Daniel E. Markle's Blog - System Administration

Liferay 6.0.6 CE Editing Toolbar Bug

dmarkle@ashtech.net (Daniel E. Markle) — Wed, 28 Sep 2011 11:39:05 -0400

In Liferay 6.0 GA4 Community Edition there is an error in the CKEditor configuration; different configuration files are used to define the editing toolbar for the web content and other areas depending on the browsing path. This results in an issue where the toolbar changes seemingly at random. This is fixed in the Enterprise Edition and for future versions, but for those of us using the current Community Edition, the following workaround is useful.

The most problematic disappearing item for my use case is the spell checker; the same method can be used to restore other buttons as necessary. Back up, then apply this ckconfig.jsp patch to the Liferay root web app. For the tomcat download this is located in the liferay-portal-6.0.6/tomcat-6.0.29/webapps/ROOT/html/js/editor/ckeditor/ directory. Shut down Liferay, remove the tomcat work directory to clear the cache, then restart Liferay.

Airprint to an Office Workgroup Printer

dmarkle@ashtech.net (Daniel E. Markle) — Tue, 19 Jul 2011 15:55:26 -0400

Although Apple uses standard protocols for Airprint, the service is very picky about the exact broadcast settings before the printer will show up on iOS devices. The easiest way I've found to Airprint to an office workgroup printer:

Configure the printer to be printable via a Linux / CUPS server. On Debian install the cups and cups-pdf packages then log in via port 631 and configure the workgroup printer, making sure a test page prints.

Add ServerAlias * in /etc/cups.conf; this prevents "Request from x using invalid Host: field" errors.

Install avahi, on Debian use the avahi-daemon package.

Run this handy airprint-generate script. Copy the resulting file to /etc/avahi/services/ and restart avahi and cups.

Airprint should now be working for your iOS devices on the local network.

SNMP MIB lookup removed from Debian squeeze

dmarkle@ashtech.net (Daniel E. Markle) — Mon, 07 Feb 2011 18:02:51 -0500

After upgrading to Debian squeeze, snmp output will change; the descriptions are missing.

Before squeeze (i.e. in lenny):

$ snmpget -v1 -On -c public printer.example.com 1.3.6.1.2.1.25.3.5.1.1.1

.1.3.6.1.2.1.25.3.5.1.1.1 = INTEGER: idle(3)

After squeeze upgrade:

$ snmpget -v1 -On -c public printer.example.com 1.3.6.1.2.1.25.3.5.1.1.1

.1.3.6.1.2.1.25.3.5.1.1.1 = INTEGER: 3

This is because the MIB files were stripped from squeeze due to licensing reasons. Install the snmp-mibs-downloader package and comment out the line in /etc/snmp/snmp.conf as described in that config file. Non-free will need to be enabled in apt sources if you are not finding the package. See the Debian wiki section on snmp for added information.

Zimbra 6.0.9 Upgrade Logrotate Issue

dmarkle@ashtech.net (Daniel E. Markle) — Fri, 03 Dec 2010 12:27:36 -0500

If receiving e-mails like this from Zimbra after upgrading to 6.0.9:



/etc/cron.daily/logrotate:

error: zimbra:5 unknown user 'USER'

run-parts: /etc/cron.daily/logrotate exited with return code 1

See this forum post on a 6.0.9 logrotate issue. In a nutshell, edit /etc/logrotate.d/zimbra and replace USER GROUP with zimbra zimbra.

Debconf 10

dmarkle@ashtech.net (Daniel E. Markle) — Wed, 13 Oct 2010 21:20:57 -0400

In August I attended Debconf 10. My primary goals were to learn more about the current status of the Debian community, particularly in the face of Ubuntu's rise to popularity, and to fix the package xtrkcad for Debian, which used an outdated library.
Continue reading "Debconf 10"

Apache SSL and Combined Certificates

dmarkle@ashtech.net (Daniel E. Markle) — Tue, 04 May 2010 13:52:37 -0400

Current versions of Apache HTTP Server support SSL certificates and keys all in one file; it is no longer required to separate them. Point SSLCertificateFile at the combined file (commonly .pem) and comment out or omit SSLCertificateKeyFile.

This may not be desirable if you wish to have the certificate publicly available somewhere like /etc/ssl/certs/, available on the web for verification, or use the certificate for other applications for that domain (it's important to keep the key, and thus the combined file, private). In many common cases certificates are only used for an SSL secured web server, however.

Zimbra 32bit to 64bit Certificate Issue

dmarkle@ashtech.net (Daniel E. Markle) — Sat, 01 May 2010 20:48:14 -0400

When upgrading from 32 to 64 bit Zimbra, I could not get the zimbra mailbox (mailboxd) to start. It turned out to be a set of borked certificates. Do yourself a favor if you have this problem and just do this:



mv /opt/zimbra/mailboxd/etc/keystore /opt/zimbra/mailboxd/etc/keystore.borked

sudo /opt/zimbra/bin/zmcertmgr deploycrt self

Then re-deploy your certificates using the gui admin interface after restarting Zimbra.
Continue reading "Zimbra 32bit to 64bit Certificate Issue"