-
Posts
7898 -
Joined
-
Last visited
-
Days Won
37
Content Type
Profiles
Forums
Downloads
Store
Gallery
Bug Reports
Documentation
Landing
Posts posted by binhex
-
-
8 hours ago, nraygun said:
What are "archived"
this is a github repository that has been put into read only mode, basically its not not supported or maintained.
8 hours ago, nraygun said:and "tagged" images?
a tagged image refers to somebody specifying the version they want via the docker tag, read Q5 for how this works:- https://github.com/binhex/documentation/blob/master/docker/faq/unraid.md
- 1
-
OK hopefully the last comment from me on xz as i believe we are sorted, if you want to confirm the package version installed to ensure its the patched version '5.6.1-2' (see https://security.archlinux.org/ASA-202403-1), then do the following:-
- open unraid webui and left click container and select 'Console'
-
copy and paste the following command:-
pacman -Q | grep 'xz'
- confirm the returned value is 'xz 5.6.1-2', if not please post here the image name so i can investigate.
Note:- If you are using an archived image then this will not be patched, also if you are using a tagged image then again this will not be patched.
- 1
-
4 hours ago, knights_of_pine said:
log above. my docker will not start?
that log is useless, please do the following:- https://github.com/binhex/documentation/blob/master/docker/faq/help.md
-
39 minutes ago, Kognac said:
Can you add the torrent creator to this client in a new update?
there is no torrent creator for the webui version of qbittorrent, see this issue:- https://github.com/qbittorrent/qBittorrent/issues/5614
-
On 4/9/2024 at 8:21 PM, VRA said:
I moved it back to array for now, and it started to work again.
However, if its better to have the appdata on cache, it would be nice to figoure it out and solve this issue somehow.left click the container and click on the 'show more settings....' and it will reveal the path for /config, i would assume its pointing at your array, if you want it to use your cache drive then stop the container, move the files to the cache drive and then change the host path to point at the cache drive location where you moved the files to.
-
19 minutes ago, FreeMan said:
Is there a build now that doesn't have this issue? I've rolled back to the 2.1.1-4-05 tag, so I'm not getting update notifications...
@uberchuckie issue was resolved, if you have the same issue then do the following:- https://forums.unraid.net/topic/44109-support-binhex-delugevpn/?do=findComment&comment=1400857
- 1
-
21 hours ago, nraygun said:
Any updates? I have my Minecraft server down in the meantime.
OK all images are now up to date, please perform a 'check for updates' and pull down any out of date images.
Note:- I do not know what image you are using for your minecraft server but mineos-node has now been archived, so if you are using this image i would encourage you to switch to a maintained image such as crafty4 as this will NOT include the updated xz package.
Be aware version 5.6.1-2 is the patched version, so if the version of xz is still showing v5.6.1 then this will be the patched release - see link for more details:- https://security.archlinux.org/ASA-202403-1
- 1
-
38 minutes ago, Adam_ said:
Sent fatal SSL alert: certificate expired
This is the issue, you need to talk to AirVPN about this if there is no newer certificate.
-
3 minutes ago, Kees Fluitman said:
Simply ran the container, cant get to 8200, nor can i get vlc or my denon heos app to find it.
I tried adding port 8200 manually, but to no avail.the 'network type' should be set to 'bridge' is this the case? the reason i ask is that in bridge mode you do not specify ports.
-
29 minutes ago, bmartino1 said:
then do a search for their password to confirm this memory leak?
Yes, it looks like the diagnostics tool is grabbing the entire process name including all env vars defined for the container, the env vars will specify (amongst a lot of other things) the username and password for the vpn provider, i assume this would be true for any env vars for any container, not just this one.
obfuscation of credentials is actually quite difficult to do in a robust manner, line wraps or other unexpected conditions can cause the credential to leak even if obfuscation is used.
-
7 hours ago, uberchuckie said:
The cert from my setup is from 2017 and it expired in 2021. It's also RSA 1024 bit.
The cert is auto generated as part of the startup process, i have just run from fresh and i can see the cert has a creation date of today and expires in 3 years, you could try stopping the container, then delete the /config/ssl folder and start the container, this should force a new cert to be created.
-
I'm currently on holiday, I shall take a look when I get back on SaturdayI see the same thing. The container image upgraded about eight hours ago.
The last two lines in the log file is[info] Deluge process started[info] Waiting for Deluge process to start listening on port 58846...
Adding DEBUG=true enabled debug logging but didn't add any more logs after the above.
Rolling back to the 2.1.1-4-05 tag "fixes" it.
xz in the image with that tag is version 5.4.5 (which does not contain the backdoor).
Sent from my 22021211RG using Tapatalk
- 2
-
I'm waiting on the upstream update, if it doesn't happen by the end of this week then I shall have to compile it myself and include in the buildAny updates? People are leaving your container because of this.
Sent from my 22021211RG using Tapatalk
- 1
- 2
-
12 minutes ago, manfat said:
just checking if you're aware of the recent backdoor added to xz/libzma?
https://forums.unraid.net/topic/44108-support-binhex-general/?do=findComment&comment=1396797
-
9 hours ago, nraygun said:
Thanks @binhex!
Do you have an announcement site for users to stay current on stuff like this or is this thread it!
This is probably as good as any place, so lets keep correspondence about the issue here.
- 2
-
21 hours ago, nraygun said:
Are the BinHex containers affected by this?
CVE-2024-3094
Some of the image i have built MAY have the affected versions installed, i am currently running a build of the base image to perform the 'Resolution' (see link) and i will then kick off builds of subsequent images.
For reference here is the ASA for Arch Linux (base os), pay attention to the 'Impact', also keep in mind unless there is code calling xz then xz will not be running and therefore the risk is reduced, however i am keen to get all images updated:-
https://security.archlinux.org/ASA-202403-1EDIT - Further investigation into the way xz interacts with the system, it looks like in order for the exploit to be used you would need to have systemd operational (not the case with any of my images) and OpenSSH installed (not the case with any of my images), so in my opinion the risk is low here, but as I mentioned above I am keen to get all images updated, so please be patient as this can take a while and its Easter time so my time is restricted.
- 3
- 1
-
On 3/24/2024 at 3:15 PM, kbnomad said:
When I use the Network Type: Custom : Bond0;
That's your problem, this image is designed to work using the default 'bridge' if you want to use custom networks then you are on your own, sorry.
-
3 minutes ago, Remamian said:
Updated and also getting
I have not restarted unraid, the container, or anything. Its been up for about 15 minutes as of this post.
it will depend on how large your database is as to how long it will take, give it an hour, if it hasnt progressed then restart the container and hope for the best.
-
29 minutes ago, papapine said:
i just update plex and im now getting this
<Response code="503" title="Maintenance" status="Plex Media Server is currently running database migrations."/>you should of left it to complete, if you shutdown the container part way through then you will bugger up your database.
2 minutes ago, papapine said:How do I run the script? Thank you so much for the response.
if you now do have a corrupt database (likely if you did the above) then follow Q4 and Q5:- https://github.com/binhex/documentation/blob/master/docker/faq/plex.md
- 1
- 1
-
6 minutes ago, Moose_Flunky said:
Could this be related in some fashion to those of us still on Unraid 6.11 and not having the new Community Applications plugin? I ask because my Sonarr still shows as latest on the docker tab, even though it seems to be an older version than you just posted.
2 things to check:-
1. go to unraid docker web ui, left click sonarr and select 'edit' then top right click on 'basic view' toggle to turn it on to 'advanced view', then check the 'repository' it should be set to 'binhex/arch-sonarr' if it has a colon and then some value then you are hard set to a particular tagged image, remove the colon and the value after it.
2. go to unraid docker web ui, click on top right click on 'basic view' toggle to turn it on to 'advanced view' then click on 'force update' link.
this should sort you out, and to answer your question, no i would not expect an old CA plugin to block updates to docker images.
- 1
-
-
13 hours ago, Itsaulgoodman said:
I have seen other similar post, but havent figured out the solution. I am getting the skyhook error when searching for series. Not sure what I need to do. I have tried updating sonarr but seems to be the latest version, havent figured out how to get version 4. Any help apreciated.
Unraid 6.12.4
Binhex-sonarr 3.0.4.1126
I have never released Sonarr version 3.0.4.1126. you sure about that?
-
17 minutes ago, Moose_Flunky said:
Here's what my log file is showing for this. It is the first thing on top of my log and pertains to the mono error.
ok so walk me through the steps you did in the web ui to make it error, also you are up to date right?, please ensure you have done a 'force update'
edit - using cloudflare by any chance?
-
5 hours ago, Itsaulgoodman said:
I have seen other similar post, but havent figured out the solution. I am getting the skyhook error when searching for series. Not sure what I need to do. I have tried updating sonarr but seems to be the latest version, havent figured out how to get version 4. Any help apreciated.
Unraid 6.12.4
Binhex-sonarr 3.0.4.1126
im using this image myself and search works with no issue, i can also add a series and see details about the new series, what am i missing here?
[Support] binhex - DelugeVPN
in Docker Containers
Posted
you sure about that? so in advanced view for the container in 'extra parameters' you have the following defined?:-
--sysctl="net.ipv4.conf.all.src_valid_mark=1"