Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP

Loading…

Cannot verify hostmaster site after changing Encryption: Enable to Encryption: Required #10

Closed
anantagati opened this Issue · 7 comments

2 participants

@anantagati

I am using Ubuntu 10.04.
After changing Encryption settings from Enable to Required it cannot verify anymore hostmaster site.

It writes these errors in task info:

/var/aegir/hostmaster-HEAD could not be synced to remote server aegir.exam... (Expand)/var/aegir/hostmaster-HEAD could not be synced to remote server aegir.example.com. Changes might not be available until this has been done. (error: Host key verification failed. rsync: connection unexpectedly closed (0 bytes received so far) [sender] rsync error: unexplained error (code 255) at io.c(601) [sender=3.0.7])

/var/aegir/hostmaster-HEAD/sites/aegir.example.com could not be synce... (Expand)/var/aegir/hostmaster-HEAD/sites/aegir.example.com could not be synced to remote server aegir.example.com. Changes might not be available until this has been done. (error: Host key verification failed. rsync: connection unexpectedly closed (0 bytes received so far) [sender] rsync error: unexplained error (code 255) at io.c(601) [sender=3.0.7])

@omega8cc
Owner

You shouldn't see anything like "could not be synced to remote server" or "aegir.example.com". It seems your setup for hostname and/or Aegir domain is wrong as with default install it never tries to do anything "remotely". Please post the configuration you have:

_MY_OWNIP=""
_MY_HOSTN=""
_MY_FRONT=""

And what results are given on those commands:

hostname -f
uname -n

Also the content of your /etc/hosts file could help to debug it.

@anantagati

I kept these variables empty:

_MY_OWNIP=""
_MY_HOSTN=""
_MY_FRONT=""

"hostname -f" returns this:

aegir.monkeywarrior.com

"uname -n" returns:

aegir

My /etc/hosts file:

127.0.0.1 localhost 
97.107.136.64 aegir.monkeywarrior.com aegir

# The following lines are desirable for IPv6 capable hosts
::1 ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
ff02::3 ip6-allhosts
@omega8cc
Owner
  1. You don't need to use "Required" for SSL, "Enabled" is enough (to avoid locking out yourself for example).

  2. It seems you have used the install script before Barracuda Edition 0.4-alpha9-A9.F, since now it forces to set hostname to FQDN, so both hostname -f and uname -n returns FQDN (aegir.monkeywarrior.com in your case).

You can fix it now by hand running the command hostname -v aegir.monkeywarrior.com, but I'm not sure if that will help with forced SSL. It is an experimental feature in this release and needs further testing, so thanks for the report and please try to use "Enabled" only.

@anantagati

Thank you for help. I tried it with hostname -v aegir.monkeywarrior.com, and now it works good.

I used installer:
_INSTALLER_VERSION="A9.F"

So on fresh system before install I should set hostname aegir.monkeywarrior.com, hostname -v aegir.monkeywarrior.com? So in /etc/hostname should be 'aegir' or 'aegir.monkeywarrior.com' ?

@omega8cc
Owner

In /etc/hostname you should have your FQDN hostname. The install script should force it, so I will add that to the next version. Thanks for reporting it.

@anantagati

Thank you.

@omega8cc
Owner

Back to the initial problem, there is a known issue related to disabling/enabling SSL for sites, see: http://drupal.org/node/859120

@omega8cc omega8cc closed this
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.