Hello,
I have now installed FRED using yum on fedora 8, went smoothly, but
now I am getting httpd errors.
I have gone through most of the configuration but I have a problem
confguring httpd/apache. Apache breaks when I put the mod_eppd.so
module in the conf, I start getting the error:
> Permission denied: make_sock: could not bind to address 0.0.0.0:700
> no listening sockets available, shutting down
> Unable to open logs
How do I configure httpd for fred?
I also need pointers on how to generate the certificates for epp.
Thanks in advance.
Regards,
Paulos
======================
Dr Paulos B Nyirenda
.mw ccTLD
http://www.registrar.mw
On 23 Oct 2008 at 22:12, Jaromír Talír wrote:
> Hello,
>
> if you have fedora 8, it should be enough to install Fred by using
> command 'yum install fred-*'. You don't need to compile anything.
> OmniORB package is in dependencies and should be downloaded
> automatically. If you need to build Fred from sources you shoudl install
> omniORB by command 'yum install omniORB*'.
>
> All these example expect you already installed fred-repo package.
>
> Regards,
> Jaromir
Let me present myself or us. We are the cctld Manager for the .fo domain (Faroe Islands), and we are seriously considering using FRED to manage our domains.
We have now succesfully installed FRED. We installed the OS: Fedora 9, and the Fred binary package for Fedora 9. Then we followed the documentation HOWTO, and in the end everything is working succesfully, even if the HOWTO wasnt made for Fedora 9. :)
We now have an Admin Web Interface and a Public Web Interface (whois). But it seems like, there is no WEB interface for the Registrar Interface (client). And in the documentation it says:
FRED provides ... a GUI client (currently at experimental stage only) ...
So our next question is:
At this time (october 2008), does Fred have any WEB interface, where end users can create (or apply for) domains ?
Because in our country we dont use Registrars, we really need one WEB interface for this. How would you recommend us to solve this task ?
Petur Kirke
Web (PHP) Programmer
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
I read this in the fred-client documentation:
"In this client version, only two languages are available: en - English; cs - Czech."
What about .fo ? How can i implement it in FRED ?
regards
Petur, PHP Programmer, working for nic.fo
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
In FRED homepage, under Documentation, Fred_client readme (README_EN.txt), it says:
----------
Chapter 6. Integration of client into the PHP code
CAUTION ! The PHP support extension is in a development and testing phase in this version of the client.
The final solution may differ.
The client also contains a sample PHP script, which demonstrates
how to integrate the client into a PHP solution: doc/client_example.php. It is necessary to correctly set the
route to client: $exec_path (unless the client was installed
using the standard procedure). The $php_module_name variable
sets redirection to file and $command_options enable addition of other parameters
when necessary.
----------
But i cannot find the file client_example.php on my server !
Does anyone know why ?
Can someone send me this file ?
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
Hi,
I have installed Fred with yum install fred-* on a Fedora 8 and
everything seems to have worked correctly.
However, I am a bit stuck with the documentation as to what to do
exactly from there since the docs seems to be using an install on Ubuntu.
Can you please give me some direction from here?
--
Kind regards,
Eddy
I have installed Fedora 9 on a machine, and then i installed the FRED binary package
for Fedora 9 like this:
yum install fred-*
This installation worked very fine.
But where to go from here ?
I looked at the Fred website, under "documentation", and "FRED Howto", but it looks like this dokumentation assumes that we use Debian.
Where can i see what to do after installing the FRED binary package for Fedora 9 ?
Peter
________________________________
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
I think i know the answer, but just to be sure:
Does FRED contain a payment solution ? Where domain registrars or registrants can make payments to the cctld Manager using creditcard ?
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed.
If you are not the intended recipient or authorized to receive information for the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. If the email contains proposals, they are valid for 30 days following the date of email transmission. Finally, the recipient should check this email and any attachment for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by email.
Hi I am looking at using the fred-client to communicate zia EPP with
Ausregistry the AU registrar. I am able to get the client to run so I
am assuming that my config is ok and SSL ket files are correct.
Though when I connect and try to do a simple hello statement I get this error:
registry:/var/www/fred# python2.4 ./fred-client --config ./conf/fred-client.conf
FredClient 1.6.1
Type "help", "license" or "credits" for more information.
Using configuration from ./conf/fred-client.conf
> hello
Used socket type: IPv4.
Socket timeout: 10.0 sec.
Connecting to portal-ote.ausregistry.net.au, port 700 ...
Connection established.
Try to open SSL layer...
ERROR: getaddrinfo() socket.error [-8] Servname not supported for ai_socktype
>
This suggests to me that that the error is from a misconfiguration
hosname but I have checked and this looks fine as i is the one from
our existing EPP solution. What else would cause this error.
I was getting an error about EOF but downloaded the latest version of
the fred-client and now I am getting this error. I am now using
version 1.6.1.
Also my config is as bellow, please note that I have used both the the
hostname and the IP address of the server in the host config value. I
have even tried this with the hostname/ip in parenthesize and no
success there.
My config is as follows:
> registry:/var/www/fred# cat conf/fred-client.conf
[connect]
dir=/var/www/fred/fred/certificates
host = portal-ote.ausregistry.net.au
port = 700
ssl_cert = %(dir)s/CHEAPERDOMAINS-OTE-cert.pem
ssl_key = %(dir)s/CHEAPERDOMAINS-key.pem
username = ***************
password = ***************
;; Every XML namespace can have the version independent to others:
schema_version_contact = 1.2
schema_version_nsset = 1.2
schema_version_domain = 1.2
schema_version_enum = 1.1
schema_version_fred = 1.0
schema_version_epp = 1.0
;; socket timeout in sec. In MS Windows MUST be set to 0.0 (timeout bug)
timeout = 10.0
;; turn off automatic login process after start up
nologin = n
[session]
schema = /var/www/fred/fred/schemas/all-1.4.xsd
;; send "poll ack" right after to "poll req"
poll_autoack = off
;; confirm all editable commands
confirm_send_commands = on
;; enable/disable xmllint
validate = on
;; display colors on tty console
colors = yes
;; set verbose level 1,2,3
verbose = 3
Jatomir and all:
Thanks. I've tested the Live CD with the 01/01/2008 date. It works
perfectly. The net effect is that it create zones so easily and, at the
same time, stores in a database the administrative data using EPP.
Moreover it keeps it simple.
The disk installation:
In our case my approach has been installing the Ubuntu hardy (8.04)
.deb packages, fred-*.deb, which install dome dependencies too. I see
that there are no .dev for fred-server (including the Python parts), so
I installed these by hand (in /usr/.local) . Is that correct?. What
about generating .deb packages for these, too?.
For installing the certificates I do this:
1. I use the CA included in the ca-certificates Debian package which, in
my opinion, is adequate (I don't have to generate a CA certificate myself.
2. For the mod-eppd Apache module, I generate the self-signed
certificates using the usual procedures for generating them for
encrypted HTML:
openssl genrsa -des3 -out eppd.key 4096
openssl req -new -key eppd.key -out eppd.csr
openssl x509 -req -days 3650 -in eppd.csr -signkey eppd.key -out eppd.crt
openssl rsa -in eppd.key -out eppd.key.insecure
mv eppd.key eppd.key.secure;mv eppd.key.insecure eppd.key
chmod 600 *.key
/etc/init.d/apache2 force-reload
3. For the fred-client certificate configuration I rather use a method I
prefer, say,, for dovecot SSL configuration:
openssl req -new -x509 -nodes -out eppclient.pem -keyout eppclient.pem
4. After generating both certificates I first configure the mod-eppd
virtualhost:
Listen *:700
<VirtualHost *:700>
CorbaEnable On
CorbaNameservice "localhost"
CorbaObject "EPP" "EPP_alias"
EPPprotocol On
EPPObject "EPP_alias"
EPPschema "/usr/share/fred-mod-eppd/schemas/all-1.4.xsd"
EPPservername "CR.NIC's EPP server"
EPPlog "/var/log/apache2/eppd.log"
EPPloglevel error
EPPvalidResponse Off
SSLEngine off
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+
EXP:+eNULL
SSLVerifyClient require
SSLCertificateFile /etc/ssl/fred/eppd.crt
SSLCertificateKeyFile /etc/ssl/fred/eppd.key
SSLCACertificateFile /etc/ssl/certs/ca.pem
SSLVerifyDepth 1
</VirtualHost>
Notice the /etc/ssl/certs/ca.pem CA certificate, which is the standard
Ubuntu CA certificate. This should be adequate, because it expires much
later.
5. /etc/init.d/apache2 force-reload
6. For the epp-client configuration file I have this in
/usr/local/etc/fred/fred-client.conf:
[connect]
;; dir=/usr/local/share/fred-client/ssl
host = localhost
port = 700
ssl_cert = /etc/ssl/fred/eppclient.pem
ssl_key = /etc/ssl/fred/eppclient.pem
username = REG-FRED_A
password = passwd
username2 = REG-FRED_B
password2 = passwd
etc.....
7. When I run fred-client I get this:
root@mguerra:/etc/fred# fred-client
FredClient 1.6.1
Type "help", "license" or "credits" for more information.
Using configuration from /usr/local/etc/fred/fred-client.conf
Connecting to localhost, port 700 ...
ERROR: socket.sslerror: (1, 'error:140770FC:SSL
routines:SSL23_GET_SERVER_HELLO:unknown protocol') (localhost:700)
Certificate not signed by verified certificate authority.
The date gives this:
mié sep 24 11:33:57 CST 2008 (mié means Wednesday).
What can be the reason for this?. Should I use other CA certificate?. Or
perhaps I should use a certificate in ~/fredclient.pem?.
Thank you in advance.
Mario
Jaromír Talír,
I would like to request you or .CZ to index the subject line for this
FRED-USERS discussion list with a list identifier so that we can
separate its mail from the rest and hence avoid its mail being caught
up in the spam filter.
You may just use or include something like [FRED-USERS] in the
subject line like most lists now do, like in my subject above.
I like to read mail from this list but it is becoming difficult to
separate its mail from spam, the message below is such an example.
Regards,
Paulos
======================
Dr Paulos B Nyirenda
.mw ccTLD
http://www.registrar.mw
------- Forwarded message follows -------
From: Marc Manthey <marc(a)let.de>
To: fred-users(a)lists.nic.cz
Subject: Re: Payment solution
Date sent: Sun, 19 Oct 2008 19:39:58 +0200
Send reply to: fred-users(a)lists.nic.cz
<mailto:fred-users-request@lists.nic.cz?subject=unsubscribe>
<mailto:fred-users-request@lists.nic.cz?subject=subscribe>
Keywords:
Am 19.10.2008 um 19:23 schrieb Petur Kirke:
>
> Does FRED contain a payment solution ? Where domain registrars or
> registrants can make payments to the cctld Manager using creditcard ?
i think the developerteam would apriciate to implement such a thing
when you pay for it ;)
Question : Would you share it after you pay for it ? ;)
> This email and its attachments may be confidential
????
Marc
_______________________________________________
Fred-users mailing list
Fred-users(a)lists.nic.cz
https://lists.nic.cz/mailman/listinfo/fred-users
------- End of forwarded message -------
