Still studying the situation … I saw listed the zarafa module into selinux, not sure if selinux loaded from iots repository or z-push created it

Also it might be that when installing nginx also the selinux policy should have been created with “semanage permissive -d httpd_t”
[https://www.getpagespeed.com/server-setup/nginx/nginx-selinux-configuration](link url)

work in progress but it’s definitively there the issue, thanks !

Hello,

I’m sorry. I’m not able to follow this issue any more. I’ve dropped my phone and it’s glass cracked so I can’t use it anymore. As glass change costs as same as almost new xiaomi phone I’ve decided to just buy new phone.

I will try to get back if I’ll get same problems with my new phone.

And yes, it was Huawei P10 Lite.

Felix, liverpoolfcfan,

thank you very much, this is awesome and gives another layer of security, as the block will be before accessing z-push at all.

Peter

@manfred Thanks. That makes sense now. I was just surprised there was no announcement post on here following a version change

I checked again today the log file and I didn’t see the ipcsharedmemory error.

I rebooted a couple of times for other reasons and this might have taken the error away.

Let’s park this for the moment
Thanks

Our develop branch is now unstable as it contains several tickets for Z-Push 2.4.0.
You can see the progress here: https://jira.z-hub.io/projects/ZP/versions/10211

Hi @gbulfon ,

Can you give some more details about your environment? Which z-push version? Which backend are you using?

To get a better understanding what’s wrong some logging could help. For some basic stuff the access and error logs of your Webserver could ve interesting, for some more advanced stuff a wbxml log (see z-push wiki) is better suited.

Dear Manfred

Thank you very much for the immediate reply and you wise advice
by the way there are about 60 to 80 devices

apprecite and regards

simon

Did not experience that as I am an old Zarafa@Home uses that has some issues upgrading to the Kopano none release O/N builds as installs and I am not using the Outlook Connector beacause of that

@liverpoolfcfan Could you check if the issue persists with 2.3.8beta2?

Hi all,

first of all thanks to Sven and robgnu for posting their config.

Based on your input I came up with the following:
/etc/nginx/sites-available/z-push.conf

server { server_name localhost; # Put your server name # Uncomment the following lines to enable SSL support if not configured yet #listen 443 ssl; #listen [::]:443 ssl; #ssl on; #ssl_certificate /path/to/ssl.crt; # Put in the correct path #ssl_certificate_key /path/to/ssl.key; # Put in the correct path # If you're using PHP-FPM uncomment the following lines. #include fastcgi_params; #fastcgi_index index.php; #fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; #fastcgi_param REQUEST_URI $1; #fastcgi_param PHP_FLAG "magic_quotes_gpc=off \n register_globals=off \n magic_quotes_runtime=off \n short_open_tag=on"; #fastcgi_param PHP_VALUE "post_max_size=20M \n upload_max_filesize=20M \n max_execution_time=3660"; #fastcgi_param HTTP_PROXY ""; # Mitigate https://httpoxy.org/ vulnerabilities #fastcgi_read_timeout 3660; # Z-Push Ping might run 3600s, but to be safe location ~* /Microsoft-Server-ActiveSync { alias /usr/share/z-push/index.php; access_log /var/log/nginx/z-push-access.log; error_log /var/log/nginx/z-push-error.log; # Attachments ca 15MB max (since binary data needs to be base64 encoded in mine, which results in in about 33% overhead) client_max_body_size 20m; client_body_buffer_size 128k; # Select one of the fastcgi_pass values or adapt to your configuration #fastcgi_pass unix:/var/run/php5-fpm.sock; # for PHP 5.X Debian/Ubuntu #fastcgi_pass unix:/var/run/php/php7.0-fpm.sock; # for PHP 7.X Debian/Ubuntu #fastcgi_pass unix:/var/run/php-fpm/php-fpm.sock; # usually RedHat and its derivatives #fastcgi_pass 127.0.0.1:9000; # default php-fpm config } location ~* /AutoDiscover/AutoDiscover.xml { alias /usr/share/z-push/autodiscover/autodiscover.php; access_log /var/log/nginx/z-push-autodiscover-access.log; error_log /var/log/nginx/z-push-autodiscover-error.log; # Select one of the fastcgi_pass values or adapt to your configuration #fastcgi_pass unix:/var/run/php5-fpm.sock; # for PHP 5.X Debian/Ubuntu #fastcgi_pass unix:/var/run/php/php7.0-fpm.sock; # for PHP 7.X Debian/Ubuntu #fastcgi_pass unix:/var/run/php-fpm/php-fpm.sock; # usually RedHat and its derivatives #fastcgi_pass 127.0.0.1:9000; # default php-fpm config #fastcgi_index autodiscover.php; } }

Any comments, suggestions, improvements on this?

My idea was that even if someone enables this config file as is, it won’t break nginx config, so that nginx wouldn’t even start. The admin would only need to configure ssl_certificate, ssl_certificate_key and fastcgi_pass parameters according to his settings.

Manfred

If you open a shared folder of another store via KOE and the Shared folder feature, you can move email from your account to this other folder.
When opening two shared folders you can also move between them.

This is still only a viable option for folders you would open anyway, because Outlook will fully synchronize them.
So, this will work but might take ages to sync GBs of data just to move a few emails.

@Manfred Thanks

Backend is kopano

rg
Christian

Hi Manfred,

thanks for clarifying!
So I think setting the timeout to 3600s would be better.