| *** WiKIDLogbot (~WiKIDLogb@ec2-174-129-6-100.compute-1.amazonaws.com) has joined #wikid | 12:49 | |
| card.freenode.net | Topic for #wikid is: support for the WiKID Strong Authentication System. If no one is here, try the nabble forums: http://www.wikidsystems.com/support/support/wikid-forums | 12:49 |
|---|---|---|
| card.freenode.net | Users on #wikid: WiKIDLogbot @nowen ionepoch joevano laszlof vladdy | 12:49 |
| nowen | can you set the loggers to debug and try again? | 12:49 |
| laszlof | i have to restart for that right? | 12:51 |
| nowen | no | 12:51 |
| laszlof | ok | 12:51 |
| laszlof | its done | 12:51 |
| nowen | ok, just tried | 12:51 |
| laszlof | 2012-05-30 12:52:06.487ERRORcom.wikidsystems.server.WikidCode3AESERROR101:doGet:Processing POST data | 12:52 |
| laszlof | 2012-05-30 12:51:57.519DEBUGcom.wikidsystems.server.WikidCode3AESBulk:: Got 128 bytes of POST data | 12:52 |
| laszlof | thats the only thing useful in there | 12:52 |
| laszlof | wait. I think I found somrthing | 12:54 |
| laszlof | May 30, 2012 12:36:48 PM org.apache.catalina.realm.JDBCRealm getPassword | 12:55 |
| laszlof | SEVERE: Exception performing authentication | 12:55 |
| laszlof | org.postgresql.util.PSQLException: This connection has been closed. | 12:55 |
| laszlof | thats from the catalina log | 12:55 |
| nowen | huh | 12:55 |
| nowen | what version of postgres? | 12:55 |
| nowen | also, check /var/log/messages | 12:55 |
| laszlof | [root@wikid logs]# postgres --version | 12:56 |
| laszlof | postgres (PostgreSQL) 8.4.11 | 12:56 |
| laszlof | nothing recent in /var/log/messages.2 | 12:56 |
| laszlof | erm, /var/log/messages | 12:56 |
| nowen | yet, postgres must recover or you would notice it big time | 12:57 |
| laszlof | I'll try restarting it | 12:57 |
| nowen | is this 3.4.87-b1216? | 12:58 |
| laszlof | yes | 12:58 |
| laszlof | yeah, still fails after restart | 12:59 |
| nowen | what's in /var/log/pgsql/pg_startup.log? | 12:59 |
| nowen | so the ipad give a different error? | 13:00 |
| laszlof | nothing | 13:01 |
| laszlof | yes, well, its giving the error 101 like I see in the admin | 13:01 |
| nowen | is there an exception trace in the logs? the little bomb icon | 13:01 |
| laszlof | no | 13:01 |
| laszlof | the admin area seems to fail to draw from time to time as well | 13:02 |
| nowen | sounds like more db errors | 13:02 |
| laszlof | thats what I thought | 13:02 |
| laszlof | not really sure how that could be | 13:02 |
| nowen | is selinux on? | 13:02 |
| laszlof | This is a fresh install of everything | 13:02 |
| nowen | centos 5 or 5? | 13:03 |
| nowen | 6? | 13:03 |
| laszlof | 6 | 13:03 |
| laszlof | no selinux | 13:03 |
| nowen | postgres fails on restart? | 13:04 |
| laszlof | it seems to be fine, I get one error on restart but I think its related to the fact I'm in a VM | 13:05 |
| nowen | what is that error? | 13:05 |
| laszlof | Starting postgresql service: /etc/init.d/postgresql: line 114: echo: write error: Operation not permitted | 13:05 |
| laszlof | test x"$PG_OOM_ADJ" != x && echo "$PG_OOM_ADJ" > /proc/self/oom_adj | 13:05 |
| laszlof | its not surprising you cant write to some procs within a VM | 13:06 |
| laszlof | something to do with memory over commit | 13:06 |
| laszlof | but it shouldnt cause any problems | 13:06 |
| nowen | hmm | 13:09 |
| nowen | anything at all in 'grep postgres /var/log/messages*' | 13:10 |
| laszlof | May 30 17:08:36 wikid postgres[26470]: [1-1] LOG: database system was shut down at 2012-05-30 17:08:31 MSD | 13:11 |
| laszlof | May 30 17:08:36 wikid postgres[26473]: [1-1] LOG: autovacuum launcher started | 13:11 |
| laszlof | May 30 17:08:36 wikid postgres[26467]: [1-1] LOG: database system is ready to accept connections | 13:11 |
| laszlof | May 30 17:08:39 wikid postgres[27648]: [2-1] LOG: unexpected EOF on client connection | 13:11 |
| laszlof | May 30 17:08:44 wikid postgres[26620]: [2-1] LOG: unexpected EOF on client connection | 13:11 |
| nowen | setting up a test vm | 13:16 |
| laszlof | k | 13:18 |
| laszlof | also, it doesnt seem to respect /etc/WiKID/security | 13:18 |
| laszlof | i'm going to try starting over | 13:20 |
| nowen | ok | 13:20 |
| laszlof | [root@wikid ~]# wikidctl setup | 13:24 |
| laszlof | dropdb: too many command-line arguments (first is "2>/dev/null") | 13:24 |
| laszlof | Try "dropdb --help" for more information. | 13:24 |
| laszlof | dropuser: too many command-line arguments (first is "2>/dev/null") | 13:24 |
| laszlof | Try "dropuser --help" for more information. | 13:24 |
| laszlof | dropuser: too many command-line arguments (first is "2>/dev/null") | 13:24 |
| laszlof | Try "dropuser --help" for more information. | 13:24 |
| laszlof | dropuser: too many command-line arguments (first is "2>/dev/null") | 13:24 |
| laszlof | Try "dropuser --help" for more information. | 13:24 |
| nowen | yeah, you can ignore those | 13:24 |
| laszlof | dropuser: too many command-line arguments (first is "2>/dev/null") | 13:24 |
| laszlof | Try "dropuser --help" for more information. | 13:24 |
| laszlof | dropuser: too many command-line arguments (first is "2>/dev/null") | 13:25 |
| laszlof | Try "dropuser --help" for more information. | 13:25 |
| laszlof | dropuser: too many command-line arguments (first is "2>/dev/null") | 13:25 |
| laszlof | Try "dropuser --help" for more information. | 13:25 |
| laszlof | /bin/cp: cannot create regular file `/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0/jre//jre/lib/security/': No such file or directory | 13:25 |
| laszlof | /bin/cp: target `/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0/jre//jre/lib/security/' is not a directory | 13:25 |
| laszlof | /bin/cp: cannot create regular file `/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0/jre//jre/lib/ext/': No such file or directory | 13:25 |
| laszlof | /bin/cp: cannot create regular file `/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0/jre//jre/lib/ext/': No such file or directory | 13:25 |
| laszlof | just wanted to make sure it was nothing bad | 13:25 |
| nowen | do this: | 13:25 |
| nowen | export JRE_HOME=/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre/ | 13:25 |
| laszlof | setup already finished, should I restart again? | 13:26 |
| nowen | no, it's fine | 13:29 |
| laszlof | ugh, now I have the same problem I ran into last night | 13:31 |
| nowen | remind me? | 13:31 |
| laszlof | catalina now starting | 13:32 |
| laszlof | actually | 13:32 |
| laszlof | this is different | 13:32 |
| laszlof | opt/WiKID/tomcat/bin/catalina.sh: line 309: /usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre//bin/java: No such file or directory | 13:32 |
| laszlof | /opt/WiKID/tomcat/bin/catalina.sh: line 309: /usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre//bin/java: No such file or directory | 13:32 |
| laszlof | /opt/WiKID/tomcat/bin/catalina.sh: line 310: /usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre//bin/java: No such file or directory | 13:32 |
| nowen | did you export jre_home? | 13:32 |
| nowen | ' export JRE_HOME=/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre/ ' | 13:32 |
| laszlof | yeah, thats what broke it | 13:33 |
| nowen | export JAVA_HOME=/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre | 13:33 |
| laszlof | there we go | 13:33 |
| laszlof | i got it | 13:33 |
| nowen | what was it? (again?) | 13:34 |
| laszlof | this is a 32bit system | 13:34 |
| laszlof | the JRE path doesnt have the arch on th end of it | 13:34 |
| nowen | ahh | 13:34 |
| laszlof | blah | 13:35 |
| laszlof | This CSR contains a Distinguished Name(DN) that already exists in the WiKID CA database. | 13:35 |
| nowen | Hold on | 13:35 |
| laszlof | brb, need to grab some more coffee | 13:36 |
| nowen | =frank@franksworld.org? | 13:36 |
| nowen | done | 13:36 |
| laszlof | yup | 13:39 |
| laszlof | heh | 13:43 |
| laszlof | so its working now | 13:43 |
| nowen | huh | 13:43 |
| laszlof | i dont really get what broke the first time | 13:43 |
| nowen | must have been something with the db | 13:44 |
| laszlof | yeah | 13:44 |
| laszlof | ok, last question for now. Using the API, whats the proper way to add an additional client to an existing user? | 13:44 |
| laszlof | assuming a passcode is not available | 13:44 |
| nowen | Add a Device without a Passcode | 13:45 |
| laszlof | i know I had to make some changes to the API to make this work when I was at ASO | 13:45 |
| laszlof | but I cant seem to make it work now | 13:45 |
| nowen | res = wc.registerUsernameWithoutCheck( | 13:45 |
| nowen | if (request.getParameter("action") != null && request.getParameter("action").equalsIgnoreCase("Add device without passcode")) { res = wc.registerUsernameWithoutCheck(request.getParameter("user"), request.getParameter("regcode"), request.getParameter("servercode")); if (res == 0) { status = "Success"; } else { status = "Failed (" + res + ")"; } } | 13:46 |
| laszlof | I'm using the PHP api | 13:48 |
| laszlof | unction registerUsername($username, $regcode, $domaincode, $add = false) | 13:48 |
| laszlof | { | 13:48 |
| laszlof | $this->_dprint("registerUsername() called ..."); | 13:48 |
| laszlof | $this->reconnect(); | 13:48 |
| laszlof | $valid_tag = "REGUSER:SUCESS"; | 13:48 |
| laszlof | if ($add) { | 13:49 |
| laszlof | $this->_dprint("Adding new device ..."); | 13:49 |
| laszlof | $command = "ADDREGUSER"; | 13:49 |
| laszlof | $type = 4; | 13:49 |
| laszlof | $passcodeline = "<passcode>null</passcode>"; | 13:49 |
| laszlof | $format = "add"; | 13:49 |
| laszlof | } else { | 13:49 |
| laszlof | I tried passing a null value as well as a blank value for passcode | 13:49 |
| laszlof | but it didnt seem to work | 13:49 |
| laszlof | (thats been modified btw) | 13:49 |
| laszlof | normally the 4th argument to that function would be the passcode | 13:49 |
| laszlof | which would be put in the <passcode> block | 13:49 |
| laszlof | but thats not applicable for what I'm trying to do | 13:50 |
| nowen | damn, looks like the php api package needs an update | 13:50 |
| laszlof | not a big surprise :) | 13:50 |
| laszlof | which one is current? | 13:50 |
| nowen | looks like 3.0.5 is the latest php. the java one is always current | 13:51 |
| laszlof | also, the php api still doesnt accept a p12 certificate that is outputted by wikid | 13:51 |
| laszlof | I think I pointed that out when I first started using this a couple years ago | 13:51 |
| laszlof | you have to convert the p12 cert to a pem file | 13:52 |
| nowen | I thought that was a php thing | 13:52 |
| laszlof | probably | 13:52 |
| laszlof | maybe make both certs available in the wikid admin? | 13:52 |
| nowen | possibly. we don't get a lot of php to be honest | 13:54 |
| nowen | but maybe you're about the change that ;) | 13:54 |
| laszlof | ok, I have no idea how to extract code from the java version | 13:55 |
| laszlof | extracted the jar file, but all i have is a bunch of compiled class files | 13:55 |
| nowen | well, all the code is in example.jsp | 13:55 |
| laszlof | the usage code, I want to see how it works so I can fix wClient.inc.php | 13:55 |
| nowen | just look at the code in that page and you'll see the function names you need to use | 13:56 |
| laszlof | TBH, you should really use simplexml objects rather than plain text XML code | 13:56 |
| nowen | well, the server was written some time ago.. | 13:58 |
| laszlof | I'll bet | 13:58 |
| laszlof | the example.jsp packaged with the wikid RPM appears to be outdated | 13:59 |
| laszlof | where is the current one? | 13:59 |
| nowen | ? | 13:59 |
| nowen | I don't think so | 13:59 |
| laszlof | i dont see the registerUsernameWithoutCheck function in it | 13:59 |
| laszlof | nevermind | 13:59 |
| laszlof | The | 14:00 |
| laszlof | server must have the ALLOW_REG_WITHOUT_PASSCODE parameter devfined and set to True for this call to | 14:00 |
| laszlof | is this default? | 14:00 |
| laszlof | succeed. | 14:00 |
| nowen | yes | 14:00 |
| laszlof | k | 14:00 |
| laszlof | so the PHP API doesnt appear to care what the function names are when passing the data to wikid | 14:02 |
| laszlof | it just passes an XML string | 14:02 |
| laszlof | <transaction> <type format="$format">$type</type> <data> <user-id>$username</user-id> <registration-code>$regcode</registration-code> <domaincode>$domaincode</domaincode> $passcodeline <error-code>null</error-code> <result>null</result> <groupName>null</groupName> </data> | 14:02 |
| laszlof | </transaction> | 14:02 |
| laszlof | you guys should update to a soap api, would save a lot of time tweaking these client libs :) | 14:05 |
| nowen | http://www.wikidsystems.com/support/wikid-support-center/manual/wikid-network-client-wclient-api-manual/referencemanual-all-pages\ | 14:06 |
| nowen | <transaction> <type format="add-no-check">4</type> <data> <user-id>api4</user-id> <registration-code>3oIOs53Z</registration-code> <domaincode>127000000001</domaincode> <passcode>null</passcode> <error-code>null</error-code> <groupName>null</groupName> <result>null</result> </data> </transaction> | 14:06 |
| laszlof | ah | 14:07 |
| laszlof | add-no-check | 14:07 |
| laszlof | changed from just "add" | 14:07 |
| laszlof | that works | 14:07 |
| laszlof | give me a minute and I'll send you the updated code | 14:08 |
| nowen | but wait - there are more new functions! | 14:08 |
| laszlof | heh | 14:08 |
| laszlof | I'd be happy to update all of this for you, but I need the XML format for everything | 14:09 |
| nowen | it's on that api page | 14:09 |
| laszlof | the api docs arent completely consistent | 14:21 |
| laszlof | if you scroll down to the "Add Device (add a token to an existing account) | 14:21 |
| laszlof | section | 14:21 |
| laszlof | you'll see the format still says "add" rather than "add-no-check" | 14:22 |
| laszlof | nevermind | 14:22 |
| laszlof | im dumb | 14:22 |
| nowen | lol | 14:22 |
| laszlof | is there any way to list users linked to a domain? | 14:31 |
| laszlof | I see the find user by name function. can I pass a null user value to that? | 14:31 |
| nowen | I think so, but I'm not sure | 14:32 |
| nowen | but that makes sense | 14:32 |
| * nowen sets up an example.jsp | 14:33 | |
| laszlof | tried this, but it didnt give me any response | 14:34 |
| laszlof | <transaction> | 14:34 |
| laszlof | <type>5</type> | 14:34 |
| laszlof | <data> | 14:34 |
| laszlof | <domaincode>$domaincode</domain> | 14:34 |
| laszlof | <user-id>null</user-id> | 14:34 |
| laszlof | <result>null</result> | 14:34 |
| laszlof | <return-code>null</return-code> | 14:34 |
| laszlof | </data> | 14:35 |
| laszlof | </transaction> | 14:35 |
| laszlof | oops | 14:35 |
| laszlof | typo | 14:35 |
| laszlof | fixed the domaincode line, but still no response | 14:35 |
| laszlof | tried with a blank user-id, and removed return-code.. now I get a FAILED response | 14:36 |
| nowen | actually, I think you can only do that via a report | 14:37 |
| laszlof | hmm | 14:37 |
| nowen | but we can add it | 14:37 |
| laszlof | Being able to list them is going to be important for this project. I'd rather not have to store the data in a database if I can avoid it | 14:37 |
| laszlof | yeah, if you can just make it so if a null value is passed as the user-id, make it return an array of users in that domain, that would be awesome. | 14:38 |
| laszlof | looks like the returned object from that function only supports a single user. So you'll likely have to make another level to the array. data->users->user | 14:40 |
| laszlof | rather than data->user | 14:40 |
| laszlof | but that shouldnt be difficult to do and not break existing API implementations | 14:40 |
| laszlof | can you pass a specific device ID to the delete user function to delete a specific device from a user | 14:52 |
| laszlof | without deleting the entire user | 14:52 |
| nowen | Delete Device By ID should do that | 14:53 |
| nowen | hmm - don't see that in the api docs, but it is in example.jsp | 14:56 |
| laszlof | yeah, but that doesnt show me the XML format required to do it :) | 14:58 |
| laszlof | you guys need to update your mobile apps, they look extremely dated compared to what is available today :) | 15:11 |
| laszlof | IMO, build it using the HTML5 platform you have | 15:11 |
| laszlof | much easier for deployments across multiple platforms | 15:12 |
| laszlof | at least between ios and android | 15:12 |
| nowen | yeah. we'll be going there | 15:12 |
| laszlof | i might play around with it and see what I can come up with | 15:15 |
| laszlof | I've built a few mobile html5 apps in my time | 15:15 |
| nowen | <transaction> | 15:25 |
| nowen | <type> 13 </type> | 15:25 |
| nowen | <data> | 15:25 |
| nowen | <deviceID> deviceID </deviceID> | 15:25 |
| nowen | <result> result </result> | 15:25 |
| nowen | <return-code> returnCode </return-code> | 15:25 |
| nowen | </data> | 15:25 |
| nowen | </transaction> | 15:25 |
| nowen | delete device xml | 15:26 |
| laszlof | thanks | 15:26 |
| laszlof | does the domaincode not need to be passed? | 15:27 |
| nowen | don't think so. the deviceid should be unique | 15:27 |
| laszlof | not getting any reponse | 15:32 |
| laszlof | :( | 15:32 |
| nowen | hmm, did it delete? | 15:33 |
| laszlof | no | 15:33 |
| laszlof | i tried adding the domaincode just in case but that didnt work either | 15:33 |
| laszlof | <transaction><type>13</type><data><domaincode>037026106124</domaincode><deviceid>2007877643611286882</deviceid><result></result></data></transaction> | 15:34 |
| nowen | hmm, works in example.jsp and the code in java matches up | 15:37 |
| nowen | public String toXml() { return "<transaction>" + " <type>" + type + "</type>" + " <data>" + " <deviceID>" +deviceID + "</deviceID>" + " <result>" + result + "</result>" + " <return-code>" + returnCode + "</return-code>" + | 15:37 |
| laszlof | what are result and returnCode set to? | 15:38 |
| laszlof | I tried passing them as blank and null values | 15:38 |
| nowen | did you try empty? | 16:02 |
| laszlof | yup | 16:03 |
| nowen | anything in the logs? | 16:03 |
| laszlof | 2012-05-30 16:04:54.892DEBUGcom.wikidsystems.server.wAuthException (2)... | 16:05 |
| laszlof | 2012-05-30 16:04:54.892DEBUGcom.wikidsystems.server.wAuthXML received: <?xml version="1.0" encoding="UTF-8"?> <transaction> <type>13</type> <data> <deviceID>037026106124</deviceID> <result /> <return-code /> </data> </transaction> | 16:05 |
| nowen | and the deviceid is correct? it's not supposed to be negative? | 16:10 |
| nowen | is there no error? | 16:10 |
| laszlof | yes | 16:10 |
| laszlof | no error, just that exception | 16:10 |
| laszlof | that I cant get any details on | 16:10 |
| laszlof | wait.. | 16:11 |
| laszlof | fuck | 16:11 |
| laszlof | no, still no love | 16:13 |
| laszlof | the deviceID wasnt right | 16:13 |
| laszlof | but still isnt working | 16:13 |
| laszlof | 2012-05-30 16:13:02.383DEBUGcom.wikidsystems.server.wAuthXML received: <?xml version="1.0" encoding="UTF-8"?> <transaction> <type>13</type> <data> <deviceID>2007877643611286882</deviceID> <result>null</result> <return-code>null</return-code> </data> </transaction> | 16:13 |
| nowen | http://krebsonsecurity.com/2012/05/whmcs-breach-may-be-only-tip-of-the-trouble/ | 16:20 |
| laszlof | yeah, there was a SQL injection patch yesterday | 16:22 |
| nowen | still nothing on the deletedevice? | 16:54 |
| laszlof | no, I've moved onto the other thing for now | 16:55 |
| nowen | it could be the leading <?xml version="1.0" encoding="UTF-8"?> | 16:56 |
| laszlof | thats being appended by wikid server | 16:56 |
| laszlof | the received data doesnt have that | 16:56 |
| nowen | It's line buffered so if not that's probably the problem. | 17:43 |
| nowen | The only "\n" should be after </transaction> | 17:45 |
| laszlof | i can throw it all on a single line, but it really shouldnt matter :/ | 17:45 |
| laszlof | its formated the same way as all the other API calls that do work | 17:46 |
| *** markw78 (~mark.wole@12.69.65.190) has joined #wikid | 18:35 | |
| markw78 | sooo, what happens when I need to change my IP address my domain is associated with? :) | 18:36 |
| nowen | you can't you have to create a new domain | 18:36 |
| markw78 | that really sucks | 18:36 |
| markw78 | that means I need all new tokens for all the users? | 18:36 |
| markw78 | new PINs etc? | 18:36 |
| markw78 | I guess I was asking if there's a migration path | 18:37 |
| markw78 | I went to create a new domain and it was giving me PIN minimums etc, so I was assuming it would require new stuff... figured I should ask first how that will go down | 18:37 |
| nowen | yes, new registrations for all the tokens | 18:37 |
| markw78 | yuck | 18:38 |
| nowen | hmm, or I wonder if we can create a dns entry | 18:38 |
| nowen | what is your domain identifier? | 18:38 |
| markw78 | thats what I was hoping :) though I'd need to time it right | 18:38 |
| markw78 | 012069065165 iirc | 18:38 |
| nowen | are you losing the IP? | 18:38 |
| markw78 | yah we're changing ISP's | 18:39 |
| markw78 | I have the new IPs, I started to set things up and couldn't get a token... then realized I had no domain for the new IP | 18:39 |
| markw78 | then rolled it all back and stopped by here :) | 18:39 |
| nowen | what types of token clients do you have? | 18:43 |
| nowen | There might me some lag if it has to check the ip first but it should still work ok. | 18:45 |
| markw78 | umm | 18:49 |
| markw78 | software tokens | 18:49 |
| markw78 | if thats what you're asking there? | 18:49 |
| nowen | PC tokens or smart-phone? | 18:49 |
| markw78 | a mix | 18:49 |
| nowen | how many users? | 18:50 |
| markw78 | mostly PC tokens on USB keys, but our exec's are all on iphone heh | 18:50 |
| markw78 | about 60 | 18:50 |
| markw78 | maybe 12 or so iphone, the rest software pc tokens | 18:50 |
| markw78 | maybe a couple android too, not sure | 18:50 |
| nowen | should work | 18:52 |
| nowen | it will be reliant upon our dns | 18:53 |
| markw78 | so we just need to coordinate the change with you? | 18:59 |
| markw78 | and we can change it back if it doesn't work, right? :) | 18:59 |
| nowen | yeah. no guarantees, though, but it should work | 18:59 |
| markw78 | ok, well heck | 18:59 |
| markw78 | may as well do it now | 18:59 |
| markw78 | people aren't really using vpn during the day | 19:00 |
| nowen | what is the domain id? | 19:00 |
| markw78 | 012069065165 | 19:00 |
| nowen | you'll have to move the server to the new ip or copy the database | 19:00 |
| markw78 | it's all NAT'd so I shouldn't have to do anything there | 19:01 |
| markw78 | need the new IP? | 19:01 |
| markw78 | (or can we tie it to a DNS name?) | 19:01 |
| markw78 | CNAME it | 19:01 |
| nowen | what I'm going to do is cname 012069065165.wikidsystems.net to the new IP | 19:01 |
| markw78 | ah ok | 19:02 |
| markw78 | 38.83.98.38 | 19:02 |
| nowen | the tokens will check the old IP and not get a response, then they will check DNS | 19:02 |
| markw78 | cool | 19:02 |
| nowen | do a host lookup on 012069065165.wikidsystems.net | 19:04 |
| nowen | I haven't changed it yet | 19:04 |
| markw78 | google-public-dns-a.google.com can't find 012069065165.wikidsystems.net: Non-existent domain | 19:05 |
| nowen | ok - change is made | 19:06 |
| nowen | host 012069065165.wikidsystems.net | 19:06 |
| nowen | 012069065165.wikidsystems.net has address 38.83.98.38 | 19:06 |
| markw78 | yah just resolved that via yahoo | 19:06 |
| markw78 | it should work too cause we do that internally... I have a wikidsystems.net dns zone internally and we point that CNAME to an internal IP (so tokens work inside) | 19:06 |
| markw78 | let me try some tests! | 19:07 |
| nowen | ok | 19:07 |
| markw78 | slow | 19:07 |
| markw78 | but got a token | 19:07 |
| markw78 | and I'm on the VPN! | 19:08 |
| markw78 | awesome, ty | 19:08 |
| nowen | np | 19:08 |
| markw78 | let me go have someone test with a smart phone to be sure | 19:08 |
| nowen | mileage may vary by dns propogation | 19:08 |
| markw78 | yah | 19:10 |
| markw78 | just had our cto check from his iphone and he got a token right away | 19:10 |
| markw78 | and I got connected from home | 19:10 |
| markw78 | so it looks good, ty for the help! | 19:11 |
| nowen | great! | 19:11 |
| markw78 | thanks again! until next time :D | 19:50 |
| *** markw78 has parted #wikid (None) | 19:50 | |
| *** nowen has quit (Quit: Leaving.) | 22:28 | |
Generated by irclog2html.py 2.11.0 by Marius Gedminas - find it at mg.pov.lt!