Re: [Koha] Enabling SSL for Koha staff view
You could however, Use Name based Virtualhosts (like kohaapoc.yourlibrary.com and kohastaff.yourlibrary.com) and run both on port 443 for secure. To do this you'll either need two certificates (one for each domain) or a SAN shared certificate with both domain names in it. An example http.conf might look like (assuming the two certificate approach); ## OPAC Default Access VirtualHost 127.0.1.1:80 DocumentRoot /home/koha/kohaclone/koha-tmpl ServerName kohalibrary.halton.gov.uk . . . /VirtualHost ## OPAC Secure VirtualHost 127.0.1.1:443 DocumentRoot /home/koha/kohaclone/koha-tmpl ServerName kohalibrary.halton.gov.uk . . . # SSL Setup # CA Root and Intermediate Certificates SSLEngine On SSLCACertificatePath /etc/apache2/ssl/certs/ SSLCACertificateFile /etc/apache2/ssl/certs/gs_combined_ca.crt SSLCertificateFile /etc/apache2/ssl/certs/kohalibrary.crt SSLCertificateKeyFile /etc/apache2/ssl/certs/kohalibrary.key /VirtualHost ## Intranet Secure VirtualHost 109.75.173.120:443 DocumentRoot /home/koha/kohaclone/koha-tmpl ServerName kohastaff.halton.gov.uk . . . # SSL Setup # CA Root and Intermediate Certificates SSLEngine On SSLCACertificatePath /etc/apache2/ssl/certs/ SSLCACertificateFile /etc/apache2/ssl/certs/gs_combined_ca.crt SSLCertificateFile /etc/apache2/ssl/certs/kohastaff.crt SSLCertificateKeyFile /etc/apache2/ssl/certs/kohastaff.key /VirtualHost 2011/5/8 Mizst Audens mizs...@gmail.com No, it's not possible due to the limitation of the architecture. A port can serve only http or https but not both at the same time. The transparency of http/https in normal websites is due to the standardization of port 80 and 443. (port 80 runs http, and port 443 runs https, so each port only runs one type of connection) When you don't use these standard ports, you will need to specify the correct combination of protocol and port in order to reach a service. --Mizst On Sun, May 8, 2011 at 12:33 PM, Altaf Mahmud altaf.mah...@gmail.comwrote: Is it possible to use port 8080 for both purposes (HTTP and HTTPS)? Actually, I just wanted to secure port 8080, can I do that? Thanks a lot! On Sat, May 7, 2011 at 8:34 PM, Mizst Audens mizs...@gmail.com wrote: You must create another virtual host at another port (for example, 8081) for the staff area and enable SSL for that virtual host, and it will require another SSL certificate. Your staff will need to use (example) https://127.0.1.1:8081 if they want to use SSL, and http://127.0.1.1:8080 if they don't want to use SSL. Note that https://127.0.1.1 is in fact an alias for https://127.0.1.1:443. You already used 443 for the OPAC, so you'll need another port for the staff. --Mizst 2011/5/7 Altaf Mahmud altaf.mah...@gmail.com Hello, I'm trying to implement SSL in my Koha server running on Debian 6.0 (squeeze). I've implemented it for my OPAC view, I've created another file 'koha-ssl' in ../apache2/sites-available/ directory and enabled it. I've edited ../apache2/sites-available/koha like following: NameVirtualHost *:80 VirtualHost 127.0.1.1:80 . . /VirtualHost And ../apache2/sites-available/koha-ssl like following: NameVirtualHost *:443 VirtualHost 127.0.1.1:443 . SSLEngine On SSLCertificateFile/etc/ssl/certs/ssl-cert-snakeoil.pem SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key . /VirtualHost Now https://127.0.1.1/ is showing the OPAC. But I can't figure it out how to implement it for staff-view VirtualHost 127.0.1.1:8080 Request for port 80 is redirecting to port 443, how can I do that for port 8080? In fact, I don't have any prior idea on doing this; a descriptive suggestion is appropriate for me. Thanks. -- Altaf Mahmud System Programmer Ayesha Abed Library BRAC University Bangladesh. ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha -- Altaf Mahmud System Programmer Ayesha Abed Library BRAC University Bangladesh. ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha -- Martin Renvoize Software Developer, PTFS Europe Ltd Content Management and Library Solutions martin.renvo...@ptfs-europe.com skype: Martin Renvoize http://www.ptfs-europe.com ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Enabling SSL for Koha staff view
Direct from Apache.org SSL FAQ Why is it not possible to use Name-Based Virtual Hosting to identify different SSL virtual hosts? Name-Based Virtual Hosting is a very popular method of identifying different virtual hosts. It allows you to use the same IP address and the same port number for many different sites. When people move on to SSL, it seems natural to assume that the same method can be used to have lots of different SSL virtual hosts on the same server. It comes as rather a shock to learn that it is impossible. The reason is that the SSL protocol is a separate layer which encapsulates the HTTP protocol. So the SSL session is a separate transaction, that takes place before the HTTP session has begun. The server receives an SSL request on IP address X and port Y (usually 443). Since the SSL request does not contain any Host: field, the server has no way to decide which SSL virtual host to use. Usually, it will just use the first one it finds, which matches the port and IP address specified. You can, of course, use Name-Based Virtual Hosting to identify many non-SSL virtual hosts (all on port 80, for example) and then have a single SSL virtual host (on port 443). But if you do this, you must make sure to put the non-SSL port number on the NameVirtualHost directive, e.g. NameVirtualHost 192.168.1.1:80 Other workaround solutions include: Using separate IP addresses for different SSL hosts. Using different port numbers for different SSL hosts. Randy Rowe Lincoln City Libraries I.T. -Original Message- From: Martin Renvoize martin.renvo...@ptfs-europe.com Sent 5/13/2011 3:33:09 AM To: Mizst Audens mizs...@gmail.com Cc: koha@lists.katipo.co.nz Subject: Re: [Koha] Enabling SSL for Koha staff view You could however, Use Name based Virtualhosts (like kohaapoc.yourlibrary.com and kohastaff.yourlibrary.com) and run both on port 443 for secure. To do this you'll either need two certificates (one for each domain) or a SAN shared certificate with both domain names in it. An example http.conf might look like (assuming the two certificate approach); ## OPAC Default Access VirtualHost 127.0.1.1:80 DocumentRoot /home/koha/kohaclone/koha-tmpl ServerName kohalibrary.halton.gov.uk . . . /VirtualHost ## OPAC Secure VirtualHost 127.0.1.1:443 DocumentRoot /home/koha/kohaclone/koha-tmpl ServerName kohalibrary.halton.gov.uk . . . # SSL Setup # CA Root and Intermediate Certificates SSLEngine On SSLCACertificatePath /etc/apache2/ssl/certs/ SSLCACertificateFile /etc/apache2/ssl/certs/gs_combined_ca.crt SSLCertificateFile /etc/apache2/ssl/certs/kohalibrary.crt SSLCertificateKeyFile /etc/apache2/ssl/certs/kohalibrary.key /VirtualHost ## Intranet Secure VirtualHost 109.75.173.120:443 DocumentRoot /home/koha/kohaclone/koha-tmpl ServerName kohastaff.halton.gov.uk . . . # SSL Setup # CA Root and Intermediate Certificates SSLEngine On SSLCACertificatePath /etc/apache2/ssl/certs/ SSLCACertificateFile /etc/apache2/ssl/certs/gs_combined_ca.crt SSLCertificateFile /etc/apache2/ssl/certs/kohastaff.crt SSLCertificateKeyFile /etc/apache2/ssl/certs/kohastaff.key /VirtualHost 2011/5/8 Mizst Audens mizs...@gmail.com No, it's not possible due to the limitation of the architecture. A port can serve only http or https but not both at the same time. The transparency of http/https in normal websites is due to the standardization of port 80 and 443. (port 80 runs http, and port 443 runs https, so each port only runs one type of connection) When you don't use these standard ports, you will need to specify the correct combination of protocol and port in order to reach a service. --Mizst On Sun, May 8, 2011 at 12:33 PM, Altaf Mahmud altaf.mah...@gmail.com wrote: Is it possible to use port 8080 for both purposes (HTTP and HTTPS)? Actually, I just wanted to secure port 8080, can I do that? Thanks a lot! On Sat, May 7, 2011 at 8:34 PM, Mizst Audens mizs...@gmail.com wrote: You must create another virtual host at another port (for example, 8081) for the staff area and enable SSL for that virtual host, and it will require another SSL certificate. Your staff will need to use (example) https://127.0.1.1:8081 if they want to use SSL, and http://127.0.1.1:8080 if they don't want to use SSL. Note that https://127.0.1.1 is in fact an alias for https://127.0.1.1:443. You already used 443 for the OPAC, so you'll need another port for the staff. --Mizst 2011/5/7 Altaf Mahmud altaf.mah...@gmail.com Hello, I'm trying to implement SSL in my Koha server running on Debian 6.0 (squeeze). I've implemented it for my OPAC view, I've created another file 'koha-ssl' in ../apache2/sites-available/ directory and enabled it. I've edited ../apache2/sites-available/koha like following: NameVirtualHost *:80 VirtualHost 127.0.1.1:80 . .
[Koha] Koha's integration with OpenSSO
Hi all, Somebody had integrated Koha with OpenSSO? If yes, how? I read some posts about the integration with AD... Thanks in advance, -- Geovana de Paula Santos Tarricone ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Koha hardware interface
This is something I was thinking about too! Because I manage equipment through Koha (not just books) it would be amazing to place a camera kit on top of an RFID reader and let Koha scan all the contents in the kit making sure everything was there: camera, charger, USB cord, etc. If it comes up empty on an item, we look inside and double check if its actually there or missing. I noticed a few youtube videos of RFID and a Koha terminal interface a while back . . . But I feel it would be as simple as expanding the checkin/checkout field to bulk update. ex input all at once: barcode1 barcode1 barcode1 Walker On Friday, May 13, 2011 at 9:17 AM, aj...@maxenna.com wrote: Hi, I have recently installed Koha3.4 on Ubuntu. I would like to interface an RFID reader with Koha. More specifically when the user goes to Circulation - check out - and enter the patron details, there will be a place to Enter item barcode. The usual procedure is that the barcode scanner will fill in this value. But what we want to implement is an RFID reader instead of the barcode scanner. Each book will have a RFID tag. The patron will pick the books from the shelf and bring it and place some books on top of RFID reader which will read all the books at once, say for example 4-5 books at once. My doubt is how can I read this information into koha. Any suggestion please. On further thought, I was thinking on developing an application which would read the data from the RFID reader and update the MySQL database in the same way/format Koha would do. Would someone recommend doing it this way. If so how do I develop this application. Because I know C#.net and VB.net. But these can be used only for developing application on windows. How do I develop an application that will run on Ubuntu and suffice as an interface for Koha. Regards Ajesh ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Sudden problem with check in
Hello Lisa We had a similar problem for multi-branch libraries when we went to 3.00.06. We have not quite got to the bottom of it yet but - check that both location codes for the item are a match with your branch code. (item current location and permanent location) In our case sometimes the item current location was not the same or was blank, so the item needed to be edited. Then there is a preference HomeOrHoldingBranchReturn - check it seems to be set to the item location field that you want to control transfers. Hope this helps Agnes On 12/05/2011 11:25 AM, Peel Lisa wrote: Hello All of a sudden we are having a problem when checking in some items – we keep getting the message ‘this item needs to be transferred to IHCR. Transfer now?’ even when the item is being checked in at IHCR and the borrower also has the location IHCR. It is doing this sparodically (different patrons, different item types) and I can’t see any pattern so it is hard to duplicate, it seems to be happening (at the moment) only at one location. Any ideas? What does Circ use to determine location (I had assumed from the location chosen when logging in)? And why has it only just started to happen (been running Koha since last August). We are on 3.00.05 (hoping to upgrade very soon!!) Regards Lisa Description: Description: Description: CR_logo_POS_COULEUR b** ** ** *LISA PEEL, PGDip, MA.*** Librarian César Ritz Colleges Switzerland 1897 Le Bouveret - Switzerland Tel: +41 24 482 82 82 Fax: +41 24 482 82 80 E-mail: *lisa.p...@ritz.edu mailto:hortense.ho...@ritz.edu* http://www.ritz.edu http://www.ritz.edu/ - http://www.culinaryarts.ch http://www.culinaryarts.ch/ ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha -- CEO/ Chief Librarian Hanover Public Library. 451 10th Ave, Hanover, ON N4N 2P1 Tel: 519-364-1420 Email: a...@hanover.ca Please consider the environment before printing this message or attachments. Support your library! Please consider making a donation, joining the Friends of the Library, or remembering us in your will. ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Koha OPAC usage log
Thank you for the response. I am still hoping someone has done some work in this area, as dissecting Apache logs is probably beyond my skill. We already run SQL reports to count holds placed and filled - but I am not aware of a way to detect whether the hold was placed through the OPAC or by staff. Is there such a field in Koha's tables? If so, what is the field name? We do have Apache on RedHat - can anyone direct me to the directory where the Apache web logs would be, or tell me the filename to search for? Thank you Agnes On 11/05/2011 7:40 PM, Greg Barniskis wrote: On Wed, May 11, 2011 at 4:05 PM, Agnes Rivers-Moore a...@hanover.ca mailto:a...@hanover.ca wrote: Hello all Is there a way to extract usage statistics for the public catalogue of Koha? I would like to be able to make a report that would show daily numbers of main page access, number of searches, number of holds placed, number of renewals done by our patrons through the OPAC. Does anyone have a method for this? Is there a log file we could query to generate these number? Has anyone added a web page analytics thing to get this kind of usage information? We are on 3.00.06, moving to 3.2 soon. Thank you Agnes Hi Agnes, You may need to try a couple of different methods to get at the different kinds of information you're looking for. A statistic like how many times was the main page accessed? is probably best answered by looking at the log files for the web server and running them through software designed to analyze web server logs. So, Apache log files if your web server runs Apache (it probably does). Your web log may also have a lot to say about the kinds of searches being made. A statistic like number of holds might be better exposed through a SQL query, particularly if you wanted to combine that with questions like who placed holds? and on what?. Off the cuff, I don't know the syntax you'd need for any of that, but it might be in the community's SQL report wiki, found at http://wiki.koha-community.org/wiki/SQL_Reports_Library. In any case, a lot of useful things are there. If you come up with some clever new SQL query to get at your desired info, please contribute it there. Hope that helps, Greg -- CEO/ Chief Librarian Hanover Public Library. 451 10th Ave, Hanover, ON N4N 2P1 Tel: 519-364-1420 Email: a...@hanover.ca Please consider the environment before printing this message or attachments. Support your library! Please consider making a donation, joining the Friends of the Library, or remembering us in your will. ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] LibLive
Yes, this live-cd comes with Dsapce. If you want the Wubi installer that work for me I will send you. Saludos Adalid Ortiz Biblioteca Loyola http://www.tij.uia.mx UPS ! Hablas español JAJAJA... OK Subject: LibLive From: Hugo Agud ha...@orex.es Date: Fri, 13 May 2011 09:26:01 +0200 To: ada...@tij.uia.mx --0023547c895decf2e704a3233818 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Hi Adalib thank you very much for info, just one question is there any kind of integration between koha and dspace in this live CD? Once again thank you very much -- *Hugo Agud - Orex Digital * *www.orex.es* * * Director Avenida Sarriá 29 · 08029 Barcelona http://twitter.com/OrexDigital :http://orexsl.blogspot.comhugoaguda - Tel: 638 799 704 ha...@orex.es · http://www.orex.es/ No imprima este mensaje a no ser que sea necesario. Una tonelada de papel implica la tala de 15 árboles y el consumo de 250.000 litros de agua. Aviso de confidencialidad Este mensaje contiene información que puede ser CONFIDENCIAL y/o de USO RESTRINGIDO. Si usted no es el receptor deseado del mensaje (ni está autorizado a recibirlo por el remitente), no está autorizado a copiar, reenviar o divulgar el mensaje o su contenido. Si ha recibido este mensaje por error, por favor, notifíquenoslo inmediatamente y bórrelo de su sistema. --0023547c895decf2e704a3233818 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Hi Adalibdivbr/divdivthank you very much for info, just one question is there any kind of integration between koha and dspace in this live CD?/divdivbr/divdivOnce again thank you very muchbr clear=all br-- brspan style=font-family:Verdana, Arial, Helvetica, sans-serif;font-size:13px;border-collapse:collapsep style=margin-top:0pt;margin-right:0pt;margin-bottom:0pt;margin-left:0pt;font-family:tahoma, sans-serif;font-size:12px strongspan style=font-family:tahoma, arial, helvetica, sans-serif;font-size:smallfont color=#006600Hugo Agud - Orex Digital /font/span/strong/pp style=margin-top:0pt;margin-right:0pt;margin-bottom:0pt;margin-left:0pt;font-family:tahoma, sans-serif;font-size:12px strongspan style=font-family:tahoma, arial, helvetica, sans-serif;font-size:smallfont color=#006600a href=http://www.orex.es; target=_blankwww.orex.es/a/font/span/strong/pp style=margin-top:0pt;margin-right:0pt;margin-bottom:0pt;margin-left:0pt;font-family:tahoma, sans-serif;font-size:12px font color=#006600 face=tahoma, arial, helvetica, sans-serifspan style=font-size:smallbbr/b/span/font/pp style=margin-top:0pt;margin-right:0pt;margin-bottom:0pt;margin-left:0pt;font-family:tahoma, sans-serif font color=#006600 face=tahoma, arial, helvetica, sans-serif size=3span style=font-size:12pxspan style=border-collapse:separate;color:rgb(0, 0, 0);font-family:arial, sans-serif;font-size:13pxtable border=0 cellspacing=0 cellpadding=0 width=823 style=width:617.25pt tbodytrtd colspan=8 style=margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px;font-family:arial, sans-serif;padding-top:0cm;padding-right:0cm;padding-bottom:0cm;padding-left:0cmp style=margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px span style=font-size:8.5pt;color:rgb(153, 153, 153)Director/span/p/td/trtrtd colspan=8 style=margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px;font-family:arial, sans-serif;padding-top:0cm;padding-right:0cm;padding-bottom:0cm;padding-left:0cm /td/trtrtd colspan=8 style=margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px;font-family:arial, sans-serif;padding-top:0cm;padding-right:0cm;padding-bottom:0cm;padding-left:0cmp style=margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px span style=font-size:7.5pt;color:rgb(102, 102, 102)Avenida Sarriá 29 · 08029 Barcelona a href=http://twitter.com/OrexDigital; target=_blankimg src=http://www.orex.es/images/website/templateImages/originals/Logotwitter.jpg;/a img src=http://orex.gmt.brightpearl.com/images/website/templateImages/originals/skype.jpg; a href=http://orexsl.blogspot.com; target=_blankimg src=http://orex.gmt.brightpearl..com/images/website/templateImages/originals/miniblogspot.jpg;:/a hugoaguda - Tel: 638 799 704 font color=#669900a href=mailto:ha...@orex.es; target=_blankha...@orex.es/a/font · a href=http://www.orex.es/; style=color:rgb(42, 93, 176) target=_blankspan style=color:rgb(102, 153, 0)http://www.orex.es//span/a/span/p /td/trtrtd colspan=8 style=margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px;font-family:arial, sans-serif;padding-top:0cm;padding-right:0cm;padding-bottom:0cm;padding-left:0cmp style=margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px /p/td/trtrtd colspan=8 style=margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px;font-family:arial, sans-serif;padding-top:0cm;padding-right:0cm;padding-bottom:0cm;padding-left:0cmp
[Koha] Need a user friendly Koha users list
Dear Friends, It seems that users list of Koha is in complete. The reason is that Koha users feel difficult editing wiki pages. http://wiki.koha-community.org/wiki/Koha_Users_Worldwide We need a user friendly interface to enter the details of libraries using Koha. We can follow the model of Libwebcat of Marshal Breeding for new Koha users list, http://www.librarytechnology.org/libwebcats/ This information helpful for libraries they are like to implement Koha soon. Using the information, they can find Koha installed libraries in their own area and can evaluate its performance. Regards, -- Vimal Kumar V. Mahatma Gandhi University Library Kottayam, Kerala- 686 560 Web: http://www.vimalkumar.co.nr Blog: http://vimalkumar.oksociety.in http://linuxhalwa.blogspot.com --- I forget what I was taught. I only remember what I have learnt -Patrick White ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Enabling SSL for Koha staff view
Randall Rowe wrote: Direct from Apache.org SSL FAQ Yeah, sorry, that's out of date. With recent browsers and recent Apache modules you can have multiple SSL VirtualHosts on one IP. See https://sni.velox.ch/ for how it works and my last sig link if you'd like the co-op to get the SSLs and/or set it up for you... but this isn't really Koha's fault so is probably off-topic on this list! (And you can answer http on a https port... try http://www.software.coop:443 for proof. Not a good idea for security/safety though IMO.) Hope that informs, -- MJ Ray (slef), member of www.software.coop, a for-more-than-profit co-op. http://koha-community.org supporter, web and LMS developer, statistician. In My Opinion Only: see http://mjr.towers.org.uk/email.html Available for hire for Koha work http://www.software.coop/products/koha ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
[Koha] Error when saving Marc record
Hello, I keep getting the following error when I try to save an imported record. Please advise. Koha error The following fatal error has occurred:Tag "" is not a valid tag. at /usr/share/koha/lib/C4/Biblio.pm line 1542 Apache Server version: Apache/2.2.16 (Ubuntu) Server built: Nov 18 2010 21:17:29 Koha 3.00.00.107 Koha DB 3.107 MySQL mysql Ver 14.14 Distrib 5.1.49, for debian-linux-gnu (i686) using readline 6.1 OS Linux LibrarySrv 2.6.35-28-generic-pae #50-Ubuntu SMP Fri Mar 18 20:43:15 UTC 2011 i686 GNU/Linux Perl 5.010001 Thank you, Jennifer Olmedo Holy Family Catholic School Citrus Heights, CA ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Enabling SSL for Koha staff view
who knows perfection koha install?? 2011/5/13 Mizst Audens mizs...@gmail.com Your server returned a 400 Bad Request for the http on port 443. :-) But glad to hear that SNI is going to come standard now, at least in some distro. I think that information pertaining to Koha deployment should be considered relevant to the list, and in my opinion that includes some nuances of all the facilities that Koha requires for its operations and for the needs of the library, in this case adding security for the staff interface. Surely, anyone considering to add SSL to their Koha server is going to run into these issues. --Mizst On Sat, May 14, 2011 at 3:43 AM, MJ Ray m...@phonecoop.coop wrote: Randall Rowe wrote: Direct from Apache.org SSL FAQ Yeah, sorry, that's out of date. With recent browsers and recent Apache modules you can have multiple SSL VirtualHosts on one IP. See https://sni.velox.ch/ for how it works and my last sig link if you'd like the co-op to get the SSLs and/or set it up for you... but this isn't really Koha's fault so is probably off-topic on this list! (And you can answer http on a https port... try http://www.software.coop:443 for proof. Not a good idea for security/safety though IMO.) Hope that informs, -- MJ Ray (slef), member of www.software.coop, a for-more-than-profit co-op. http://koha-community.org supporter, web and LMS developer, statistician. In My Opinion Only: see http://mjr.towers.org.uk/email.html Available for hire for Koha work http://www.software.coop/products/koha ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha -- Atte. Nicolas Sepulveda C. Soporte Informatico / Sede Chillan Universidad Pedro de Valdivia Anexo 6217-6200 ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Enabling SSL for Koha staff view
Mizst Audens wrote: Your server returned a 400 Bad Request for the http on port 443. :-) Yes, it detected the http and served you html, did you notice? :-) Only an error message, but as I wrote: serving http seamlessly is probably a bad idea (easy to lose security by typo). But glad to hear that SNI is going to come standard now, at least in some distro. I think that information pertaining to Koha deployment should be considered relevant to the list, and in my opinion that includes some nuances of all the facilities that Koha requires for its operations and for the needs of the library, in this case adding security for the staff interface. Sorry, but I feel the list needs a limit. Configuring Apache HTTPD isn't specific to Koha, there is plenty of help available on more mainstream sites and the Koha list seems pretty busy with Koha questions already, without adding the setup of Apache, MySQL and GNU/Linux to it. Also, there are other ways to secure the staff interface without dealing with this, such as a VPN. Surely, anyone considering to add SSL to their Koha server is going to run into these issues. Surely not? I think most users run only one Koha. Regards, -- MJ Ray (slef), member of www.software.coop, a for-more-than-profit co-op. http://koha-community.org supporter, web and LMS developer, statistician. In My Opinion Only: see http://mjr.towers.org.uk/email.html Available for hire for Koha work http://www.software.coop/products/koha ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Koha hardware interface
Lori Bowen Ayre lori.a...@galecia.com I may be able to shake loose some funding for this. I'm pretty sure I could help you get an development partner (library) with RFID self-check and ISO 28560 compliant tags. Do you have a more format spec or RFC? I'm sure I've more info but it's 1am Saturday here now so I can't put my hand on it. It is ISO-28560 tags and we've got it working with TRF7960 (definitely) and MicroRWD (probably, needs retesting) USB pads using the usb-serial drivers on Linux and MacOS X. Having USB pads as well as a self-check is the tricky part to find. Thanks - it could be very helpful. I'll get an RFC up as soon as I can. Please add yourself as a cc to the bug? http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=2244 Thanks, -- MJ Ray (slef), member of www.software.coop, a for-more-than-profit co-op. Webmaster, Debian Developer, Past Koha RM, statistician, former lecturer. In My Opinion Only: see http://mjr.towers.org.uk/email.html Available for hire for various work through http://www.software.coop/ ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
Re: [Koha] Enabling SSL for Koha staff view
On Sat, May 14, 2011 at 7:06 AM, MJ Ray m...@phonecoop.coop wrote: Mizst Audens wrote: Your server returned a 400 Bad Request for the http on port 443. :-) Yes, it detected the http and served you html, did you notice? :-) Only an error message, but as I wrote: serving http seamlessly is probably a bad idea (easy to lose security by typo). Oh I thought that was a standard error message or something, since my server does the same thing without any configuration. And anyway I thought you were referring to serving a functioning page, not an error message. But glad to hear that SNI is going to come standard now, at least in some distro. I think that information pertaining to Koha deployment should be considered relevant to the list, and in my opinion that includes some nuances of all the facilities that Koha requires for its operations and for the needs of the library, in this case adding security for the staff interface. Sorry, but I feel the list needs a limit. Configuring Apache HTTPD isn't specific to Koha, there is plenty of help available on more mainstream sites and the Koha list seems pretty busy with Koha questions already, without adding the setup of Apache, MySQL and GNU/Linux to it. Also, there are other ways to secure the staff interface without dealing with this, such as a VPN. Yes, there needs to be some limit, but I think not having this in Koha list is counter productive. We at least need to be able to discuss the issues that Koha users can run into, or what kind of config is best when trying to run Koha, etc. Same thing with setting up mail for Koha and that sort of thing. All the posts stay in its own topic anyway. Sure, you can use VPN. And you can use SSL. So? Surely, anyone considering to add SSL to their Koha server is going to run into these issues. Surely not? I think most users run only one Koha. See TC's post. He was trying to add SSL to both OPAC and staff area. That makes it two virtualhosts, and he did run into a problem trying to get SSL to work. --Mizst Regards, -- MJ Ray (slef), member of www.software.coop, a for-more-than-profit co-op. http://koha-community.org supporter, web and LMS developer, statistician. In My Opinion Only: see http://mjr.towers.org.uk/email.html Available for hire for Koha work http://www.software.coop/products/koha ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha ___ Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz http://lists.katipo.co.nz/mailman/listinfo/koha
