I have started to design the PHP Registrar Web Interface.
Just want to ask one simple question, i think i know the answer, but want to be sure:
In our system we want to have different users, for example:
Administrator
Office employee
And also every person who creates one domain, is a user, who will get a username and password.
Should we register these users and logs for these users action in our PHP Registrar Web Interface program, or is it possible to register it in the FRED database ?
What would you recommend ?
regards
Petur
________________________________
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
2 more questions:
1) Does FRED support IDN, and how can i import the special characters for .fo to FRED ?
2) Does the FRED logs save every action, that one user does, so its possible to trace back who did what ?
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
FYI
--
Experiences of a Small ccTLD
Stephen Deerhake
APTLD Member’s Meeting
Kuala Lumpur –22 May 2008
http://tinyurl.com/5dtc5t
greetings
marc
--
Les enfants teribbles - research and deployment
web : http://marc.cuseeme
i was facing the same problem, you will a lot of difficulties to install
the required packages, which include installing of python required
binaries,omniORB and omniORPy, apache modules and so on.
i migrate to Ubuntu linux and most of the required binaries will be
install using apt-get sub command, but probably you will be faced with too
problems:
1. managing SSL certificate.
2. Interface language which is not English.
and you have to remove any other http server except apache2
regards..
> Send Fred-users mailing list submissions to
> fred-users(a)lists.nic.cz
>
> To subscribe or unsubscribe via the World Wide Web, visit
> https://lists.nic.cz/mailman/listinfo/fred-users
> or, via email, send a message with subject or body 'help' to
> fred-users-request(a)lists.nic.cz
>
> You can reach the person managing the list at
> fred-users-owner(a)lists.nic.cz
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Fred-users digest..."
>
>
> Today's Topics:
>
> 1. help - Re: installing FRED on Fedora 9 (Dr Paulos Nyirenda)
> 2. Re: Thanks, and a question (Jarom?r Tal??)
> 3. Re: Payment solution (Jarom?r Tal??)
> 4. Re: Integration of client into PHP, client_example.php
> (Jarom?r Tal??)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Tue, 21 Oct 2008 17:06:43 +0200
> From: "Dr Paulos Nyirenda" <paulos(a)sdnp.org.mw>
> Subject: help - Re: installing FRED on Fedora 9
> To: Petur Kirke <pk(a)simprentis.com>, fred-users(a)lists.nic.cz
> Message-ID: <48FE0C23.4936.1BEC99F(a)paulos.sdnp.org.mw>
> Content-Type: text/plain; charset=US-ASCII
>
>
> This method did not work for me on Fedora8, did you have to install
>
> fred-repo
>
> befor using yum?
>
> Regards,
>
> Paulos
> ======================
> Dr Paulos B Nyirenda
> .mw ccTLD
> http://www.registrar.mw
>
>
> On 16 Oct 2008 at 10:24, Petur Kirke wrote:
>
>>
>> I have installed Fedora 9 on a machine, and then i installed the FRED
>> binary package
>> for Fedora 9 like this:
>>
>> yum install fred-*
>>
>> This installation worked very fine.
>>
>> But where to go from here ?
>>
>> I looked at the Fred website, under "documentation", and "FRED
>> Howto", but it looks like this dokumentation assumes that we use
>> Debian.
>> Where can i see what to do after installing the FRED binary package
>> for Fedora 9 ?
>>
>>
>>
>> Peter
>>
>>
>> This email and its attachments may be confidential and are intended
>> solely for the use of the individual to whom it is addressed.
>> If you are not the intended recipient or authorized to receive
>> information for the intended recipient you are notified that
>> disclosing, copying, distributing or taking any action in reliance on
>> the contents of this information is strictly prohibited. If the email
>> contains proposals, they are valid for 30 days following the date of
>> email transmission. Finally, the recipient should check this email
>> and any attachment for the presence of viruses. The company accepts
>> no liability for any damage caused by any virus transmitted by email.
>>
>
>
>
>
> ------------------------------
>
> Message: 2
> Date: Wed, 22 Oct 2008 08:46:38 +0200
> From: Jarom?r Tal?? <jaromir.talir(a)nic.cz>
> Subject: Re: Thanks, and a question
> To: fred-users(a)lists.nic.cz
> Message-ID: <1224657998.3526.21.camel(a)localhost.localdomain>
> Content-Type: text/plain; charset="utf-8"
>
> Hi Mario,
>
> sorry for my late answer. In our ubuntu packages repository we have
> package fred-server separated into four packages (fred-common,
> fred-rifd, fred-pifd, fred-adifd). All this binary packages are build
> from fred-server source package. Those fred-*ifd packages contain
> servers for registrar interface, public interface and administration
> inteface. We separated them just because different importance of these,
> for example we upgrade and restart administration interface very often
> and on the contrary - registrar interface must be restarted only when we
> inform registrars. This is just our policy.
>
>>From your email it looks like you forgot to sign your eppclient.pem
> certificate with ubuntu CA certificate. Client certificate cannot be
> self signed (of course except of situation when the same certificate is
> configured as CA certificate)
>
> Hope It will help.
>
> Regards,
> Jaromir
>
> On Wed, 2008-09-24 at 12:03 -0600, Mario Guerra wrote:
>> Jatomir and all:
>>
>> Thanks. I've tested the Live CD with the 01/01/2008 date. It works
>> perfectly. The net effect is that it create zones so easily and, at the
>> same time, stores in a database the administrative data using EPP.
>> Moreover it keeps it simple.
>>
>> The disk installation:
>>
>> In our case my approach has been installing the Ubuntu hardy (8.04)
>> .deb packages, fred-*.deb, which install dome dependencies too. I see
>> that there are no .dev for fred-server (including the Python parts), so
>> I installed these by hand (in /usr/.local) . Is that correct?. What
>> about generating .deb packages for these, too?.
>>
>> For installing the certificates I do this:
>>
>> 1. I use the CA included in the ca-certificates Debian package which, in
>> my opinion, is adequate (I don't have to generate a CA certificate
>> myself.
>> 2. For the mod-eppd Apache module, I generate the self-signed
>> certificates using the usual procedures for generating them for
>> encrypted HTML:
>>
>>
>> openssl genrsa -des3 -out eppd.key 4096
>> openssl req -new -key eppd.key -out eppd.csr
>> openssl x509 -req -days 3650 -in eppd.csr -signkey eppd.key -out
>> eppd.crt
>> openssl rsa -in eppd.key -out eppd.key.insecure
>> mv eppd.key eppd.key.secure;mv eppd.key.insecure eppd.key
>> chmod 600 *.key
>> /etc/init.d/apache2 force-reload
>>
>> 3. For the fred-client certificate configuration I rather use a method I
>> prefer, say,, for dovecot SSL configuration:
>>
>> openssl req -new -x509 -nodes -out eppclient.pem -keyout eppclient.pem
>>
>> 4. After generating both certificates I first configure the mod-eppd
>> virtualhost:
>>
>> Listen *:700
>>
>> <VirtualHost *:700>
>>
>> CorbaEnable On
>> CorbaNameservice "localhost"
>> CorbaObject "EPP" "EPP_alias"
>>
>> EPPprotocol On
>> EPPObject "EPP_alias"
>> EPPschema "/usr/share/fred-mod-eppd/schemas/all-1.4.xsd"
>> EPPservername "CR.NIC's EPP server"
>> EPPlog "/var/log/apache2/eppd.log"
>> EPPloglevel error
>> EPPvalidResponse Off
>>
>> SSLEngine off
>> SSLCipherSuite
>> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+
>> EXP:+eNULL
>> SSLVerifyClient require
>> SSLCertificateFile /etc/ssl/fred/eppd.crt
>> SSLCertificateKeyFile /etc/ssl/fred/eppd.key
>> SSLCACertificateFile /etc/ssl/certs/ca.pem
>> SSLVerifyDepth 1
>>
>> </VirtualHost>
>>
>> Notice the /etc/ssl/certs/ca.pem CA certificate, which is the standard
>> Ubuntu CA certificate. This should be adequate, because it expires much
>> later.
>>
>> 5. /etc/init.d/apache2 force-reload
>>
>> 6. For the epp-client configuration file I have this in
>> /usr/local/etc/fred/fred-client.conf:
>>
>> [connect]
>> ;; dir=/usr/local/share/fred-client/ssl
>> host = localhost
>> port = 700
>> ssl_cert = /etc/ssl/fred/eppclient.pem
>> ssl_key = /etc/ssl/fred/eppclient.pem
>> username = REG-FRED_A
>> password = passwd
>> username2 = REG-FRED_B
>> password2 = passwd
>>
>> etc.....
>>
>>
>> 7. When I run fred-client I get this:
>>
>> root@mguerra:/etc/fred# fred-client
>> FredClient 1.6.1
>> Type "help", "license" or "credits" for more information.
>>
>> Using configuration from /usr/local/etc/fred/fred-client.conf
>> Connecting to localhost, port 700 ...
>>
>> ERROR: socket.sslerror: (1, 'error:140770FC:SSL
>> routines:SSL23_GET_SERVER_HELLO:unknown protocol') (localhost:700)
>> Certificate not signed by verified certificate authority.
>>
>> The date gives this:
>>
>> mi? sep 24 11:33:57 CST 2008 (mi? means Wednesday).
>>
>> What can be the reason for this?. Should I use other CA certificate?. Or
>> perhaps I should use a certificate in ~/fredclient.pem?.
>>
>> Thank you in advance.
>>
>> Mario
>>
>> _______________________________________________
>> Fred-users mailing list
>> Fred-users(a)lists.nic.cz
>> https://lists.nic.cz/mailman/listinfo/fred-users
>
Hello,
I have now installed FRED using yum on fedora 8, went smoothly, but
now I am getting httpd errors.
I have gone through most of the configuration but I have a problem
confguring httpd/apache. Apache breaks when I put the mod_eppd.so
module in the conf, I start getting the error:
> Permission denied: make_sock: could not bind to address 0.0.0.0:700
> no listening sockets available, shutting down
> Unable to open logs
How do I configure httpd for fred?
I also need pointers on how to generate the certificates for epp.
Thanks in advance.
Regards,
Paulos
======================
Dr Paulos B Nyirenda
.mw ccTLD
http://www.registrar.mw
On 23 Oct 2008 at 22:12, Jaromír Talír wrote:
> Hello,
>
> if you have fedora 8, it should be enough to install Fred by using
> command 'yum install fred-*'. You don't need to compile anything.
> OmniORB package is in dependencies and should be downloaded
> automatically. If you need to build Fred from sources you shoudl install
> omniORB by command 'yum install omniORB*'.
>
> All these example expect you already installed fred-repo package.
>
> Regards,
> Jaromir
Let me present myself or us. We are the cctld Manager for the .fo domain (Faroe Islands), and we are seriously considering using FRED to manage our domains.
We have now succesfully installed FRED. We installed the OS: Fedora 9, and the Fred binary package for Fedora 9. Then we followed the documentation HOWTO, and in the end everything is working succesfully, even if the HOWTO wasnt made for Fedora 9. :)
We now have an Admin Web Interface and a Public Web Interface (whois). But it seems like, there is no WEB interface for the Registrar Interface (client). And in the documentation it says:
FRED provides ... a GUI client (currently at experimental stage only) ...
So our next question is:
At this time (october 2008), does Fred have any WEB interface, where end users can create (or apply for) domains ?
Because in our country we dont use Registrars, we really need one WEB interface for this. How would you recommend us to solve this task ?
Petur Kirke
Web (PHP) Programmer
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
I read this in the fred-client documentation:
"In this client version, only two languages are available: en - English; cs - Czech."
What about .fo ? How can i implement it in FRED ?
regards
Petur, PHP Programmer, working for nic.fo
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
In FRED homepage, under Documentation, Fred_client readme (README_EN.txt), it says:
----------
Chapter 6. Integration of client into the PHP code
CAUTION ! The PHP support extension is in a development and testing phase in this version of the client.
The final solution may differ.
The client also contains a sample PHP script, which demonstrates
how to integrate the client into a PHP solution: doc/client_example.php. It is necessary to correctly set the
route to client: $exec_path (unless the client was installed
using the standard procedure). The $php_module_name variable
sets redirection to file and $command_options enable addition of other parameters
when necessary.
----------
But i cannot find the file client_example.php on my server !
Does anyone know why ?
Can someone send me this file ?
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
Hi,
I have installed Fred with yum install fred-* on a Fedora 8 and
everything seems to have worked correctly.
However, I am a bit stuck with the documentation as to what to do
exactly from there since the docs seems to be using an install on Ubuntu.
Can you please give me some direction from here?
--
Kind regards,
Eddy
I have installed Fedora 9 on a machine, and then i installed the FRED binary package
for Fedora 9 like this:
yum install fred-*
This installation worked very fine.
But where to go from here ?
I looked at the Fred website, under "documentation", and "FRED Howto", but it looks like this dokumentation assumes that we use Debian.
Where can i see what to do after installing the FRED binary package for Fedora 9 ?
Peter
________________________________
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
