XMPP Service Operators - 2024-02-21

  1. Shiny Rhino

    Guys, help needed, I have installed a prosody server with nginx webserver now on dhub.im, but systemctl status prosody gives me errors: https://paste.ee/p/seC1w Prosody does not seem to be able to load the certicates, though paths are correct. Permissions issue?

  2. jonas’

    yes, likely to be a permission issue

  3. jonas’

    Shiny Rhino, prosody has tools to import let's encrypt certificates, xmpp:prosody@conference.prosody.im?join is a good place to ask

  4. jonas’

    or via this link if you currently cannot join directly via XMPP: https://chat.prosody.im/

  5. Licaon_Kter

    If they can post here surely they can join? :)

  6. jonas’

    Licaon_Kter, https://xmpp.org/chat#converse/room?jid=operators@muc.xmpp.org not necessarily.

  7. Licaon_Kter


  8. jonas’

    (and I was too lazy looking up their JID :))

  9. Shiny Rhino

    jonas, i used sudo prosodyctl --root cert import dhub.im /etc/letsencrypt/live/dhub.im/, updated paths to /etc/prosody/certs/*, and can connect now with the client :-)

  10. jonas’

    Shiny Rhino, \o/

  11. jonas’

    Shiny Rhino, just remember to add that to your certbot automation, because this needs to be re-run on every renewal.

  12. Shiny Rhino

    with a cron job?

  13. Licaon_Kter

    certbot has hook actions or so iirc

  14. Licaon_Kter

    To do stuff *after* new certs are generated

  15. jonas’

    ^ that

  16. Shiny Rhino

    ok, a pity that I cannot add the paths to the original certificates directly

  17. Stefan

    I assume that it should work if the files are readable for prosody.

  18. Shiny Rhino

    Stefan, how do i make the certificates readable for prosody?

  19. Licaon_Kter

    Shiny Rhino: `chown prosodyuseryouknow:prosodyuserismemberofthisgroup files.pem` ?

  20. Licaon_Kter

    Depends on...whatever else you run and needs access to these, eg. Webserver, then maybe just chown to group

  21. Shiny Rhino

    Licaon_Kter, i thought that prosody had a standard user under which it is running.

  22. Licaon_Kter

    Shiny Rhino: again, user or not, if you use the same cert for other services, you need to unify the same group ,or copy for each service and the chown for each service user etc

  23. TheCoffeMaker

    finally ... cyberdelia.com.ar is back online 🦾️

  24. Trung

    nice ! welcome back bud !

  25. roughnecks


  26. TheCoffeMaker

    Trung: thx

  27. Shiny Rhino

    Hi, folks, strange things happening with my new prosody server at dhub.im. I can create a room with profanity client (simply with /join myroom), but gajim client > discover services > join room is greyed out. Reason?

  28. Licaon_Kter

    Shiny Rhino: why not Join from Gajim, why Discover?

  29. Shiny Rhino

    Sorry, my ignorance, was looking in wrong place and confused by lingo (was looking for something with "room"). Menubar Gajim > "Create Group Chat" does the trick.