!QvOYYvjPoWZBfgSBNk:matrix.org

Synapse Installation Guide Feedback

92 Members
Feedback and discussion about the recommended synapse installation guide: https://www.natrius.eu/dokuwiki/doku.php?id=digital:server:matrixsynapse45 Servers

Load older messages


SenderMessageTime
21 Aug 2020
@aaron:raim.istAarontie.loktiing: you want to set federation_verify_certificates: false14:14:01
25 Aug 2020
@tie.loktiing:matrix.orgtie.loktiing

I set federation_verify_certificates: false
But I get ERROR: Your server is configured to accept key server responses without signature validation or TLS certificate validation. This is likely to be very insecure. If you are sure you want to do this, set 'accept_keys_insecurely' on the keyserver configuration

I also set accept_keys_insecurely: true, but I am still getting the same ERROR as above.

02:11:11
@tie.loktiing:matrix.orgtie.loktiing
In reply to @aaron:raim.ist
tie.loktiing: you want to set federation_verify_certificates: false
*

I set federation_verify_certificates: false
But I get ERROR: Your server is configured to accept key server responses without signature validation or TLS certificate validation. This is likely to be very insecure. If you are sure you want to do this, set 'accept_keys_insecurely' on the keyserver configuration

I also set accept_keys_insecurely: true, but I am still getting the same ERROR.

02:12:44
@tie.loktiing:matrix.orgtie.loktiing *

I set federation_verify_certificates: false
But I get ERROR: Your server is configured to accept key server responses without signature validation or TLS certificate validation. This is likely to be very insecure. If you are sure you want to do this, set 'accept_keys_insecurely' on the keyserver configuration

I also set accept_keys_insecurely: true, but I am still getting the same ERROR as above.

02:13:03
@aaron:raim.istAaron tie.loktiing: What is trusted_key_servers: set to? I think you should just remove that section 02:14:31
@tie.loktiing:matrix.orgtie.loktiingI got this: Synapse requires that a list of trusted key servers are specified in order to Aug 25 10:26:59 ubuntu matrix-synapse[16923]: provide signing keys for other servers in the federation. Aug 25 10:26:59 ubuntu matrix-synapse[16923]: This homeserver does not have a trusted key server configured in Aug 25 10:26:59 ubuntu matrix-synapse[16923]: homeserver.yaml and will fall back to the default of 'matrix.org'.02:27:42
@tie.loktiing:matrix.orgtie.loktiing
In reply to @aaron:raim.ist
tie.loktiing: What is trusted_key_servers: set to? I think you should just remove that section
* I got this:
Synapse requires that a list of trusted key servers are specified in order to
Aug 25 10:26:59 ubuntu matrix-synapse[16923]: provide signing keys for other servers in the federation.
Aug 25 10:26:59 ubuntu matrix-synapse[16923]: This homeserver does not have a trusted key server configured in
Aug 25 10:26:59 ubuntu matrix-synapse[16923]: homeserver.yaml and will fall back to the default of 'matrix.org'.
02:27:59
@tie.loktiing:matrix.orgtie.loktiing * I got this: Synapse requires that a list of trusted key servers are specified in order to Aug 25 10:26:59 ubuntu matrix-synapse[16923]: provide signing keys for other servers in the federation. Aug 25 10:26:59 ubuntu matrix-synapse[16923]: This homeserver does not have a trusted key server configured in Aug 25 10:26:59 ubuntu matrix-synapse[16923]: homeserver.yaml and will fall back to the default of 'matrix.org'.02:28:43
@aaron:raim.istAaron tie.loktiing: Hmm then maybe put it back and set it to your own server or something 02:29:24
@tie.loktiing:matrix.orgtie.loktiing
In reply to @aaron:raim.ist
tie.loktiing: Hmm then maybe put it back and set it to your own server or something
ok, but own server means my matrix.domain1.com?
02:30:11
@aaron:raim.istAaron Whatever your server_name is 02:31:15
@tie.loktiing:matrix.orgtie.loktiingRedacted or Malformed Event02:33:18
@tie.loktiing:matrix.orgtie.loktiing
In reply to @aaron:raim.ist
Whatever your server_name is
ok I just put it like this? trusted_key_servers: {{matrix_domain|to_json}}
02:34:31
@aaron:raim.istAaronYeah that's fine02:37:26
@tie.loktiing:matrix.orgtie.loktiing
In reply to @tie.loktiing:matrix.org
ok I just put it like this? trusted_key_servers: {{matrix_domain|to_json}}

ERROR: trusted_key_servers, if given, must be a list, not a str

This format not correct

02:45:26
@tie.loktiing:matrix.orgtie.loktiing

I changed matrix-synapse\defaults\main.yml and give it a try

matrix_synapse_trusted_key_servers:

  • server_name: "domain1.com"
02:53:27
@tie.loktiing:matrix.orgtie.loktiing *

I changed matrix-synapse\defaults\main.yml and give it a try

matrix_synapse_trusted_key_servers:

  • server_name: "domain1.com"
02:53:43
@tie.loktiing:matrix.orgtie.loktiing back to the same ERROR message:
Aug 25 11:02:21 osboxes systemd[1]: Started Synapse server.
Aug 25 11:02:26 osboxes matrix-synapse[8866]: ERROR: Your server is configured to accept key server responses without signature
Aug 25 11:02:26 osboxes matrix-synapse[8866]: validation or TLS certificate validation. This is likely to be very insecure. If
Aug 25 11:02:26 osboxes matrix-synapse[8866]: you are sure you want to do this, set 'accept_keys_insecurely' on the
Aug 25 11:02:26 osboxes matrix-synapse[8866]: keyserver configuration.
03:03:06
@aaron:raim.istAaron

tie.loktiing: It should look something like

trusted_key_servers:
  - server_name: "domain1.com"
    accept_keys_insecurely: true
03:06:42
@tie.loktiing:matrix.orgtie.loktiing
In reply to @aaron:raim.ist

tie.loktiing: It should look something like

trusted_key_servers:
  - server_name: "domain1.com"
    accept_keys_insecurely: true

Thanks! At least now Synapse started.

I also set up the same exact configuration on another server. The servers still do not federate

03:45:40
28 Aug 2020
@PC-Admin:perthchat.org@PC-Admin:perthchat.org left the room.07:23:17
5 Sep 2020
@servingworlds:matrix.org@servingworlds:matrix.org left the room.16:44:23
8 Sep 2020
@omidnazari:matrix.orgomidnazari joined the room.17:19:44
@omidnazari:matrix.orgomidnazarihi, i'm Configured Turn Server acording to this manual https://github.com/matrix-org/synapse/blob/develop/docs/turn-howto.md on my VPS Voip not Work between my homeserver users but work when Calling external Homeserver Users17:20:44
@omidnazari:matrix.orgomidnazari
In reply to @omidnazari:matrix.org
hi, i'm Configured Turn Server acording to this manual
https://github.com/matrix-org/synapse/blob/develop/docs/turn-howto.md
on my VPS
Voip not Work between my homeserver users but work when Calling external Homeserver Users
how to fix it?
17:20:54
@natrius:matrix.orgnatrius better head to #synapse:matrix.org 17:27:43
@natrius:matrix.orgnatriusThis if for a specific guide and there is no turn-server covered :)17:27:57
@omidnazari:matrix.orgomidnazari
In reply to @natrius:matrix.org
better head to #synapse:matrix.org
🙏
17:28:36
@bwtribble:matrix.orgbwtribble joined the room.18:45:12
16 Sep 2020
@herbert:synod.im@herbert:synod.im left the room.22:32:43

There are no newer messages yet.


Back to Room List