6691181
Builddate2020-12-01T15:49:37Z.
I could not reproduce the problem on the test server.
Best regards,
Thomas
Am 29.12.20 um 14:37 schrieb Maxim Solodovnik:
What version are you using?
Is it reproducible for at om.alteametasoft** demo servers?
from mobile (sorry for typos ;)
On Tue, Dec 29, 2020, 20:33 Thomas Scholzen mailto:tschol...@buche17.de>> wrote:
Hi Maxim,
thanks for your help. The problem is that by using a link a
second time within the valid period (or endless link) there
is no login possible. If the "access denied" page would
appear, the user could logoff. But instead the circling login
icon is going on endlessly. Only when shortening the link to
the domain without the hash, the user can logout and
subsequently login with the complete invitation link.
Best regards,
Thomas
Am 29.12.20 um 12:24 schrieb Maxim Solodovnik:
Hello Thomas,
On Tue, 29 Dec 2020 at 02:05, Thomas Scholzen
mailto:tschol...@buche17.de>> wrote:
Dear all,
if external users enter via an invitation hash they can
only logoff by closing the browser (tab). When trying to
relogin using the same invitation
What do you mean by "relogin using the same invitation"?
The invitation is endless or period?
the login hangs at the circling icon. Only when going to
domain.org/openmeetings <http://domain.org/openmeetings>
an „access denied“ warning is shown and the user can
press „logoff“. After this the user can use the
invitation to login again.
Is there a misconfiguration in my OM setup? I appreciate
any help with this.
Best regards,
Thomas
--
Best regards,
Maxim
--
Best regards,
Maxim
Fwd: Login loop when using hash invitation
Hi Maxim,
thanks for your help. Because the test server works, I suspected that it
might be a problem with my https-proxy. I had a "Redirect/
https://domain.org/openmeetings; rule in my apache2 site conf together
with some ProxyPass(Reverse) rules.
I changed to RewriteEngine rules according to your post:
https://stackoverflow.com/questions/51721771/apache-openmeetings-4-0-4-csrf-attack-when-using-apache2-as-proxypass/51783235#51783235.
Now everything works as expected.
Best regards and a happy new year,
Thomas
Am 30.12.20 um 14:08 schrieb Maxim Solodovnik:
both versions works for me :(
unfortunately i can't fix the issue until i can reproduce it :(((
On Wed, 30 Dec 2020 at 19:38, Thomas Scholzen <mailto:tschol...@buche17.de>> wrote:
Just testet this https://om.alteametasoft.com/openmeetings/
<https://om.alteametasoft.com/openmeetings/>
Shall I will test the other, too?
Am 30.12.20 um 12:16 schrieb Maxim Solodovnik:
Just to clarify
https://om.alteametasoft.com:8443/next/
<https://om.alteametasoft.com:8443/next/> has more or less latest
6.0.0-SNAPSHOT installed
https://om.alteametasoft.com/openmeetings/
<https://om.alteametasoft.com/openmeetings/> has 5.1.0 with few
fixes from 6.0.0
both work for you as expected?
On Tue, 29 Dec 2020 at 21:04, Thomas Scholzen
mailto:tschol...@buche17.de>> wrote:
I am using Version5.1.0 Revision 6691181
Builddate2020-12-01T15:49:37Z.
I could not reproduce the problem on the test server.
Best regards,
Thomas
Am 29.12.20 um 14:37 schrieb Maxim Solodovnik:
What version are you using?
Is it reproducible for at om.alteametasoft** demo servers?
from mobile (sorry for typos ;)
On Tue, Dec 29, 2020, 20:33 Thomas Scholzen
mailto:tschol...@buche17.de>> wrote:
Hi Maxim,
thanks for your help. The problem is that by using a
link a second time within the valid period (or endless
link) there is no login possible. If the "access denied"
page would appear, the user could logoff. But instead
the circling login icon is going on endlessly. Only when
shortening the link to the domain without the hash, the
user can logout and subsequently login with the complete
invitation link.
Best regards,
Thomas
Am 29.12.20 um 12:24 schrieb Maxim Solodovnik:
Hello Thomas,
On Tue, 29 Dec 2020 at 02:05, Thomas Scholzen
mailto:tschol...@buche17.de>> wrote:
Dear all,
if external users enter via an invitation hash they
can only logoff by closing the browser (tab). When
trying to relogin using the same invitation
What do you mean by "relogin using the same invitation"?
The invitation is endless or period?
the login hangs at the circling icon. Only when
going to domain.org/openmeetings
<http://domain.org/openmeetings> an „access denied“
warning is shown and the user can press „logoff“.
After this the user can use the invitation to login
again.
Is there a misconfiguration in my OM setup? I
appreciate any help with this.
Best regards,
Thomas
--
Best regards,
Maxim
--
Best regards,
Maxim
--
Best regards,
Maxim
Re: control of the PC
I think it's flash :-(; Am 25.01.21 um 17:40 schrieb Shiva K Reddy: Hi, Thomas. Thank you for posting ! Is the 4.0 based on HTML5 or flash client? If HTML5, I'll downgrade and see how it works as that'll be very helpful! Regards, Shiva On Mon, Jan 25, 2021, 9:46 PM Thomas Scholzen <mailto:tschol...@buche17.de>> wrote: Hi Shiva, I asked the same questiosome some time ago. Maxim Solodovnik answered that this feature worked in versions 4.x but is not (yet) implemented in versions 5.X. Regards, Thomas Am 25.01.2021 11:33, schrieb Shiva K Reddy: Dear, All. I was reading the user documentation and found this feature of screen control that is very interesting. Tried to test this feature with a colleague by giving him access to whiteboard, screenshare and this mouse+ icon. When he shared his screen I didn't notice any prompt or way to request for PC control. Not sure if I missed something. Appreciate your help. Pls SS for reference. image.png Regards, Shiva
Re: Happy New Year
Dear Maxim, I also wish you and all OM developers and users a good, successful and above all healthy 2021. Thank you for your work and your support, Thomas Am 31.12.20 um 05:17 schrieb Maxim Solodovnik: Dear OpenMeetings users, I'm sorry I forgot to wish Merry Christmas to those of you who are celebrating I would like to wish you Happy New Year and let 2021 be much better than 2020! Health and wealthiness to you and your families :) -- Best regards, Maxim
Bug in translation
Hi everyone, I found a misleading error in the German translation of openmeetings. Is there a way to report this without joining the localization project? Best regards, Thomas When entering a wrong URL for an invitation the English error message is: "The invitation code is invalid", while the German message says "Die Einladung ist nicht mehr gültig.", which means "The invitation is no longer valid". So the user thinks, the URL is okay but has expired.
Re: Bug in translation
Hi Maxim, thanks for your reply. The error message "The invitation code is invalid" should be translated to "Die Einladung ist nicht gültig." Thanks again for your help, Thomas Am 31.05.2021 04:46, schrieb Maxim Solodovnik: Hello Thomas, On Wed, 26 May 2021 at 19:48, Thomas Scholzen wrote: Hi everyone, I found a misleading error in the German translation of openmeetings. Is there a way to report this without joining the localization project? sure this mailing list is a great place to do it :) Best regards, Thomas When entering a wrong URL for an invitation the English error message is: "The invitation code is invalid", while the German message says "Die Einladung ist nicht mehr gültig.", which means "The invitation is no longer valid". So the user thinks, the URL is okay but has expired. Could you please share a better translation? I don't speak German unfortunately :( -- Best regards, Maxim
Re: Bug in translation
That was fast! Thanks again Am 31.05.2021 10:36, schrieb Maxim Solodovnik: Fixed in PoEditor Thanks :) On Mon, 31 May 2021 at 14:33, Thomas Scholzen wrote: Hi Maxim, thanks for your reply. The error message "The invitation code is invalid" should be translated to "Die Einladung ist nicht gültig." Thanks again for your help, Thomas Am 31.05.2021 04:46, schrieb Maxim Solodovnik: Hello Thomas, On Wed, 26 May 2021 at 19:48, Thomas Scholzen wrote: Hi everyone, I found a misleading error in the German translation of openmeetings. Is there a way to report this without joining the localization project? sure this mailing list is a great place to do it :) Best regards, Thomas When entering a wrong URL for an invitation the English error message is: "The invitation code is invalid", while the German message says "Die Einladung ist nicht mehr gültig.", which means "The invitation is no longer valid". So the user thinks, the URL is okay but has expired. Could you please share a better translation? I don't speak German unfortunately :( -- Best regards, Maxim -- Best regards, Maxim
log4j vulnerability
Openmeetings has, among others, the following dependencies: log4j-over-slf4j-1.7.32.jar slf4j-api-1.7.32.jar jcl-over-slf4j-1.7.32.jar Does anyone know, whether these are affected by the log4j vulnerability CVE-2021-44228 and have to be updated? Thanks, Thomas
Re: log4j vulnerability
Hi Sebastian, thank you for your assessment and quick response. Best regards, Thomas Am 12.12.21 um 22:05 schrieb seba.wag...@gmail.com: Afaik we are not using the native log4j library. I think the vulnerability is only in the actual log4j.jar file. log4j-over-slf4j is merely a bridge that mimics log4j APIs in order to redirect the log stream into slf4j without rewriting the existing log4j logging statements. The bridge ensures old dependencies that have not been migrated to SLF4J can work with Openmeetings. So OpenMeetings is not using or distributing the native log4j JAR library. Also the Tomat version we are using that bundles OpenMeetings into a Java Servlet Container is not affected since it's not using the native log4j jar file. So as far as I can see this vulnerability should not impact OpenMeetings. However OpenMeetings regularly ships updates with the latest libraries and dependencies, so if you are not using the latest version, you should update. There have been other CVE's fixed in recent versions. Thanks Sebastian Sebastian Wagner Director Arrakeen Solutions, OM-Hosting.com http://arrakeen-solutions.co.nz/ https://om-hosting.com - Cloud & Server Hosting for HTML5 Video-Conferencing OpenMeetings <https://www.youracclaim.com/badges/da4e8828-743d-4968-af6f-49033f10d60a/public_url><https://www.youracclaim.com/badges/b7e709c6-aa87-4b02-9faf-099038475e36/public_url> On Mon, 13 Dec 2021 at 07:29, Thomas Scholzen wrote: Openmeetings has, among others, the following dependencies: log4j-over-slf4j-1.7.32.jar slf4j-api-1.7.32.jar jcl-over-slf4j-1.7.32.jar Does anyone know, whether these are affected by the log4j vulnerability CVE-2021-44228 and have to be updated? Thanks, Thomas
Re: log4j vulnerability
Hello Maxim, that's good news! Thanks for your reply, Thomas Am 13.12.21 um 01:50 schrieb Maxim Solodovnik: Yes, We are not affected To get most updated version you can use latest SNAPSHOT :) from mobile (sorry for typos ;) On Mon, Dec 13, 2021, 04:21 Thomas Scholzen wrote: Hi Sebastian, thank you for your assessment and quick response. Best regards, Thomas Am 12.12.21 um 22:05 schrieb seba.wag...@gmail.com: Afaik we are not using the native log4j library. I think the vulnerability is only in the actual log4j.jar file. log4j-over-slf4j is merely a bridge that mimics log4j APIs in order to redirect the log stream into slf4j without rewriting the existing log4j logging statements. The bridge ensures old dependencies that have not been migrated to SLF4J can work with Openmeetings. So OpenMeetings is not using or distributing the native log4j JAR library. Also the Tomat version we are using that bundles OpenMeetings into a Java Servlet Container is not affected since it's not using the native log4j jar file. So as far as I can see this vulnerability should not impact OpenMeetings. However OpenMeetings regularly ships updates with the latest libraries and dependencies, so if you are not using the latest version, you should update. There have been other CVE's fixed in recent versions. Thanks Sebastian Sebastian Wagner Director Arrakeen Solutions, OM-Hosting.com http://arrakeen-solutions.co.nz/ https://om-hosting.com - Cloud & Server Hosting for HTML5 Video-Conferencing OpenMeetings <https://www.youracclaim.com/badges/da4e8828-743d-4968-af6f-49033f10d60a/public_url><https://www.youracclaim.com/badges/b7e709c6-aa87-4b02-9faf-099038475e36/public_url> On Mon, 13 Dec 2021 at 07:29, Thomas Scholzen wrote: Openmeetings has, among others, the following dependencies: log4j-over-slf4j-1.7.32.jar slf4j-api-1.7.32.jar jcl-over-slf4j-1.7.32.jar Does anyone know, whether these are affected by the log4j vulnerability CVE-2021-44228 and have to be updated? Thanks, Thomas
Re: Media server connection is failed, will try to re-connect
Hi Maxim, the size of the backup was ~ 4 GB. When the upgrade failed, I reinstalled OM 7.0.0. When having problems, I also reinstalled coturn & docker (plus km). When all failed I asked you ;-). The (re) installation was done on the same server on which OM 6.0.0 was running before. Kind regards Thomas Am 28.03.2023 15:52, schrieb Maxim Solodovnik: from mobile (sorry for typos ;) On Tue, Mar 28, 2023, 20:33 Thomas Scholzen wrote: Hi Maxim, thanks for the fast response. I used the command line for migration, and it did not work (restoreing backup just hangs forever). Sounds like the error of backup create/restore tool :( I would like to have it 100% bulletproof What is the size of your backup? Do you have anything suspicious in the logs? But no problem there, I should clean up the installation anyway ;-). My server is not a VM but bare metall. So I have to live with the interference of other services. As you suggested, I will try kurento without docker and see how it goes. So you have re-installed om+kms+coturn at your server? (I would update om only ...) Or set up new server? Thanks for you kind help Thomas Am 28.03.2023 11:27, schrieb Maxim Solodovnik: Hello Thomas, On Tue, 28 Mar 2023 at 15:41, Thomas Scholzen wrote: Hi Maxim, I just migrated from OM 6.00 to 7.00. After the upgrade did not work (too much stuff in the backup) I believe you can use command line admin in such case https://openmeetings.apache.org/CommandLineAdmin.html I went for a fresh installation. I installed OM 7.0.0, kurento via docker and coturn. However, I get "Media server connection for user XXX is failed, will try to re-connect" every 2 to 15 seconds, depending on the client and location. When the internet is routed via VPN to the server that runs OM, there are no problems. OS Ubuntu 20.04 I would say you have installed too much ... Is it fresh new VM? Can you run OM7 at the VM/server you already have for OM6? I've just have checked the changes And I would say your migration should be flawless (no real changes in KMS/Coturn integration) Maybe you can try to run OM7 nearby OM6? - different port OR - stop one -> start another? So I suspect an issue with the turnserver. With OM 6.0.0 this setup went fine, so there is probably some kind of misconfiguration. This can be both TURN server issues and network misconfiguration at new VM/server "$ docker logs kms" gives me: "KurentoWebRtcEndpointImpl WebRtcEndpointImpl.cpp:609:WebRtcEndpointImpl: TURN server not found in config; remember that NAT traversal requires STUN or TURN" This is more or less expected I never had enough time to set up TURN inside KMS :( And everything seems to work at demo server In /etc/turnserver.conf I have: use-auth-secret static-auth-secret=7xxx realm=testexample.de [1] stale-nonce=0 log-file=/var/log/turnserver/turnserver.log syslog In webapps/openmeetings/WEB-INF/classes/openmeetings.properties I have: kurento.ws.url=ws://127.0.0.1:/kurento [2] kurento.turn.url=xxx.yyy.zzz.aaa:3478 kurento.turn.user= kurento.turn.secret=7xxx kurento.turn.mode=rest Because I run also other services on this server SSL is done via port 4443 with a proxy to localhost:5080/openmeetings (see attached apache2 virtual host config). This makes it a bit complicated, but it was working flawless with OM 6.0.0 I Would appreciate if you could give me a hint how to debug this. BTW "kurento via docker" might be not necessary in your case KMS7 was released and it natively supports Ubuntu 20 :) Best regards Thomas Links: -- [1] http://testexample.de [2] http://127.0.0.1:/kurento
Re: Media server connection is failed, will try to re-connect
Hi Maxim, I installed build 235 as you suggested but can still not get any video to other clients. No error messages though. Any ideas? Best regards Thomas Am 29.03.23 um 05:59 schrieb Maxim Solodovnik: https://issues.apache.org/jira/browse/OPENMEETINGS-2763 My bad :( 7.0.0 don't use TURN server config set up in OM and uses freeice all the time :((( This is fixed, I can suggest to set up build 235+ from here: https://ci-builds.apache.org/job/OpenMeetings/job/openmeetings/ (no import/export will be required, just config changes) Or wait for release of 7.1.0 (hopefully will be released in couple of weeks) build 235 is installed at https://demo-openmeetings.apache.org/openmeetings/ and works as expected sorry for inconvenience :( On Wed, 29 Mar 2023 at 03:11, Thomas Scholzen wrote: Hi Maxim, I switched now to a direct kurento installation and get less error messages. However, I can not get media transmission from other users. I tried different versions of server.xml without success. Finally, I went back to the version which was working under 6.0.0 (although I am not sure if I mixed it up; see attachment). You can connect to my server under:https://openmeetings.buche17.de/ Username: maxim Password: $olomax666 I tried the backup restore again (command line) on the current system and this time it worked ! Thanks again for your help Thomas Am 28.03.23 um 17:09 schrieb Maxim Solodovnik: According HTTPD config: everything looks great Locations like `` was required by Flash version and can now be dropped Such config require `$OM_HOME/conf/server.xml` modification, but I'm sure you did it You can send me private email, and I'll try to check if your server works for me On Tue, 28 Mar 2023 at 22:01, Maxim Solodovnik wrote: On Tue, 28 Mar 2023 at 21:32, Thomas Scholzen wrote: Hi Maxim, the size of the backup was ~ 4 GB. When the upgrade failed, Was there anything suspicious in the logs? I reinstalled OM 7.0.0. When having problems, I also reinstalled coturn & docker (plus km). When all failed I asked you ;-). The (re) installation was done on the same server on which OM 6.0.0 was running before. can you check ifhttps://demo-openmeetings.apache.org/openmeetings works for you? My coturn config looks like follows: fingerprint lt-cred-mech use-auth-secret static-auth-secret=*** realm=demo-openmeetings.apache.org stale-nonce=0 proc-user=nobody proc-group=nogroup OM config ## Kurento ## kurento.ws.url=ws://127.0.0.1:/kurento kurento.turn.url=PUBLIC_IP:3478 kurento.turn.user=demo-user kurento.turn.secret=*** kurento.turn.mode=rest Please ensure "PUBLIC_IP:3478" is available to the world (connections happens via UDP by default) Kind regards Thomas Am 28.03.2023 15:52, schrieb Maxim Solodovnik: from mobile (sorry for typos ;) On Tue, Mar 28, 2023, 20:33 Thomas Scholzen wrote: Hi Maxim, thanks for the fast response. I used the command line for migration, and it did not work (restoreing backup just hangs forever). Sounds like the error of backup create/restore tool :( I would like to have it 100% bulletproof What is the size of your backup? Do you have anything suspicious in the logs? But no problem there, I should clean up the installation anyway ;-). My server is not a VM but bare metall. So I have to live with the interference of other services. As you suggested, I will try kurento without docker and see how it goes. So you have re-installed om+kms+coturn at your server? (I would update om only ...) Or set up new server? Thanks for you kind help Thomas Am 28.03.2023 11:27, schrieb Maxim Solodovnik: Hello Thomas, On Tue, 28 Mar 2023 at 15:41, Thomas Scholzen wrote: Hi Maxim, I just migrated from OM 6.00 to 7.00. After the upgrade did not work (too much stuff in the backup) I believe you can use command line admin in such case https://openmeetings.apache.org/CommandLineAdmin.html I went for a fresh installation. I installed OM 7.0.0, kurento via docker and coturn. However, I get "Media server connection for user XXX is failed, will try to re-connect" every 2 to 15 seconds, depending on the client and location. When the internet is routed via VPN to the server that runs OM, there are no problems. OS Ubuntu 20.04 I would say you have installed too much ... Is it fresh new VM? Can you run OM7 at the VM/server you already have for OM6? I've just have checked the changes And I would say your migration should be flawless (no real changes in KMS/Coturn integration) Maybe you can try to run OM7 nearby OM6? - different port OR - stop one -> start another? So I suspect an issue with the turnserver. With OM 6.0.0 this setup went fine, so there is probably some kind of misconfiguration. This can be both TURN server issues and network misconfiguration at new VM/server "$ docker logs kms" gives me: "KurentoWeb
Media server connection is failed, will try to re-connect
Hi Maxim,
I just migrated from OM 6.00 to 7.00. After the upgrade did not work
(too much stuff in the backup) I went for a fresh installation. I
installed OM 7.0.0, kurento via docker and coturn. However, I get "Media
server connection for user XXX is failed, will try to re-connect" every
2 to 15 seconds, depending on the client and location. When the internet
is routed via VPN to the server that runs OM, there are no problems. OS
Ubuntu 20.04
So I suspect an issue with the turnserver. With OM 6.0.0 this setup went
fine, so there is probably some kind of misconfiguration.
"$ docker logs kms" gives me:
"KurentoWebRtcEndpointImpl
WebRtcEndpointImpl.cpp:609:WebRtcEndpointImpl: TURN server not found in
config; remember that NAT traversal requires STUN or TURN"
In /etc/turnserver.conf I have:
use-auth-secret
static-auth-secret=7xxx
realm=testexample.de
stale-nonce=0
log-file=/var/log/turnserver/turnserver.log
syslog
In webapps/openmeetings/WEB-INF/classes/openmeetings.properties I have:
kurento.ws.url=ws://127.0.0.1:/kurento
kurento.turn.url=xxx.yyy.zzz.aaa:3478
kurento.turn.user=
kurento.turn.secret=7xxx
kurento.turn.mode=rest
Because I run also other services on this server SSL is done via port
4443 with a proxy to localhost:5080/openmeetings (see attached apache2
virtual host config). This makes it a bit complicated, but it was
working flawless with OM 6.0.0
I Would appreciate if you could give me a hint how to debug this.
Best regards
Thomas# NameVirtualHost *:4443
ServerName openmeetings.testexample.de
ServerAdmin r...@testexample.de
### OpenMeetings###
## Custom fragment
RewriteEngine On
RewriteCond %{HTTP:Connection} Upgrade [NC]
RewriteCond %{HTTP:Upgrade} websocket [NC]
RewriteRule /(.*) ws://localhost:5080/$1 [P,L]
RedirectMatch ^/$ https://openmeetings.testexample.de/openmeetings
ProxyPreserveHost On
ProxyRequests Off
SSLEngine on
SSLProtocol -all +TLSv1.2 +TLSv1.3
SSLCipherSuite
ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
SSLHonorCipherOrder on
ErrorLog /var/log/apache2/error.log
SSLCertificateFile /etc/letsencrypt/testexample.de/fullchain.cer
SSLCertificateKeyFile
/etc/letsencrypt/testexample.de/testexample.de.key
Require all granted
ProxyPass http://localhost:5080/openmeetings
ProxyPassReverse http://localhost:5080/openmeetings
RewriteEngine On
RewriteRule ^/(.*) http://localhost:5080/$1 [P]
Require all granted
ProxyPass http://localhost:5080/open
ProxyPassReverse http://localhost:5080/open
Require all granted
ProxyPass http://localhost:5080/send
ProxyPassReverse http://localhost:5080/send
Require all granted
ProxyPass http://localhost:5080/idle
ProxyPassReverse http://localhost:5080/idle
Require all granted
ProxyPass http://localhost:5080/close
ProxyPassReverse http://localhost:5080/close
Re: Media server connection is failed, will try to re-connect
Hi Maxim, thanks for the fast response. I used the command line for migration, and it did not work (restoreing backup just hangs forever). But no problem there, I should clean up the installation anyway ;-). My server is not a VM but bare metall. So I have to live with the interference of other services. As you suggested, I will try kurento without docker and see how it goes. Thanks for you kind help Thomas Am 28.03.2023 11:27, schrieb Maxim Solodovnik: Hello Thomas, On Tue, 28 Mar 2023 at 15:41, Thomas Scholzen wrote: Hi Maxim, I just migrated from OM 6.00 to 7.00. After the upgrade did not work (too much stuff in the backup) I believe you can use command line admin in such case https://openmeetings.apache.org/CommandLineAdmin.html I went for a fresh installation. I installed OM 7.0.0, kurento via docker and coturn. However, I get "Media server connection for user XXX is failed, will try to re-connect" every 2 to 15 seconds, depending on the client and location. When the internet is routed via VPN to the server that runs OM, there are no problems. OS Ubuntu 20.04 I would say you have installed too much ... Is it fresh new VM? Can you run OM7 at the VM/server you already have for OM6? I've just have checked the changes And I would say your migration should be flawless (no real changes in KMS/Coturn integration) Maybe you can try to run OM7 nearby OM6? - different port OR - stop one -> start another? So I suspect an issue with the turnserver. With OM 6.0.0 this setup went fine, so there is probably some kind of misconfiguration. This can be both TURN server issues and network misconfiguration at new VM/server "$ docker logs kms" gives me: "KurentoWebRtcEndpointImpl WebRtcEndpointImpl.cpp:609:WebRtcEndpointImpl: TURN server not found in config; remember that NAT traversal requires STUN or TURN" This is more or less expected I never had enough time to set up TURN inside KMS :( And everything seems to work at demo server In /etc/turnserver.conf I have: use-auth-secret static-auth-secret=7xxx realm=testexample.de stale-nonce=0 log-file=/var/log/turnserver/turnserver.log syslog In webapps/openmeetings/WEB-INF/classes/openmeetings.properties I have: kurento.ws.url=ws://127.0.0.1:/kurento kurento.turn.url=xxx.yyy.zzz.aaa:3478 kurento.turn.user= kurento.turn.secret=7xxx kurento.turn.mode=rest Because I run also other services on this server SSL is done via port 4443 with a proxy to localhost:5080/openmeetings (see attached apache2 virtual host config). This makes it a bit complicated, but it was working flawless with OM 6.0.0 I Would appreciate if you could give me a hint how to debug this. BTW "kurento via docker" might be not necessary in your case KMS7 was released and it natively supports Ubuntu 20 :) Best regards Thomas
