Hi list members,
Please help me to setup intelmq-manager, thanks in advance.
I am working on FreeBSD12.2p4 with pip installed intelmq-{core,api,manager}. Python is 3.7.9.
Intelmq(-core) is working like;
$ intelmqctl status Bot cymru-whois-expert is running. Bot deduplicator-expert is running. Bot feodo-tracker-browse-collector is running. Bot feodo-tracker-browse-parser is running. Bot file-output is running. Bot gethostbyname-1-expert is running. Bot gethostbyname-2-expert is running. Bot malc0de-parser is running. Bot malc0de-windows-format-collector is running. Bot spamhaus-drop-collector is running. Bot spamhaus-drop-parser is running. Bot sql is running. Bot taxonomy-expert is running. Bot url2fqdn-expert is running.
Apahce httpd 2.4 is configured like;
### intelmq_api LoadModule wsgi_module libexec/apache24/mod_wsgi.so <IfModule mod_wsgi.c> WSGIApplicationGroup %{GLOBAL} WSGIPassAuthorization On WSGIScriptAlias /api /usr/local/lib/python3.7/site-packages/intelmq_api/intelmq-api.wsgi </IfModule>
<Directory /usr/local/lib/python3.7/site-packages/intelmq_api/> Require all granted </Directory>
### intelmq_manager Alias /intelmq-manager /usr/local/lib/python3.7/site-packages/intelmq_manager/html <Directory /usr/local/lib/python3.7/site-packages/intelmq_manager/html> Require all granted <IfModule mod_headers.c> Header set Content-Security-Policy "script-src 'self" Header set X-Content-Security-Policy "script-src 'self" </IfModule> </Directory>
sudo is configured like;
$ cat /usr/local/etc/sudoers.d/intelmqapi intelmq ALL=(intelmq) NOPASSWD: /usr/local/bin/intelmqctl www ALL=(intelmq) NOPASSWD: /usr/local/bin/intelmqctl
apache httpd is running as user=www.
I can see the IntelMQ Manager's top page with panels of Configuration, Management, Monitor, Check, and About. I also can see the Login button on top-right corner of this page.
Now, the problem is nothing happens when I click the Login button, nothing appears on the httpd-{access,error}.log when clicked, seems nothing been transferred from the browser to the server (checked via tcpdump).
Please advice me what did I miss...
Thank you very much.
Best Regards,
Hi,
Sorry for bothering with the rare OS, I just wish my trial on FreeBSD tortures IntelMQ and find out hidden something. Please just tell me it is time to go to the linux world, then I'll try it.
Backing to BSD world, using the same machine, I gave a try with nginx and gunicorn. With this combination, the Login button pop-up-ed another window, in which I was able to input username and password, though I couldn't be authenticated because of URL path problem. I need to remember nginx configuration more.
Oh, by the way, if we use gunicorn (or uwsgi), we can omit 'sudo' configuration for intelmq_api since we can run wsgi server with the user id of intelmq user.
[nginx.conf] location / { root /usr/local/lib/python3.7/site-packages/intelmq_manager/html/; index index.html; } location /api/ { uwsgi_pass unix:///var/run/intelmq/intelmq-uwsgi.sock; include uwsgi_params; }
[gunicorn] INTELMQ_API_CONFIG=/usr/local/lib/python3.7/site-packages/etc/intelmq/api-config.json \ gunicorn \ -b unix:///var/run/intelmq/intelmq-uwsgi.sock \ --pythonpath /usr/local/lib/python3.7/site-packages/intelmq_api serve:__hug_wsgi__
If I run gunicorn with "-b http://127.0.0.1:8000/" instead of UNIX socket, I can access intelmq_api through curl, and it returns JSON data with "404 not found" in JSON.
Thank you very much.
Best Regards,
Am Mittwoch 07 April 2021 05:18:27 schrieb moto kawasaki:
If I run gunicorn with "-b http://127.0.0.1:8000/" instead of UNIX socket, I can access intelmq_api through curl, and it returns JSON data with "404 not found" in JSON.
The gunicorn logging and documentation should tell you what it expects to get this served. Maybe you could try a hug example application first, then you can checkout the hug documentation as well.
(So far it seems **not** to be a FreeBSD specific thing as on all plattforms you would need to understand how the webserver works if you wire it manually. )
Best Regards, Bernhard
Am Dienstag 06 April 2021 16:31:28 schrieb moto kawasaki:
Now, the problem is nothing happens when I click the Login button, nothing appears on the httpd-{access,error}.log when clicked, seems nothing been transferred from the browser to the server (checked via tcpdump).
Check the network details in the development console of your webbrowser to get to the next diagnostic step.
Best, Bernhard