setting up an email server in a recent version of OpenBSD
Dear group, anyone could point to some recent online resources how to setup an email server in OpenBSD? What I found from Google was a bit thin. So I'm wondering if I was missing something out there. Thank you for your support
Re: ACME client doesn't renew certificate (6.9-beta) - SOLVED
Thank you very much for this in-depth explanation. Appreciate your kind and valuable reply. I just noticed that restarting the httpd server is included in the examples section of the acme-client man page too! https://man.openbsd.org/acme-client.1 Unfortunately didn't pay the necessary attention up to now :( Thank you On Tue, Feb 16, 2021 at 8:21 PM Janne Johansson wrote: > Den tis 16 feb. 2021 kl 18:50 skrev Teno Deuter : > >> after "rcctl reload httpd" everything works well. Thank you very much. >> >> I'm running this configuration since early 6.8 and I don't think that I >> was >> restarting the server! That's why I got now surprised. >> > > All TLS-services that chroot do so in order to make the serving part not > be able to affect (or read) the secret keys when they are running. > > https(8) on openbsd is very much like that. You do not want a > misconfiguration to suddenly make httpd serve the key-file over the web. > > This in turn means, that if you replace the key file on disk, the running > httpd will not be able to read the new key, and hence not be able to start > using it, > which is why you need to make a full restart for it to be able to read the > key at startup, then drop privileges and lock itself into a chroot so it no > longer > can read this (and other!) key material. > > The script that does the renewals with acme should check if the cert was > renewed and restart httpd if so. > If you look closely at the manpage, you will see that the return code from > running acme-client is made so > that you can see if it renewed the cert or not, and can easily base script > decisions on it. > > -- > May the most significant bit of your life be positive. >
Re: ACME client doesn't renew certificate (6.9-beta) - SOLVED
after "rcctl reload httpd" everything works well. Thank you very much. I'm running this configuration since early 6.8 and I don't think that I was restarting the server! That's why I got now surprised. On Tue, Feb 16, 2021 at 7:32 PM Jean-Pierre de Villiers < jeanpie...@jeanpierredevilliers.xyz> wrote: > I'm going to assume your acme-client configuration is in order and that > you are using httpd as your web server. > > Did you not perhaps forget to reload httpd via rcctl after renewing your > certificate? Otherwise, I suspect you're going to have to give us more > context. > > Regards, > Jean-Pierre > > On 21/02/16 06:47pm, Teno Deuter wrote: > > OpenBSD 6.9-beta (GENERIC) #328: Mon Feb 15 10:31:18 MST 2021 > > > > I run: > > > > # acme-client -vF <>.com > > acme-client: /etc/ssl/<>.com.crt: certificate valid: 89 days > left > > acme-client: /etc/ssl/<>.com.crt: forcing renewal > > acme-client: https://acme-v02.api.letsencrypt.org/directory: directories > > acme-client: acme-v02.api.letsencrypt.org: DNS: 172.65.32.248 > > acme-client: > > https://acme-v02.api.letsencrypt.org/acme/finalize/86925799/7946011420: > > certificate > > acme-client: order.status 3 > > acme-client: > > > https://acme-v02.api.letsencrypt.org/acme/cert/045439171e7c06c448e2584a12e832150e60 > : > > certificate > > acme-client: /etc/ssl/<>.com.crt: created > > acme-client: /etc/ssl/<>.com.fullchain.pem: created > > > > but when I access it in Firefox I get a warnung because: > > > > Let's Encrypt > > Validity > > Not Before 11/1/2020, 9:25:02 PM (Eastern European Standard Time) > > Not After 1/30/2021, 9:25:02 PM (Eastern European Standard Time) > > > > Thank you > >
ACME client doesn't renew certificate (6.9-beta)
OpenBSD 6.9-beta (GENERIC) #328: Mon Feb 15 10:31:18 MST 2021 I run: # acme-client -vF <>.com acme-client: /etc/ssl/<>.com.crt: certificate valid: 89 days left acme-client: /etc/ssl/<>.com.crt: forcing renewal acme-client: https://acme-v02.api.letsencrypt.org/directory: directories acme-client: acme-v02.api.letsencrypt.org: DNS: 172.65.32.248 acme-client: https://acme-v02.api.letsencrypt.org/acme/finalize/86925799/7946011420: certificate acme-client: order.status 3 acme-client: https://acme-v02.api.letsencrypt.org/acme/cert/045439171e7c06c448e2584a12e832150e60: certificate acme-client: /etc/ssl/<>.com.crt: created acme-client: /etc/ssl/<>.com.fullchain.pem: created but when I access it in Firefox I get a warnung because: Let's Encrypt Validity Not Before 11/1/2020, 9:25:02 PM (Eastern European Standard Time) Not After 1/30/2021, 9:25:02 PM (Eastern European Standard Time) Thank you
Re: Encrypted notepad software suggestions
https://tiddlywiki.com/ this can be very handy and you can store and encrypt a whole bunch of data (not only passwords) in a single html file. On Tue, Sep 29, 2020 at 5:28 PM bijan wrote: > On 9/28/20 11:12 PM, Jacqueline Jolicoeur wrote: > >> Simply Text File encryption is suitable too to hide some info from > plain text files I have. > > > > You can encrypt text files simply using tools in the base system. > > > > EXAMPLES > > > > Edit, encrypt, and erase: > > > > $ vi file.txt > > $ openssl aes-256-cbc -a -iter 10 -in file.txt -out file.txt.enc > > $ rm -P file.txt > > > > Restore, and edit: > > > > $ openssl aes-256-cbc -d -a -iter 10 -in file.txt.enc -out file.txt > > $ vi file.txt > > > > SEE ALSO > > openssl(1), rm(1) > > > > Hmmm, very interesting idea. > > It is also possible to invoke external commands on vi(1) buffer and > replace the content by it's output. > > For example: > > $ vi > # Write a few words or so > # To encrypt, run > :%!openssl aes-256-cbc -e -a -iter 10 -pass 'pass:123' > # To decrypt, run > :%!openssl aes-256-cbc -d -a -iter 10 -pass 'pass:123' > > although I coundn't find a workaround for entering the password from > standard input, It should be doable, I guess. > >
VPN, configuring an IKEv2 server
Dear group, try to configure on an 6.7 installation a IKEv2 VPN server to be accessed by linux and android clients but got completely lost. I don't even know how to debug it! Here is my iked-dv output: ikev2 "vpn" passive tunnel esp inet6 from 0.0.0.0/0 to 0.0.0.0/0 from ::/0 to ::/0 local peer any ikesa enc aes-256 prf hmac-sha2-256 auth hmac-sha2-256 group modp2048 childsa enc aes-256 auth hmac-sha2-256 group modp2048 esn,noesn srcid name1.name2.name3 lifetime 10800 bytes 536870912 signature config address 172.24.24.0 config address 2001:470:203a:a0:: config name-server 172.24.24.1 config name-server tag "$name-$id" I don't get it why my public IP4 doesn't show up! Thank you for your help
Re: acme client failing [SOLVED]
On Sat, May 23, 2020 at 8:22 PM Stuart Henderson wrote: > > On 2020-05-23, Teno Deuter wrote: > > acme-client: challenge, token: , status: 2 > > acme-client: dochngreq: > > https://acme-v02.api.letsencrypt.org/acme/authz-v3/4766326725 > > acme-client: challenge, token: ... , status: 0 > > acme-client: /var/www/acme/...: created > > acme-client: https://acme-v02.api.letsencrypt.org/acme/chall-v3/4766326725/TzAk5w: > > challenge > > acme-client: order.status -1 > > acme-client: bad exit: netproc(62115): 1 > > > > Thank you for your kind help > > > > > > https://acme-v02.api.letsencrypt.org/acme/authz-v3/4766326725 shows an > error from letsencrypt: > > "DNS problem: NXDOMAIN looking up A for www.jpcode.org - check that a > DNS record exists for this domain" > Thank you for your swift response. I didn't know how to debug the acme-client output. Correct. I forgot to update the DNS records. Now everything works well.
acme client failing
I have following configuration: OpenBSD amd64 6.7 acme-client.conf: authority letsencrypt { api url "https://acme-v02.api.letsencrypt.org/directory"; account key "/etc/acme/letsencrypt-privkey.pem" } authority letsencrypt-staging { api url "https://acme-staging-v02.api.letsencrypt.org/directory"; account key "/etc/acme/letsencrypt-staging-privkey.pem" } domain myserver.com { alternative names { www.myserver.com, mail.myserver.com } domain key "/etc/ssl/private/myserver.com.key" domain certificate "/etc/ssl/myserver.com.crt" domain full chain certificate "/etc/ssl/myserver.com.fullchain.pem" sign with letsencrypt } httpd.conf: server "myserver.com" { listen on * port 80 location "/.well-known/acme-challenge/*" { root "/acme" request strip 2 } location * { block return 302 "https://$HTTP_HOST$REQUEST_URI"; } } server "myserver.com" { listen on * tls port 443 tls { certificate "/etc/ssl/myserver.com.fullchain.pem" key "/etc/ssl/private/myserver.com.key" } location "/pub/*" { directory auto index } location "/.well-known/acme-challenge/*" { root "/acme" request strip 2 } } when running acme-client as root, I get the following: acme-client -vF myserver.com acme-client: https://acme-v02.api.letsencrypt.org/directory: directories acme-client: acme-v02.api.letsencrypt.org: DNS: 172.65.32.248 acme-client: dochngreq: ... acme-client: challenge, token: ... status: 2 acme-client: dochngreq: acme-client: challenge, token: , status: 2 acme-client: dochngreq: https://acme-v02.api.letsencrypt.org/acme/authz-v3/4766326725 acme-client: challenge, token: ... , status: 0 acme-client: /var/www/acme/...: created acme-client: https://acme-v02.api.letsencrypt.org/acme/chall-v3/4766326725/TzAk5w: challenge acme-client: order.status -1 acme-client: bad exit: netproc(62115): 1 Thank you for your kind help
Re: roundcube installation php modules
here is an example: ;extension=php_bz2.dll ;extension=php_curl.dll ;extension=php_fileinfo.dll ;extension=php_gd2.dll extension=/usr/local/lib/php-5.6/modules/gd.so ;extension=php_gettext.dll ;extension=php_gmp.dll ;extension=php_intl.dll extension=/usr/local/lib/php-5.6/modules/intl.so ;extension=php_imap.dll ;extension=php_interbase.dll ;extension=php_ldap.dll extension=/usr/local/lib/php-5.6/modules/ldap.so ;extension=php_mbstring.dll ;extension=php_exif.dll ; Must be after mbstring as it depends on it ;extension=php_mysql.dll ;extension=php_mysqli.dll On Tue, Jul 10, 2018 at 4:19 PM, Danny AwesomeRetro wrote: > Could you give me an example of defining absolute path to the module? > > Cheers, > > Danny > > > On 07/10/2018 03:07 PM, Teno Deuter wrote: >> actually I had to define the absolute path to the module. After doing >> this it did work! >> >> I still have the issue with Imagick though! There is no module for >> that in OpenBSD repository as it's already integrated in php - >> correct? In that case should I ignore that? >> >> Thank you >> >> On Tue, Jul 10, 2018 at 2:30 PM, Teno Deuter wrote: >>> sorry forgot to mention that after doing the below changes I did >>> restart the server! >>> >>> Thank you >>> >>> On Tue, Jul 10, 2018 at 2:29 PM, Teno Deuter wrote: >>>> here are my current extension settings in php-5.6.ini: >>>> >>>> ;extension=php_bz2.dll >>>> ;extension=php_curl.dll >>>> ;extension=php_fileinfo.dll >>>> >>>> extension=php_gd2.dll >>>> >>>> ;extension=php_gettext.dll >>>> ;extension=php_gmp.dll >>>> >>>> extension=php_intl.dll >>>> >>>> ;extension=php_imap.dll >>>> ;extension=php_interbase.dll >>>> ;extension=php_ldap.dll >>>> ;extension=php_mbstring.dll >>>> ;extension=php_exif.dll ; Must be after mbstring as it depends on it >>>> ;extension=php_mysql.dll >>>> ;extension=php_mysqli.dll >>>> ;extension=php_oci8_12c.dll ; Use with Oracle Database 12c Instant Client >>>> ;extension=php_openssl.dll >>>> ;extension=php_pdo_firebird.dll >>>> ;extension=php_pdo_mysql.dll >>>> ;extension=php_pdo_oci.dll >>>> ;extension=php_pdo_odbc.dll >>>> ;extension=php_pdo_pgsql.dll >>>> >>>> extension=php_pdo_sqlite.dll >>>> >>>> ;extension=php_pgsql.dll >>>> ;extension=php_shmop.dll >>>> ;extension=php_soap.dll >>>> ;extension=php_sockets.dll >>>> >>>> extension=php_sqlite3.dll >>>> >>>> ;extension=php_sybase_ct.dll >>>> ;extension=php_tidy.dll >>>> ;extension=php_xmlrpc.dll >>>> ;extension=php_xsl.dll >>>> >>>> but nothing happens. I still get the same error in the first installer >>>> step. >>>> >>>> Thank you >>>> >>>> On Tue, Jul 10, 2018 at 2:07 PM, wrote: >>>>> Have you altered your php.ini to load the extensions and restart php-fpm? >>>>> On Jul 10, 2018 7:00 AM, Teno Deuter wrote: >>>>>> Dear list, >>>>>> >>>>>> in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall >>>>>> roundcubemail 1.3.5 from the OpenBSD packages repository. >>>>>> >>>>>> When running the installer, in the first page, I get following warnings: >>>>>> >>>>>> FileInfo: OK >>>>>> Libiconv: OK >>>>>> Intl: NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php) >>>>>> Exif: OK >>>>>> LDAP: NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php) >>>>>> GD: NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php) >>>>>> Imagick: NOT AVAILABLE(See >>>>>> http://www.php.net/manual/en/book.imagick.php) >>>>>> >>>>>> but pkg_info shows: >>>>>> >>>>>> php-gd-5.6.34 image manipulation extensions for php >>>>>> php-intl-5.6.34 intl library support for php >>>>>> >>>>>> and I think php-imagick is already part of the php OpenBSD package. >>>>>> >>>>>> Why do I get the above warnings? >>>>>> >>>>>> Also, in the second installation page I get the following: >>>>>> >>>>>> Mimetype to file extension mapping: NOT OK >>>>>> >>>>>> but in httpd.conf, on the top of the file, I have the following entry: >>>>>> >>>>>> types { include "/usr/share/misc/mime.types" } >>>>>> >>>>>> Thank you >>>>>> >
Re: roundcube installation php modules
actually I had to define the absolute path to the module. After doing this it did work! I still have the issue with Imagick though! There is no module for that in OpenBSD repository as it's already integrated in php - correct? In that case should I ignore that? Thank you On Tue, Jul 10, 2018 at 2:30 PM, Teno Deuter wrote: > sorry forgot to mention that after doing the below changes I did > restart the server! > > Thank you > > On Tue, Jul 10, 2018 at 2:29 PM, Teno Deuter wrote: >> here are my current extension settings in php-5.6.ini: >> >> ;extension=php_bz2.dll >> ;extension=php_curl.dll >> ;extension=php_fileinfo.dll >> >> extension=php_gd2.dll >> >> ;extension=php_gettext.dll >> ;extension=php_gmp.dll >> >> extension=php_intl.dll >> >> ;extension=php_imap.dll >> ;extension=php_interbase.dll >> ;extension=php_ldap.dll >> ;extension=php_mbstring.dll >> ;extension=php_exif.dll ; Must be after mbstring as it depends on it >> ;extension=php_mysql.dll >> ;extension=php_mysqli.dll >> ;extension=php_oci8_12c.dll ; Use with Oracle Database 12c Instant Client >> ;extension=php_openssl.dll >> ;extension=php_pdo_firebird.dll >> ;extension=php_pdo_mysql.dll >> ;extension=php_pdo_oci.dll >> ;extension=php_pdo_odbc.dll >> ;extension=php_pdo_pgsql.dll >> >> extension=php_pdo_sqlite.dll >> >> ;extension=php_pgsql.dll >> ;extension=php_shmop.dll >> ;extension=php_soap.dll >> ;extension=php_sockets.dll >> >> extension=php_sqlite3.dll >> >> ;extension=php_sybase_ct.dll >> ;extension=php_tidy.dll >> ;extension=php_xmlrpc.dll >> ;extension=php_xsl.dll >> >> but nothing happens. I still get the same error in the first installer step. >> >> Thank you >> >> On Tue, Jul 10, 2018 at 2:07 PM, wrote: >>> Have you altered your php.ini to load the extensions and restart php-fpm? >>> On Jul 10, 2018 7:00 AM, Teno Deuter wrote: >>>> >>>> Dear list, >>>> >>>> in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall >>>> roundcubemail 1.3.5 from the OpenBSD packages repository. >>>> >>>> When running the installer, in the first page, I get following warnings: >>>> >>>> FileInfo: OK >>>> Libiconv: OK >>>> Intl: NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php) >>>> Exif: OK >>>> LDAP: NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php) >>>> GD: NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php) >>>> Imagick: NOT AVAILABLE(See http://www.php.net/manual/en/book.imagick.php) >>>> >>>> but pkg_info shows: >>>> >>>> php-gd-5.6.34 image manipulation extensions for php >>>> php-intl-5.6.34 intl library support for php >>>> >>>> and I think php-imagick is already part of the php OpenBSD package. >>>> >>>> Why do I get the above warnings? >>>> >>>> Also, in the second installation page I get the following: >>>> >>>> Mimetype to file extension mapping: NOT OK >>>> >>>> but in httpd.conf, on the top of the file, I have the following entry: >>>> >>>> types { include "/usr/share/misc/mime.types" } >>>> >>>> Thank you >>>> >>>
Re: roundcube installation php modules
sorry forgot to mention that after doing the below changes I did restart the server! Thank you On Tue, Jul 10, 2018 at 2:29 PM, Teno Deuter wrote: > here are my current extension settings in php-5.6.ini: > > ;extension=php_bz2.dll > ;extension=php_curl.dll > ;extension=php_fileinfo.dll > > extension=php_gd2.dll > > ;extension=php_gettext.dll > ;extension=php_gmp.dll > > extension=php_intl.dll > > ;extension=php_imap.dll > ;extension=php_interbase.dll > ;extension=php_ldap.dll > ;extension=php_mbstring.dll > ;extension=php_exif.dll ; Must be after mbstring as it depends on it > ;extension=php_mysql.dll > ;extension=php_mysqli.dll > ;extension=php_oci8_12c.dll ; Use with Oracle Database 12c Instant Client > ;extension=php_openssl.dll > ;extension=php_pdo_firebird.dll > ;extension=php_pdo_mysql.dll > ;extension=php_pdo_oci.dll > ;extension=php_pdo_odbc.dll > ;extension=php_pdo_pgsql.dll > > extension=php_pdo_sqlite.dll > > ;extension=php_pgsql.dll > ;extension=php_shmop.dll > ;extension=php_soap.dll > ;extension=php_sockets.dll > > extension=php_sqlite3.dll > > ;extension=php_sybase_ct.dll > ;extension=php_tidy.dll > ;extension=php_xmlrpc.dll > ;extension=php_xsl.dll > > but nothing happens. I still get the same error in the first installer step. > > Thank you > > On Tue, Jul 10, 2018 at 2:07 PM, wrote: >> Have you altered your php.ini to load the extensions and restart php-fpm? >> On Jul 10, 2018 7:00 AM, Teno Deuter wrote: >>> >>> Dear list, >>> >>> in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall >>> roundcubemail 1.3.5 from the OpenBSD packages repository. >>> >>> When running the installer, in the first page, I get following warnings: >>> >>> FileInfo: OK >>> Libiconv: OK >>> Intl: NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php) >>> Exif: OK >>> LDAP: NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php) >>> GD: NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php) >>> Imagick: NOT AVAILABLE(See http://www.php.net/manual/en/book.imagick.php) >>> >>> but pkg_info shows: >>> >>> php-gd-5.6.34 image manipulation extensions for php >>> php-intl-5.6.34 intl library support for php >>> >>> and I think php-imagick is already part of the php OpenBSD package. >>> >>> Why do I get the above warnings? >>> >>> Also, in the second installation page I get the following: >>> >>> Mimetype to file extension mapping: NOT OK >>> >>> but in httpd.conf, on the top of the file, I have the following entry: >>> >>> types { include "/usr/share/misc/mime.types" } >>> >>> Thank you >>> >>
Re: roundcube installation php modules
here are my current extension settings in php-5.6.ini: ;extension=php_bz2.dll ;extension=php_curl.dll ;extension=php_fileinfo.dll extension=php_gd2.dll ;extension=php_gettext.dll ;extension=php_gmp.dll extension=php_intl.dll ;extension=php_imap.dll ;extension=php_interbase.dll ;extension=php_ldap.dll ;extension=php_mbstring.dll ;extension=php_exif.dll ; Must be after mbstring as it depends on it ;extension=php_mysql.dll ;extension=php_mysqli.dll ;extension=php_oci8_12c.dll ; Use with Oracle Database 12c Instant Client ;extension=php_openssl.dll ;extension=php_pdo_firebird.dll ;extension=php_pdo_mysql.dll ;extension=php_pdo_oci.dll ;extension=php_pdo_odbc.dll ;extension=php_pdo_pgsql.dll extension=php_pdo_sqlite.dll ;extension=php_pgsql.dll ;extension=php_shmop.dll ;extension=php_soap.dll ;extension=php_sockets.dll extension=php_sqlite3.dll ;extension=php_sybase_ct.dll ;extension=php_tidy.dll ;extension=php_xmlrpc.dll ;extension=php_xsl.dll but nothing happens. I still get the same error in the first installer step. Thank you On Tue, Jul 10, 2018 at 2:07 PM, wrote: > Have you altered your php.ini to load the extensions and restart php-fpm? > On Jul 10, 2018 7:00 AM, Teno Deuter wrote: >> >> Dear list, >> >> in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall >> roundcubemail 1.3.5 from the OpenBSD packages repository. >> >> When running the installer, in the first page, I get following warnings: >> >> FileInfo: OK >> Libiconv: OK >> Intl: NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php) >> Exif: OK >> LDAP: NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php) >> GD: NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php) >> Imagick: NOT AVAILABLE(See http://www.php.net/manual/en/book.imagick.php) >> >> but pkg_info shows: >> >> php-gd-5.6.34 image manipulation extensions for php >> php-intl-5.6.34 intl library support for php >> >> and I think php-imagick is already part of the php OpenBSD package. >> >> Why do I get the above warnings? >> >> Also, in the second installation page I get the following: >> >> Mimetype to file extension mapping: NOT OK >> >> but in httpd.conf, on the top of the file, I have the following entry: >> >> types { include "/usr/share/misc/mime.types" } >> >> Thank you >> >
roundcube installation php modules
Dear list, in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall roundcubemail 1.3.5 from the OpenBSD packages repository. When running the installer, in the first page, I get following warnings: FileInfo: OK Libiconv: OK Intl: NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php) Exif: OK LDAP: NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php) GD: NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php) Imagick: NOT AVAILABLE(See http://www.php.net/manual/en/book.imagick.php) but pkg_info shows: php-gd-5.6.34 image manipulation extensions for php php-intl-5.6.34 intl library support for php and I think php-imagick is already part of the php OpenBSD package. Why do I get the above warnings? Also, in the second installation page I get the following: Mimetype to file extension mapping: NOT OK but in httpd.conf, on the top of the file, I have the following entry: types { include "/usr/share/misc/mime.types" } Thank you
Re: httpd serving php [SOLVED]
you were so right! Thank you for pointing this out. On Fri, Jul 6, 2018 at 6:41 PM, wrote: > enable just enables it you need > rcctl start php56_fpm > On Jul 6, 2018 11:31 AM, Teno Deuter wrote: >> >> sorry, if you mean the following: >> >> rcctl enable php56_fpm >> >> then yes, I did it but I still get a 500 error! >> >> On Fri, Jul 6, 2018 at 6:07 PM, Daniel Corbe wrote: >> > at 11:40 AM, Teno Deuter wrote: >> > >> >> Dear support team, >> >> >> >> in a OpenBSD 6.3 installation with php packges added, I have the >> >> following httpd configuartion: >> >> >> >> server "domain" { >> >> listen on * tls port 443 >> >> listen on :: tls port 443 >> >> tls { >> >> certificate "/etc/ssl/private/server.pem" >> >> key "/etc/ssl/server.key" >> >> } >> >> >> >> directory index index.php >> >> >> >> location "/pub/*" { >> >> directory auto index >> >> } >> >> >> >> root "/htdocs/domain" >> >> >> >> location "*.php" { >> >> fastcgi socket "/run/php-fpm.sock" >> >> } >> >> } >> >> >> >> the above generates a 500 error! >> >> >> >> Also, no '/run/php-fpm.sock' exists! >> >> >> >> Thank you for your help >> > >> > >> > Did you start php-fpm? >> > >> > >>
Re: httpd serving php
sorry, if you mean the following: rcctl enable php56_fpm then yes, I did it but I still get a 500 error! On Fri, Jul 6, 2018 at 6:07 PM, Daniel Corbe wrote: > at 11:40 AM, Teno Deuter wrote: > >> Dear support team, >> >> in a OpenBSD 6.3 installation with php packges added, I have the >> following httpd configuartion: >> >> server "domain" { >> listen on * tls port 443 >> listen on :: tls port 443 >> tls { >> certificate "/etc/ssl/private/server.pem" >> key "/etc/ssl/server.key" >> } >> >> directory index index.php >> >> location "/pub/*" { >> directory auto index >> } >> >> root "/htdocs/domain" >> >> location "*.php" { >> fastcgi socket "/run/php-fpm.sock" >> } >> } >> >> the above generates a 500 error! >> >> Also, no '/run/php-fpm.sock' exists! >> >> Thank you for your help > > > Did you start php-fpm? > >
httpd serving php
Dear support team, in a OpenBSD 6.3 installation with php packges added, I have the following httpd configuartion: server "domain" { listen on * tls port 443 listen on :: tls port 443 tls { certificate "/etc/ssl/private/server.pem" key "/etc/ssl/server.key" } directory index index.php location "/pub/*" { directory auto index } root "/htdocs/domain" location "*.php" { fastcgi socket "/run/php-fpm.sock" } } the above generates a 500 error! Also, no '/run/php-fpm.sock' exists! Thank you for your help
Re: Building OpenBSD 6.0 -stable - Error
meaning I shall try at a later time? Thank you On Sat, Sep 3, 2016 at 12:40 PM, Ted Unangst wrote: > Teno Deuter wrote: >> installed a fresh 6.0 AMD64 and tried to build 'stable' from source. >> >> Here is what I did as 'root' (as described in: >> http://www.openbsd.org/stable.html): >> >> export CVSROOT=anon...@anoncvs1.ca.openbsd.org:/cvs >> cd /usr; cvs checkout -P -rOPENBSD_6_0 src > > there's some repo surgery in progress. it should be fixed eventually.
Building OpenBSD 6.0 -stable - Error
installed a fresh 6.0 AMD64 and tried to build 'stable' from source. Here is what I did as 'root' (as described in: http://www.openbsd.org/stable.html): export CVSROOT=anon...@anoncvs1.ca.openbsd.org:/cvs cd /usr; cvs checkout -P -rOPENBSD_6_0 src # cd /usr/src/sys/arch/$(uname -m)/conf # config GENERIC.MP # cd /usr/src/sys/arch/$(uname -m)/compile/GENERIC.MP # make clean && make # cd /usr/src/sys/arch/$(uname -m)/compile/GENERIC.MP # make install # reboot # rm -rf /usr/obj/* # cd /usr/src # make obj and I get following error message: ===> lib ===> lib/csu /usr/src/lib/csu/obj -> /usr/obj/lib/csu ===> lib/libarch ===> lib/libarch/alpha /usr/src/lib/libarch/alpha/obj -> /usr/obj/lib/libarch/alpha ===> lib/libarch/amd64 /usr/src/lib/libarch/amd64/obj -> /usr/obj/lib/libarch/amd64 ===> lib/libarch/arm /usr/src/lib/libarch/arm/obj -> /usr/obj/lib/libarch/arm ===> lib/libarch/i386 /usr/src/lib/libarch/i386/obj -> /usr/obj/lib/libarch/i386 ===> lib/libarch/mips64 /usr/src/lib/libarch/mips64/obj -> /usr/obj/lib/libarch/mips64 ===> lib/libc /usr/src/lib/libc/obj -> /usr/obj/lib/libc ===> lib/libcrypto make: don't know how to make obj Stop in lib/libcrypto *** Error 2 in lib (:48 'obj') *** Error 1 in /usr/src (:48 'obj') Thank you for your support.
Re: pureftpd virtual users TLS
Thank you for your valuable help. As this installation runs in a VirtualBox env and serves testing purposes, sources aren't retrieved yet. I think I have to get all the sources first and then apply that change? On Sat, Apr 9, 2016 at 2:26 AM, Edgar Pettijohn wrote: > On 04/07/16 16:06, Teno Deuter wrote: >> >> Hi, >> >> installed the chrooted version of pureftpd on a 5.9 AMD64 setting and face >> following issues: >> >> 1. >> TLS with system users works fine but not for the virtual ones! Only plain >> ftp! >> >> 2. >> seems that the service doesn't always refer to the 'pure-ftpd.conf'! To be >> more specific.I did define the path of 'pureftpd.pdb' in the configuration >> file but if I don't use the '-lpuredb' switch in the daemon flags doesn't >> find it. Also, uncommenting : >> >> AltLog w3c:/var/log/pureftpd.log >> >> doesn't have any effect either. That file never gets created! >> >> Thank you for your support. >> > I think its because support for virtual users isn't built in the port. This > patch should do what you need. > > Index: Makefile > === > RCS file: /cvs/ports/net/pure-ftpd/Makefile,v > retrieving revision 1.71 > diff -u -p -u -r1.71 Makefile > --- Makefile14 Oct 2015 10:01:55 -1.71 > +++ Makefile9 Apr 2016 00:17:16 - > @@ -28,7 +28,8 @@ CONFIGURE_ARGS+= --disable-pie \ > --with-everything \ > --with-paranoidmsg \ > --with-rfc2640 \ > - --with-tls > + --with-tls \ > + --with-puredb > > MODULES=converters/libiconv
Re: PKG_PATH - SOLVED
Thank you for that tip. On Fri, Apr 8, 2016 at 2:57 PM, Antoine Jacoutot wrote: > On Fri, Apr 08, 2016 at 09:16:13AM +0200, Peter Hessler wrote: >> On 2016 Apr 07 (Thu) at 22:56:42 +0200 (+0200), Teno Deuter wrote: >> :Hi, >> : >> :just installed a 5.9 AMD64 version and get issues with adding packages as a >> :regular system user. 'env' shows me the correct setting for PKG_PATH but >> :seems that the user environment isn't able to contact the source. >> : >> :As long as I change to 'root', everything works fine! >> : >> :Thank you for your support >> : >> >> You should put it into /etc/pkg.conf instead: >> >> """ >> installpath = http://ftp.hostserver.de/pub/OpenBSD/%c/packages/%a/ >> """ >> >> %c expands out into the version, and %a into the arch. > > I think nowadays you can do something like: > installpath = ftp.hostserver.de > > > -- > Antoine
Re: PKG_PATH - SOLVED
yes indeed. Thank you On Fri, Apr 8, 2016 at 12:03 AM, Antoine Jacoutot wrote: > On Thu, Apr 07, 2016 at 11:49:11PM +0200, Teno Deuter wrote: >> I run 'pkg_add' with 'doas' and I get only: >> >> Can't find [the package] I try to install. Doesn't say anything about >> 'root'. >> >> Also, why 'pkg_add' has to be run as root only? In previous OpenBSD version >> this wasn't the case. Is that due to 'doas'? > > doas resets the environment. > If you want to keep PKG_PATH then use something like this in doas.conf: > permit keepenv { PKG_PATH } nopass :wheel > > > -- > Antoine
Re: PKG_PATH
I run 'pkg_add' with 'doas' and I get only: Can't find [the package] I try to install. Doesn't say anything about 'root'. Also, why 'pkg_add' has to be run as root only? In previous OpenBSD version this wasn't the case. Is that due to 'doas'? Thank you On Thu, Apr 7, 2016 at 11:17 PM, Mihai Popescu wrote: > > just installed a 5.9 AMD64 version and get issues with adding packages > as a > > regular system user. 'env' shows me the correct setting for PKG_PATH but > > seems that the user environment isn't able to contact the source. > > "Get issues" is not a valid problem report. I am getting issues with > my stomach right now, but this will never tell you what is my problem. > Post the exact message(s) you get. > > You should get something like this: > > $ pkg_add -vn test > pkg_add should be run as root > Can't find test > > This is telling you what to do in order to fix that "issue". > > > As long as I change to 'root', everything works fine! > > Isn't it obvious? > > It may sound crazy, but OpenBSD does not allow any user to install > packages directly, much like Linux or Windows.
pureftpd virtual users TLS
Hi, installed the chrooted version of pureftpd on a 5.9 AMD64 setting and face following issues: 1. TLS with system users works fine but not for the virtual ones! Only plain ftp! 2. seems that the service doesn't always refer to the 'pure-ftpd.conf'! To be more specific.I did define the path of 'pureftpd.pdb' in the configuration file but if I don't use the '-lpuredb' switch in the daemon flags doesn't find it. Also, uncommenting : AltLog w3c:/var/log/pureftpd.log doesn't have any effect either. That file never gets created! Thank you for your support.
PKG_PATH
Hi, just installed a 5.9 AMD64 version and get issues with adding packages as a regular system user. 'env' shows me the correct setting for PKG_PATH but seems that the user environment isn't able to contact the source. As long as I change to 'root', everything works fine! Thank you for your support