1. Store
  2. Apps
  3. Hardware
  4. Support
  5. Solutions

ClearFoundation

About Me

Basic Information

About me
ClearFoundation Officer
Project admin of Tiki Wiki CMS Groupware & Tiki Suite

Whereabouts

State / Province
Québec
City / Town
Montréal
Country
Canada

Web Links

Facebook
marc.laporte.name
LinkedIn
marclaportecom
Ohloh
marclaporte
Twitter
marclaporte
Web Site
http://marclaporte.com
Marc Laporte
Marc Laporte
  • Karma
  • Member since
  • Sunday, 13 March 2011 11:43
  • Last online
  • 13 days ago
  • Profile views
  • 7685 views
Yesterday
Eric Beaurivage replied to the topic Re:OpenSSL SSLv3 vulnerability in the forums.
I'm also looking for an update on this.

rhn.redhat.com/errata/RHSA-2014-1652.html
wiki.centos.org/Security/POODLE

Should we also expect to receive an updated OpenSSL package in the coming days? Thanks in advance for your help in fixing the vulnerability.
05:22 PM
4 days ago
Ben Chambers replied to the topic Re: Mail Archive Segfault Errors on ClearOS 6.5 in the forums.
Segfaults in PHP are really crappy to deal with....it could be hardware related (we have definitely had support tickets where this was the issue and resolved completely by swapping out memory), but in the old 5.x we also had seg faults because of the IMAP client libraries used...Although the mail archive in V6 makes less use of the PHP libraries for IMAP, it could still be cropping up in some cases.

As mentioned at the beginning, tracking it down is labour intensive task.

Maybe it's time to look at using an alternative. I'll add it to the bug tracker, but no promises on timeline.

B
01:25 PM
Ben Chambers replied to the topic Re:Zarafa Community Edition VS Cyrus + Roundcube in the forums.
I'm late to the party too with this link and this link. Could be helpful for anyone stumbling across this thread in the future.

B.
01:19 PM
5 days ago
Peter Baldwin replied to the topic Re:OpenSSL SSLv3 vulnerability in the forums.
Doh.

Ideally, all services in ClearOS need to have SSLv3 disabled, so we'll be putting together some documentation on this topic. Unfortunately, that only makes things a tiny bit better since it won't stop an attacker from doing a man-in-the-middle attack. The real solution is to fix client-side software (browsers, mail clients, etc.) to make sure these do not attempt using an older protocol like SSLv3.
05:32 AM
2 weeks ago
Marc Laporte replied to the topic Re:myphpadmin after the upgrade to php 5.5 in the forums.
I don't understand your question.

Which script?
Which table?
Oct 06
Marc Laporte replied to the topic Re:myphpadmin after the upgrade to php 5.5 in the forums.
It's documented here:
www.clearfoundation.com/docs/howtos/upgrading_to_php_5.5.x

"This will break your Zarafa instance and you will get the following error message: “Not Found: PHP mapi extension not found”. It will also break your direct link to phpMyAdmin which is at example.org:81/mysql (However, you can easily install sourceforge.net/projects/adminer/)."
Oct 03
Ben Chambers replied to the topic Re:Problem with flash application in the forums.
In that case, add the site to the exception list in the browser and see if it makes a difference...Here's an example in Firefox.


Also, make sure the iptables rules I provided you are doing their job. Tail the proxy log file:
Code:

tail -f /var/log/squid/access.log



And make sure the website doesn't show up in the logs (eg. you'r confirming the content is going directly out).

B.
Oct 03
Ben Chambers replied to the topic Re:Problem with flash application in the forums.
Is proxy running in transparent or non-transparent mode?
Oct 02
Peter Baldwin replied to the topic Re: Development Tools installation failed on new install of ClearOS 6.5.0 i386 in the forums.
Hi Nick,

Here's the new exclude list:

Code:


exclude=amavisd-new-* cabextract catdoc clamav-* clamd cloud-init-* daq-* GoeIP-* hostapd-* imapsync-* jnettop libecap-* libical* libvmime* miniupnpd-* mod_auth* netatalk-* openvpn-* philesight php-mapi phpMyAdmin pkcs11-helper pmacct pptpd proftpd pwauth python-mapi ratpoison-* roundcubemail-* snort-* Swift-* tnef-* transmission-* zarafa*



The roundcubemail upgrade is probably a nasty one, but that's just a guess. Most of the others (GeoIP, openvpn, pptpd, imapsync) are bleeding edge, but are likely just fine. These EPEL RPMs are automatically pushed to the clearos-test repository. We then push them through the usual updates-testing -> updates workflow for some sanity checking and QA.
Oct 01
Peter Baldwin replied to the topic Re:ClearOS 6.6.0 Beta Thread in the forums.
We're still waiting on upstream. I have a feeling Red Hat decided to skip their usual 6 month minor release schedule due to the release of RHEL 7. RHEL 6.5 was released in November 2013, so we were expecting RHEL 6.6 in May. That didn't happen.
Oct 01
Peter Baldwin replied to the topic Re:Mail Quarantine in the forums.
The mail quarantine software is called MailZu, but it's no longer actively maintained. It should be possible to download, install and configure it in ClearOS 6.
Oct 01
Peter Baldwin replied to the topic Re:ClearOS 7 update in the forums.
Daniel Castellanos wrote:
Peter can you comment on this post?

www.clearfoundation.com/component/option.../func,view/id,50307/

The post looks accurate to me. There are now 3 IPsec apps in Marketplace:

- Static IPsec Basic (free)
- Static IPsec ($50)
- Dynamic VPN (free with Professional Basic and higher)

I really wish Managed VPN was still free in ClearOS 6...
Managed VPN was never free - it requires more backend resources than the Dynamic DNS service!
Oct 01
Ben Chambers replied to the topic Re:Problem with flash application in the forums.
Frank,

It could be that the app is not proxy friendly, or it could be the content filter blocking. Be sure by excluding the website in question from both serices.

Proxy:

If you're running in non-transparent mode, this is easy...simply add the website to the Web Proxy ByPass table.

If you're running in transparent mode, you'll need to add a custom firewall rule (need to install custom firewall app).
Code:


iptables -t nat -I PREROUTING --destination x.x.x.x -j ACCEPT
iptables -I FORWARD --destination x.x.x.x -j ACCEPT


Where x.x.x.x is the website's IP...hostname will work too, but if your DNS ever fails, it will hang or potentially barf on your custom firewall rules.

Content FIlter:

Navigate to Content Filter configuration in Webconfig, click on "App Policies --> Edit". Select "Edit" next to "Exception Sites" and add the website name.

B.
Sep 30
Ben Chambers replied to the topic Re:Development Tools installation failed on new install of ClearOS 6.5.0 i386 in the forums.
On the last line, try:
Code:


yum --enablerepo=clearos-dev install clearos-devel app-devel



B
Sep 30

Wall

No wall post to show

Groups

Here is a short listing of the groups that the user has registered in.