H
@thoresson also, have you opened up ports 80 and 443 in the router?
You need to assign those ports to the server ip (both ipv4 and ipv6 if you have that).
Then, activate dynamic dns in your cloudron dashboard to make sure it auto-updates when your ip changes.
@thoresson are you self hosting at home? If so, what router (brand/model) do you have?
Hairpinning is a feature in your router. I’m not sure if that’s a thing with a vps at a hosting provider.
Go into your router and look for hairpin toggle.
My FS app is growing in size and I was wondering how best to delete some the media/attachments only if possible, or better yet, archive them. Possible?
@d19dotca take a look at this thread as the env has some major changes, simply adding those lines brings an existing app up to par with a fresh install https://forum.cloudron.io/topic/13069/not-creating-pdfs-after-updates/25
Look for Girish’s latest post in there
/app/data/core file is set to root - should it be www-data?
@girish multihost not included in CR 9?
@scooke Let's say you run a bakery, you buy your milled flour and all the necessary ingredients from others and then the bakery/you claim all the glory. Do you consider this deceptive?
Also, isn't Cloudron built and makes use of other tech in the platform and in the offered apps? I know Cloudron contributes back to upstream projects financially and code wise, but is that "enough"? Same applies to us all as users using all these open source apps without pulling our own weight. This topic is too complex for a simple whitelabling request, but I believe I made my point.
I'm not a reseller, and I don't consider it deceptive because at the end of the day, the company I'm paying is 100% responsible to troubleshoot my services. As long as the original creator offers/allows whitelabling and the reseller didn't "hack" anything or break any ToS, then it's all cool. Branding has to be consistent for a successful business.
@fanvyr no need to go through import/export of the app. Simply delete the phantomjs line and paste the two lines Girish posted above. That’s the updated env. I also had the double db in there. It’s safe to delete the duplicates.
@poeti8 I switched to Yourls because of the Google references and the higher resource requirement to run Kutt. I know the idle usage is probably the same, but any reason why the recommended RAM is 1GB vs 256 MB for Yourls?
I came across Swift Paperless today and thought I'd share. It's free and no "in-app purchases". OCR works. Viewing works. Uploading works. What else could you ask for?
I've been using Quickscan to upload documents, but I can't view them on mobile since I've toggled the option to delete the scans after uploading for security purposes and I think it connects to your paperless server for uploading only, no viewing. I could be mistaken though so don't quote me. Any way, we got two great apps to pick from.
@andreasdueren said in Sharing custom SpamAssassin Rules:
Not sure if this is checking for the header content or arriving address
Good point. One way to find out 
I've been transitioning away from aliases to wildcard, mostly for services that I wouldn't be sending mail from. My understanding is that anything to x@yourdomain.com will be fetched by the catch-all, so spammers send emails to see if you have a catch-all inbox or not. With the wildcard method, spammers need to target it specifically for it to work. For instance, you can set up something like:
*services@domain.com
netflixservices@domain.com
googleservices@domain.com
onetimepurchaseservices@domain.com
aldiservices@domain.com
etc..
Use multiple wildcards:
*crapps@
*yourinitials@
*family@
*groups@
and all of these would be "active" without you having to create it beforehand. It comes in handy when you need an email on the fly and want it to be identified with a specific service.
Edit: I've had my FedEx email address get compromised, but it was using a wildcard. In my FedEx account I updated my address by adding a number to the wildcard (fedex5services@domain.com). Then, I created a filter in roundcube for the old fedex address to send all incoming mail to the junk folder. I haven't seen a single address pass-through.
BTW, you can make wildcards less obvious (I believe in security thru obscurity) by abbreviating things, using initials, different languages, wordplay, etc.
I was just looking at using a "filter" in Roundcube. Similar end result.
Edit: Turns out I got a few of them set up for aliases, so it should work for catch-all addresses too.
BTW, why use a catch-all instead of an alias/wildcard?
@andreasdueren Yeah, I see the limitation with that set up. Also applies to aliases. It would be nice to block an address when spammers get hold of it.
@andreasdueren I wonder if disabling the mailbox would reject incoming mail
@girish Worked like a charm. Thanks Girish!
To make it easier for other noobs like myself, do the following:
Run these commands using the app's terminal in your Cloudron dashboard (one line at a time).
cd /app/data/db
sqlite3 wallos.db
UPDATE user SET username='your_new_username' WHERE username='admin';
CTRL+D
Notes: Replace your_new_username above with your chosen username. Restart the app. Now, log in using the new username and your old admin password.
P.S. Use Ctrl + Shift + V for pasting in the terminal.
Upstream dev said the username is chosen during initial registration, so I'm guessing it's hardcoded in the packaging. Any way around this?
checked upstream and found no answer to this - opened a discussion about it here: https://github.com/ellite/Wallos/discussions/683
At first glance, it doesn't seem I can make a second user an admin or change the username of the default admin account to something less obvious. Is it possible?
@girish I compared my existing .env file to fresh install to see what else has changed and noticed a few things:
In my existing env file, there was a double entry of this section:
DB_HOST=mysql
DB_DATABASE=blablabla
DB_USERNAME=blablabla
DB_PASSWORD=blablabla
DB_PORT=3306
Then, we have:
Existing env DB_CONNECTION=db-ninja-01
Fresh env DB_CONNECTION=mysql
Existing env TRUSTED_PROXIES=
Fresh env TRUSTED_PROXIES=*
Lastly, we have a few additions that didn't exist before, such as:
PHANTOMJS_KEY='a-demo-key-with-low-quota-per-ip-address'
PHANTOMJS_SECRET=secret
DELETE_PDF_DAYS=60
DELETE_BACKUP_DAYS=60
GOOGLE_PLAY_PACKAGE_NAME=
APPSTORE_PASSWORD=
MICROSOFT_CLIENT_ID=
MICROSOFT_CLIENT_SECRET=
MICROSOFT_REDIRECT_URI=
APPLE_CLIENT_ID=
APPLE_CLIENT_SECRET=
APPLE_REDIRECT_URI=
NORDIGEN_SECRET_ID=
NORDIGEN_SECRET_KEY=
# https://invoiceninja.github.io/en/self-host-installation/#supervisor-for-invoice-ninja-ubuntu-22-04-lts
I hope copy/pasting these new additions won't mess anything up in the database.