[SOGo] Trying to join SOGo Package samba4 to an existing samba4 domain loops invinite
Dear all, after installing the Samba4 package for centos 6 I tried to join samba to my existing samba 4 domain. But I get an endless loop of: Schema-DN[CN=Schema,CN=Configuration,DC=tplk,DC=loc] objects[50652/1550] linked_values[0/0] Schema-DN[CN=Schema,CN=Configuration,DC=tplk,DC=loc] objects[51054/1550] linked_values[0/0] Schema-DN[CN=Schema,CN=Configuration,DC=tplk,DC=loc] objects[51456/1550] linked_values[0/0] and the domain join never ends. How can I manage the domain join? Greetings Daniel
[SOGo] SOGo and Master-Master replication
Hi, Did anybody try running SOGo with MySQL master-master replication? Is it even possible? -- Mit freundlichen Grüßen, / Best Regards, Sven SCHWEDAS Systemadministrator TAO Beratungs- und Management GmbH | Lendplatz 45 | A - 8020 Graz Mail/XMPP: sven.schwe...@tao.at | +43 (0)680 301 7167 http://software.tao.at signature.asc Description: OpenPGP digital signature
Re: [SOGo] smime firefox plugin for sogo
2013-08-13 17:37 keltezéssel, David Feurle írta: Hi Péter, thanks for your response. My comments are in the text. Hi David, Am 13.08.2013 13:29, schrieb Szládovics Péter: Dear David, I'm very interested in this subject. My questions above. 2013-08-13 12:36 keltezéssel, David Feurle írta: Dear sogo mailinglist, I have developed a smime plugin for firefox which allows to read smime signed and crypted mails in the webmail interface of sogo. It works fine for me but has certain limitations which up to now prevented me from publishing it. Up to now I'm able to read smime end to end encrypted mail by using the webmail interface. What is still missing is the possibility to compose encrypted mails and the possibility to download any encrypted email attachments. Will you work on it? Up to now I thought that nobody would be interested. So we use it in our company - and for us it was working fine up to now. If there are different user needs I would try to solve the problems. I've the list since April, so I didn't read it :) But now. I Think this problem is only in commercial infrastructure. The mail encryption and security not a high priority in personal environments - *unfortunately* of course. But... I think the mail encription is the task of the mail app - e.g. Thunderbird. In the webmail we need to read in the 90 percent of cases. So, my opinion the reading encrypted mails on the web is almost enough. about Of course it's fine to be able to read emails. I was hoping for some support by the sogo developers to be able to as well compose emails. The problem is that I am familar with javascript/xpcom/c++ but I have no idea of ObjectiveC. In this situation I cannot help you - I've a little shellscript and perl (and minimal PHP) knowledge, but nothing in the above :) (ok, very minimal in javascript - handling mouse events, forms, opening popups - but no more). The plugin enables users of sogo to read their encrypted emails in their browser without the need to save their encryption key on the mail server. Great. Nearly exactly one year ago I was asking this mailing list if there is some interest in making this working and useful for all sogo users. ( see: https://inverse.ca/sogo/lists/arc/users/2012-07/msg00167.html). The current implementation does no longer use the firefox cert store but the Why? If it is a FF plugin, then the best practice is the using the FF certstore - I think. I was doing it using c++. I was not aware that firefox contains all needed XPCOM Components to do smime in the browser. I found some Interfaces in Thunderbird but they are missing in Firefox. Yep, understood. How it works under Linux? Which certstore will be used by your app? My code uses a cryptAPI that uses on Windows the native Cert Store. I think I could change the code easily to allow the firefox cert store now since I learned what interfaces to use. Another thing I was thinking is to upload the crypted private key (pfx/p12) to the sogo server. The Server could serve this file to the browser (when logged in) and prompt the user for the passwort of the key file. This way the user does not need to install his private key on the machine he/she does use for webmail. It would be only be decrypted for one session. windows/Linux system certificate storage and does not longer require the user to have a perl installation. Up to now I have not received any feedback. You have already one. Perhaps it now is of greater interest since the revielings of Edward Snowden showed how limited the security of email is without using end to end encryption. Accept. If there is any interest I could explain in a more detailed form what and how the plugin does what it does and what functions sogo is missing to make the plugin even more useful. I think, if you don't want to upload private key to the webserver, you need to modify the ajax editor. But it will be problem with text mails. The biggest problem is IMHO that the mails are composed in the client but the server handles the mime stuff. I can create a complete smime formated mail in the client, but as far as I know sogo lacks the ability to send this mail composed on the client for me. Yes, it's bigger problem than I thought at first... -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] Uncaught exception
Dear sogo community, first of all I wanted to thank the inverse team, Péter Szladovics and Olivier Bitsch. With the help of their tutorials, VMs and scripts I was able to build an ansible playbook for installing SOGo and OpenChange. I need Outlook support, so the OpenChange part was critical. Thanks again, great work! But I am still having some issues. One is this uncaught exception that raises once in a while. Every time it does, Outlook looses connection to Exchange. It often happens when I try to share a user's calendar with another user: /usr/sbin/samba: Uncaught exception NSInvalidArgumentException, reason: SOGoMAPIDBFolder(instance) does not recognize folderType When I restart samba4 (which doesn't die, at least not entirely), Outlook can reconnect, but the expected changes of the permissions didn't happen. I uploaded a verbose (level 5) samba log of the event here: http://pastebin.com/HhMmc7rN. My smb.conf is like that: http://pastebin.com/L1TxejnP. Sogo is configured with GNUStep, the sogo-tool dump-defaults is: http://pastebin.com/bemzrg7c. I use postgresql as database backend and dovecot as imap server. In general outlook works. I can receive and send emails, I can create and modify calendar items and contacts. Only calendar sharing is limited and I have stability problems because of such exceptions that make a restart of samba necessary. Regarding calendar sharing: I can share calendars in SOGo web interface and it fully works there. My partner can create, modify and delete calendar items for me. But this doesn't work in Outlook. For Outlook the same shared calendar is read only and I only see the free/busy information, not event details. If I want to change the permissions for my calendar through Outlook it doesn't let me choose options that allow the other person to make changes. I can select them but they would immediately switch back to the read only versions when I commit the changes. And most of the time such operations cause exceptions like the one described above. Is this normal behavior because of the limits of the outlook compatibility or can it be solved? I read that seeing the details of appointments may not be supported. Is this still the case and if yes - is it likely to change? Are there ways to make it happen? Thanks a lot for any help or hint! Michael -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Uncaught exception
2013-08-14 16:38 keltezéssel, Michael Volz írta: Dear sogo community, first of all I wanted to thank the inverse team, Péter Szladovics and Olivier Bitsch. With the help of their tutorials, VMs and scripts I was able to build an ansible playbook for installing SOGo and OpenChange. I need Outlook support, so the OpenChange part was critical. Thanks again, great work! But I am still having some issues. One is this uncaught exception that raises once in a while. Every time it does, Outlook looses connection to Exchange. It often happens when I try to share a user's calendar with another user: /usr/sbin/samba: Uncaught exception NSInvalidArgumentException, reason: SOGoMAPIDBFolder(instance) does not recognize folderType When I restart samba4 (which doesn't die, at least not entirely), Outlook can reconnect, but the expected changes of the permissions didn't happen. I uploaded a verbose (level 5) samba log of the event here: http://pastebin.com/HhMmc7rN. My smb.conf is like that: http://pastebin.com/L1TxejnP. Sogo is configured with GNUStep, the sogo-tool dump-defaults is: http://pastebin.com/bemzrg7c. I use postgresql as database backend and dovecot as imap server. In general outlook works. I can receive and send emails, I can create and modify calendar items and contacts. Only calendar sharing is limited and I have stability problems because of such exceptions that make a restart of samba necessary. Regarding calendar sharing: I can share calendars in SOGo web interface and it fully works there. My partner can create, modify and delete calendar items for me. But this doesn't work in Outlook. For Outlook the same shared calendar is read only and I only see the free/busy information, not event details. If I want to change the permissions for my calendar through Outlook it doesn't let me choose options that allow the other person to make changes. I can select them but they would immediately switch back to the read only versions when I commit the changes. And most of the time such operations cause exceptions like the one described above. Is this normal behavior because of the limits of the outlook compatibility or can it be solved? I read that seeing the details of appointments may not be supported. Is this still the case and if yes - is it likely to change? Are there ways to make it happen? Thanks a lot for any help or hint! Dear Michael, Just a hint from me, but it maybe (I hope) helps you. The outlook not the best choice (IMHO the worst), but on commercial environment it's the default (a Hungarian slang: the necessary evil). So. Workaround, but working fine: Share all of needed resources under the web (SOGo interface), and use them in Outlook. One thing won't works: shared folders. But contacts and calendars ;) You will need same method about out of office settings and server side mail rules. As far as I excperienced - Thunderbird the one and only MUA for using the most features (with lot of extensions), but neither the sharing resources. So, the web client will your best friend ever :) -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Uncaught exception
Dear Péter (and list), I fully agree with your opinion on Outlook. But it doesn't seem to be in our power to break its dominance in business environments so we sadly have to deal with it. I followed your hint an configured the permissions for the shared calendar with the web interface. It works fine there, I can read an write the shared calendars. But still it doesn't work in Outlook. I tried around and found that Outlook doesn't authenticate correctly against ocsmanager. As (if I recall right - correct me if I'm wrong) openchange handles shared calendars via ews and thus via ocsmanager that looks as it could be related to the problem. This is from the apache (ssl) log: 192.168.16.97 - - [14/Aug/2013:17:53:15 +0200] POST /ews/as HTTP/1.1 401 5317 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:53:15 +0200] POST /ews/as HTTP/1.1 401 634 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:53:15 +0200] POST /ews/as HTTP/1.1 200 3146 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:53:18 +0200] HEAD /ews/oab.xml HTTP/1.1 401 5264 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:53:20 +0200] HEAD /ews/oab.xml HTTP/1.1 401 325 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:53:22 +0200] HEAD /ews/oab.xml HTTP/1.1 401 325 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:53:22 +0200] HEAD /ews/oab.xml HTTP/1.1 401 581 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:53:22 +0200] HEAD /ews/oab.xml HTTP/1.1 404 261 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:53:24 +0200] POST /autodiscover/autodiscover.xml HTTP/1.1 401 5317 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:53:24 +0200] POST /autodiscover/autodiscover.xml HTTP/1.1 401 634 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:53:24 +0200] POST /autodiscover/autodiscover.xml HTTP/1.1 200 1514 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:54:04 +0200] POST /ews/oof HTTP/1.1 401 5317 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:54:04 +0200] POST /ews/oof HTTP/1.1 401 634 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:54:04 +0200] POST /ews/oof HTTP/1.1 404 362 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:54:04 +0200] POST /ews/oof HTTP/1.1 401 5317 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:54:04 +0200] POST /ews/oof HTTP/1.1 401 634 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:54:04 +0200] POST /ews/oof HTTP/1.1 404 362 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:54:26 +0200] HEAD /ews/oab.xml HTTP/1.1 401 5264 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:54:28 +0200] HEAD /ews/oab.xml HTTP/1.1 401 325 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:54:30 +0200] HEAD /ews/oab.xml HTTP/1.1 401 325 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:54:30 +0200] HEAD /ews/oab.xml HTTP/1.1 401 581 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:54:30 +0200] HEAD /ews/oab.xml HTTP/1.1 404 261 - Microsoft BITS/7.5 192.168.16.97 - - [14/Aug/2013:17:54:32 +0200] POST /autodiscover/autodiscover.xml HTTP/1.1 401 5573 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) 192.168.16.97 - - [14/Aug/2013:17:54:32 +0200] POST /autodiscover/autodiscover.xml HTTP/1.1 200 1514 - Microsoft Office/14.0 (Windows NT 6.1; Microsoft Outlook 14.0.6129; Pro) This is from the ocsmanager log: 2013-08-14 17:53:15,769 INFO [openchange.web.auth.NTLMAuthHandler] [worker 9] client did not pass auth cookie 2013-08-14 17:53:15,793 INFO [openchange.web.auth.NTLMAuthHandler] [worker 0] client did not pass auth cookie 2013-08-14 17:53:15,793 INFO [openchange.web.auth.NTLMAuthHandler] [worker 0] acquiring lock /var/cache/ntlmauthhandler/ntlm-127.0.0.1.lock (1053) 2013-08-14 17:53:15,846 INFO [openchange.web.auth.NTLMAuthHandler] [worker 1] acquiring lock /var/cache/ntlmauthhandler/ntlm-127.0.0.1.lock (1053) 2013-08-14 17:53:18,191 INFO [openchange.web.auth.NTLMAuthHandler] [worker 3] client did not pass auth cookie 2013-08-14 17:53:20,680 INFO [openchange.web.auth.NTLMAuthHandler] [worker 5] client did not pass auth cookie 2013-08-14 17:53:22,700 INFO [openchange.web.auth.NTLMAuthHandler] [worker 4] client did not pass auth cookie 2013-08-14 17:53:22,704 INFO [openchange.web.auth.NTLMAuthHandler] [worker 6] client
Re: [SOGo] Uncaught exception
On 2013-08-14 11:05 AM, Szládovics Péter wrote: As far as I excperienced - Thunderbird the one and only MUA for using the most features (with lot of extensions), but neither the sharing resources. Not sure what you mean here but if you install the SOGo Integrator extension in Thunderbird, you can do everything SOGo Web can do regarding calendar sharing from Thunderbird. -- Ludovic Marcotte lmarco...@inverse.ca :: +1.514.755.3630 :: http://inverse.ca Inverse inc. :: Leaders behind SOGo (http://sogo.nu) and PacketFence (http://packetfence.org) -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Uncaught exception
2013-08-14 19:18 keltezéssel, Ludovic Marcotte írta: On 2013-08-14 11:05 AM, Szládovics Péter wrote: As far as I excperienced - Thunderbird the one and only MUA for using the most features (with lot of extensions), but neither the sharing resources. Not sure what you mean here but if you install the SOGo Integrator extension in Thunderbird, you can do everything SOGo Web can do regarding calendar sharing from Thunderbird. Once I tried the integrator, but it didn't give username from me (just password) for authentication, and used the OS account. I use lot of mail accounts in one Thunderbird. Perhaps I was wrong, but I haven't tried it since that time. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Uncaught exception
On 2013-08-14 12:19 PM, Michael Volz wrote: I followed your hint an configured the permissions for the shared calendar with the web interface. It works fine there, I can read an write the shared calendars. But still it doesn't work in Outlook. It's most likely currently broken and needs to be worked on. We aim to improve this considerably in the upcoming v2.1.0 release. -- Ludovic Marcotte lmarco...@inverse.ca :: +1.514.755.3630 :: http://inverse.ca Inverse inc. :: Leaders behind SOGo (http://sogo.nu) and PacketFence (http://packetfence.org) -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Uncaught exception
2013-08-14 18:19 keltezéssel, Michael Volz írta: For me it looks like Outlook never sends the right authentication and because of that ocsmanager just sends the free/busy information but no other details back to Outlook. I can't dig deeper today, but I will tomorrow. Maybe somebody has an idea? I found that my /etc/ocsmanager/ocsmanager.ini (http://pastebin.com/Qcs0vriS) is pretty raw, was I supposed to configure it? I never came across it. Sorry for this unreflected mail - just some last minute thoughts before knock off. But am I right that my calendar problem could be related to ocsmanager or is this normal behaviour? I also saw that even when I tell Outlook to connect via http there is very little activity with apache oder ocsmanager but very much witch samba so it seems to me that it connects directly via rpc after all. Michael, Did you check the Always prompt for user name and password checkbox at Exchange settings? http://www.sogo.nu/files/docs/SOGo%20Native%20Microsoft%20Outlook%20Configuration.pdf Chapter 8 (Page 17) - Step 8 Please check it again. -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] GUI Integration with Postfix Address Extension
I'm new to SOGo and have searched for an answer to this question, but haven't really found what I was looking for. I'm currently using a combination of Postfix and SquirrelMail for my user base. My users actively utilize Postfix's address extension function; they can dynamically create From addresses with whatever extension they like within SquirrelMail. My id is an example (using - vs the standard + that is suggested within Postfix's configuration). In looking at SOGo web client in the latest ZEG edition, I couldn't figure out an easy way to open up that functionality. Basically, letting my users define whatever complete list of From addresses they'd want to chose from. I tried allowing SOGoMailCustomFromEnabled within the config, but that only seemed to allow me to save a single alternative email address for selection. Is there a way of allowing multiple users to dynamically manage (create, update, and delete) a listing of From addresses? user-examp...@mydomain.com user-examp...@mydomain.com etc... Thanks. Brian -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Uncaught exception
On 13-08-14 1:30 PM, Szládovics Péter wrote: 2013-08-14 19:18 keltezéssel, Ludovic Marcotte írta: On 2013-08-14 11:05 AM, Szládovics Péter wrote: As far as I excperienced - Thunderbird the one and only MUA for using the most features (with lot of extensions), but neither the sharing resources. Not sure what you mean here but if you install the SOGo Integrator extension in Thunderbird, you can do everything SOGo Web can do regarding calendar sharing from Thunderbird. Once I tried the integrator, but it didn't give username from me (just password) for authentication, and used the OS account. I use lot of mail accounts in one Thunderbird. Perhaps I was wrong, but I haven't tried it since that time. the integrator uses the username from the default mail account to authenticate against the sogo server. -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] BTS activities for Wednesday, August 14 2013
Title: BTS activities for Wednesday, August 14 2013 BTS Activities Home page: http://www.sogo.nu/bugs Project: SOGo For the period covering: Wednesday, August 14 2013 idlast updatestatus (resolution)categorysummary 2387 2013-08-14 00:08:47 updated (open) Web Mail Shared folders not showing using postfix+courier imap
