Johney Test | 26 Nov 11:02 2014

authentication problem with embedded xmpp client

Hi,
I am using special embedded xmpp client which is working with other xmpp servers like openfire and jabberd2 . but when I tried to login in ejabberd 14.07  i get this error "User login not authorized because digest-uri seems invalid:<<"xmpp/">> ... Failed authentication.
after decrypting  the digest uri which is sent by ejabberd server I recognized that ejabberd server does not send 'realm' to the client . therefore client is not able to get the realm and it sends empty realm instead to the server which results in failure authentication.

I made a lots of researches to find a way and I could find two pages from ejabberd forum :

net:jabber and "digest-uri seems invalid" / authentication problem
https://www.ejabberd.im/node/3545
A way to disable digest-uri SASL authenticaiton / or a command line client that can handle it?
https://www.ejabberd.im/node/3664

and they suggest:
  • Improve your XMPP client library to provide a proper digest-uri in the SASL Digest.
  • Change your client or library to not use SASL Digest.
  • Change ejabberd to not verify digest-uri.
  • Use an older version of ejabberd that didn't yet implement this verification.
 
but as I said the client is embeded and there is no way to modify client . and I don't like to disable digest-uri verification or use an older version of ejabberd  .
is there any way to configure ejabberd server to send 'realm' in his MD5-digest to the client like the thing that openfire does ?



thank u in advance.




_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Raoul Duke | 25 Nov 22:26 2014
Picon

xep-0198 resume_timeout

HI,

I am using the latest ejabberd (recently updated from 2.1.1).

My out of the box experience was that  when mod_ping determines that a
user is offline in the new version it takes a further 5 mins before
that user is marked as offline and other users get a presence update
etc.

I believe I have tracked this down to the default value of
resume_timeout (300 seconds).  When i set resume_timeout to 0 I get
the desired behaviour and the same behaviour I used to get on the old
version i.e. that users are marked as offline in a timely fashion as
soon as mod_ping states that they are offline.

However, with this resume_timeout value of 0 I lose the value-added I
was getting from xep-0198

I want both!   Is there any configuration or other way to get the "as
soon as mod_ping notices the user is offline then mark them as such"
but still be able to leverage session resumption from xep-0198?

Any input/suggestions/gotchas greatly appreciated.

Thanks.
Thomas Martin | 25 Nov 12:18 2014
Picon

S2S and starttls not working

Hello,

I'm having an issue to make ejabberd work in S2S with starttls enabled.

If I set "s2s_use_starttls" to "true" the s2s connection don't work
(no connection established).
Any other TLS works (ejabberd_c2s, ejabberd_http).

I'm only using one s2s connexion between two servers for two different domains.

Configuration is the same on both sides (except for domain2 which is
replaced by domain1):
{5269, ejabberd_s2s_in, [
               {shaper, s2s_shaper},
               {max_stanza_size, 131072}
              ]},

{s2s_use_starttls, false}.
{s2s_certfile, "/etc/ejabberd/cert.pem"}.
{s2s_default_policy, deny}.
{{s2s_host, "jabber.mydomain2"}, allow}.
{{s2s_host, "conference.jabber.mydomain2"}, allow}.
{access, s2s_shaper, [{fast, all}]}

I tried to use openssl to test this issue and I don't get any answers:
$ openssl s_client -connect jabber.domain2:5269 -starttls xmpp
CONNECTED(00000003)
test

Same test without TLS:
$ telnet jabber.domain2 5269
Escape character is '^]'.
test
<?xml version='1.0'?><stream:stream
xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:server'
xmlns:db='jabber:server:dialback'
id='1408836793'><stream:error><xml-not-well-formed
xmlns='urn:ietf:params:xml:ns:xmpp-streams'/></stream:error></stream:stream>Connection
closed by foreign host.

Version used: 2.1.10 (using Debian's package).

Do you have any clues?

Thanks!

Thomas.
Evgeny Khramtsov | 25 Nov 11:40 2014
Picon

Re: module sip

Mon, 24 Nov 2014 20:44:45 -0600
ricky gutierrez <xserverlinux <at> gmail.com> wrote:

> my piece of code:
> 
>     port: 5060
> 
>     transport: udp
> 
>     module: ejabberd_sip
> 
> 
>     port: 5060
> 
>     module: ejabberd_sip
> 
> 
>     port: 5061
> 
>     module: ejabberd_sip
> 
>     tls: true
> 
>     certfile: "/opt/ejabberd/keys/ejabberd.pem"

Your config has formatting issues. See the example
here: http://www.process-one.net/docs/ejabberd/guide_en.html#htoc31
ricky gutierrez | 25 Nov 03:44 2014
Picon

module sip

Hi list , I have a question, I have running the latest version of
ejabberd 14.07 and want to add the module sip, the idea is to offer
other services to my users xmpp, reading in the blog.process-one.net
"https://blog.process-one.net/ejabberd-community-14-05/", that the
version of ejabber brings a proxy sip

We have integrated a SIP proxy / Registrar in ejabberd that makes
possible, using the same credentials, to pass SIP calls with a SIP
client as well (for example your Android phone). We had a STUN service
and integrated TURN to make VoIP easier in most contexts. This is just
the beginning and we are waiting for your feedback to make things even
simpler.

I'm doing some tests but does not work, I do not see that port 5060
udp and tcp is in listening!

netstat -an | grep 5060

[02:39:38] [root <at> shark conf]#netstat -an | grep 5061

udp        0      0 0.0.0.0:5061                0.0.0.0:*

[02:39:40] [root <at> shark conf]#netstat -an | grep 5060

my piece of code:

    port: 5060

    transport: udp

    module: ejabberd_sip

    port: 5060

    module: ejabberd_sip

    port: 5061

    module: ejabberd_sip

    tls: true

    certfile: "/opt/ejabberd/keys/ejabberd.pem"

only port 5061 is open.

any idea?

--

-- 
rickygm

http://gnuforever.homelinux.com
. . | 24 Nov 17:58 2014

Re: ejabberd / mysql timeout issues

Hi Mickael,

 

Thanks for the reply:

 

1.       If we move to SaaS, it will take time – ie. there is work to change and test our existing architecture (for example how we archive messages and pass them back to the existing platform).  It is not a quick job, and we would require a good erlang/ejabberd consultant

2.       The messaging bottleneck is still a short term issue, whether we move or not.  We have made some progress narrowing down the probable cause, but we still require a good erlang/ejabberd consultant who can help with this issue in the short term

3.       If we switch to SaaS, we would need to understand the pricing model clearly.  Moving to SaaS and then finding a big price change after 1, 3 or 5 years would be very difficult.  If we moved it would be for the long term (10+ years)

 

Whatever option we consider, a good erlang/ejabberd consultant is necessary – or some pointers from some of the more experienced guys (or girls!) on this list would be a huge help.

 

Best regards,

David

 

 

From: Mickaël Rémond [mailto:mremond <at> process-one.net]
Sent: 24 November 2014 08:58
To: otin <at> outlook.com
Subject: Re: [ejabberd] ejabberd / mysql timeout issues

 

Hello,

 

If this is an option, I think you should consider moving your platform to ProcessOne ejabberd SaaS platform.

There is a rest API for querying your back-end for authentication and contact list.

Given your load you would be in stage 1 (200 euros per month).

 

Please, let me know if you are interesting in exploring further.

 

Kind regards,

 

-- 

Mickaël Rémond

ProcessOne - Boxcar

Founder and CEO

 

On 22 Nov 2014, at 19:17, . . <otin <at> outlook.com> wrote:

 

Hi All,

 

Apologies for the interruption.  I’m wondering if we could get some assistance with a problem we are having:

 

We’ve been running ejabberd (v2.1.13) with MySQL, on a decent sized machine, for about a year now.  It should be able to handle upwards of 10,000 concurrent users, but we are finding timeout issues with MySQL when the number of concurrent users only reaches 400-450.  This is possibly related to the known bug EJAB-1583.

 

We have also managed to isolate a couple of “custom” modules used as part of the message archiving which may also be the cause of the issue.  The developer who wrote them was not an erlang expert.

 

I suspect the actual issue can be fixed with either a simple config change, minor change to the custom module (its very short) or replacement with a standardised module.

 

What we would love to find is someone who has extensive configuration and module writing experience - or better yet was involved in the core development of ejabberd.

 

Does anyone have suggestions on things to try (eg. recommended MySQL drivers, ejabberd configuration settings etc) … or can recommend a reliable consultant? 

 

Thanks,

David

 

_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd

 

_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Deepender Singla | 24 Nov 04:40 2014
Picon

Making user who go offline still available -- in ejabberd

Hello Folks

First off thanks for writing this open source implementation of ejabberd, loved it. I am using ejabberd for a research project, but there is one change I wanted to make in implementation of server. Basically when a User who go offline should not exit the room, the way its happen in whatsapp also.

I am very new to Erland and even to functional level language (Ruby/Python guy ). Here: http://xmpp.org/extensions/xep-0045.html#impl-service-ghosts  in doumentation it is written, the ghost users become offline by the server, Is there any way or custom implementation to make them online and store the messages which they recieve they are offline and deliver to them once they come next time.


If there is no custom implementation, any help regarding in that would be appreciated. I will develop it as I needed for the project and push it here also in different branch or repo so others don't reinvent the wheel.

thanks
deep

_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
. . | 22 Nov 19:17 2014

ejabberd / mysql timeout issues

Hi All,

 

Apologies for the interruption.  I’m wondering if we could get some assistance with a problem we are having:

 

We’ve been running ejabberd (v2.1.13) with MySQL, on a decent sized machine, for about a year now.  It should be able to handle upwards of 10,000 concurrent users, but we are finding timeout issues with MySQL when the number of concurrent users only reaches 400-450.  This is possibly related to the known bug EJAB-1583.

 

We have also managed to isolate a couple of “custom” modules used as part of the message archiving which may also be the cause of the issue.  The developer who wrote them was not an erlang expert.

 

I suspect the actual issue can be fixed with either a simple config change, minor change to the custom module (its very short) or replacement with a standardised module.

 

What we would love to find is someone who has extensive configuration and module writing experience - or better yet was involved in the core development of ejabberd.

 

Does anyone have suggestions on things to try (eg. recommended MySQL drivers, ejabberd configuration settings etc) … or can recommend a reliable consultant?

 

Thanks,

David

 

_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Puneet Kapoor | 21 Nov 19:15 2014
Picon

Ejabberd chat service integration

Hi,

I have installed ejabberd and got it to work on my Macbook.

I have a site written in python, in which i would like to integrate the chat feature which is backed by the ejabberd server.
The user should be able to register for chat from the website and be able to send messages through website. 
What is a good way to do this ? Using hooks or res_apis or any better solution ?

Cheers
Puneet
_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Gaurav Jain | 17 Nov 10:11 2014
Picon

Unexpected presence stanza for MUC

Hello,

When I try to create same room twice in a row, I RECV presence stanza from service containing "201" status code both times.

Is that expected behavior? From XEP-0045, it seems 201 should be send ONLY when the room was created first time.

Please help me understand this. Why is status code 201 sent both times.

Please see below the sequence:

---------First Request starts here
SEND: <presence to="erik_yo <at> conference.localhost/GJ"><x xmlns="http://jabber.org/protocol/muc"/><x xmlns="vcard-temp:x:update"><photo/></x></presence>
RECV: <presence xmlns="jabber:client" from="erik_yo <at> conference.localhost/GJ" to="erik <at> localhost/imac"><x xmlns="vcard-temp:x:update"><photo/></x><x xmlns="http://jabber.org/protocol/muc#user"><item jid="erik <at> localhost/imac" affiliation="owner" role="moderator"/><status code="110"/><status code="201"/></x></presence>

---------Second request starts here
SEND: <presence to="erik_yo <at> conference.localhost/GJ" type="unavailable"><x xmlns="vcard-temp:x:update"><photo/></x></presence>
SEND: <presence to="erik_yo <at> conference.localhost/GJ"><x xmlns="http://jabber.org/protocol/muc"/><x xmlns="vcard-temp:x:update"><photo/></x></presence>
RECV: <presence xmlns="jabber:client" from="erik_yo <at> conference.localhost/GJ" to="erik <at> localhost/imac" type="unavailable"><x xmlns="vcard-temp:x:update"><photo/></x><x xmlns="http://jabber.org/protocol/muc#user"><item affiliation="owner" role="none"/><status code="110"/></x></presence>
RECV: <presence xmlns="jabber:client" from="erik_yo <at> conference.localhost/GJ" to="erik <at> localhost/imac"><x xmlns="vcard-temp:x:update"><photo/></x><x xmlns="http://jabber.org/protocol/muc#user"><item jid="erik <at> localhost/imac" affiliation="owner" role="moderator"/><status code="110"/><status code="201"/></x></presence>


_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
heupink | 12 Nov 14:55 2014
Picon

carboncopy info requested

Hi list,

I would like to read up on the mod_carboncopy module, but I'm having a 
hard time finding any documentation. Anyone here as some info for me?

What I hope the carboncopy module would give me:

I have setup a ejabberd-14-07 install, and it works perfectly. Thanks. 
But: I would like to always receive all my incoming messages on all 
clients where I am logged in.

(basically: much like the facebook chat function)

Is this possible, and how to make it the default behaviour on my server?

Regards,
MJ

Gmane