| *** Doug_ (43a31426@gateway/web/freenode/ip.67.163.20.38) has joined #wikid | 07:31 | |
| Doug_ | I am having an issue downloading the redhat rpm. When I submit the form, I get the following error code: 1309937595.260.199994860373 Anyone have a solution? | 07:33 |
|---|---|---|
| Doug_ | And when I try to contact the site admin, per the instructions, I receive another error...Error Unable to send mail: secureSend | 07:35 |
| *** sigmatelco (4e861bea@gateway/web/freenode/ip.78.134.27.234) has joined #wikid | 08:06 | |
| sigmatelco | Hi | 08:06 |
| sigmatelco | Here there is an Widid admin for some questions ? | 08:06 |
| sigmatelco | wikid sorry | 08:06 |
| sigmatelco | alamarka from ITALY ? | 08:08 |
| sigmatelco | ok | 08:11 |
| sigmatelco | bye | 08:11 |
| *** sigmatelco has quit (Quit: Page closed) | 08:12 | |
| *** Doug_ has quit (Quit: Page closed) | 08:18 | |
| *** Doug_ (43a31426@gateway/web/freenode/ip.67.163.20.38) has joined #wikid | 08:20 | |
| *** Doug_ has quit (Client Quit) | 08:25 | |
| *** Lake_Lurker (~Just@h50.15.30.71.dynamic.ip.windstream.net) has joined #wikid | 10:55 | |
| *** Lake_Lurker has parted #wikid (None) | 10:55 | |
| *** nowen (~nowen@adsl-98-66-165-16.asm.bellsouth.net) has joined #wikid | 12:50 | |
| *** WiKIDLogBot (~WiKIDLogB@ec2-174-129-6-100.compute-1.amazonaws.com) has joined #wikid | 14:02 | |
| card.freenode.net | Topic for #wikid is: support for the WiKID Strong Authentication System. If no one is here, try the nabble forums: http://www.wikidsystems.com/support/support/wikid-forums | 14:02 |
| card.freenode.net | Users on #wikid: WiKIDLogBot @nowen alamarca perestrelka asofrank mick_laptop | 14:02 |
| alamarca | morning | 14:11 |
| nowen | morning | 14:11 |
| *** micah_ (4a5590fd@gateway/web/freenode/ip.74.85.144.253) has joined #wikid | 17:12 | |
| *** jr (d8cb1832@gateway/web/freenode/ip.216.203.24.50) has joined #wikid | 17:19 | |
| micah_ | hey guys | 17:20 |
| jr | Hi. I'm unable to get a passcode from the iPhone app when connected to our corporate wireless networks. Other wireless networks work fine AND the andriod app works fine on our corporate wireless networks. | 17:21 |
| jr | I just wanted to give an FYI that I've enabled DEBUG mode, issued a bunch of failed requests, and sent the log to the developers, if interested. | 17:21 |
| micah_ | are you sure that you have port 80 open from that particular wireless network? you might be doing some haripin routing | 17:21 |
| micah_ | i had that problem when I deployed | 17:21 |
| micah_ | albeit at home... | 17:22 |
| jr | I'm able to telnet from my iPhone to the wikid server on port 80, and the andriod app works on the same network | 17:22 |
| micah_ | hm, weird | 17:22 |
| micah_ | i'm actually here because i can't get radius to start | 17:22 |
| *** wgordon (~wgordon@nat1.datalex.com) has joined #wikid | 17:22 | |
| jr | Alright, well I just wanted to drop a note in here for nowen that they should have some DEBUG logs if they want them. Catch ya guys later. | 17:26 |
| *** jr has parted #wikid (None) | 17:26 | |
| nowen | micah_: | 17:26 |
| nowen | usually this type of error on the iphone is a dns error | 17:27 |
| micah_ | so have you guys tested this on the latest ubuntu server? | 17:27 |
| nowen | oh sorry micah_ I misread | 17:27 |
| *** jr_ (d8cb1832@gateway/web/freenode/ip.216.203.24.50) has joined #wikid | 17:27 | |
| micah_ | I have tried fresh installs on 11.04 with the latest .deb package following the instructions but radius never starts | 17:28 |
| nowen | micah_: no. the latest I've tested on i s 10.10 | 17:28 |
| micah_ | i went down the centos path but had to stop after battling java which was driving me to drink | 17:28 |
| nowen | well, radius requires some entropy to start. try running something like ls -r in / | 17:28 |
| micah_ | so basically i should just run 10.04 and forget about it | 17:28 |
| nowen | no, let me download the server and see | 17:29 |
| jr_ | On the iPhone issue, we're using a zero-padded IP address. I wouldn't think DNS would be our issue in this case. | 17:29 |
| nowen | the token first checks domainid.wikidsystems.net and then zero-padded ip address | 17:30 |
| nowen | in the past, if domainid.wikidsystems.net didn't fail properly, the token choked. but that should be fixes | 17:31 |
| nowen | fixed | 17:31 |
| jr_ | k. I'll double-check the DNS and connections to domainid.wikidsystems.net. | 17:32 |
| nowen | seems odd though. | 17:32 |
| micah_ | also, is there support for ddns with the tokens? i'm guessing not | 17:33 |
| micah_ | but thought i would ask | 17:34 |
| nowen | micah_: what command are you running to see if radius is listening? | 17:34 |
| nowen | you can change the default dns provider in the PC tokens, but not the smartphone tokens | 17:34 |
| micah_ | netstat -an | grep 1812 | 17:35 |
| nowen | is there anything in the WiKIDAdmin logs? | 17:35 |
| micah_ | I did not see anything useful | 17:36 |
| micah_ | but then again i was looking in the UI | 17:36 |
| micah_ | I should read the actual file | 17:36 |
| micah_ | if you don't mind spinning up a VM with 11.04 i'm sure you will see it | 17:36 |
| micah_ | it's pretty consistent | 17:37 |
| nowen | np. downloading now | 17:37 |
| micah_ | i redid the VM and set it up in about 10 minutes | 17:37 |
| nowen | is SELInux on? | 17:38 |
| wgordon | Nick: JR and I may be onto something. We are using opendns for our wireless network, which doesn't properly respond for an NXDOMAIN reply. | 17:38 |
| nowen | wgordon: yes, but I thought the latest token for iphone fixed this. are you running the latest? | 17:39 |
| micah_ | oh, you know what, I didn't check | 17:39 |
| micah_ | i thought it was "off" by defualt on ubuntu | 17:39 |
| micah_ | on by default centos | 17:39 |
| micah_ | wouldn't be the first time that selinux has horked me | 17:39 |
| nowen | yeah, like anytime it is on ;) | 17:40 |
| wgordon | nowen: yes, it's the latest one. | 17:40 |
| nowen | wgordon: hmm. well, I believe that you can make opendns fail properly if you have an account | 17:40 |
| wgordon | nowen: We just looked in wireshark and as expected opendns is responding with an IP instead of NXDOMAIN. | 17:40 |
| wgordon | ah, ok | 17:40 |
| nowen | yeah, the iP goes to an ad page no doubt | 17:41 |
| wgordon | yep | 17:41 |
| wgordon | Maybe we'll switch to google. :) | 17:41 |
| nowen | hehe | 17:41 |
| micah_ | 8.8.8.8, 8.8.4.4 | 17:41 |
| nowen | if you could register a complaint with them, that would be great. they do not listen to us | 17:41 |
| micah_ | switchen' to google! | 17:41 |
| wgordon | Thanks for the help Nick.. | 17:42 |
| jr_ | Indeed, thanks for the help! | 17:42 |
| nowen | np. | 17:43 |
| nowen | this should not have mattered though | 17:43 |
| jr_ | I sent you the DEBUG logs from my device. Is there anything else from my side you'd be interested in? | 17:43 |
| nowen | can you add 88888888888 ? | 17:44 |
| wgordon | Yes, I just added it ok. | 17:45 |
| jr_ | Reg code: 6JSk7bMJ | 17:45 |
| wgordon | and 7DlwpdG4 | 17:45 |
| nowen | yes, so that is a domainid.wikidsystems.net | 17:45 |
| jr_ | I'm able to get passcodes though that. | 17:46 |
| nowen | yes, it resolves, so opendns lets it through | 17:46 |
| wgordon | Nick, can we get your to register our domainid in your DNS? | 17:48 |
| nowen | sure | 17:48 |
| wgordon | I'll email you the IP. Don't want it to show up in the IRC logs. | 17:49 |
| wgordon | unless you have another procedure that you normally use. | 17:49 |
| nowen | although, it should really be something like the 12 eights, that is not an ip address | 17:49 |
| wgordon | ok. All numeric digits? | 17:50 |
| nowen | yes, I can give you all 7s | 17:51 |
| nowen | and I can point it to a dns entry, so you can move it around on your end | 17:52 |
| wgordon | k.. give me a sec and I'll email you. | 17:53 |
| wgordon | email sent | 17:56 |
| *** jrdx (~jrlorence@nat1.datalex.com) has joined #wikid | 18:09 | |
| *** jr_ has parted #wikid (None) | 18:09 | |
| *** jrdx has quit (Client Quit) | 18:12 | |
| *** jrdx (~jrdx@nat1.datalex.com) has joined #wikid | 18:16 | |
| jrdx | Sweet. The DNS voodoo worked. I get passcodes now on my iPhone. | 18:17 |
| nowen | awesome | 18:21 |
| nowen | micah_: ubuntu server installed, setting it up now | 18:25 |
| wgordon | Nick: We'll be testing for another few weeks and then I expect we'll place an order. Thanks again for the help today. | 18:25 |
| *** wgordon has quit (Quit: Ex-Chat) | 18:26 | |
| *** jrdx has quit (Quit: Ex-Chat) | 18:27 | |
| nowen | micah_: could it be an app armor setting? | 19:03 |
| micah_ | i suppose it's possible | 19:28 |
| nowen | hmm | 19:29 |
| micah_ | did it fail for you? | 19:29 |
| nowen | yes | 19:29 |
| micah_ | it seemed odd that only one service failed for me | 19:29 |
| micah_ | strange | 19:29 |
| micah_ | i started to debug the perl then got frustrated | 19:29 |
| micah_ | and had to drive for 8 hours | 19:29 |
| micah_ | not because I was frustrated ;-) I just ran out of troubleshooting time | 19:30 |
| nowen | ipv6 looks to be the issue | 19:31 |
| micah_ | oh, you are kidding me? it's trying to bind to ipv6? | 19:31 |
| nowen | looks like it | 19:31 |
| micah_ | madness. ipv6 breaks everything | 19:31 |
| nowen | hehe, if it's not selinux it's ipv6 | 19:31 |
| nowen | though we haven't had this on centos in forever | 19:31 |
| nowen | testing it now | 19:33 |
| nowen | check out your /etc/hosts file | 19:37 |
| micah_ | okay | 19:38 |
| micah_ | where did you look to see the fail? text log files or the gui? | 19:38 |
| micah_ | i didn't see any debug log messages in the gui? | 19:38 |
| nowen | I ran 'netstat -anp | grep java' and it showed tcp6 0 0 :::8388 :::* LISTEN 17524/java | 19:40 |
| micah_ | java, write once, crash everywhere | 19:41 |
| nowen | but I also had a typo in my /etc/hosts | 19:41 |
| micah_ | ah, okay | 19:41 |
| micah_ | thanks for taking a look | 19:41 |
| micah_ | i'll explore more indepth tonight when i have some free time | 19:42 |
| nowen | and I finally got radius to start | 19:42 |
| nowen | tip: run 'cd /; ls -lR' to generate entropy for radius to start | 19:42 |
| micah_ | okay, i'll give that a shot | 19:52 |
| micah_ | it should just work "in theory" | 19:52 |
| micah_ | i have a juniper ssl vpn | 19:52 |
| nowen | yes, lots of people have it set up with a juniper | 19:54 |
| nowen | it looks like it was just the bad entry in /etc/hosts that did it | 20:38 |
| nowen | ok - fresh install of ubuntu server 11.94 | 20:56 |
| nowen | 04, that is | 20:56 |
| nowen | and the 2nd line of /etc/hosts is | 20:56 |
| nowen | 127.0.1.1 hostname.wikidsystems.com hostname | 20:56 |
| nowen | https://lists.ubuntu.com/archives/ubuntu-server-bugs/2009-March/010755.html | 21:00 |
| nowen | micah_: it's an ubuntu bug | 21:01 |
| micah_ | okay | 21:01 |
| micah_ | thanks | 21:01 |
| micah_ | i'll read that over | 21:01 |
| micah_ | i appreicate you looking into it | 21:01 |
| nowen | I just edited that line and put in my static ip instead of the 1.1. | 21:03 |
| micah_ | madness | 21:12 |
| micah_ | i even tried specifying the real ip address to bind to for the radius server | 21:12 |
| micah_ | no worky | 21:12 |
| micah_ | good to know the ubuntu qa team is doing a bang up job | 21:13 |
| nowen | you still can't get it running? | 21:23 |
| *** alamarca has quit (Ping timeout: 252 seconds) | 21:31 | |
| *** Seamus_ (d839cdfa@gateway/web/freenode/ip.216.57.205.250) has joined #wikid | 21:48 | |
| Seamus_ | Nick!! | 21:48 |
| Seamus_ | Radius wont start anymore! | 21:48 |
| nowen | Seamus_: what did you do?!? | 21:48 |
| Seamus_ | I blame the computer, wasn't me | 21:48 |
| nowen | did you do an upgrade of anything? | 21:49 |
| nowen | what os is this? | 21:49 |
| Seamus_ | I changed the ip address | 21:49 |
| Seamus_ | Its a straight up wikid install | 21:49 |
| Seamus_ | WiKID Linux 3.4.0-b3115 | 21:49 |
| nowen | what is in /etc/hosts? | 21:49 |
| Seamus_ | 216.57.217.139wikidwikid.innuity.com 172.20.8.18wikid.innuity.com | 21:49 |
| Seamus_ | hm should I remove one of those? | 21:50 |
| nowen | what command are you using to check on radius? | 21:50 |
| Seamus_ | netstat -an | grep 1812 and ps -aux | 21:50 |
| nowen | yeah, there should only be one ip per host name | 21:53 |
| Seamus_ | ok | 21:54 |
| Seamus_ | Still wont start it says this in the log | 21:56 |
| Seamus_ | Exception in thread "Thread-0" java.lang.NullPointerException at com.wikidsystems.server.WikidIPCListener.run(WikidIPCListener.java:82) at java.lang.Thread.run(Thread.java:619) java.net.SocketException: Broken pipe at java.net.SocketOutputStream.socketWrite0(Native Method) | 21:58 |
| nowen | hmm | 22:00 |
| nowen | that seems better tho | 22:01 |
| nowen | try running 'wikidctl stop' and the 'killall -9 java' and then 'wikidctl start' | 22:04 |
| Seamus_ | That did it | 22:05 |
| nowen | nice | 22:06 |
| nowen | asofrank: any luck with the new php files? | 22:08 |
| Seamus_ | So my radius server that is proxying requests to wikid keeps marking the wikid server port 1812 as dead any ideas? | 22:26 |
| nowen | what do you mean marking the port as dead? | 22:27 |
| Seamus_ | Marking home server 172.20.8.18 port 1812 as dead. | 22:27 |
| Seamus_ | Thats what freeradius says | 22:27 |
| Seamus_ | I know I can get to the port though | 22:27 |
| nowen | can you telnet to that port from your freeradius server? | 22:28 |
| Seamus_ | oops hold on something broken, I'll get back to you | 22:28 |
| nowen | also, run 'iptables -L -n' on the WiKID server and make sure your freeradius server listed | 22:28 |
| nowen | ok - I've got to get home for my daughter's bday. email me if you need me. | 22:37 |
| *** nowen has parted #wikid (None) | 22:39 | |
| *** alamarca (404c9302@gateway/web/freenode/ip.64.76.147.2) has joined #wikid | 23:27 | |
| *** alamarca has quit (Ping timeout: 252 seconds) | 23:31 | |
Generated by irclog2html.py 2.11.0 by Marius Gedminas - find it at mg.pov.lt!