setting up an email server in a recent version of OpenBSD

2021-09-27 Thread Teno Deuter 
Dear group,

anyone could point to some recent online resources how to setup an email
server in OpenBSD? What I found from Google was a bit thin. So I'm
wondering if I was missing something out there.

Thank you for your support

Re: ACME client doesn't renew certificate (6.9-beta) - SOLVED

2021-02-16 Thread Teno Deuter 
Thank you very much for this in-depth explanation. Appreciate your kind and
valuable reply.

I just noticed that restarting the httpd server is included in the examples
section of the acme-client man page too!

https://man.openbsd.org/acme-client.1

Unfortunately didn't pay the necessary attention up to now :(

Thank you


On Tue, Feb 16, 2021 at 8:21 PM Janne Johansson  wrote:

> Den tis 16 feb. 2021 kl 18:50 skrev Teno Deuter :
>
>> after "rcctl reload httpd" everything works well. Thank you very much.
>>
>> I'm running this configuration since early 6.8 and I don't think that I
>> was
>> restarting the server! That's why I got now surprised.
>>
>
> All TLS-services that chroot do so in order to make the serving part not
> be able to affect (or read) the secret keys when they are running.
>
> https(8) on openbsd is very much like that. You do not want a
> misconfiguration to suddenly make httpd serve the key-file over the web.
>
> This in turn means, that if you replace the key file on disk, the running
> httpd will not be able to read the new key, and hence not be able to start
> using it,
> which is why you need to make a full restart for it to be able to read the
> key at startup, then drop privileges and lock itself into a chroot so it no
> longer
> can read this (and other!) key material.
>
> The script that does the renewals with acme should check if the cert was
> renewed and restart httpd if so.
> If you look closely at the manpage, you will see that the return code from
> running acme-client is made so
> that you can see if it renewed the cert or not, and can easily base script
> decisions on it.
>
> --
> May the most significant bit of your life be positive.
>

Re: ACME client doesn't renew certificate (6.9-beta) - SOLVED

2021-02-16 Thread Teno Deuter 
after "rcctl reload httpd" everything works well. Thank you very much.

I'm running this configuration since early 6.8 and I don't think that I was
restarting the server! That's why I got now surprised.

On Tue, Feb 16, 2021 at 7:32 PM Jean-Pierre de Villiers <
jeanpie...@jeanpierredevilliers.xyz> wrote:

> I'm going to assume your acme-client configuration is in order and that
> you are using httpd as your web server.
>
> Did you not perhaps forget to reload httpd via rcctl after renewing your
> certificate?  Otherwise, I suspect you're going to have to give us more
> context.
>
> Regards,
> Jean-Pierre
>
> On 21/02/16 06:47pm, Teno Deuter wrote:
> > OpenBSD 6.9-beta (GENERIC) #328: Mon Feb 15 10:31:18 MST 2021
> >
> > I run:
> >
> > # acme-client -vF <>.com
> > acme-client: /etc/ssl/<>.com.crt: certificate valid: 89 days
> left
> > acme-client: /etc/ssl/<>.com.crt: forcing renewal
> > acme-client: https://acme-v02.api.letsencrypt.org/directory: directories
> > acme-client: acme-v02.api.letsencrypt.org: DNS: 172.65.32.248
> > acme-client:
> > https://acme-v02.api.letsencrypt.org/acme/finalize/86925799/7946011420:
> > certificate
> > acme-client: order.status 3
> > acme-client:
> >
> https://acme-v02.api.letsencrypt.org/acme/cert/045439171e7c06c448e2584a12e832150e60
> :
> > certificate
> > acme-client: /etc/ssl/<>.com.crt: created
> > acme-client: /etc/ssl/<>.com.fullchain.pem: created
> >
> > but when I access it in Firefox I get a warnung because:
> >
> > Let's Encrypt
> > Validity
> > Not Before 11/1/2020, 9:25:02 PM (Eastern European Standard Time)
> > Not After 1/30/2021, 9:25:02 PM (Eastern European Standard Time)
> >
> > Thank you
>
>

ACME client doesn't renew certificate (6.9-beta)

2021-02-16 Thread Teno Deuter 
OpenBSD 6.9-beta (GENERIC) #328: Mon Feb 15 10:31:18 MST 2021

I run:

# acme-client -vF <>.com
acme-client: /etc/ssl/<>.com.crt: certificate valid: 89 days left
acme-client: /etc/ssl/<>.com.crt: forcing renewal
acme-client: https://acme-v02.api.letsencrypt.org/directory: directories
acme-client: acme-v02.api.letsencrypt.org: DNS: 172.65.32.248
acme-client:
https://acme-v02.api.letsencrypt.org/acme/finalize/86925799/7946011420:
certificate
acme-client: order.status 3
acme-client:
https://acme-v02.api.letsencrypt.org/acme/cert/045439171e7c06c448e2584a12e832150e60:
certificate
acme-client: /etc/ssl/<>.com.crt: created
acme-client: /etc/ssl/<>.com.fullchain.pem: created

but when I access it in Firefox I get a warnung because:

Let's Encrypt
Validity
Not Before 11/1/2020, 9:25:02 PM (Eastern European Standard Time)
Not After 1/30/2021, 9:25:02 PM (Eastern European Standard Time)

Thank you

Re: Encrypted notepad software suggestions

2020-10-11 Thread Teno Deuter 
https://tiddlywiki.com/

this can be very handy and you can store and encrypt a whole bunch of data
(not only passwords)  in a single html file.

On Tue, Sep 29, 2020 at 5:28 PM bijan  wrote:

> On 9/28/20 11:12 PM, Jacqueline Jolicoeur wrote:
> >> Simply Text File encryption is suitable too to hide some info from
> plain text files I have.
> >
> > You can encrypt text files simply using tools in the base system.
> >
> > EXAMPLES
> >
> > Edit, encrypt, and erase:
> >
> > $ vi file.txt
> > $ openssl aes-256-cbc -a -iter 10 -in file.txt -out file.txt.enc
> > $ rm -P file.txt
> >
> > Restore, and edit:
> >
> > $ openssl aes-256-cbc -d -a -iter 10 -in file.txt.enc -out file.txt
> > $ vi file.txt
> >
> > SEE ALSO
> >   openssl(1), rm(1)
> >
>
> Hmmm, very interesting idea.
>
> It is also possible to invoke external commands on vi(1) buffer and
> replace the content by it's output.
>
> For example:
>
> $ vi
> # Write a few words or so
> # To encrypt, run
> :%!openssl aes-256-cbc -e -a -iter 10 -pass 'pass:123'
> # To decrypt, run
> :%!openssl aes-256-cbc -d -a -iter 10 -pass 'pass:123'
>
> although I coundn't find a workaround for entering the password from
> standard input, It should be doable, I guess.
>
>

VPN, configuring an IKEv2 server

2020-06-09 Thread Teno Deuter 
Dear group,

try to configure on an 6.7 installation a IKEv2 VPN server to be accessed
by linux and android clients but got completely lost. I don't even know how
to debug it!

Here is my iked-dv output:

ikev2 "vpn" passive tunnel esp inet6 from 0.0.0.0/0 to 0.0.0.0/0 from ::/0
to ::/0 local  peer any ikesa enc aes-256 prf hmac-sha2-256
auth hmac-sha2-256 group modp2048 childsa enc aes-256 auth hmac-sha2-256
group modp2048 esn,noesn srcid name1.name2.name3 lifetime 10800 bytes
536870912 signature config address 172.24.24.0 config address
2001:470:203a:a0:: config name-server 172.24.24.1 config name-server  tag "$name-$id"

I don't get it why my public IP4 doesn't show up!

Thank you for your help

Re: acme client failing [SOLVED]

2020-05-23 Thread Teno Deuter 
On Sat, May 23, 2020 at 8:22 PM Stuart Henderson 
wrote:
>
> On 2020-05-23, Teno Deuter  wrote:
> > acme-client: challenge, token:  , status: 2
> > acme-client: dochngreq:
> > https://acme-v02.api.letsencrypt.org/acme/authz-v3/4766326725
> > acme-client: challenge, token: ... , status: 0
> > acme-client: /var/www/acme/...: created
> > acme-client:
https://acme-v02.api.letsencrypt.org/acme/chall-v3/4766326725/TzAk5w:
> > challenge
> > acme-client: order.status -1
> > acme-client: bad exit: netproc(62115): 1
> >
> > Thank you for your kind help
> >
> >
>
> https://acme-v02.api.letsencrypt.org/acme/authz-v3/4766326725 shows an
> error from letsencrypt:
>
> "DNS problem: NXDOMAIN looking up A for www.jpcode.org - check that a
> DNS record exists for this domain"
>

Thank you for your swift response. I didn't know how to debug the
acme-client output.

Correct. I forgot to update the DNS records. Now everything works well.

acme client failing

2020-05-23 Thread Teno Deuter 
I have following configuration:

OpenBSD amd64 6.7

acme-client.conf:

authority letsencrypt {
api url "https://acme-v02.api.letsencrypt.org/directory;
account key "/etc/acme/letsencrypt-privkey.pem"
}

authority letsencrypt-staging {
api url "https://acme-staging-v02.api.letsencrypt.org/directory;
account key "/etc/acme/letsencrypt-staging-privkey.pem"
}

domain myserver.com {
alternative names { www.myserver.com, mail.myserver.com }
domain key "/etc/ssl/private/myserver.com.key"
domain certificate "/etc/ssl/myserver.com.crt"
domain full chain certificate "/etc/ssl/myserver.com.fullchain.pem"
sign with letsencrypt
}

httpd.conf:

server "myserver.com" {
listen on * port 80
location "/.well-known/acme-challenge/*" {
root "/acme"
request strip 2
}
location * {
block return 302 "https://$HTTP_HOST$REQUEST_URI;
}
}

server "myserver.com" {
listen on * tls port 443
tls {
certificate "/etc/ssl/myserver.com.fullchain.pem"
key "/etc/ssl/private/myserver.com.key"
}
location "/pub/*" {
directory auto index
}
location "/.well-known/acme-challenge/*" {
root "/acme"
request strip 2
}
}

when running acme-client as root, I get the following:

acme-client -vF myserver.com
acme-client: https://acme-v02.api.letsencrypt.org/directory: directories
acme-client: acme-v02.api.letsencrypt.org: DNS: 172.65.32.248
acme-client: dochngreq: ...
acme-client: challenge, token: ... status: 2
acme-client: dochngreq: 
acme-client: challenge, token:  , status: 2
acme-client: dochngreq:
https://acme-v02.api.letsencrypt.org/acme/authz-v3/4766326725
acme-client: challenge, token: ... , status: 0
acme-client: /var/www/acme/...: created
acme-client: 
https://acme-v02.api.letsencrypt.org/acme/chall-v3/4766326725/TzAk5w:
challenge
acme-client: order.status -1
acme-client: bad exit: netproc(62115): 1

Thank you for your kind help

Re: roundcube installation php modules

2018-07-11 Thread Teno Deuter 
here is an example:

;extension=php_bz2.dll
;extension=php_curl.dll
;extension=php_fileinfo.dll
;extension=php_gd2.dll
extension=/usr/local/lib/php-5.6/modules/gd.so
;extension=php_gettext.dll
;extension=php_gmp.dll
;extension=php_intl.dll
extension=/usr/local/lib/php-5.6/modules/intl.so
;extension=php_imap.dll
;extension=php_interbase.dll
;extension=php_ldap.dll
extension=/usr/local/lib/php-5.6/modules/ldap.so
;extension=php_mbstring.dll
;extension=php_exif.dll  ; Must be after mbstring as it depends on it
;extension=php_mysql.dll
;extension=php_mysqli.dll

On Tue, Jul 10, 2018 at 4:19 PM, Danny AwesomeRetro
 wrote:
> Could you give me an example of defining absolute path to the module?
>
> Cheers,
>
> Danny
>
>
> On 07/10/2018 03:07 PM, Teno Deuter wrote:
>> actually I had to define the absolute path to the module. After doing
>> this it did work!
>>
>> I still have the issue with Imagick though! There is no module for
>> that in OpenBSD repository as it's already integrated in php -
>> correct? In that case should I ignore that?
>>
>> Thank you
>>
>> On Tue, Jul 10, 2018 at 2:30 PM, Teno Deuter  wrote:
>>> sorry forgot to mention that after doing the below changes I did
>>> restart the server!
>>>
>>> Thank you
>>>
>>> On Tue, Jul 10, 2018 at 2:29 PM, Teno Deuter  wrote:
>>>> here are my current extension settings in php-5.6.ini:
>>>>
>>>> ;extension=php_bz2.dll
>>>> ;extension=php_curl.dll
>>>> ;extension=php_fileinfo.dll
>>>>
>>>> extension=php_gd2.dll
>>>>
>>>> ;extension=php_gettext.dll
>>>> ;extension=php_gmp.dll
>>>>
>>>> extension=php_intl.dll
>>>>
>>>> ;extension=php_imap.dll
>>>> ;extension=php_interbase.dll
>>>> ;extension=php_ldap.dll
>>>> ;extension=php_mbstring.dll
>>>> ;extension=php_exif.dll  ; Must be after mbstring as it depends on it
>>>> ;extension=php_mysql.dll
>>>> ;extension=php_mysqli.dll
>>>> ;extension=php_oci8_12c.dll  ; Use with Oracle Database 12c Instant Client
>>>> ;extension=php_openssl.dll
>>>> ;extension=php_pdo_firebird.dll
>>>> ;extension=php_pdo_mysql.dll
>>>> ;extension=php_pdo_oci.dll
>>>> ;extension=php_pdo_odbc.dll
>>>> ;extension=php_pdo_pgsql.dll
>>>>
>>>> extension=php_pdo_sqlite.dll
>>>>
>>>> ;extension=php_pgsql.dll
>>>> ;extension=php_shmop.dll
>>>> ;extension=php_soap.dll
>>>> ;extension=php_sockets.dll
>>>>
>>>> extension=php_sqlite3.dll
>>>>
>>>> ;extension=php_sybase_ct.dll
>>>> ;extension=php_tidy.dll
>>>> ;extension=php_xmlrpc.dll
>>>> ;extension=php_xsl.dll
>>>>
>>>> but nothing happens. I still get the same error in the first installer 
>>>> step.
>>>>
>>>> Thank you
>>>>
>>>> On Tue, Jul 10, 2018 at 2:07 PM,   wrote:
>>>>> Have you altered your php.ini to load the extensions and restart php-fpm?
>>>>> On Jul 10, 2018 7:00 AM, Teno Deuter  wrote:
>>>>>> Dear list,
>>>>>>
>>>>>> in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall
>>>>>> roundcubemail 1.3.5 from the OpenBSD packages repository.
>>>>>>
>>>>>> When running the installer, in the first page, I get following warnings:
>>>>>>
>>>>>> FileInfo:  OK
>>>>>> Libiconv:  OK
>>>>>> Intl:  NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php)
>>>>>> Exif:  OK
>>>>>> LDAP:  NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php)
>>>>>> GD:  NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php)
>>>>>> Imagick:  NOT AVAILABLE(See 
>>>>>> http://www.php.net/manual/en/book.imagick.php)
>>>>>>
>>>>>> but pkg_info shows:
>>>>>>
>>>>>> php-gd-5.6.34   image manipulation extensions for php
>>>>>> php-intl-5.6.34 intl library support for php
>>>>>>
>>>>>> and I think php-imagick is already part of the php OpenBSD package.
>>>>>>
>>>>>> Why do I get the above warnings?
>>>>>>
>>>>>> Also, in the second installation page I get the following:
>>>>>>
>>>>>> Mimetype to file extension mapping:  NOT OK
>>>>>>
>>>>>> but in httpd.conf, on the top of the file, I have the following entry:
>>>>>>
>>>>>> types { include "/usr/share/misc/mime.types" }
>>>>>>
>>>>>> Thank you
>>>>>>
>

Re: roundcube installation php modules

2018-07-10 Thread Teno Deuter 
actually I had to define the absolute path to the module. After doing
this it did work!

I still have the issue with Imagick though! There is no module for
that in OpenBSD repository as it's already integrated in php -
correct? In that case should I ignore that?

Thank you

On Tue, Jul 10, 2018 at 2:30 PM, Teno Deuter  wrote:
> sorry forgot to mention that after doing the below changes I did
> restart the server!
>
> Thank you
>
> On Tue, Jul 10, 2018 at 2:29 PM, Teno Deuter  wrote:
>> here are my current extension settings in php-5.6.ini:
>>
>> ;extension=php_bz2.dll
>> ;extension=php_curl.dll
>> ;extension=php_fileinfo.dll
>>
>> extension=php_gd2.dll
>>
>> ;extension=php_gettext.dll
>> ;extension=php_gmp.dll
>>
>> extension=php_intl.dll
>>
>> ;extension=php_imap.dll
>> ;extension=php_interbase.dll
>> ;extension=php_ldap.dll
>> ;extension=php_mbstring.dll
>> ;extension=php_exif.dll  ; Must be after mbstring as it depends on it
>> ;extension=php_mysql.dll
>> ;extension=php_mysqli.dll
>> ;extension=php_oci8_12c.dll  ; Use with Oracle Database 12c Instant Client
>> ;extension=php_openssl.dll
>> ;extension=php_pdo_firebird.dll
>> ;extension=php_pdo_mysql.dll
>> ;extension=php_pdo_oci.dll
>> ;extension=php_pdo_odbc.dll
>> ;extension=php_pdo_pgsql.dll
>>
>> extension=php_pdo_sqlite.dll
>>
>> ;extension=php_pgsql.dll
>> ;extension=php_shmop.dll
>> ;extension=php_soap.dll
>> ;extension=php_sockets.dll
>>
>> extension=php_sqlite3.dll
>>
>> ;extension=php_sybase_ct.dll
>> ;extension=php_tidy.dll
>> ;extension=php_xmlrpc.dll
>> ;extension=php_xsl.dll
>>
>> but nothing happens. I still get the same error in the first installer step.
>>
>> Thank you
>>
>> On Tue, Jul 10, 2018 at 2:07 PM,   wrote:
>>> Have you altered your php.ini to load the extensions and restart php-fpm?
>>> On Jul 10, 2018 7:00 AM, Teno Deuter  wrote:
>>>>
>>>> Dear list,
>>>>
>>>> in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall
>>>> roundcubemail 1.3.5 from the OpenBSD packages repository.
>>>>
>>>> When running the installer, in the first page, I get following warnings:
>>>>
>>>> FileInfo:  OK
>>>> Libiconv:  OK
>>>> Intl:  NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php)
>>>> Exif:  OK
>>>> LDAP:  NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php)
>>>> GD:  NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php)
>>>> Imagick:  NOT AVAILABLE(See http://www.php.net/manual/en/book.imagick.php)
>>>>
>>>> but pkg_info shows:
>>>>
>>>> php-gd-5.6.34   image manipulation extensions for php
>>>> php-intl-5.6.34 intl library support for php
>>>>
>>>> and I think php-imagick is already part of the php OpenBSD package.
>>>>
>>>> Why do I get the above warnings?
>>>>
>>>> Also, in the second installation page I get the following:
>>>>
>>>> Mimetype to file extension mapping:  NOT OK
>>>>
>>>> but in httpd.conf, on the top of the file, I have the following entry:
>>>>
>>>> types { include "/usr/share/misc/mime.types" }
>>>>
>>>> Thank you
>>>>
>>>

Re: roundcube installation php modules

2018-07-10 Thread Teno Deuter 
sorry forgot to mention that after doing the below changes I did
restart the server!

Thank you

On Tue, Jul 10, 2018 at 2:29 PM, Teno Deuter  wrote:
> here are my current extension settings in php-5.6.ini:
>
> ;extension=php_bz2.dll
> ;extension=php_curl.dll
> ;extension=php_fileinfo.dll
>
> extension=php_gd2.dll
>
> ;extension=php_gettext.dll
> ;extension=php_gmp.dll
>
> extension=php_intl.dll
>
> ;extension=php_imap.dll
> ;extension=php_interbase.dll
> ;extension=php_ldap.dll
> ;extension=php_mbstring.dll
> ;extension=php_exif.dll  ; Must be after mbstring as it depends on it
> ;extension=php_mysql.dll
> ;extension=php_mysqli.dll
> ;extension=php_oci8_12c.dll  ; Use with Oracle Database 12c Instant Client
> ;extension=php_openssl.dll
> ;extension=php_pdo_firebird.dll
> ;extension=php_pdo_mysql.dll
> ;extension=php_pdo_oci.dll
> ;extension=php_pdo_odbc.dll
> ;extension=php_pdo_pgsql.dll
>
> extension=php_pdo_sqlite.dll
>
> ;extension=php_pgsql.dll
> ;extension=php_shmop.dll
> ;extension=php_soap.dll
> ;extension=php_sockets.dll
>
> extension=php_sqlite3.dll
>
> ;extension=php_sybase_ct.dll
> ;extension=php_tidy.dll
> ;extension=php_xmlrpc.dll
> ;extension=php_xsl.dll
>
> but nothing happens. I still get the same error in the first installer step.
>
> Thank you
>
> On Tue, Jul 10, 2018 at 2:07 PM,   wrote:
>> Have you altered your php.ini to load the extensions and restart php-fpm?
>> On Jul 10, 2018 7:00 AM, Teno Deuter  wrote:
>>>
>>> Dear list,
>>>
>>> in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall
>>> roundcubemail 1.3.5 from the OpenBSD packages repository.
>>>
>>> When running the installer, in the first page, I get following warnings:
>>>
>>> FileInfo:  OK
>>> Libiconv:  OK
>>> Intl:  NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php)
>>> Exif:  OK
>>> LDAP:  NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php)
>>> GD:  NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php)
>>> Imagick:  NOT AVAILABLE(See http://www.php.net/manual/en/book.imagick.php)
>>>
>>> but pkg_info shows:
>>>
>>> php-gd-5.6.34   image manipulation extensions for php
>>> php-intl-5.6.34 intl library support for php
>>>
>>> and I think php-imagick is already part of the php OpenBSD package.
>>>
>>> Why do I get the above warnings?
>>>
>>> Also, in the second installation page I get the following:
>>>
>>> Mimetype to file extension mapping:  NOT OK
>>>
>>> but in httpd.conf, on the top of the file, I have the following entry:
>>>
>>> types { include "/usr/share/misc/mime.types" }
>>>
>>> Thank you
>>>
>>

Re: roundcube installation php modules

2018-07-10 Thread Teno Deuter 
here are my current extension settings in php-5.6.ini:

;extension=php_bz2.dll
;extension=php_curl.dll
;extension=php_fileinfo.dll

extension=php_gd2.dll

;extension=php_gettext.dll
;extension=php_gmp.dll

extension=php_intl.dll

;extension=php_imap.dll
;extension=php_interbase.dll
;extension=php_ldap.dll
;extension=php_mbstring.dll
;extension=php_exif.dll  ; Must be after mbstring as it depends on it
;extension=php_mysql.dll
;extension=php_mysqli.dll
;extension=php_oci8_12c.dll  ; Use with Oracle Database 12c Instant Client
;extension=php_openssl.dll
;extension=php_pdo_firebird.dll
;extension=php_pdo_mysql.dll
;extension=php_pdo_oci.dll
;extension=php_pdo_odbc.dll
;extension=php_pdo_pgsql.dll

extension=php_pdo_sqlite.dll

;extension=php_pgsql.dll
;extension=php_shmop.dll
;extension=php_soap.dll
;extension=php_sockets.dll

extension=php_sqlite3.dll

;extension=php_sybase_ct.dll
;extension=php_tidy.dll
;extension=php_xmlrpc.dll
;extension=php_xsl.dll

but nothing happens. I still get the same error in the first installer step.

Thank you

On Tue, Jul 10, 2018 at 2:07 PM,   wrote:
> Have you altered your php.ini to load the extensions and restart php-fpm?
> On Jul 10, 2018 7:00 AM, Teno Deuter  wrote:
>>
>> Dear list,
>>
>> in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall
>> roundcubemail 1.3.5 from the OpenBSD packages repository.
>>
>> When running the installer, in the first page, I get following warnings:
>>
>> FileInfo:  OK
>> Libiconv:  OK
>> Intl:  NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php)
>> Exif:  OK
>> LDAP:  NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php)
>> GD:  NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php)
>> Imagick:  NOT AVAILABLE(See http://www.php.net/manual/en/book.imagick.php)
>>
>> but pkg_info shows:
>>
>> php-gd-5.6.34   image manipulation extensions for php
>> php-intl-5.6.34 intl library support for php
>>
>> and I think php-imagick is already part of the php OpenBSD package.
>>
>> Why do I get the above warnings?
>>
>> Also, in the second installation page I get the following:
>>
>> Mimetype to file extension mapping:  NOT OK
>>
>> but in httpd.conf, on the top of the file, I have the following entry:
>>
>> types { include "/usr/share/misc/mime.types" }
>>
>> Thank you
>>
>

roundcube installation php modules

2018-07-10 Thread Teno Deuter 
Dear list,

in a OpenBSD 6.3 machine I run httpd and opensmptd and try to intall
roundcubemail 1.3.5 from the OpenBSD packages repository.

When running the installer, in the first page, I get following warnings:

FileInfo:  OK
Libiconv:  OK
Intl:  NOT AVAILABLE(See http://www.php.net/manual/en/book.intl.php)
Exif:  OK
LDAP:  NOT AVAILABLE(See http://www.php.net/manual/en/book.ldap.php)
GD:  NOT AVAILABLE(See http://www.php.net/manual/en/book.image.php)
Imagick:  NOT AVAILABLE(See http://www.php.net/manual/en/book.imagick.php)

but pkg_info shows:

php-gd-5.6.34   image manipulation extensions for php
php-intl-5.6.34 intl library support for php

and I think php-imagick is already part of the php OpenBSD package.

Why do I get the above warnings?

Also, in the second installation page I get the following:

Mimetype to file extension mapping:  NOT OK

but in httpd.conf, on the top of the file, I have the following entry:

types { include "/usr/share/misc/mime.types" }

Thank you

Re: httpd serving php [SOLVED]

2018-07-06 Thread Teno Deuter 
you were so right!

Thank you for pointing this out.

On Fri, Jul 6, 2018 at 6:41 PM,   wrote:
> enable just enables it you need
> rcctl start php56_fpm
> On Jul 6, 2018 11:31 AM, Teno Deuter  wrote:
>>
>> sorry, if you mean the following:
>>
>> rcctl enable php56_fpm
>>
>> then yes, I did it but I still get a 500 error!
>>
>> On Fri, Jul 6, 2018 at 6:07 PM, Daniel Corbe  wrote:
>> > at 11:40 AM, Teno Deuter  wrote:
>> >
>> >> Dear support team,
>> >>
>> >> in a OpenBSD 6.3 installation with php packges added, I have the
>> >> following httpd configuartion:
>> >>
>> >> server "domain" {
>> >> listen on * tls port 443
>> >> listen on :: tls port 443
>> >> tls {
>> >> certificate "/etc/ssl/private/server.pem"
>> >> key "/etc/ssl/server.key"
>> >> }
>> >>
>> >> directory index index.php
>> >>
>> >> location "/pub/*" {
>> >> directory auto index
>> >> }
>> >>
>> >> root "/htdocs/domain"
>> >>
>> >> location "*.php" {
>> >> fastcgi socket "/run/php-fpm.sock"
>> >> }
>> >> }
>> >>
>> >> the above generates a 500 error!
>> >>
>> >> Also, no '/run/php-fpm.sock' exists!
>> >>
>> >> Thank you for your help
>> >
>> >
>> > Did you start php-fpm?
>> >
>> >
>>

Re: httpd serving php

2018-07-06 Thread Teno Deuter 
sorry, if you mean the following:

rcctl enable php56_fpm

then yes, I did it but I still get a 500 error!

On Fri, Jul 6, 2018 at 6:07 PM, Daniel Corbe  wrote:
> at 11:40 AM, Teno Deuter  wrote:
>
>> Dear support team,
>>
>> in a OpenBSD 6.3 installation with php packges added, I have the
>> following httpd configuartion:
>>
>> server "domain" {
>> listen on * tls port 443
>> listen on :: tls port 443
>> tls {
>> certificate "/etc/ssl/private/server.pem"
>> key "/etc/ssl/server.key"
>> }
>>
>> directory index index.php
>>
>> location "/pub/*" {
>> directory auto index
>> }
>>
>> root "/htdocs/domain"
>>
>> location "*.php" {
>> fastcgi socket "/run/php-fpm.sock"
>> }
>> }
>>
>> the above generates a 500 error!
>>
>> Also, no '/run/php-fpm.sock' exists!
>>
>> Thank you for your help
>
>
> Did you start php-fpm?
>
>

httpd serving php

2018-07-06 Thread Teno Deuter 
Dear support team,

in a OpenBSD 6.3 installation with php packges added, I have the
following httpd configuartion:

server "domain" {
listen on * tls port 443
listen on :: tls port 443
tls {
certificate "/etc/ssl/private/server.pem"
key "/etc/ssl/server.key"
}

directory index index.php

location "/pub/*" {
directory auto index
}

root "/htdocs/domain"

location "*.php" {
fastcgi socket "/run/php-fpm.sock"
}
}

the above generates a 500 error!

Also, no '/run/php-fpm.sock' exists!

Thank you for your help

Re: Building OpenBSD 6.0 -stable - Error

2016-09-03 Thread Teno Deuter 
meaning I shall try at a later time?

Thank you

On Sat, Sep 3, 2016 at 12:40 PM, Ted Unangst <t...@tedunangst.com> wrote:
> Teno Deuter wrote:
>> installed a fresh 6.0 AMD64 and tried to build 'stable' from source.
>>
>> Here is what I did as 'root' (as described in:
>> http://www.openbsd.org/stable.html):
>>
>> export CVSROOT=anon...@anoncvs1.ca.openbsd.org:/cvs
>> cd /usr; cvs checkout -P -rOPENBSD_6_0 src
>
> there's some repo surgery in progress. it should be fixed eventually.

Building OpenBSD 6.0 -stable - Error

2016-09-03 Thread Teno Deuter 
installed a fresh 6.0 AMD64 and tried to build 'stable' from source.

Here is what I did as 'root' (as described in:
http://www.openbsd.org/stable.html):

export CVSROOT=anon...@anoncvs1.ca.openbsd.org:/cvs
cd /usr; cvs checkout -P -rOPENBSD_6_0 src

# cd /usr/src/sys/arch/$(uname -m)/conf
# config GENERIC.MP
# cd /usr/src/sys/arch/$(uname -m)/compile/GENERIC.MP
# make clean && make

# cd /usr/src/sys/arch/$(uname -m)/compile/GENERIC.MP
# make install
# reboot

# rm -rf /usr/obj/*
# cd /usr/src
# make obj

and I get following error message:

===> lib
===> lib/csu
/usr/src/lib/csu/obj -> /usr/obj/lib/csu
===> lib/libarch
===> lib/libarch/alpha
/usr/src/lib/libarch/alpha/obj -> /usr/obj/lib/libarch/alpha
===> lib/libarch/amd64
/usr/src/lib/libarch/amd64/obj -> /usr/obj/lib/libarch/amd64
===> lib/libarch/arm
/usr/src/lib/libarch/arm/obj -> /usr/obj/lib/libarch/arm
===> lib/libarch/i386
/usr/src/lib/libarch/i386/obj -> /usr/obj/lib/libarch/i386
===> lib/libarch/mips64
/usr/src/lib/libarch/mips64/obj -> /usr/obj/lib/libarch/mips64
===> lib/libc
/usr/src/lib/libc/obj -> /usr/obj/lib/libc
===> lib/libcrypto
make: don't know how to make obj
Stop in lib/libcrypto
*** Error 2 in lib (:48 'obj')
*** Error 1 in /usr/src (:48 'obj')

Thank you for your support.

Re: pureftpd virtual users TLS

2016-04-21 Thread Teno Deuter 
Thank you for your valuable help.

As this installation runs in a VirtualBox env and serves testing
purposes, sources aren't retrieved yet. I think I have to get all the
sources first and then apply that change?

On Sat, Apr 9, 2016 at 2:26 AM, Edgar Pettijohn <ed...@pettijohn-web.com> wrote:
> On 04/07/16 16:06, Teno Deuter wrote:
>>
>> Hi,
>>
>> installed the chrooted version of pureftpd on a 5.9 AMD64 setting and face
>> following issues:
>>
>> 1.
>> TLS with system users works fine but not for the virtual ones! Only plain
>> ftp!
>>
>> 2.
>> seems that the service doesn't always refer to the 'pure-ftpd.conf'! To be
>> more specific.I did define the path of 'pureftpd.pdb' in the configuration
>> file but if I don't use the '-lpuredb' switch in the daemon flags doesn't
>> find it. Also, uncommenting :
>>
>> AltLog w3c:/var/log/pureftpd.log
>>
>> doesn't have any effect either. That file never gets created!
>>
>> Thank you for your support.
>>
> I think its because support for virtual users isn't built in the port.  This
> patch should do what you need.
>
> Index: Makefile
> ===
> RCS file: /cvs/ports/net/pure-ftpd/Makefile,v
> retrieving revision 1.71
> diff -u -p -u -r1.71 Makefile
> --- Makefile14 Oct 2015 10:01:55 -1.71
> +++ Makefile9 Apr 2016 00:17:16 -
> @@ -28,7 +28,8 @@ CONFIGURE_ARGS+= --disable-pie \
>   --with-everything \
>   --with-paranoidmsg \
>   --with-rfc2640 \
> - --with-tls
> + --with-tls \
> + --with-puredb
>
>  MODULES=converters/libiconv

Re: PKG_PATH - SOLVED

2016-04-08 Thread Teno Deuter 
Thank you for that tip.

On Fri, Apr 8, 2016 at 2:57 PM, Antoine Jacoutot <ajacou...@bsdfrog.org> wrote:
> On Fri, Apr 08, 2016 at 09:16:13AM +0200, Peter Hessler wrote:
>> On 2016 Apr 07 (Thu) at 22:56:42 +0200 (+0200), Teno Deuter wrote:
>> :Hi,
>> :
>> :just installed a 5.9 AMD64 version and get issues with adding packages as a
>> :regular system user. 'env' shows me the correct setting for PKG_PATH but
>> :seems that the user environment isn't able to contact the source.
>> :
>> :As long as I change to 'root', everything works fine!
>> :
>> :Thank you for your support
>> :
>>
>> You should put it into /etc/pkg.conf instead:
>>
>> """
>> installpath = http://ftp.hostserver.de/pub/OpenBSD/%c/packages/%a/
>> """
>>
>> %c expands out into the version, and %a into the arch.
>
> I think nowadays you can do something like:
> installpath = ftp.hostserver.de
>
>
> --
> Antoine

Re: PKG_PATH - SOLVED

2016-04-07 Thread Teno Deuter 
yes indeed.

Thank you

On Fri, Apr 8, 2016 at 12:03 AM, Antoine Jacoutot <ajacou...@bsdfrog.org> wrote:
> On Thu, Apr 07, 2016 at 11:49:11PM +0200, Teno Deuter wrote:
>> I run 'pkg_add' with 'doas' and I get only:
>>
>> Can't find [the package] I try to install. Doesn't say anything about
>> 'root'.
>>
>> Also, why 'pkg_add' has to be run as root only? In previous OpenBSD version
>> this wasn't the case. Is that due to 'doas'?
>
> doas resets the environment.
> If you want to keep PKG_PATH then use something like this in doas.conf:
> permit keepenv { PKG_PATH } nopass :wheel
>
>
> --
> Antoine

Re: PKG_PATH

2016-04-07 Thread Teno Deuter 
I run 'pkg_add' with 'doas' and I get only:

Can't find [the package] I try to install. Doesn't say anything about
'root'.

Also, why 'pkg_add' has to be run as root only? In previous OpenBSD version
this wasn't the case. Is that due to 'doas'?

Thank you


On Thu, Apr 7, 2016 at 11:17 PM, Mihai Popescu  wrote:

> > just installed a 5.9 AMD64 version and get issues with adding packages
> as a
> > regular system user. 'env' shows me the correct setting for PKG_PATH but
> > seems that the user environment isn't able to contact the source.
>
> "Get issues" is not a valid problem report. I am getting issues with
> my stomach right now, but this will never tell you what is my problem.
> Post the exact message(s) you get.
>
> You should get something like this:
>
> $ pkg_add -vn test
> pkg_add should be run as root
> Can't find test
>
> This is telling you what to do in order to fix that "issue".
>
> > As long as I change to 'root', everything works fine!
>
> Isn't it obvious?
>
> It may sound crazy, but OpenBSD does not allow any user to install
> packages directly, much like Linux or Windows.

pureftpd virtual users TLS

2016-04-07 Thread Teno Deuter 
Hi,

installed the chrooted version of pureftpd on a 5.9 AMD64 setting and face
following issues:

1.
TLS with system users works fine but not for the virtual ones! Only plain
ftp!

2.
seems that the service doesn't always refer to the 'pure-ftpd.conf'! To be
more specific.I did define the path of 'pureftpd.pdb' in the configuration
file but if I don't use the '-lpuredb' switch in the daemon flags doesn't
find it. Also, uncommenting :

AltLog w3c:/var/log/pureftpd.log

doesn't have any effect either. That file never gets created!

Thank you for your support.

PKG_PATH

2016-04-07 Thread Teno Deuter 
Hi,

just installed a 5.9 AMD64 version and get issues with adding packages as a
regular system user. 'env' shows me the correct setting for PKG_PATH but
seems that the user environment isn't able to contact the source.

As long as I change to 'root', everything works fine!

Thank you for your support