Santiago Gaviria | 3 Feb 14:20 2011
Picon

What to do for S2S to Gtalk

Hi,


I've read that s2s to Gtalk works out-of-the-box with ejabberd; I've also read in the guide about s2s configurations. However I still don't get how to initiate a connection with an external server, Gmail in this case, and what is it that I get from then on.

After the connections is established, is it then possible for a user to connect to her Gtalk account thru ejabberd's BOSH connection, and receiving Gtalk's roster?

I'm sure it would be of great help to many people out there trying to do the same thing, if we've got a more detailed description of how this connection is achieved configuration-wise, especially with self-signed certificates.

Maybe all of this is pretty straightforward, but I'm completely new to ejabberd and Jabber in general.

Thanks

Santiago
_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
David Banes | 4 Feb 10:43 2011

Re: ejabberd Digest, Vol 91, Issue 2


On 04/02/2011, at 9:00 AM, ejabberd-request <at> jabber.ru wrote:

> Today's Topics:
> 
>   1. What to do for S2S to Gtalk (Santiago Gaviria)
> 
> 
> ----------------------------------------------------------------------
> 
> Message: 1
> Date: Thu, 3 Feb 2011 08:20:37 -0500
> From: Santiago Gaviria <sgaviria <at> gmail.com>
> To: ejabberd <at> jabber.ru
> Subject: [ejabberd] What to do for S2S to Gtalk
> Message-ID:
> 	<AANLkTiktxZD6Dw3CNhttO83UahY4vvX+c5M09DovaTr+ <at> mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
> 
> Hi,
> 
> I've read that s2s to Gtalk works out-of-the-box with ejabberd; I've also
> read in the guide about s2s configurations. However I still don't get how to
> initiate a connection with an external server, Gmail in this case, and what
> is it that I get from then on.

I think you've missed the point.  ejabberd federates with GTalk OK.  You don't have to do anything to start a
connection the server will manage it all.  Just setup ejabberd with your own domain, create yourself an
account and then you will be able to chat to your friends on GTalk.  

You can't use your GTalk JID (address) directly, you'll need an XMPP proxy like the one ProcessOne have
(http://www.process-one.net/en/imstore/).  You put your GTalk details into that proxy and then you get
your GTalk buddies in your ejabberd roster.  

> 
> After the connections is established, is it then possible for a user to
> connect to her Gtalk account thru ejabberd's BOSH connection, and receiving
> Gtalk's roster?

No - See above

> 
> I'm sure it would be of great help to many people out there trying to do the
> same thing, if we've got a more detailed description of how this connection
> is achieved configuration-wise, especially with self-signed certificates.
> 
> Maybe all of this is pretty straightforward, but I'm completely new to
> ejabberd and Jabber in general.
> 
> Thanks
> 
> Santiago
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <http://lists.jabber.ru/pipermail/ejabberd/attachments/20110203/58a4bd14/attachment-0001.html>
> 
> ------------------------------
> 
> _______________________________________________
> ejabberd mailing list
> ejabberd <at> jabber.ru
> http://lists.jabber.ru/mailman/listinfo/ejabberd
> 
> 
> End of ejabberd Digest, Vol 91, Issue 2
> ***************************************

--------------------------------------------------------------------------------------------------------
Email Filtering by Cleartext, Carbon Minimised  - www.cleartext.com
--------------------------------------------------------------------------------------------------------
Mark Keisler | 4 Feb 15:58 2011
Picon

logged errors for sql and unknown

I'm running ejabberd 2.1.1 with erlang R13B02 and postgresql 8.2.7.  I'm seeing these errors in the log:

=ERROR REPORT==== 2011-01-26 03:18:49 ===
E(<0.260.0>:ejabberd_odbc:317) : SQL transaction restarts exceeded
** Restarts: 10
** Last abort reason: [{severity,'ERROR'},
                       {code,"23505"},
                       {message,"duplicate key violates unique constraint \"rostergroups_pkey\""},
                       {file,"nbtinsert.c"},
                       {line,277},
                       {routine,"_bt_check_unique"}]
** Stacktrace: [{ejabberd_odbc,sql_query_t,1},
                {lists,foreach,2},
                {mod_roster_odbc,'-process_item_set/3-fun-0-',7},
                {ejabberd_odbc,outer_transaction,3},
                {ejabberd_odbc,handle_call,3},
                {gen_server,handle_msg,5},
                {proc_lib,init_p_do_apply,3}]
** When State == {state,<0.261.0>,pgsql}

and

=ERROR REPORT==== 2011-02-04 09:16:05 ===
** State machine <0.10731.42> terminating
** Last event in was {xmlstreamelement,
                         {xmlelement,"auth",
                             [{"xmlns","urn:ietf:params:xml:ns:xmpp-sasl"},
                              {"mechanism","PLAIN"}],
                             [{xmlcdata,
                                  <<"bmpkODc2QGphYmJlci5zb3VyY2Vmb3JnZS5tb3QuY29tAG5qZDg3NgAzbVBvdzNyZWQ=">>}]}}
** When State == wait_for_feature_request
**      Data  == {state,
                     {socket_state,tls,
                         {tlssock,#Port<0.788275>,#Port<0.788277>},
                         <0.10730.42>},
                     ejabberd_socket,#Ref<0.0.181.160951>,false,"1703264358",
                     {sasl_state,"jabber","jabber.mydomain.com",[],
                         #Fun<ejabberd_c2s.1.70264870>,
                         #Fun<ejabberd_c2s.2.94090657>,
                         #Fun<ejabberd_c2s.3.82359008>,undefined,undefined},
                     c2s,c2s_shaper,false,true,false,true,
                     [verify_none,{certfile,"/etc/jabber/ssl.pem"}],
                     false,undefined,[],"jabber.mydomain.com",[],
                     undefined,
                     {0,nil},
                     {0,nil},
                     {0,nil},
                     {0,nil},
                     undefined,undefined,undefined,false,
                     {userlist,none,[],false},
                     unknown,unknown,
                     {{10,22,80,101},1340},
                     "en"}
** Reason for termination =
** {noproc,{gen_server,call,[<0.10730.42>,reset_stream]}}


I'm not sure why either of these are happening.  I don't even know what the second one means, really.  Any ideas?

--
Mark
Tact is the ability to tell a man he has an open mind when he has a hole in his head.

_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Picon

Authenticate ejabber users using a non-admin LDAP account

I am doing some experimenting with ejabberd, setting it up to use AD
(LDAP) for authentication. Since I am not the administrator of the AD
server I try use my own (=a regular user) credentials to login (bind)
to the AD server and then look up other users via my login but it does
not seem to work. The following error message appear in the log:

      =INFO REPORT==== 2011-02-08 11:07:05 ===
      I(<0.263.0>:eldap:967) : LDAP connection on site.company.com:389

      =WARNING REPORT==== 2011-02-08 11:07:05 ===
      W(<0.263.0>:eldap:915) : LDAP bind failed on site.company.com:389
      Reason: invalidCredentials

This error message is obvious enough so I wonder if what I try to do
even is possible? I mean, I can see all other users when using an LDAP
browsers but that might not be enough?
Konstantin Khomoutov | 8 Feb 14:48 2011
Picon
Picon

Re: Authenticate ejabber users using a non-admin LDAP account

On Tue, 8 Feb 2011 13:55:55 +0100
davidb.arbete+forum+ejabberd.im <at> gmail.com wrote:

> I am doing some experimenting with ejabberd, setting it up to use AD
> (LDAP) for authentication. Since I am not the administrator of the AD
> server I try use my own (=a regular user) credentials to login (bind)
> to the AD server and then look up other users via my login but it does
> not seem to work. The following error message appear in the log:
> 
>       =INFO REPORT==== 2011-02-08 11:07:05 ===
>       I(<0.263.0>:eldap:967) : LDAP connection on site.company.com:389
> 
>       =WARNING REPORT==== 2011-02-08 11:07:05 ===
>       W(<0.263.0>:eldap:915) : LDAP bind failed on
> site.company.com:389 Reason: invalidCredentials
> 
> 
> This error message is obvious enough so I wonder if what I try to do
> even is possible? I mean, I can see all other users when using an LDAP
> browsers but that might not be enough?

One cause of this might be improperly specified full DN of the binding
user. You can try to use simpler way to specify it, like this:

{ldap_rootdn, "davidb <at> domain.local"},
{ldap_password, "secret"},

This works for me (Windows AD as well).
Badlop | 9 Feb 17:37 2011
Picon

Re: What to do for S2S to Gtalk

2011/2/3 Santiago Gaviria <sgaviria <at> gmail.com>:
> Hi,
> I've read that s2s to Gtalk works out-of-the-box with ejabberd;

If you install, configure and start ejabberd to serve gaviria.net,
then you have an XMPP server serving the domain gaviria.net

Google developed and runs a XMPP server serving the domain gmail.com

When that is clear, now look at the second and third images in
http://www.jabberes.org/introduccion
The lines _____ are c2s: a user has a client connecting to his server.
The lines _  _  _ are s2s: a server connects to another server to
forward a message (for example).

> I've also
> read in the guide about s2s configurations. However I still don't get how to
> initiate a connection with an external server, Gmail in this case, and what
> is it that I get from then on.

When a user in your server sends a message to a gmail user, then your server
tries to connect to gmail, and then sends him the message.

> After the connections is established, is it then possible for a user to
> connect to her Gtalk account thru ejabberd's BOSH connection, and receiving
> Gtalk's roster?

That has no sense.

> I'm sure it would be of great help to many people out there trying to do the
> same thing, if we've got a more detailed description of how this connection
> is achieved configuration-wise, especially with self-signed certificates.
> Maybe all of this is pretty straightforward, but I'm completely new to
> ejabberd and Jabber in general.
> Thanks
> Santiago
> _______________________________________________
> ejabberd mailing list
> ejabberd <at> jabber.ru
> http://lists.jabber.ru/mailman/listinfo/ejabberd
>
>

---
Badlop
ProcessOne
Tim Evans | 11 Feb 18:39 2011

Massive Hosting in eJabberd 3.0

Hey all,

I was taking a look at the MH feature in 3.0.x, and was doing some tests to see how it performs. Memory seems to
be eaten up in O(n) time with an increase of about 2MB per virtual host. Our investigation into providing a
massive (~10000) number of virtual hosts for eJabberd2.x.x shows similar results. Will MH be set to be
able to scale out to thousands of domains on a single eJabberd instance, or are my findings somewhat naive
(may I be missing some configuration parameters, or is there missing code)?

Attached you will find a log of memory usage while allocating domains via `ejabberdctl host_register
DOMAIN` hook.

Cheers,
-Tim

Attachment (mem_usage.log): application/octet-stream, 16 KiB
_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Mickaël Rémond | 11 Feb 18:48 2011
Picon

Re: Massive Hosting in eJabberd 3.0

Hello Tim,

I think you should not really make any assumption on ejabberd 3.0.
It is not ready for production yet and will not be before a good while.

We have production ready version for large domain, but this is something deployed for supported customers.
That's the one use by hosting / service providers.

-- 
Mickaël Rémond
 http://www.process-one.net

Le 11 févr. 2011 à 18:39, Tim Evans a écrit :

> Hey all,
> 
> I was taking a look at the MH feature in 3.0.x, and was doing some tests to see how it performs. Memory seems to
be eaten up in O(n) time with an increase of about 2MB per virtual host. Our investigation into providing a
massive (~10000) number of virtual hosts for eJabberd2.x.x shows similar results. Will MH be set to be
able to scale out to thousands of domains on a single eJabberd instance, or are my findings somewhat naive
(may I be missing some configuration parameters, or is there missing code)?
> 
> Attached you will find a log of memory usage while allocating domains via `ejabberdctl host_register
DOMAIN` hook.
> 
> Cheers,
> -Tim
> 
> 
> <mem_usage.log>_______________________________________________
> ejabberd mailing list
> ejabberd <at> jabber.ru
> http://lists.jabber.ru/mailman/listinfo/ejabberd
Phil Reynolds | 13 Feb 19:56 2011

ejabberd 2.1.5-34 (Debian squeeze) not allowing me to set up a "group ignore"

I set up ejabbberd 2.1.5-3 on a new server today - I already had one  
running it but that was probably installed at an earlier version and  
upgraded with time.

On the old one, I had set up a group ignore, as this XML console output shows:

<iq from="emleymoor <at> hallam.tinsleyviaduct.com" type="result"  
to="emleymoor <at> hallam.tinsleyviaduct.com/Lounge" id="getlist2">
   <query xmlns="jabber:iq:privacy">
     <list name="ignore-group">
       <item action="deny" order="0" type="group" value="Ignore"/>
     </list>
   </query>
</iq>

However, when I do this on the new one:

<iq>
   <query xmlns='jabber:iq:privacy'>
     <list name='ignore-group'>
       <item
           type='group'
           value='Ignore'
           action='deny'
           order='0'/>
     </list>
   </query>
</iq>

... it fails, thus:

<iq from="emleymoor <at> firthpark.tinsleyviaduct.com" type="error"  
xml:lang="en" to="emleymoor <at> firthpark.tinsleyviaduct.com/Lounge">
   <query xmlns="jabber:iq:privacy">
     <list name="ignore-group">
       <item action="deny" order="0" type="group" value="Ignore"/>
     </list>
   </query>
<error type="modify" code="400">
<bad-request xmlns="urn:ietf:params:xml:ns:xmpp-stanzas"/>
</error>
</iq>

Am I going about this the wrong way or have I encountered a real problem?

Thanks in advance for any help.

--

-- 
Phil Reynolds
email: phil-jabber <at> tinsleyviaduct.com
Jabber: emleymoor <at> firthpark.tinsleyviaduct.com

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
Badlop | 14 Feb 11:43 2011
Picon

Re: ejabberd 2.1.5-34 (Debian squeeze) not allowing me to set up a "group ignore"

2011/2/13 Phil Reynolds <phil-jabber <at> tinsleyviaduct.com>:
> However, when I do this on the new one:
> <iq>
>  <query xmlns='jabber:iq:privacy'>
>    <list name='ignore-group'>
>      <item
>          type='group'
>          value='Ignore'
>          action='deny'
>          order='0'/>
>    </list>
>  </query>
> </iq>
>
> ... it fails, thus:

> Am I going about this the wrong way or have I encountered a real problem?

You are doing wrong.

Check
http://xmpp.org/extensions/xep-0016.html#protocol-edit

In the Iq element, you must include the attribute:
type='set'

---
Badlop
ProcessOne
_______________________________________________
ejabberd mailing list
ejabberd <at> jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd

Gmane