I have installed Fedora 9 on a machine, and then i installed the FRED binary package
for Fedora 9 like this:
yum install fred-*
This installation worked very fine.
But where to go from here ?
I looked at the Fred website, under "documentation", and "FRED Howto", but it looks like this dokumentation assumes that we use Debian.
Where can i see what to do after installing the FRED binary package for Fedora 9 ?
Peter
________________________________
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
I think i know the answer, but just to be sure:
Does FRED contain a payment solution ? Where domain registrars or registrants can make payments to the cctld Manager using creditcard ?
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
Hi I am looking at using the fred-client to communicate zia EPP with
Ausregistry the AU registrar. I am able to get the client to run so I
am assuming that my config is ok and SSL ket files are correct.
Though when I connect and try to do a simple hello statement I get this error:
registry:/var/www/fred# python2.4 ./fred-client --config ./conf/fred-client.conf
FredClient 1.6.1
Type "help", "license" or "credits" for more information.
Using configuration from ./conf/fred-client.conf
> hello
Used socket type: IPv4.
Socket timeout: 10.0 sec.
Connecting to portal-ote.ausregistry.net.au, port 700 ...
Connection established.
Try to open SSL layer...
ERROR: getaddrinfo() socket.error [-8] Servname not supported for ai_socktype
>
This suggests to me that that the error is from a misconfiguration
hosname but I have checked and this looks fine as i is the one from
our existing EPP solution. What else would cause this error.
I was getting an error about EOF but downloaded the latest version of
the fred-client and now I am getting this error. I am now using
version 1.6.1.
Also my config is as bellow, please note that I have used both the the
hostname and the IP address of the server in the host config value. I
have even tried this with the hostname/ip in parenthesize and no
success there.
My config is as follows:
> registry:/var/www/fred# cat conf/fred-client.conf
[connect]
dir=/var/www/fred/fred/certificates
host = portal-ote.ausregistry.net.au
port = 700
ssl_cert = %(dir)s/CHEAPERDOMAINS-OTE-cert.pem
ssl_key = %(dir)s/CHEAPERDOMAINS-key.pem
username = ***************
password = ***************
;; Every XML namespace can have the version independent to others:
schema_version_contact = 1.2
schema_version_nsset = 1.2
schema_version_domain = 1.2
schema_version_enum = 1.1
schema_version_fred = 1.0
schema_version_epp = 1.0
;; socket timeout in sec. In MS Windows MUST be set to 0.0 (timeout bug)
timeout = 10.0
;; turn off automatic login process after start up
nologin = n
[session]
schema = /var/www/fred/fred/schemas/all-1.4.xsd
;; send "poll ack" right after to "poll req"
poll_autoack = off
;; confirm all editable commands
confirm_send_commands = on
;; enable/disable xmllint
validate = on
;; display colors on tty console
colors = yes
;; set verbose level 1,2,3
verbose = 3
Jatomir and all:
Thanks. I've tested the Live CD with the 01/01/2008 date. It works
perfectly. The net effect is that it create zones so easily and, at the
same time, stores in a database the administrative data using EPP.
Moreover it keeps it simple.
The disk installation:
In our case my approach has been installing the Ubuntu hardy (8.04)
.deb packages, fred-*.deb, which install dome dependencies too. I see
that there are no .dev for fred-server (including the Python parts), so
I installed these by hand (in /usr/.local) . Is that correct?. What
about generating .deb packages for these, too?.
For installing the certificates I do this:
1. I use the CA included in the ca-certificates Debian package which, in
my opinion, is adequate (I don't have to generate a CA certificate myself.
2. For the mod-eppd Apache module, I generate the self-signed
certificates using the usual procedures for generating them for
encrypted HTML:
openssl genrsa -des3 -out eppd.key 4096
openssl req -new -key eppd.key -out eppd.csr
openssl x509 -req -days 3650 -in eppd.csr -signkey eppd.key -out eppd.crt
openssl rsa -in eppd.key -out eppd.key.insecure
mv eppd.key eppd.key.secure;mv eppd.key.insecure eppd.key
chmod 600 *.key
/etc/init.d/apache2 force-reload
3. For the fred-client certificate configuration I rather use a method I
prefer, say,, for dovecot SSL configuration:
openssl req -new -x509 -nodes -out eppclient.pem -keyout eppclient.pem
4. After generating both certificates I first configure the mod-eppd
virtualhost:
Listen *:700
<VirtualHost *:700>
CorbaEnable On
CorbaNameservice "localhost"
CorbaObject "EPP" "EPP_alias"
EPPprotocol On
EPPObject "EPP_alias"
EPPschema "/usr/share/fred-mod-eppd/schemas/all-1.4.xsd"
EPPservername "CR.NIC's EPP server"
EPPlog "/var/log/apache2/eppd.log"
EPPloglevel error
EPPvalidResponse Off
SSLEngine off
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+
EXP:+eNULL
SSLVerifyClient require
SSLCertificateFile /etc/ssl/fred/eppd.crt
SSLCertificateKeyFile /etc/ssl/fred/eppd.key
SSLCACertificateFile /etc/ssl/certs/ca.pem
SSLVerifyDepth 1
</VirtualHost>
Notice the /etc/ssl/certs/ca.pem CA certificate, which is the standard
Ubuntu CA certificate. This should be adequate, because it expires much
later.
5. /etc/init.d/apache2 force-reload
6. For the epp-client configuration file I have this in
/usr/local/etc/fred/fred-client.conf:
[connect]
;; dir=/usr/local/share/fred-client/ssl
host = localhost
port = 700
ssl_cert = /etc/ssl/fred/eppclient.pem
ssl_key = /etc/ssl/fred/eppclient.pem
username = REG-FRED_A
password = passwd
username2 = REG-FRED_B
password2 = passwd
etc.....
7. When I run fred-client I get this:
root@mguerra:/etc/fred# fred-client
FredClient 1.6.1
Type "help", "license" or "credits" for more information.
Using configuration from /usr/local/etc/fred/fred-client.conf
Connecting to localhost, port 700 ...
ERROR: socket.sslerror: (1, 'error:140770FC:SSL
routines:SSL23_GET_SERVER_HELLO:unknown protocol') (localhost:700)
Certificate not signed by verified certificate authority.
The date gives this:
mié sep 24 11:33:57 CST 2008 (mié means Wednesday).
What can be the reason for this?. Should I use other CA certificate?. Or
perhaps I should use a certificate in ~/fredclient.pem?.
Thank you in advance.
Mario
Jaromír Talír,
I would like to request you or .CZ to index the subject line for this
FRED-USERS discussion list with a list identifier so that we can
separate its mail from the rest and hence avoid its mail being caught
up in the spam filter.
You may just use or include something like [FRED-USERS] in the
subject line like most lists now do, like in my subject above.
I like to read mail from this list but it is becoming difficult to
separate its mail from spam, the message below is such an example.
Regards,
Paulos
======================
Dr Paulos B Nyirenda
.mw ccTLD
http://www.registrar.mw
------- Forwarded message follows -------
From: Marc Manthey <marc(a)let.de>
To: fred-users(a)lists.nic.cz
Subject: Re: Payment solution
Date sent: Sun, 19 Oct 2008 19:39:58 +0200
Send reply to: fred-users(a)lists.nic.cz
<mailto:fred-users-request@lists.nic.cz?subject=unsubscribe>
<mailto:fred-users-request@lists.nic.cz?subject=subscribe>
Keywords:
Am 19.10.2008 um 19:23 schrieb Petur Kirke:
>
> Does FRED contain a payment solution ? Where domain registrars or
> registrants can make payments to the cctld Manager using creditcard ?
i think the developerteam would apriciate to implement such a thing
when you pay for it ;)
Question : Would you share it after you pay for it ? ;)
> This email and its attachments may be confidential
????
Marc
_______________________________________________
Fred-users mailing list
Fred-users(a)lists.nic.cz
https://lists.nic.cz/mailman/listinfo/fred-users
------- End of forwarded message -------
Im trying to use yum to install Fred.
At the download page in the Fred homepage, it says, i should first install this package (repository):
http://fred.nic.cz/attachment/wiki/attachments/fred-repo-1.0-1.noarch.rpm?f…
I so did.
According to Freds homepage, then i should be able to run this command:
yum install fred-*
But when i run it, i get this error:
http://archive.nic.cz/yum/fred/5/i386/repodata/repomd.xml: [Errno 14] HTTP Error 404: Not Found
Trying other mirror.
Error: Cannot retrieve repository metadata (repomd.xml) for repository: fred. Please verify its path and try again.
I then checked the url: http://archive.nic.cz/yum/fred/5/i386/repodata/repomd.xml
and it is wrong.
So my question is: How can i use yum to install fred ?
regards
Peter
________________________________
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
