View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0002409 | gnunet-gtk | gnunet-setup | public | 2012-06-07 18:38 | 2012-06-08 18:42 |
| Reporter | h4ck3rm1k3 | Assigned To | Christian Grothoff | ||
| Priority | normal | Severity | minor | Reproducibility | have not tried |
| Status | closed | Resolution | no change required | ||
| Product Version | 0.9.3 | ||||
| Summary | 0002409: Default config does not work | ||||
| Description | I could not get the default config to work, the permissions were too restrictive. attached is my new default config | ||||
| Tags | No tags attached. | ||||
| Attached Files | patch.txt (22,680 bytes)
Index: contrib/example-config/dns.conf
===================================================================
--- contrib/example-config/dns.conf (revision 0)
+++ contrib/example-config/dns.conf (revision 0)
@@ -0,0 +1,44 @@
+[dns]
+AUTOSTART = YES
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-dns
+UNIXPATH = /tmp/gnunet-service-dns.sock
+
+# Access to this service can compromise all DNS queries in this
+# system. Thus access should be restricted to the same UID.
+# (see https://gnunet.org/gnunet-access-control-model)
+UNIX_MATCH_UID = YES
+UNIX_MATCH_GID = YES
+
+# As there is no sufficiently restrictive access control for TCP,
+# we never use it, even if # is not set (just to be safe)
+# PORT = 0
+
+# This option should be set to YES to allow the DNS service to
+# perform lookups against the locally configured DNS resolver.
+# (set to "NO" if no normal ISP is locally available and thus
+# requests for normal ".com"/".org"/etc. must be routed via
+# the GNUnet VPN (the GNUNET PT daemon then needs to be configured
+# to intercept and route DNS queries via mesh).
+PROVIDE_EXIT = YES
+
+# Name of the virtual interface we use to intercept DNS traffic.
+IFNAME = gnunet-dns
+
+# Use RFC 3849-style documentation IPv6 address (RFC 4773 might provide an alternative in the future)
+# FIXME: or just default to a site-local address scope as we do for VPN!?
+IPV6ADDR = 2001:DB8::1
+IPV6PREFIX = 126
+
+# Use RFC 3927-style link-local address
+IPV4ADDR = 169.254.1.1
+IPV4MASK = 255.255.0.0
+
+# Enable GNUnet-wide DNS-EXIT service by setting this value to the IP address (IPv4 or IPv6)
+# of a DNS resolver to use. Only works if "PROVIDE_EXIT" is also set to YES. Must absolutely
+# NOT be an address of any of GNUnet's virtual tunnel interfaces. Use a well-known
+# public DNS resolver or your ISP's resolver from /etc/resolv.conf.
+# DNS_EXIT = 8.8.8.8
+
Index: contrib/example-config/nse.conf
===================================================================
--- contrib/example-config/nse.conf (revision 0)
+++ contrib/example-config/nse.conf (revision 0)
@@ -0,0 +1,25 @@
+[nse]
+AUTOSTART = YES
+#PORT = 2097
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-nse
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/test-nse-service-nse.unix
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+PROOFFILE = $SERVICEHOME/.nse-proof
+HISTOGRAM = $SERVICEHOME/nse-history.log
+
+# How 'slowly' should the proof-of-work be constructed (delay
+# between rounds); sane values between 0 and ~1000.
+WORKDELAY = 5 ms
+
+# Note: changing any of the values below will make this peer
+# completely incompatible with other peers!
+INTERVAL = 1 h
+# 26 is about 10 minutes on a modern i7 (single-core)
+WORKBITS = 26
+
Index: contrib/example-config/datastore.conf
===================================================================
--- contrib/example-config/datastore.conf (revision 0)
+++ contrib/example-config/datastore.conf (revision 0)
@@ -0,0 +1,33 @@
+[datastore]
+AUTOSTART = YES
+UNIXPATH = /tmp/gnunet-service-datastore.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# PORT = 2093
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-datastore
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+QUOTA = 100 MB
+BLOOMFILTER = $SERVICEHOME/datastore/bloomfilter
+DATABASE = sqlite
+# DISABLE_SOCKET_FORWARDING = NO
+
+[datastore-sqlite]
+FILENAME = $SERVICEHOME/datastore/sqlite.db
+
+[datastore-postgres]
+CONFIG = connect_timeout=10; dbname=gnunet
+
+[datastore-mysql]
+DATABASE = gnunet
+CONFIG = ~/.my.cnf
+# USER = gnunet
+# PASSWORD =
+# HOST = localhost
+# PORT = 3306
+
+
+
Index: contrib/example-config/gns.conf
===================================================================
--- contrib/example-config/gns.conf (revision 0)
+++ contrib/example-config/gns.conf (revision 0)
@@ -0,0 +1,24 @@
+[gns]
+AUTOSTART = YES
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-gns
+UNIXPATH = /tmp/gnunet-service-gns.sock
+ZONEKEY = $SERVICEHOME/gns/zonekey.zkey
+HIJACK_DNS = NO
+AUTO_IMPORT_PKEY = YES
+AUTO_IMPORT_CONFIRMATION_REQ = NO
+MAX_PARALLEL_BACKGROUND_QUERIES = 25
+DEFAULT_LOOKUP_TIMEOUT = 10
+RECORD_PUT_INTERVAL = 60
+ZONE_PUT_INTERVAL = 900
+
+[fcfsd]
+HTTPPORT = 18080
+ZONEKEY = $SERVICEHOME/fcfsd/zonekey.zkey
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-gns-fcfsd
+
Index: contrib/example-config/ats.conf
===================================================================
--- contrib/example-config/ats.conf (revision 0)
+++ contrib/example-config/ats.conf (revision 0)
@@ -0,0 +1,38 @@
+[ats]
+AUTOSTART = YES
+# PORT = 2098
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-ats
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-ats.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+
+# Enable MLP mode (default: NO)
+MLP = NO
+# Network specific inbound/outbound quotas
+# LOOPBACK
+LOOPBACK_QUOTA_IN = unlimited
+LOOPBACK_QUOTA_OUT = unlimited
+# LAN
+LAN_QUOTA_IN = unlimited
+LAN_QUOTA_OUT = unlimited
+# WAN
+WAN_QUOTA_IN = 64 KiB
+WAN_QUOTA_OUT = 64 KiB
+# WLAN
+WLAN_QUOTA_IN = 1 MiB
+WLAN_QUOTA_OUT = 1 MiB
+# ATS options
+
+DUMP_MLP = NO
+DUMP_SOLUTION = NO
+DUMP_OVERWRITE = NO
+DUMP_MIN_PEERS = 0
+DUMP_MIN_ADDRS = 0
+DUMP_OVERWRITE = NO
+ATS_MIN_INTERVAL = 15000
+ATS_EXEC_INTERVAL = 30000
Index: contrib/example-config/core.conf
===================================================================
--- contrib/example-config/core.conf (revision 0)
+++ contrib/example-config/core.conf (revision 0)
@@ -0,0 +1,22 @@
+[core]
+AUTOSTART = YES
+#PORT = 2092
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-core
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-core.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# DISABLE_SOCKET_FORWARDING = NO
+# DEBUG = YES
+# USERNAME =
+# MAXBUF =
+# TIMEOUT =
+# DISABLEV6 =
+# BINDTO =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# PREFIX =
Index: contrib/example-config/testbed.conf
===================================================================
Index: contrib/example-config/statistics.conf
===================================================================
--- contrib/example-config/statistics.conf (revision 0)
+++ contrib/example-config/statistics.conf (revision 0)
@@ -0,0 +1,22 @@
+[statistics]
+AUTOSTART = YES
+#PORT = 2088
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-statistics
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-statistics.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# DISABLE_SOCKET_FORWARDING = NO
+# USERNAME =
+# MAXBUF =
+# TIMEOUT =
+# DISABLEV6 =
+# BINDTO =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# PREFIX =
+
Index: contrib/example-config/transport.conf
===================================================================
--- contrib/example-config/transport.conf (revision 0)
+++ contrib/example-config/transport.conf (revision 0)
@@ -0,0 +1,69 @@
+[transport]
+AUTOSTART = YES
+# PORT = 2091
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-transport
+#PREFIX = valgrind
+NEIGHBOUR_LIMIT = 50
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+PLUGINS = tcp udp
+UNIXPATH = /tmp/gnunet-service-transport.sock
+BLACKLIST_FILE = $SERVICEHOME/blacklist
+# This could possibly be relaxed
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# DISABLE_SOCKET_FORWARDING = NO
+# USERNAME =
+# MAXBUF =
+# TIMEOUT =
+# DISABLEV6 =
+# BINDTO =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# PREFIX = valgrind --leak-check=full
+
+[transport-unix]
+PORT = 22086
+
+[transport-tcp]
+# Use 0 to ONLY advertise as a peer behind NAT (no port binding)
+PORT = 2086
+ADVERTISED_PORT = 2086
+
+# Maximum number of open TCP connections allowed
+MAX_CONNECTIONS = 128
+
+TIMEOUT = 5 s
+# ACCEPT_FROM =
+# ACCEPT_FROM6 =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# BINDTO =
+MAX_CONNECTIONS = 128
+
+[transport-udp]
+PORT = 2086
+BROADCAST = YES
+BROADCAST_INTERVAL = 30000
+MAX_BPS = 1000000
+
+[transport-http]
+PORT = 1080
+MAX_CONNECTIONS = 128
+
+[transport-https]
+PORT = 4433
+CRYPTO_INIT = NORMAL
+KEY_FILE = https.key
+CERT_FILE = https.cert
+MAX_CONNECTIONS = 128
+
+[transport-wlan]
+# Name of the interface in monitor mode (typically monX)
+INTERFACE = mon0
+# Real hardware, no testing
+TESTMODE = 0
+
Index: contrib/example-config/mesh.conf
===================================================================
--- contrib/example-config/mesh.conf (revision 0)
+++ contrib/example-config/mesh.conf (revision 0)
@@ -0,0 +1,13 @@
+[mesh]
+AUTOSTART = YES
+# PORT = 2096
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-mesh
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-mesh.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+
Index: contrib/example-config/datacache.conf
===================================================================
--- contrib/example-config/datacache.conf (revision 0)
+++ contrib/example-config/datacache.conf (revision 0)
@@ -0,0 +1,10 @@
+[datacache-mysql]
+DATABASE = gnunet
+CONFIG = ~/.my.cnf
+# USER = gnunet
+# PASSWORD =
+# HOST = localhost
+# PORT = 3306
+
+[datacache-postgres]
+CONFIG = connect_timeout=10; dbname=gnunet
Index: contrib/example-config/namestore.conf
===================================================================
--- contrib/example-config/namestore.conf (revision 0)
+++ contrib/example-config/namestore.conf (revision 0)
@@ -0,0 +1,31 @@
+[namestore]
+AUTOSTART = YES
+UNIXPATH = /tmp/gnunet-service-namestore.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# PORT = 2099
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-namestore
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+DATABASE = sqlite
+ZONEFILE_DIRECTORY = $SERVICEHOME/namestore/zonefiles
+
+[namestore-sqlite]
+FILENAME = $SERVICEHOME/namestore/sqlite.db
+
+[namestore-postgres]
+CONFIG = connect_timeout=10; dbname=gnunet
+
+[namestore-mysql]
+DATABASE = gnunet
+CONFIG = ~/.my.cnf
+# USER = gnunet
+# PASSWORD =
+# HOST = localhost
+# PORT = 3306
+
+
+
Index: contrib/example-config/resolver.conf
===================================================================
--- contrib/example-config/resolver.conf (revision 0)
+++ contrib/example-config/resolver.conf (revision 0)
@@ -0,0 +1,22 @@
+[resolver]
+AUTOSTART = YES
+#PORT = 2089
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-resolver
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-resolver.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# DISABLE_SOCKET_FORWARDING = NO
+# USERNAME =
+# MAXBUF =
+# TIMEOUT =
+# DISABLEV6 =
+# BINDTO =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# PREFIX =
+
Index: contrib/example-config/vpn.conf
===================================================================
--- contrib/example-config/vpn.conf (revision 0)
+++ contrib/example-config/vpn.conf (revision 0)
@@ -0,0 +1,21 @@
+[vpn]
+AUTOSTART = YES
+# PORT = 0
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-vpn
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-vpn.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+
+IPV6ADDR = 1234::1
+IPV6PREFIX = 32
+IPV4ADDR = 10.11.10.1
+IPV4MASK = 255.255.0.0
+VIRTDNS = 10.11.10.2
+VIRTDNS6 = 1234::17
+IFNAME = vpn-gnunet
+
Index: contrib/example-config/peerinfo.conf
===================================================================
--- contrib/example-config/peerinfo.conf (revision 0)
+++ contrib/example-config/peerinfo.conf (revision 0)
@@ -0,0 +1,24 @@
+[peerinfo]
+AUTOSTART = YES
+# PORT = 2090
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-peerinfo
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-peerinfo.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# DISABLE_SOCKET_FORWARDING = NO
+# USERNAME =
+# MAXBUF =
+# TIMEOUT =
+# DISABLEV6 =
+# BINDTO =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# PREFIX =
+HOSTS = $SERVICEHOME/data/hosts/
+
+
Index: contrib/example-config/fs.conf
===================================================================
--- contrib/example-config/fs.conf (revision 0)
+++ contrib/example-config/fs.conf (revision 0)
@@ -0,0 +1,33 @@
+[fs]
+AUTOSTART = YES
+INDEXDB = $SERVICEHOME/fs/idxinfo.lst
+TRUST = $SERVICEHOME/fs/credit/
+IDENTITY_DIR = $SERVICEHOME/fs/identities/
+STATE_DIR = $SERVICEHOME/fs/persistence/
+UPDATE_DIR = $SERVICEHOME/fs/updates/
+# PORT = 2094
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-fs
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+
+DELAY = YES
+CONTENT_CACHING = YES
+CONTENT_PUSHING = YES
+
+UNIXPATH = /tmp/gnunet-service-fs.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+DEBUG = YES
+MAX_PENDING_REQUESTS = 65536
+# Maximum frequency we're allowed to poll the datastore
+# for content for migration (can be used to reduce
+# GNUnet's disk-IO rate)
+MIN_MIGRATION_DELAY = 100 ms
+EXPECTED_NEIGHBOUR_COUNT = 128
+
+# Enable monkey?
+PREFIX =
+
Index: contrib/example-config/hostlist.conf
===================================================================
--- contrib/example-config/hostlist.conf (revision 0)
+++ contrib/example-config/hostlist.conf (revision 0)
@@ -0,0 +1,15 @@
+[hostlist]
+# port for hostlist http server
+HTTPPORT = 8080
+HOME = $SERVICEHOME
+HOSTLISTFILE = $SERVICEHOME/hostlist/learned.data
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-daemon-hostlist
+# consider having "-e" as default as well once implemented
+OPTIONS = -b
+SERVERS = http://v9.gnunet.org/hostlist http://ioerror.gnunet.org:65535/
+# proxy for downloading hostlists
+HTTP-PROXY =
+# bind hostlist http server to a specific IPv4 or IPv6
+# BINDTOIP =
+
Index: contrib/example-config/exit.conf
===================================================================
--- contrib/example-config/exit.conf (revision 0)
+++ contrib/example-config/exit.conf (revision 0)
@@ -0,0 +1,47 @@
+[exit]
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-daemon-exit
+
+# IPv6 address for the TUN interface (must be changed as this
+# must be within the global IPv6 range of your system!)
+IPV6ADDR = 2001:DB8::1
+
+# Prefix for our IPv6 subnet on the TUN interface.
+IPV6PREFIX = 64
+
+# IPv4 address to use on our TUN interface (may need to be
+# changed to avoid conflicts with existing addresses on your system).
+# Use RFC 3927-style link-local address
+IPV4ADDR = 169.254.86.1
+
+# Netmask for the IPv4 subnet on the TUN interface.
+IPV4MASK = 255.255.255.0
+
+
+# Name of the (virtual) tunnel interface the exit daemon will manage
+TUN_IFNAME = exit-gnunet
+
+# Name of the "real" interface that IPv4 traffic from this system will
+# leave from; this is the name of the interface where we need to
+# enable NAT on postrouting (typically something like 'eth0' or 'eth1'
+# or 'wlan0'). Not needed if EXIT_IPv4 is disabled AND if all
+# offered services run on 'localhost'. In this case, the value
+# of the option can instead be set to "%" (to not enable NAT on any
+# interface).
+EXIT_IFNAME = eth0
+
+# Set this to YES to allow exiting this system via IPv4 to the Internet
+EXIT_IPV4 = NO
+
+# Set this to YES to allow exiting this system via IPv6 to the Internet
+EXIT_IPV6 = NO
+
+# For IPv4-services offered by this peer, we need to at least enable IPv4
+ENABLE_IPV4 = YES
+
+# For IPv6-services offered by this peer, we need to at least enable IPv6
+ENABLE_IPV6 = YES
+
+
+# Maximum number of concurrent connections this exit supports.
+MAX_CONNECTIONS = 256
Index: contrib/example-config/template.conf
===================================================================
--- contrib/example-config/template.conf (revision 0)
+++ contrib/example-config/template.conf (revision 0)
@@ -0,0 +1,21 @@
+[template]
+AUTOSTART = NO
+PORT = 9999
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-template
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-template.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# DISABLE_SOCKET_FORWARDING = NO
+# USERNAME =
+# MAXBUF =
+# TIMEOUT =
+# DISABLEV6 =
+# BINDTO =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# PREFIX =
Index: contrib/example-config/topology.conf
===================================================================
--- contrib/example-config/topology.conf (revision 0)
+++ contrib/example-config/topology.conf (revision 0)
@@ -0,0 +1,10 @@
+[topology]
+MINIMUM-FRIENDS = 0
+FRIENDS-ONLY = NO
+AUTOCONNECT = YES
+TARGET-CONNECTION-COUNT = 16
+FRIENDS = $SERVICEHOME/friends
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-daemon-topology
+
+
Index: contrib/example-config/testing.conf
===================================================================
--- contrib/example-config/testing.conf (revision 0)
+++ contrib/example-config/testing.conf (revision 0)
@@ -0,0 +1,11 @@
+[TESTING]
+# How long before failing a connection?
+CONNECT_TIMEOUT = 30 s
+# How many connect attempts should we make?
+CONNECT_ATTEMPTS = 3
+# How many connections can happen simultaneously?
+MAX_OUTSTANDING_CONNECTIONS = 50
+
+# Should we clean up the files on peer group shutdown?
+DELETE_FILES = YES
+
Index: contrib/example-config/util.conf
===================================================================
--- contrib/example-config/util.conf (revision 0)
+++ contrib/example-config/util.conf (revision 0)
@@ -0,0 +1,18 @@
+[PATHS]
+#SERVICEHOME = ~/.gnunet/
+SERVICEHOME = /var/lib/gnunet/
+# DEFAULTCONFIG = /etc/gnunet.conf
+# If 'DEFAULTCONFIG' is not defined, the current
+# configuration file is assumed to be the default,
+# which is what we want by default...
+
+[gnunetd]
+HOSTKEY = $SERVICEHOME/.hostkey
+
+[client]
+HOME = $SERVICEHOME
+
+[TESTING]
+WEAKRANDOM = NO
+SPEEDUP_INTERVAL = 0 ms
+SPEEDUP_DELTA = 0 ms
Index: contrib/example-config/dht.conf
===================================================================
--- contrib/example-config/dht.conf (revision 0)
+++ contrib/example-config/dht.conf (revision 0)
@@ -0,0 +1,39 @@
+[dht]
+AUTOSTART = YES
+#PORT = 2095
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-dht
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+BUCKET_SIZE = 4
+UNIXPATH = /tmp/gnunet-service-dht.sock
+# This could be relaxed...
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# DISABLE_SOCKET_FORWARDING = NO
+ DEBUG = YES
+# USERNAME =
+# MAXBUF =
+# TIMEOUT =
+# DISABLEV6 =
+# BINDTO =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# PREFIX =
+# DO_FIND_PEER =
+# STRICT_KADEMLIA =
+# USE_MAX_HOPS =
+# MAX_HOPS =
+# REPUBLISH = YES
+# REPLICATION_FREQUENCY = 60
+# STOP_ON_CLOSEST =
+# STOP_FOUND =
+# CONVERGE_MODIFIER =
+
+
+[dhtcache]
+DATABASE = sqlite
+QUOTA = 1 MB
+
Index: contrib/example-config/arm.conf
===================================================================
--- contrib/example-config/arm.conf (revision 0)
+++ contrib/example-config/arm.conf (revision 0)
@@ -0,0 +1,24 @@
+
+[arm]
+# PORT = 2087
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-arm
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+DEFAULTSERVICES = topology hostlist dht nse mesh fs
+UNIXPATH = /tmp/gnunet-service-arm.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+# GLOBAL_POSTFIX = -l $SERVICEHOME/{}-logs
+GLOBAL_POSTFIX = -l $SERVICEHOME/{}-logs -L INFO
+# GLOBAL_PREFIX =
+# USERNAME =
+# MAXBUF =
+# TIMEOUT =
+# DISABLEV6 =
+# BINDTO =
+# REJECT_FROM =
+# REJECT_FROM6 =
+# PREFIX =
Index: contrib/example-config/nat.conf
===================================================================
--- contrib/example-config/nat.conf (revision 0)
+++ contrib/example-config/nat.conf (revision 0)
@@ -0,0 +1,54 @@
+[nat]
+# Are we behind NAT?
+BEHIND_NAT = NO
+
+# Is the NAT hole-punched?
+PUNCHED_NAT = NO
+
+# Enable UPNP by default?
+ENABLE_UPNP = NO
+
+# Use addresses from the local network interfaces (inluding loopback, but also others)
+USE_LOCALADDR = YES
+
+# Use address obtained from a DNS lookup of our hostname
+USE_HOSTNAME = NO
+
+# External IP address of the NAT box (if known); IPv4 dotted-decimal ONLY at this time (should allow DynDNS!)
+# normal interface IP address for non-NATed peers;
+# possibly auto-detected (using UPnP) if possible if not specified
+# EXTERNAL_ADDRESS =
+
+# Should we use ICMP-based NAT traversal to try connect to NATed peers
+# or, if we are behind NAT, to allow connections to us?
+ENABLE_ICMP_CLIENT = NO
+ENABLE_ICMP_SERVER = NO
+
+# IP address of the interface connected to the NAT box; IPv4 dotted-decimal ONLY;
+# normal interface IP address for non-NATed peers;
+# likely auto-detected (via interface list) if not specified (!)
+# INTERNAL_ADDRESS =
+
+# Disable IPv6 support
+DISABLEV6 = NO
+
+# Do we use addresses from localhost address ranges? (::1, 127.0.0.0/8)
+RETURN_LOCAL_ADDRESSES = NO
+
+# How often do we query the DNS resolver
+# for our hostname (to get our own IP), in ms
+HOSTNAME_DNS_FREQUENCY = 1200000
+
+# How often do we iterate over our
+# network interfaces to check for changes
+# in our IP address? in ms
+IFC_SCAN_FREQUENCY = 3000000
+
+# How often do we query the DNS resolver
+# for our hostname (to get our own IP), in ms
+DYNDNS_FREQUENCY = 140000
+
+[gnunet-nat-server]
+HOSTNAME = gnunet.org
+PORT = 5724
+
Index: contrib/example-config/pt.conf
===================================================================
--- contrib/example-config/pt.conf (revision 0)
+++ contrib/example-config/pt.conf (revision 0)
@@ -0,0 +1,13 @@
+[pt]
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-daemon-pt
+
+# Set this to YES to tunnel IPv4 traffic over GNUnet
+TUNNEL_IPV4 = NO
+
+# Set this to YES to tunnel IPv6 traffic over GNUnet
+TUNNEL_IPV6 = NO
+
+# Set this to YES to tunnel DNS traffic over GNUnet
+TUNNEL_DNS = NO
+
Index: contrib/example-config/lockmanager.conf
===================================================================
--- contrib/example-config/lockmanager.conf (revision 0)
+++ contrib/example-config/lockmanager.conf (revision 0)
@@ -0,0 +1,13 @@
+[lockmanager]
+AUTOSTART = YES
+# PORT = 2100
+HOSTNAME = localhost
+HOME = $SERVICEHOME
+CONFIG = $DEFAULTCONFIG
+BINARY = gnunet-service-lockmanager
+ACCEPT_FROM = 127.0.0.1;
+ACCEPT_FROM6 = ::1;
+UNIXPATH = /tmp/gnunet-service-lockmanager.sock
+UNIX_MATCH_UID = NO
+UNIX_MATCH_GID = NO
+
| ||||
|
|
Did you actually follow the instructions for access control from https://gnunet.org/gnunet-access-control-model And if so, what errors did you get? |
|
|
Basically I installed the package via debian and it did not really work out of the box. No i did not follow the notes, nor see them until now, I just installed it and tried to figure it out, asked on irc, the error that was coming was : util-16152 WARNING Access denied to UID X / GID Y, Access from `<unbound UNIX client>' denied to service `statistics' thanks, mike |
|
|
Ah, then this bug should be filed against the Debian package in the Debian bugtracker. I actually specifically wrote that page in the handbook for people building packages.... |
|
|
Waiting for feedback from downstream... |
|
|
Debian doesn't have 0.9.3 yet (coming soon). But it seems to me your user doesn't belong to the gnunet group. |
|
|
The group setup is supposed to be like this for any 0.9.x-version. Also, yes, your user must be in the gnunet group to access GNUnet, that's part of the access control design. Just like you have to be in group audio for audio access. Now, the Debian package should of course make sure that normal users are added to the respective groups by default. |
|
|
Marking as 'no change required', as the required change is in Debian (more automation in the package, or at least better documentation). |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2012-06-07 18:38 | h4ck3rm1k3 | New Issue | |
| 2012-06-07 18:38 | h4ck3rm1k3 | File Added: patch.txt | |
| 2012-06-07 18:52 | Christian Grothoff | Note Added: 0006009 | |
| 2012-06-07 18:52 | Christian Grothoff | Assigned To | => Christian Grothoff |
| 2012-06-07 18:52 | Christian Grothoff | Status | new => feedback |
| 2012-06-07 20:05 | h4ck3rm1k3 | Note Added: 0006012 | |
| 2012-06-07 20:05 | h4ck3rm1k3 | Status | feedback => assigned |
| 2012-06-07 21:35 | Christian Grothoff | Note Added: 0006016 | |
| 2012-06-07 22:13 | Christian Grothoff | Note Added: 0006018 | |
| 2012-06-07 22:13 | Christian Grothoff | Status | assigned => feedback |
| 2012-06-07 22:17 | beberking | Note Added: 0006019 | |
| 2012-06-07 22:26 | Christian Grothoff | Note Added: 0006020 | |
| 2012-06-08 18:42 | Christian Grothoff | Note Added: 0006034 | |
| 2012-06-08 18:42 | Christian Grothoff | Status | feedback => resolved |
| 2012-06-08 18:42 | Christian Grothoff | Fixed in Version | => 0.9.3 |
| 2012-06-08 18:42 | Christian Grothoff | Resolution | open => no change required |
| 2012-06-08 18:42 | Christian Grothoff | Status | resolved => closed |
| 2012-06-08 18:42 | Christian Grothoff | Fixed in Version | 0.9.3 => |
