[Freedombox-discuss] firewalld update
permondes - sagen
sagen at permondes.de
Fri Sep 14 19:27:00 BST 2018
Just to finish this off:
I ignored that error, started Quassel IRC on my computer. There was the
warning that my core did not support SSL, thus passwords etc. were
exchanged unencrypted. But the core is now working on the computer and
in QuasselDroid. My impression is that I stumbled in a lot of topics
that actually were not related to the firewalld updates.
Anyway, all working again now.
Dietmar
Am Freitag, den 14.09.2018, 18:36 +0200 schrieb permondes - sagen:
> Hi Joseph,
>
> most functions are working now - and I have no idea why.
> DefaultZone is set to the packagers value "public", but this should
> have no influence as the packages have defined zones.
> I realized I have to access the box now with "freedombox" in the
> browser instead of "freedombox.local". I do not know which update
> caused that change.
>
> The only thing not working is Quassel. In QuasselDroid it got stuck
> at "SSL handshake" and on the desktop it just would not work.
> I deactivated it in Plinth, then removed and purged it with apt (in
> order to get rid of the conf files). Now I am trying to re-install it
> with apt which terminates with
> > Generating SSL certificate as /var/lib/quassel/quasselCert.pem ...
> > su: Berechtigung verweigert
> The last phrase means "access denied". This reminds me of the initial
> issue with getting stuck at "SSL handshake".
> That's where I am now.
>
> Dietmar
>
>
> Am Freitag, den 14.09.2018, 12:02 +0000 schrieb Joseph Nuthalapati:
> > Dietmar,
> >
> > I have upgraded firewalld on FreedomBox testing and chose to keep
> > FreedomBox's configuration instead of the package maintainer's
> > version. The upgrade seems to have gone through without issues.
> >
> > The diff as you said is changing the default zone from external
> > to public and adding the line "FirewallBackend=iptables" to the
> > file.
> >
> > root at FreedomBox /etc/firewalld # diff firewalld.conf
> > firewalld.conf.dpkg-dist 6c6
> > < DefaultZone=external
> > ---
> > > DefaultZone=public
> >
> > 57a58,64
> > > # FirewallBackend
> > > # Selects the firewall backend implementation.
> > > # Choices are:
> > > # - nftables (default)
> > > # - iptables (iptables, ip6tables, ebtables and ipset)
> > > FirewallBackend=iptables
> >
> > You can try replacing your firewalld.conf file with the previous
> > version (see attached) and restart firewalld or a do a system
> > reboot.
> >
> >
> > permondes - sagen <sagen at permondes.de> wrote:
> > > Gladly sudo works again.
> > > What I see now is:- quassel-plinth is newly added to
> > > zones/external and ../internal <- strange in firewalld added is
> > > the line FirewallBackend=iptables Issue remains that I cannot
> > > connect to my Quassel-core (no message in Debian, remains stuck
> > > at SSL handshake in the android app)and that freedombox.local
> > > cannot be used to access the box; IP-address works. Any ideas?
> > > Am Mittwoch, den 12.09.2018, 21:57 +0200 schrieb permondes -
> > > sagen:
> > > > I had started this topic in Quassel but now I do not have
> > > > access to
> > > > it any more, so I have to continue on the mailing list.
> > > >
> > > > What I did was: "apt install firewalld", which changed the
> > > > DefaultZone=external to public. There was an error message at
> > > > the end
> > > > of the install saying the operation (don't know which) was
> > > > aborted
> > > > before it could be finished. Later-on I changed the settings
> > > > back to
> > > > external and restarted the box twice.
> > > >
> > > > Now I have no access through freedombox.local any more, so also
> > > > Proxy
> > > > does not work. Nor Quassel.
> > > > It also says my user name is not any more in the sudoers file.
> > > > I can
> > > > ssh into the box but do not get sudo access.
> > > > Now I am in trouble!!
> > > >
> > > > Dietmar
> > > > _______________________________________________
> > > > Freedombox-discuss mailing list
> > > > Freedombox-discuss at alioth-lists.debian.net
> > > > https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/freedo
> > > > mbox-d
> > > > iscuss_______________________________________________
> > >
> > > Freedombox-discuss mailing list
> > > Freedombox-discuss at alioth-lists.debian.net
> > > https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/freedomb
> > > ox-discuss
> _______________________________________________
> Freedombox-discuss mailing list
> Freedombox-discuss at alioth-lists.debian.net
> https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/freedombox-d
> iscuss
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/freedombox-discuss/attachments/20180914/e3990399/attachment-0001.html>
More information about the Freedombox-discuss
mailing list