Jaromír Talír,
or anyone else,
Although my httpd was running ok, I am getting the following
httpd error when I try to active the fred-server, could you please
suggest what I can do to resolve it?
[root@ngoli paulos]# /etc/rc.d/init.d/fred-server start
Starting FRED central registry CORBA servers... [ OK ]
[root@ngoli paulos]#
[root@ngoli paulos]# /etc/rc.d/init.d/httpd restart
Stopping httpd: [ OK ]
Starting httpd: (13)Permission denied: make_sock: could not bind to address [::]:700
(13)Permission denied: make_sock: could not bind to address 0.0.0.0:700
no listening sockets available, shutting down
Unable to open logs
[FAILED]
[root@ngoli paulos]#
This happens soon after installing fred-*.
Regards,
Paulos
On 3 Nov 2008 at 17:29, Jaromír Talír wrote:
> Hello Paulos,
>
> Dr Paulos Nyirenda píse v Po 27. 10. 2008 v 10:15 +0200:
> > Hello,
> >
> > Will there be anyone from .CZ at the ICANN Cairo meeting whom I could
> > meet to consult on FRED?
>
> I will not be in Cairo, but our CEO Ondrej Filip is there. I thing he
> can answer some questions about FRED.
>
> > It would really help if I could have a brief technical meeting on
> > FRED.
> > I have installed FRED on fedora8 and I need a few pointer on a few
> > areas including
> > (a) how I could finalise httpd, epp configuartion,
> > (b) how to use it successfully
>
> I don't know how to answer these questions. If you installed all
> components using 'yum install fred-*'. You have to start all servers.
>
> sudo /etc/init.d/postgresql initdb
> sudo /etc/init.d/postgresql start
> sudo /etc/init.d/omniNames start
> sudo /etc/init.d/fred-server start
> sudo /etc/init.d/httpd start
> sudo /etc/init.d/fred-webadmin-server start
>
> Then you can connect to server with:
> /usr/bin/fred-client
>
> > (c) how I could efficiently or quickly import our current .mw ccTLD
> > registry data into FRED
>
> First you will have to configure FRED for .mw. You shoud add your system
> registrar and your zone to FRED and allow this registrar to register
> this zone.
>
> /usr/sbin/fred-admin --zone_add --zone_fqdn=tz
> /usr/sbin/fred-admin --registrar_add --registrar_handle=REG-MW
>
> Now change in /etc/fred/fred-client.conf username from REG-FRED_A to
> REG-MW. You sould be able to connect with this registrar
>
> When we migrated from old system to FRED we used normal fred-client. You
> will have to create commands (create_contact, create_nsset,
> create_domain) that reflect your current database and use fred-client to
> process these commands.
>
> Regards,
> Jaromir
>
Paulos
==============================
Dr Paulos Nyirenda
Malawi SDNP Coodinator
----------------------------------------------------------
Malawi SDNP Webmail: http://www.sdnp.org.mw
Access your Malawi SDNP e-mail from anywhere in the world.
----------------------------------------------------------
Im thinking about, in which order i have to do the fred-client commands.
For example, when i want to run the create_domain command, i think under normal circumstances i first need to run the create_contact command.
And do i need to run check_domain before i run a create_domain command, or does the system check this automatically ?
And when i run delete_domain, does the system check, if i first have to delete one contact, which is only used in this domain ?
Is there any documentation on this subject ?
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
The FRED homepage now (2008.11.05 03:23 CET) shows this error:
Trac Error
TracError: The Trac Environment needs to be upgraded.
Run "trac-admin /var/trac/fred upgrade"
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
I have created one domain name with fred-client: NIC.FO
When i use the check_domain command (in Fred client) i get the answer, that this domain is created.
But when i look in the postgreSQL database, i cant find the domain name NIC.FO ?
It is not in the DOMAIN table, and not in the ZONE table.
In which table are the domain names stored ?
peter
________________________________
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
hi
im trying to get .fo domains into fred.
i first did this:
/usr/sbin/fred-admin --zone_add --zone_fqdn=fo
/usr/sbin/fred-admin --registrar_add --registrar_handle=REG-TLD
/usr/sbin/fred-admin --registrar_add_zone --zone_fqdn=fo --registrar_handle=REG-TLD
then i try to run this command in fred-client:
REG-TLD@localhost> create_domain nic.fo cid:REG-TLD
Do you really want to send this command to the server? (y/N): y
ERROR: Server returned an empty message.
Ending session at localhost
Disconnected.
Try to automaticly reconnect - send login.
Connecting to localhost, port 700 ...
Connected!
ERROR: Parameter value syntax error
Reason: contact handle of registrant does not exist.
What am i doing wrong ?
________________________________________
Fra: fred-users-bounces(a)lists.nic.cz [fred-users-bounces(a)lists.nic.cz] På vegne af Jaromír Talíř [jaromir.talir(a)nic.cz]
Sendt: 4. november 2008 13:50
Til: fred-users(a)lists.nic.cz
Emne: Re: SV: Fred dramas
You can use this commands which do almost the same:
/usr/sbin/fred-admin --zone_add --zone_fqdn=tld
/usr/sbin/fred-admin --registrar_add --registrar_handle=REG-TLD
/usr/sbin/fred-admin --registrar_add_zone --zone_fqdn=tld
--registrar_handle=REG-TLD
This will create new registrar as copy of REG-FRED_A, new zone as copy
of .cz and allow new registrar to register new zone.
Jaromir
Julian De Marchi píše v Út 04. 11. 2008 v 21:10 +1000:
> Jaromír Talíř wrote:
> > Yes, this is unimplemented section. We think once there will be some
> > registry statistics for internal usage, but there are no plans yet.
> > Currently our development in web administration interface (daphne) is
> > concentrated on Users, User profiles, Authorization and Auditing. I
> > expect next release in about month.
>
> One last question before I call it a night. On your site you have;
>
> #!/bin/bash
> ZONE=change_me
> PRIMARY=primary.ns.change_me
> HOSTMASTER=hostmaster.change_me
> fred -U fred fred << _EOF_
> INSERT INTO zone
> (fqdn,ex_period_min,ex_period_max,val_period,dots_max)
> VALUES('${ZONE}', 12, 12, 0, 1);
> INSERT INTO zone_soa (Zone, TTL, Hostmaster, Serial, Refresh,
> Update_retr, Expiry, Minimum, ns_fqdn) VALUES (curval('zone_id_seq'),
> 18000, '${HOSTMASTER}', NULL, 10600, 3600, 1209600, 7200, '${PRIMARY}');
> INSERT INTO zone_ns (Zone, fqdn, addrs) VALUES (curval('zone_id_seq'),
> '${PRIMARY}', '{}');
> INSERT INTO registrarinvoice (registrarid,zone,fromdate) VALUES
> (currval('registrar_id_seq'),curval('zone_id_seq'),NOW());
> _EOF_
>
>
> To create the first zone. How would one do this in the current version?
>
> --julian
>
> _______________________________________________
> Fred-users mailing list
> Fred-users(a)lists.nic.cz
> https://lists.nic.cz/mailman/listinfo/fred-users
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
Dear Jaromir.
thanks for ur support, I run the* yum install boost-devel *and run the
./fred-manager start and got the following message:
*# ./fred-manager start
Starting PostgreSQL [FAILED]
mkdir: cannot create directory `/root/root/nofred/omniNames/': No such
file or directory
Cannot open error log file: /root/root/nofred/omniNames.log
usage: omniNames [-start [<port>]]
[-logdir <directory name>]
[-nohostname]
[-errlog <file name>]
[-ignoreport]
[<omniORB-options>...]
Use -start option to start omniNames for the first time.
With no <port> argument, the standard default of 2809 is used.
Use -logdir option to specify the directory where the log/data files are
kept.
Use -nohostname to suppress the inclusion of the hostname in the log files.
Use -errlog option to specify where standard error output is redirected.
Use -ignoreport option to ignore the port specification when determining
the end points to listen on, using -ORBendPoint arguments instead.
You can also set the environment variable OMNINAMES_LOGDIR to specify the
directory where the log/data files are kept.
Starting omniNames... [ OK ]
./fred-manager: line 550: /root/root/etc/init.d/fred-server: No such file or
directory
Starting Apache... [FAILED]
./fred-manager: line 552: /root/root/etc/init.d/fred-webadmin-server: No
such file or directory
#*
*I checked the httpd, omniNames and postgres services status and found them
running.
Thank again for your support.*
On Wed, Oct 22, 2008 at 9:57 AM, Jaromir Talir via RT <fred(a)nic.cz> wrote:
> Hello,
>
> you have to install boost libraries:
>
> yum install boost-devel
>
> hope it will help.
>
> If you will have another questions, you can use our list
> https://lists.nic.cz/mailman/listinfo/fred-users
> There is an archive of emails where you can find some valuable
> informations.
>
> Regards,
> Jaromir
>
--
Edouard M.
rw ccTLD Administrator
Mob: 250 08352776
250 05129000
I have started to design the PHP Registrar Web Interface.
Just want to ask one simple question, i think i know the answer, but want to be sure:
In our system we want to have different users, for example:
Administrator
Office employee
And also every person who creates one domain, is a user, who will get a username and password.
Should we register these users and logs for these users action in our PHP Registrar Web Interface program, or is it possible to register it in the FRED database ?
What would you recommend ?
regards
Petur
________________________________
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
2 more questions:
1) Does FRED support IDN, and how can i import the special characters for .fo to FRED ?
2) Does the FRED logs save every action, that one user does, so its possible to trace back who did what ?
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
FYI
--
Experiences of a Small ccTLD
Stephen Deerhake
APTLD Member’s Meeting
Kuala Lumpur –22 May 2008
http://tinyurl.com/5dtc5t
greetings
marc
--
Les enfants teribbles - research and deployment
web : http://marc.cuseeme
i was facing the same problem, you will a lot of difficulties to install
the required packages, which include installing of python required
binaries,omniORB and omniORPy, apache modules and so on.
i migrate to Ubuntu linux and most of the required binaries will be
install using apt-get sub command, but probably you will be faced with too
problems:
1. managing SSL certificate.
2. Interface language which is not English.
and you have to remove any other http server except apache2
regards..
> Send Fred-users mailing list submissions to
> fred-users(a)lists.nic.cz
>
> To subscribe or unsubscribe via the World Wide Web, visit
> https://lists.nic.cz/mailman/listinfo/fred-users
> or, via email, send a message with subject or body 'help' to
> fred-users-request(a)lists.nic.cz
>
> You can reach the person managing the list at
> fred-users-owner(a)lists.nic.cz
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Fred-users digest..."
>
>
> Today's Topics:
>
> 1. help - Re: installing FRED on Fedora 9 (Dr Paulos Nyirenda)
> 2. Re: Thanks, and a question (Jarom?r Tal??)
> 3. Re: Payment solution (Jarom?r Tal??)
> 4. Re: Integration of client into PHP, client_example.php
> (Jarom?r Tal??)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Tue, 21 Oct 2008 17:06:43 +0200
> From: "Dr Paulos Nyirenda" <paulos(a)sdnp.org.mw>
> Subject: help - Re: installing FRED on Fedora 9
> To: Petur Kirke <pk(a)simprentis.com>, fred-users(a)lists.nic.cz
> Message-ID: <48FE0C23.4936.1BEC99F(a)paulos.sdnp.org.mw>
> Content-Type: text/plain; charset=US-ASCII
>
>
> This method did not work for me on Fedora8, did you have to install
>
> fred-repo
>
> befor using yum?
>
> Regards,
>
> Paulos
> ======================
> Dr Paulos B Nyirenda
> .mw ccTLD
> http://www.registrar.mw
>
>
> On 16 Oct 2008 at 10:24, Petur Kirke wrote:
>
>>
>> I have installed Fedora 9 on a machine, and then i installed the FRED
>> binary package
>> for Fedora 9 like this:
>>
>> yum install fred-*
>>
>> This installation worked very fine.
>>
>> But where to go from here ?
>>
>> I looked at the Fred website, under "documentation", and "FRED
>> Howto", but it looks like this dokumentation assumes that we use
>> Debian.
>> Where can i see what to do after installing the FRED binary package
>> for Fedora 9 ?
>>
>>
>>
>> Peter
>>
>>
>> This email and its attachments may be confidential and are intended
>> solely for the use of the individual to whom it is addressed.
>> If you are not the intended recipient or authorized to receive
>> information for the intended recipient you are notified that
>> disclosing, copying, distributing or taking any action in reliance on
>> the contents of this information is strictly prohibited. If the email
>> contains proposals, they are valid for 30 days following the date of
>> email transmission. Finally, the recipient should check this email
>> and any attachment for the presence of viruses. The company accepts
>> no liability for any damage caused by any virus transmitted by email.
>>
>
>
>
>
> ------------------------------
>
> Message: 2
> Date: Wed, 22 Oct 2008 08:46:38 +0200
> From: Jarom?r Tal?? <jaromir.talir(a)nic.cz>
> Subject: Re: Thanks, and a question
> To: fred-users(a)lists.nic.cz
> Message-ID: <1224657998.3526.21.camel(a)localhost.localdomain>
> Content-Type: text/plain; charset="utf-8"
>
> Hi Mario,
>
> sorry for my late answer. In our ubuntu packages repository we have
> package fred-server separated into four packages (fred-common,
> fred-rifd, fred-pifd, fred-adifd). All this binary packages are build
> from fred-server source package. Those fred-*ifd packages contain
> servers for registrar interface, public interface and administration
> inteface. We separated them just because different importance of these,
> for example we upgrade and restart administration interface very often
> and on the contrary - registrar interface must be restarted only when we
> inform registrars. This is just our policy.
>
>>From your email it looks like you forgot to sign your eppclient.pem
> certificate with ubuntu CA certificate. Client certificate cannot be
> self signed (of course except of situation when the same certificate is
> configured as CA certificate)
>
> Hope It will help.
>
> Regards,
> Jaromir
>
> On Wed, 2008-09-24 at 12:03 -0600, Mario Guerra wrote:
>> Jatomir and all:
>>
>> Thanks. I've tested the Live CD with the 01/01/2008 date. It works
>> perfectly. The net effect is that it create zones so easily and, at the
>> same time, stores in a database the administrative data using EPP.
>> Moreover it keeps it simple.
>>
>> The disk installation:
>>
>> In our case my approach has been installing the Ubuntu hardy (8.04)
>> .deb packages, fred-*.deb, which install dome dependencies too. I see
>> that there are no .dev for fred-server (including the Python parts), so
>> I installed these by hand (in /usr/.local) . Is that correct?. What
>> about generating .deb packages for these, too?.
>>
>> For installing the certificates I do this:
>>
>> 1. I use the CA included in the ca-certificates Debian package which, in
>> my opinion, is adequate (I don't have to generate a CA certificate
>> myself.
>> 2. For the mod-eppd Apache module, I generate the self-signed
>> certificates using the usual procedures for generating them for
>> encrypted HTML:
>>
>>
>> openssl genrsa -des3 -out eppd.key 4096
>> openssl req -new -key eppd.key -out eppd.csr
>> openssl x509 -req -days 3650 -in eppd.csr -signkey eppd.key -out
>> eppd.crt
>> openssl rsa -in eppd.key -out eppd.key.insecure
>> mv eppd.key eppd.key.secure;mv eppd.key.insecure eppd.key
>> chmod 600 *.key
>> /etc/init.d/apache2 force-reload
>>
>> 3. For the fred-client certificate configuration I rather use a method I
>> prefer, say,, for dovecot SSL configuration:
>>
>> openssl req -new -x509 -nodes -out eppclient.pem -keyout eppclient.pem
>>
>> 4. After generating both certificates I first configure the mod-eppd
>> virtualhost:
>>
>> Listen *:700
>>
>> <VirtualHost *:700>
>>
>> CorbaEnable On
>> CorbaNameservice "localhost"
>> CorbaObject "EPP" "EPP_alias"
>>
>> EPPprotocol On
>> EPPObject "EPP_alias"
>> EPPschema "/usr/share/fred-mod-eppd/schemas/all-1.4.xsd"
>> EPPservername "CR.NIC's EPP server"
>> EPPlog "/var/log/apache2/eppd.log"
>> EPPloglevel error
>> EPPvalidResponse Off
>>
>> SSLEngine off
>> SSLCipherSuite
>> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+
>> EXP:+eNULL
>> SSLVerifyClient require
>> SSLCertificateFile /etc/ssl/fred/eppd.crt
>> SSLCertificateKeyFile /etc/ssl/fred/eppd.key
>> SSLCACertificateFile /etc/ssl/certs/ca.pem
>> SSLVerifyDepth 1
>>
>> </VirtualHost>
>>
>> Notice the /etc/ssl/certs/ca.pem CA certificate, which is the standard
>> Ubuntu CA certificate. This should be adequate, because it expires much
>> later.
>>
>> 5. /etc/init.d/apache2 force-reload
>>
>> 6. For the epp-client configuration file I have this in
>> /usr/local/etc/fred/fred-client.conf:
>>
>> [connect]
>> ;; dir=/usr/local/share/fred-client/ssl
>> host = localhost
>> port = 700
>> ssl_cert = /etc/ssl/fred/eppclient.pem
>> ssl_key = /etc/ssl/fred/eppclient.pem
>> username = REG-FRED_A
>> password = passwd
>> username2 = REG-FRED_B
>> password2 = passwd
>>
>> etc.....
>>
>>
>> 7. When I run fred-client I get this:
>>
>> root@mguerra:/etc/fred# fred-client
>> FredClient 1.6.1
>> Type "help", "license" or "credits" for more information.
>>
>> Using configuration from /usr/local/etc/fred/fred-client.conf
>> Connecting to localhost, port 700 ...
>>
>> ERROR: socket.sslerror: (1, 'error:140770FC:SSL
>> routines:SSL23_GET_SERVER_HELLO:unknown protocol') (localhost:700)
>> Certificate not signed by verified certificate authority.
>>
>> The date gives this:
>>
>> mi? sep 24 11:33:57 CST 2008 (mi? means Wednesday).
>>
>> What can be the reason for this?. Should I use other CA certificate?. Or
>> perhaps I should use a certificate in ~/fredclient.pem?.
>>
>> Thank you in advance.
>>
>> Mario
>>
>> _______________________________________________
>> Fred-users mailing list
>> Fred-users(a)lists.nic.cz
>> https://lists.nic.cz/mailman/listinfo/fred-users
>
