Re: xmlrpc
Mani,there is documentation for the XML RPC located here:http://people.apache.org/~jfthomps/xmlrpcdocs/xmlrpcWrappers_8php.htmlI have been using the remote API for some time now, and it works very well. To make things easier for me, I wrote a php class that encapsulates some of these functions (see attached). This class doesn't implement any of the group management features, but they would be easy to add.You can then use the class like this (if, for instance, you wanted to list the reservations for a particular user):$vcl = new VCL($userid, $password);if ($reservations = $vcl-getReservations()){ foreach ($reservations as $r){ print "p"; print "b{$r['imagename']}/b "; if ($status = $vcl-getRequestStatus($r['requestid'])){ switch ($status['status']){... } } print "/p"; }}The authentication piece is handed off to the appropriate affiliation function in the VCL code, so if you are using LDAP, the user's password would be verified in that way. Since we use Shibboleth with our VCL installation, the web application (neither the VCL nor any remote webapp) will know anything about what constitutes a valid password, so I ended up modifying the 'checkAccess()' function in .ht-inc/utils.php. If this is relevant for your installation, I can explain further how this is done.The remote API allows me, for instance, to embed the VCL inside other web applications (such as our campus learning management system), without requiring students to login to the main VCL site when they want to make and connect to their reservations.Best regards,Aaron?php class VCL { const VCLHOST = YOUR VCL HOST LOCATION HERE; public $errcode = 0; public $errmsg = ; public $message = ; private $username = ; private $password = ; public function __construct($username, $password){ $this-username = $username; $this-password = $password; } public function getImages(){ if($images = $this-rpc('XMLRPCgetImages', array())) if( count($images) ) return $images; return 0; } public function addReservation($imageid, $time, $duration){ if( $rc = $this-rpc('XMLRPCaddRequest', array($imageid, $time, $duration))){ $this-message = Successfully added reservation.; return 1; } else { return 0; } } public function extendReservation($id, $duration){ $this-reset(); if( $rc = $this-rpc(XMLRPCextendRequest, array($id, $duration))){ $this-message = Reservation successfully extended.; return 1; } else { return 0; } } public function deleteReservation($id){ $this-reset(); if( $rc = $this-rpc(XMLRPCendRequest, array($id))){ $this-message = Reservation successfully deleted.; return 1; } else { return 0; } } public function getRequestStatus($id){ $this-reset(); if( $rc = $this-rpc(XMLRPCgetRequestStatus, array($id))) return $rc; else return 0; } public function getConnectData($requestid, $remote_addr){ $this-reset(); if( $rc = $this-rpc(XMLRPCgetRequestConnectData, array($requestid, $remote_addr))){ if( $rc[status] == ready ){ return array( serverIP = $rc[serverIP], user = $rc[user], password = $rc[password] ); } else { $this-message = The connection is not yet ready.; } } return 0; } public function affiliations(){ $this-reset(); if($response = $this-rpc(XMLRPCaffiliations, array())){ if(count($response)){ return $response; } } return 0; } public function getReservations(){ $this-reset(); if($response = $this-rpc('XMLRPCgetRequestIds', array())) if( count( $response[requests] ) ) return $response[requests]; return 0; } private function reset(){ $this-errcode = 0; $this-errmsg = ; $this-message = ; } private function rpc($method, $args) { $request = xmlrpc_encode_request($method, $args); $header = Content-Type: text/xml\r\n; $header .= X-User: . $this-username . \r\n; $header .= X-Pass: . $this-password . \r\n; $header .= Cookie: . $_SERVER[HTTP_COOKIE] . \r\n; $header .= X-APIVERSION: 2; $context = stream_context_create( array( 'http' = array( 'method' = POST, 'header' = $header, 'content' = $request ) ) ); $location = ?mode= . ($method == XMLRPCaffiliations ?
Re: Virtualizing the Virtualization Server
Yes, your going to need xCAT. We've have found that ESXi needs to be installed via kickstart type method using xcat. Partimage - which is the tool used underneath xCAT layer doesn't support the ESXi filesystem. xCAT can deploy using either kickstart or partimage method for x86 hardware. We are using xCAT to deploy our bare-metal environments; user created, kickstart based environments, and for our hypervisor environments ESXi, and for the next release kvm. xCAT is a very nice tool when you have more than a couple of blades to install or repurpose for other features supported by VCL. At first I would suggest to get xCAT working at the command line before trying to use xCAT through the VCL interface. VCL xCAT provisioning modules are only making xCAT system calls to install a node. Once xCAT is setup correctly and working, then start using it through the VCL interface. When you get ready we can share our esxi kickstart template to compare, so you can built one for your environment. Aaron On Tue, Nov 29, 2011 at 7:25 PM, Anu Chirinos a...@fiu.edu wrote: What about if we want to have ESXi as an image that can be deployed on number of identical servers? Will that require xcat underneath, or can we just capture the base esxi as image and then deploy it. If so, are there anything specific before capturing that image? Anu Chirinos University Technology Services Office: 305-348-0275, Cell 786-712-9025 From: Aaron Peeler [fapee...@ncsu.edu] Sent: Tuesday, November 29, 2011 9:27 AM To: vcl-user@incubator.apache.org Subject: Re: Virtualizing the Virtualization Server Yes. This requires xCAT http://xcat.sourceforge.net/ xCAT is fairly straight forward and well supported for the IBM bladeCenter hardware, but has worked with other hardware also. The xCAT developers are mostly IBMers - hardware group. Some xCAT pre-install steps. 1) Make to include the private IP addresses of your blades or phyiscal machines in the management nodes /etc/hosts file 2) make a copy of your existing dhcpd.conf file The xcat starting point documentation is: http://sourceforge.net/apps/mediawiki/xcat/index.php?title=Setting_Up_a_Linux_xCAT_Mgmt_Node Once xcat is installed you will need to follow these steps to add support for partimage, this is the component that does the imaging. https://cwiki.apache.org/VCL/adding-support-for-partimage-and-partimage-ng-to-xcat-2x-unofficial.html Aaron On Tue, Nov 29, 2011 at 8:55 AM, Evelio Quiros evq...@fiu.edu wrote: Hello, First, thanks for all the helpful advice. We were able to get up and going thanks to you all. Is it possible to capture the image of the Vmware server itself, and then replicate it to other bare metal server? Is there some documentation on that procedure? Thanks Again, Al Quiros -- Aaron Peeler Program Manager Virtual Computing Lab NC State University All electronic mail messages in connection with State business which are sent to or received by this account are subject to the NC Public Records Law and may be disclosed to third parties. -- Aaron Peeler Program Manager Virtual Computing Lab NC State University All electronic mail messages in connection with State business which are sent to or received by this account are subject to the NC Public Records Law and may be disclosed to third parties.
Re: rdp file auto login
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I understand. Thanks for the information. Um, maybe we should look at taking another approach? What would you think about using a Java RDP client? Or, possibly an HTML5 RDP solution? On 11/29/2011 6:55 AM, Dmitri Chebotarov wrote: Looks like with RDP v6 protocol, user's credentials are stored in %userprofile% on local PC and not in .rdp file. Plus, password is encrypted using hash from user's Windows login password. This practically makes it impossible to generate .rdp file with username/password included. I found http://www.remkoweijnen.nl/blog/2007/10/17/launch-rdp-from-commandline/ utility, which works as a wrapper for mstsc.exe and can pass username/password and auto-connect to a RDP session. This is probably closest it gets to auto-login... Thanks. On Nov 22, 2011, at 16:37 , Aaron Coburn wrote: On Nov 22, 2011, at 2:58 PM, Alexander Kurt Keller wrote: I believe years ago (RDP version 4?) the password could be defined in clear text within the RDP file but that is long unsupported. Here is a write-up and a lively comments discussion on the MSTSC embedded password encryption function: http://www.remkoweijnen.nl/blog/2007/10/18/how-rdp-passwords-are-encrypted/ it looks like they use the machine or user SID to salt the hash? I tried implementing this particular solution a while ago but was never able to get it to work. The basic idea described in the website is that the target machine needs to encrypt the password and that encrypted string goes into the RDP file as: password 51:b:{encrypted password} For instance, if a suitable encryption program is installed on the VCL Windows machine, the management node could, in theory, request a hashed copy of the password before generating the RDP file for the user. I certainly don't want to dissuade anyone from trying to get this to work as described in the link above, but given that there is no reference to 'password 51' fields in the current Terminal Services documentation, I am not entirely sure that the field is still supported: http://technet.microsoft.com/en-us/library/ff393708%28WS.10%29.aspx http://support.microsoft.com/?kbid=885187 The closest I have come to an auto-login solution is to use protocol handlers in the form of a link. Something like this: a href=rdp://username:password@hostname:port/domain?params.../a For this to work on a user's computer, the protocol handler must be registered at the OS level, which introduces an additional level of complexity. On Mac OS X, this is done automatically when a user installs an RDP client such as CoRD. On linux, a user will need to execute something like this to enable the handler: gconftool-2 -s /desktop/gnome/url-handlers/rdp/command '/usr/bin/rdesktop %s' --type String gconftool-2 -s /desktop/gnome/url-handlers/rdp/enabled --type Boolean true I am not entirely sure about how to get this to work on Windows, though. First of all, mstsc.exe doesn't seem to accept a username or password argument from the command line. Nevertheless, if you want the protocol handler to work on Windows, you'll need to modify the registry in HKEY_CLASSES_ROOT\\rdp -- the documentation here will give you a start: http://msdn.microsoft.com/en-us/library/aa767914.aspx Please let me know if you make any progress on this! Best regards, Aaron -- Aaron Coburn Systems Administrator and Programmer Academic Technology Services, Amherst College (413) 542-5451 acob...@amherst.edu -Original Message- From: Josh Thompson [mailto:josh_thomp...@ncsu.edu] Sent: Tuesday, November 22, 2011 11:12 AM To: vcl-user@incubator.apache.org Subject: Re: rdp file auto login It's been several years since I tried to get this to work. However, unless things have changed (which I'm guessing they haven't), you can't make it auto- login. The password is provided in a clear text form in the rdp file. Unfortunately, the windows and mac RDC apps won't use the clear text version. You can save a password in an encrypted form in an rdp file; however, RDC uses cryptographic stuff specific to the computer that actually saves the file, meaning there's no way to generate the encrypted form of the password unless you are actually on the end user's machine. If anyone wants to try to investigate this again, I think everyone in the community would love to see it work. Or, everyone can switch to linux/unix platforms that can use rdesktop that will happily accept the password at the command line. :) I have a nice wrapper script for rdesktop that will take the rdp file and do the auto-login into the remote windows node. Josh On Tue November 22 2011 1:29:09 PM Gene Lui wrote: Dmitri, If you download the rdp file from the connection reservation and open it with a editor, you see that the rdp file has both a user name and password within the setting file. For
Re: rdp file auto login
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I think pursuing other options is a great idea. I'd imagine lots of other people would like to be able to have auto login working with VCL reservations. It would be particularly useful for icon on the desktop[1] access to VCL resources. Josh [1] icon on the desktop refers to having a script that uses the XML RPC API to make and connect to a VCL reservation so that you can just click on an icon to get connected to a VCL reservation On Wednesday November 30, 2011, James O'Dell wrote: I understand. Thanks for the information. Um, maybe we should look at taking another approach? What would you think about using a Java RDP client? Or, possibly an HTML5 RDP solution? On 11/29/2011 6:55 AM, Dmitri Chebotarov wrote: Looks like with RDP v6 protocol, user's credentials are stored in %userprofile% on local PC and not in .rdp file. Plus, password is encrypted using hash from user's Windows login password. This practically makes it impossible to generate .rdp file with username/password included. I found http://www.remkoweijnen.nl/blog/2007/10/17/launch-rdp-from-commandline/ utility, which works as a wrapper for mstsc.exe and can pass username/password and auto-connect to a RDP session. This is probably closest it gets to auto-login... Thanks. On Nov 22, 2011, at 16:37 , Aaron Coburn wrote: On Nov 22, 2011, at 2:58 PM, Alexander Kurt Keller wrote: I believe years ago (RDP version 4?) the password could be defined in clear text within the RDP file but that is long unsupported. Here is a write-up and a lively comments discussion on the MSTSC embedded password encryption function: http://www.remkoweijnen.nl/blog/2007/10/18/how-rdp-passwords-are-encryp ted/ it looks like they use the machine or user SID to salt the hash? I tried implementing this particular solution a while ago but was never able to get it to work. The basic idea described in the website is that the target machine needs to encrypt the password and that encrypted string goes into the RDP file as: password 51:b:{encrypted password} For instance, if a suitable encryption program is installed on the VCL Windows machine, the management node could, in theory, request a hashed copy of the password before generating the RDP file for the user. I certainly don't want to dissuade anyone from trying to get this to work as described in the link above, but given that there is no reference to 'password 51' fields in the current Terminal Services documentation, I am not entirely sure that the field is still supported: http://technet.microsoft.com/en-us/library/ff393708%28WS.10%29.aspx http://support.microsoft.com/?kbid=885187 The closest I have come to an auto-login solution is to use protocol handlers in the form of a link. Something like this: a href=rdp://username:password@hostname:port/domain?params.../a For this to work on a user's computer, the protocol handler must be registered at the OS level, which introduces an additional level of complexity. On Mac OS X, this is done automatically when a user installs an RDP client such as CoRD. On linux, a user will need to execute something like this to enable the handler: gconftool-2 -s /desktop/gnome/url-handlers/rdp/command '/usr/bin/rdesktop %s' --type String gconftool-2 -s /desktop/gnome/url-handlers/rdp/enabled --type Boolean true I am not entirely sure about how to get this to work on Windows, though. First of all, mstsc.exe doesn't seem to accept a username or password argument from the command line. Nevertheless, if you want the protocol handler to work on Windows, you'll need to modify the registry in HKEY_CLASSES_ROOT\\rdp -- the documentation here will give you a start: http://msdn.microsoft.com/en-us/library/aa767914.aspx Please let me know if you make any progress on this! Best regards, Aaron -Original Message- From: Josh Thompson [mailto:josh_thomp...@ncsu.edu] Sent: Tuesday, November 22, 2011 11:12 AM To: vcl-user@incubator.apache.org Subject: Re: rdp file auto login It's been several years since I tried to get this to work. However, unless things have changed (which I'm guessing they haven't), you can't make it auto- login. The password is provided in a clear text form in the rdp file. Unfortunately, the windows and mac RDC apps won't use the clear text version. You can save a password in an encrypted form in an rdp file; however, RDC uses cryptographic stuff specific to the computer that actually saves the file, meaning there's no way to generate the encrypted form of the password unless you are actually on the end user's machine. If anyone wants to try to investigate this again, I think everyone in the community would love to see it work. Or, everyone can switch to linux/unix platforms that can use rdesktop that will happily accept the
Re: xmlrpc
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mani, I forgot that there is a third http header that is always required - X-APIVERSION. You'd even need that set when calling XMLRPCaffiliations. Josh On Wednesday November 30, 2011, Josh Thompson wrote: Mani, I haven't done much with java, and what I have done was many years ago. Given that, it doesn't look like you are providing the additional custom authentication http headers X-User and X-Pass anywhere. Those two additional headers are not needed for the XMLRPCaffiliations call. So, you could try calling that to see if the authentication headers are your only problem. Josh On Wednesday November 30, 2011, Mani Shafa'atDoost wrote: I am trying to use Java to use your system. but the problem is when I try to execute something like client.execute( XMLRPCtest, params ); , I receive errors. Can you tell me what should I pass to this function.I just attached my java class. Best Regards Mani On Wed, Nov 30, 2011 at 8:39 AM, Aaron Coburn acob...@amherst.edu wrote: Mani, there is documentation for the XML RPC located here: http://people.apache.org/~jfthomps/xmlrpcdocs/xmlrpcWrappers_8php.html I have been using the remote API for some time now, and it works very well. To make things easier for me, I wrote a php class that encapsulates some of these functions (see attached). This class doesn't implement any of the group management features, but they would be easy to add. You can then use the class like this (if, for instance, you wanted to list the reservations for a particular user): $vcl = new VCL($userid, $password); if ($reservations = $vcl-getReservations()){ foreach ($reservations as $r){ print p; print b{$r['imagename']}/b ; if ($status = $vcl-getRequestStatus($r['requestid'])){ switch ($status['status']){ ... } } print /p; } } The authentication piece is handed off to the appropriate affiliation function in the VCL code, so if you are using LDAP, the user's password would be verified in that way. Since we use Shibboleth with our VCL installation, the web application (neither the VCL nor any remote webapp) will know anything about what constitutes a valid password, so I ended up modifying the 'checkAccess()' function in .ht-inc/utils.php. If this is relevant for your installation, I can explain further how this is done. The remote API allows me, for instance, to embed the VCL inside other web applications (such as our campus learning management system), without requiring students to login to the main VCL site when they want to make and connect to their reservations. Best regards, Aaron On Nov 29, 2011, at 6:08 PM, Mani Shafa'atDoost wrote: Josh, Thank you. Do you have any proper documentation for functions that you provided by XML RPC? Best Regards Mani On Tue, Nov 29, 2011 at 4:32 PM, Josh Thompson josh_thomp...@ncsu.eduwrote: Mani, Unfortunately, the example code is way out of date and uses API version 1 which is no longer supported. A more current example, though in python, is available here: https://svn.apache.org/repos/asf/incubator/vcl/sandbox/useful_scripts/ ma nagegroups.py Josh On Sunday November 20, 2011, Mani Shafa'atDoost wrote: Hello, I just used your sample file to use VCL through XMLRPC, but I received following error : *Notice*: xmlrpc: Unsupported API version, cannot continue. I just modified username and password in your sample PHP file. I will appreciate if you could guide me. Best Regards Mani - -- - --- Josh Thompson VCL Developer North Carolina State University my GPG/PGP key can be found at pgp.mit.edu - -- - --- Josh Thompson VCL Developer North Carolina State University my GPG/PGP key can be found at pgp.mit.edu -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.17 (GNU/Linux) iEYEARECAAYFAk7WdcAACgkQV/LQcNdtPQMPPACeLEw0weINBR4ybYfyd/buCRlZ AIIAn1ft7ux0oPTvT0WN8cRxM42HHNTv =O24S -END PGP SIGNATURE-
Re: xmlrpc
Josh, As far as I understood, I need to pass the function name as first argument and for second one I need to add a list of parameters. For first parameter, I need to pass Header which consist of following things: $header = Content-Type: text/xml\r\n; $header .= X-User: . $this-username . \r\n; $header .= X-Pass: . $this-password . \r\n; $header .= Cookie: . $_SERVER[HTTP_COOKIE] . \r\n; $header .= X-APIVERSION: 2; so, is it necessary to add all of these things to header? Best Regards Mani On Wed, Nov 30, 2011 at 1:28 PM, Josh Thompson josh_thomp...@ncsu.eduwrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mani, I forgot that there is a third http header that is always required - X-APIVERSION. You'd even need that set when calling XMLRPCaffiliations. Josh On Wednesday November 30, 2011, Josh Thompson wrote: Mani, I haven't done much with java, and what I have done was many years ago. Given that, it doesn't look like you are providing the additional custom authentication http headers X-User and X-Pass anywhere. Those two additional headers are not needed for the XMLRPCaffiliations call. So, you could try calling that to see if the authentication headers are your only problem. Josh On Wednesday November 30, 2011, Mani Shafa'atDoost wrote: I am trying to use Java to use your system. but the problem is when I try to execute something like client.execute( XMLRPCtest, params ); , I receive errors. Can you tell me what should I pass to this function.I just attached my java class. Best Regards Mani On Wed, Nov 30, 2011 at 8:39 AM, Aaron Coburn acob...@amherst.edu wrote: Mani, there is documentation for the XML RPC located here: http://people.apache.org/~jfthomps/xmlrpcdocs/xmlrpcWrappers_8php.html I have been using the remote API for some time now, and it works very well. To make things easier for me, I wrote a php class that encapsulates some of these functions (see attached). This class doesn't implement any of the group management features, but they would be easy to add. You can then use the class like this (if, for instance, you wanted to list the reservations for a particular user): $vcl = new VCL($userid, $password); if ($reservations = $vcl-getReservations()){ foreach ($reservations as $r){ print p; print b{$r['imagename']}/b ; if ($status = $vcl-getRequestStatus($r['requestid'])){ switch ($status['status']){ ... } } print /p; } } The authentication piece is handed off to the appropriate affiliation function in the VCL code, so if you are using LDAP, the user's password would be verified in that way. Since we use Shibboleth with our VCL installation, the web application (neither the VCL nor any remote webapp) will know anything about what constitutes a valid password, so I ended up modifying the 'checkAccess()' function in .ht-inc/utils.php. If this is relevant for your installation, I can explain further how this is done. The remote API allows me, for instance, to embed the VCL inside other web applications (such as our campus learning management system), without requiring students to login to the main VCL site when they want to make and connect to their reservations. Best regards, Aaron On Nov 29, 2011, at 6:08 PM, Mani Shafa'atDoost wrote: Josh, Thank you. Do you have any proper documentation for functions that you provided by XML RPC? Best Regards Mani On Tue, Nov 29, 2011 at 4:32 PM, Josh Thompson josh_thomp...@ncsu.eduwrote: Mani, Unfortunately, the example code is way out of date and uses API version 1 which is no longer supported. A more current example, though in python, is available here: https://svn.apache.org/repos/asf/incubator/vcl/sandbox/useful_scripts/ ma nagegroups.py Josh On Sunday November 20, 2011, Mani Shafa'atDoost wrote: Hello, I just used your sample file to use VCL through XMLRPC, but I received following error : *Notice*: xmlrpc: Unsupported API version, cannot continue. I just modified username and password in your sample PHP file. I will appreciate if you could guide me. Best Regards Mani - -- - --- Josh Thompson VCL Developer North Carolina State University my GPG/PGP key can be found at pgp.mit.edu - -- - --- Josh Thompson VCL Developer North Carolina State University my GPG/PGP key can be found at pgp.mit.edu -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.17 (GNU/Linux) iEYEARECAAYFAk7WdcAACgkQV/LQcNdtPQMPPACeLEw0weINBR4ybYfyd/buCRlZ AIIAn1ft7ux0oPTvT0WN8cRxM42HHNTv =O24S
Re: secrets.php
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mani, Whenever you're ready to try to debug this issue again, let us know. Josh On Tuesday November 29, 2011, Mani Shafa'atDoost wrote: Josh, No, my problem didn't solve. So, I just skipped that step for now and I am using from another version of VCL. once I solve this problem, I will post it here. Best Regards Mani On Tue, Nov 29, 2011 at 4:34 PM, Josh Thompson josh_thomp...@ncsu.eduwrote: Mani, I'm guessing you got this working since you emailed about the XML RPC example. Would you mind sharing what you needed to do to get it to work so others that might encounter the same problem will have an idea what to do? Thanks, Josh On Tuesday November 15, 2011, Mani Shafa'atDoost wrote: I just checked the file and there is no error on this file, but when I try to read my secrets.php from other folders, I can't retrieve any data but I can open the file. On Tue, Nov 15, 2011 at 12:28 PM, Josh Thompson josh_thomp...@ncsu.eduwrote: Mani, Everything looks good in the secrets.php file you included below. I would suggest running the secrets.php script from the command line using the php command line interpreter: php secrets.php Any problems in it would then be reported. Also, just to be sure, you are talking about secrets.php and not secrets-default.php, right? Josh On Sunday November 13, 2011, Mani Shafa'atDoost wrote: Hello, When I run testsetup.php, I just receive following errors: Error: fopen(http://localhost/vcl/testsetup.php?includesecretstest=1 ): failed to open stream: Permission denied PHP version: 5.3.8 Including .ht-inc/secrets.php ... - unable to include .ht-inc/secrets.php - this is probably due to a syntax error in .ht-inc/secrets.php - skipping tests for contents of .ht-inc/secrets.php Including .ht-inc/conf.php ... - cannot include .ht-inc/conf.php when including of .ht-inc/secrets.php fails Testing for required php extensions ... - All required modules are installed Testing mcrypt ... - Cannot test encryption without $mcryptkey and $mcryptiv from .ht-inc/secrets.php checking openssl encryption keys ... - Cannot test private key file without $pemkey from .ht-inc/secrets.php - successfully created public key from public key file Testing openssl encryption ... - cannot test encryption without a valid private key Testing for existance of dojo directory ... - dojo directory exists - dojo directory is readable Checking value of PHP display_errors ... - display_errors: *disabled* - NOTE: Displaying errors in a production system is a security risk; however, while getting VCL up and running, having them displayed makes debugging a little easier. Edit your php.ini file to modify this setting. Done my secrets.php file is like this: ?php $vclhost = 'localhost'; # name of mysql server $vcldb = 'vcl'; # name of mysql database $vclusername = 'mani'; # username to access database $vclpassword = 'mani'; # password to access database $mcryptkey = 'password'; # random password - won't ever have to type it so make it long $mcryptiv = '12345678'; // must be 8 hex chars $pemkey = 'password'; # random passphrase - same as given to genkeys.sh - should be long ? can you guide me, what should i do to fix this file? Best Regards Mani - -- - --- Josh Thompson VCL Developer North Carolina State University my GPG/PGP key can be found at pgp.mit.edu - -- - --- Josh Thompson VCL Developer North Carolina State University my GPG/PGP key can be found at pgp.mit.edu - -- - --- Josh Thompson VCL Developer North Carolina State University my GPG/PGP key can be found at pgp.mit.edu -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.17 (GNU/Linux) iEYEARECAAYFAk7WkNgACgkQV/LQcNdtPQOlYACeKdQE03QMPzXgRrv1fZjMnBi5 jzQAn326ss8mUj0Z0R/nF4Ww7BghWe/q =VOze -END PGP SIGNATURE-