[CalendarServer-users] calendar server on debian

[Jochen Grotepass]

Well, maybe here are some hints:

The caldavd is running under user "caldavd" on Debian. The file
"/etc/ssl/private/ssl-cert-snakeoil.key" does not (by default) have read
permissions to this user. So you might either add the user caldavd to
the group ssl-cert or change the group access to caldavd.

Next the authentication issue. As far as I have learned (pretty new) -
you should *NOT* enable all authentication mechanisms together. Just set
the digest to "true" and the rest to "false". Maybe this helps. Whereas
I am currently starting to implement Kerberos as it seems to make more
sense in my environment (thanks Georg Troska)...

Jochen

Tom Wright schrieb:
> plist attached, certificates are as specified
>
> li7-3:/var# ls -al /etc/ssl/certs/ssl-cert-snakeoil.pem -rw-r--r-- 1
> root ssl-cert 664 May  4 12:11
> /etc/ssl/certs/ssl-cert-snakeoil.pem
>
> li7-3:/var# ls -al /etc/ssl/private/ssl-cert-snakeoil.key -rw-r----- 1
> root ssl-cert 887 May  4 12:11
> /etc/ssl/private/ssl-cert-snakeoil.key
>
>
>
> --On Wednesday, May 06, 2009 09:13:11 PM +0200 Jochen Grotepass
> <jgrotepass at googlemail.com> wrote:
>
>> I got at least the http digest authentication to work with the debian
>> installation. Besides some other issues that I posted and where I still
>> working on.
>>
>> Whatever the reason might be, the caldavd.plist should give some hints.
>>
>> Jochen
>>
>> Tom Wright schrieb:
>>> Problems,problems
>>> So no only can I not get calendarserver to bind to an ssl port I also
>>> can't get digest authentication to work, I'm seeing the error:
>>>
>>>  'Authentication failed: nonce-count is not a valid hex string: None'
>>>
>>> Is the debian package a really old version of calendarserver and
>>> should i build from svn?
>>> Thanks tom
>>> _______________________________________________
>>> calendarserver-users mailing list
>>> calendarserver-users at lists.macosforge.org
>>> http://lists.macosforge.org/mailman/listinfo.cgi/calendarserver-users
>>
>
>
>