[Csync2] Errors when running csync2
Fabricio Cannini
fcannini at gmail.com
Tue Oct 5 22:39:59 CEST 2010
On Tuesday 05 October 2010 16:22:46 Christopher J Bidwell wrote:
> Just a little bit of insight as to how my setup "should" go.
>
> I have a primary webserver that should feed content to four public
> webservers.
>
> My contents of my /etc: (this is the same on both my master and my slave
> servers).
> [@glddb-slave1 etc]# lsl csync2*
> -rw-r--r-- 1 root root 710 Oct 5 2010 csync2.cfg
> -rw------- 1 root root 65 Oct 5 2010 csync2.key_ehp
> -rw-r--r-- 1 root root 774 Oct 5 2010 csync2_ssl_cert.pem
> -rw-r--r-- 1 root root 887 Oct 5 2010 csync2_ssl_key.pem
ls -la /etc/csync2*
-rw-r--r-- 1 root root 814 2010-09-28 20:07 /etc/csync2.cfg
-rw------- 1 root root 65 2010-09-10 19:17 /etc/csync2.key
-rw-r--r-- 1 root root 1025 2010-09-10 19:17 /etc/csync2_ssl_cert.csr
-rw-r--r-- 1 root root 1241 2010-09-10 19:17 /etc/csync2_ssl_cert.pem
-rw-r--r-- 1 root root 1675 2010-09-10 19:17 /etc/csync2_ssl_key.pem
This is how i generated the ssl certs:
-------------------------------
# openssl genrsa -out /etc/csync2_ssl_key.pem 2048
# openssl req -batch -nodes -new -key /etc/csync2_ssl_key.pem -out
/etc/csync2_ssl_cert.csr
# openssl x509 -req -days 1825 -in /etc/csync2_ssl_cert.csr -signkey
/etc/csync2_ssl_key.pem -out /etc/csync2_ssl_cert.pem
-------------------------------
After reading this:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=501289
I edited '/etc/ssl/openssl.cnf' on the '[ req_distinguished_name ]' part:
-------------------------------
commonName_default =
-------------------------------
To set the "CN" filed of the ssl cert empty. It is a work-around for a bug in
gnutls.
Also, i'm not seeing the backup directory in the configuration file .
Weird things happen when csync2 cannot backup the file it is updating.
Mine is configured like this:
-------------------------------
backup-directory /var/backups/csync2 ;
backup-generations 3 ;
-------------------------------
Guess that's it.
Scream if you still need help. ;)
More information about the Csync2
mailing list