API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 22nd, 2023
26
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.21 KB | None | 0 0
raw download clone embed print report
  1. ----
  2. Healthcheck shell
  3. ----
  4.  
  5. Environment
  6.  
  7. \[PASS] PHP version 7.4.33.
  8. \[PASS] PCRE compiled with unicode support.
  9. \[FAIL] The temporary directory and its content are not writable, or are executa ble.
  10. \[HELP] Ensure the temporary directory and its content are writable by the webse rver user.
  11. \[HELP] you can try:
  12. \[HELP] sudo chown -R www-data:www-data /var/lib/passbolt/tmp/
  13. \[HELP] sudo chmod -R 775 $(find /var/lib/passbolt/tmp/ -type d)
  14. \[HELP] sudo chmod -R 664 $(find /var/lib/passbolt/tmp/ -type f)
  15. \[PASS] The logs directory and its content are writable.
  16. \[PASS] GD or Imagick extension is installed.
  17. \[PASS] Intl extension is installed.
  18. \[PASS] Mbstring extension is installed.
  19.  
  20. Config files
  21.  
  22. \[PASS] The application config file is present
  23. \[WARN] The passbolt config file is missing in /etc/passbolt/
  24. \[HELP] Copy /etc/passbolt/passbolt.default.php to /etc/passbolt/passbolt.php
  25. \[HELP] The passbolt config file is not required if passbolt is configured with environment variables
  26.  
  27. Core config
  28.  
  29. \[PASS] Debug mode is off.
  30. \[PASS] Cache is working.
  31. \[PASS] Unique value set for security.salt
  32. \[PASS] Full base url is set to https://pb.blainej.net
  33. \[PASS] App.fullBaseUrl validation OK.
  34. \[PASS] /healthcheck/status is reachable.
  35.  
  36. SSL Certificate
  37.  
  38. \[PASS] SSL peer certificate validates
  39. \[PASS] Hostname is matching in SSL certificate.
  40. \[PASS] Not using a self-signed certificate
  41.  
  42. Database
  43.  
  44. \[PASS] The application is able to connect to the database
  45. \[PASS] 30 tables found
  46. \[PASS] Some default content is present
  47. \[PASS] The database schema up to date.
  48.  
  49. GPG Configuration
  50.  
  51. \[PASS] PHP GPG Module is installed and loaded.
  52. \[PASS] The environment variable GNUPGHOME is set to /var/lib/passbolt/.gnupg.
  53. \[PASS] The directory /var/lib/passbolt/.gnupg containing the keyring is writabl e by the webserver user.
  54. \[FAIL] The server OpenPGP key is not set
  55. \[HELP] Create a key, export it and add the fingerprint to /etc/passbolt/passbol t.php
  56. \[HELP] See. https://www.passbolt.com/help/tech/install#toc\_gpg
  57. \[PASS] The public key file is defined in /etc/passbolt/passbolt.php and readabl e.
  58. \[PASS] The private key file is defined in /etc/passbolt/passbolt.php and readab le.
  59. \[FAIL] The server key fingerprint doesn't match the one defined in /etc/passbol t/passbolt.php.
  60. \[HELP] Double check the key fingerprint, example:
  61. \[HELP] sudo su -s /bin/bash -c "gpg --list-keys --fingerprint --home /var/lib/p assbolt/.gnupg" www-data | grep -i -B 2 'SERVER\_KEY\_EMAIL'
  62. \[HELP] SERVER\_KEY\_EMAIL: The email you used when you generated the server key.
  63. \[HELP] See. https://www.passbolt.com/help/tech/install#toc\_gpg
  64. \[FAIL] The server public key defined in the /etc/passbolt/passbolt.php (or envi ronment variables) is not in the keyring
  65. \[HELP] Import the private server key in the keyring of the webserver user.
  66. \[HELP] you can try:
  67. \[HELP] sudo su -s /bin/bash -c "gpg --home /var/lib/passbolt/.gnupg --import /e tc/passbolt/gpg/serverkey\_private.asc" www-data
  68. \[FAIL] The server key does not have a valid email id.
  69. \[HELP] Edit or generate another key with a valid email id.
  70.  
  71. Application configuration
  72.  
  73. \[PASS] Using latest passbolt version (3.12.0).
  74. \[PASS] Passbolt is configured to force SSL use.
  75. \[PASS] App.fullBaseUrl is set to HTTPS.
  76. \[PASS] Selenium API endpoints are disabled.
  77. \[PASS] Search engine robots are told not to index content.
  78. \[INFO] The Self Registration plugin is enabled.
  79. \[INFO] Registration is closed, only administrators can add users.
  80. \[PASS] The deprecated self registration public setting was not found in /etc/pa ssbolt/passbolt.php.
  81. \[WARN] Host availability checking is disabled.
  82. \[HELP] Make sure this instance is not publicly available on the internet.
  83. \[HELP] Or set the PASSBOLT\_EMAIL\_VALIDATE\_MX environment variable to true.
  84. \[HELP] Or set passbolt.email.validate.mx to true in /etc/passbolt/passbolt.php.
  85. \[PASS] Serving the compiled version of the javascript app.
  86. \[WARN] Some email notifications are disabled by the administrator.
  87.  
  88. JWT Authentication
  89.  
  90. \[PASS] The JWT Authentication plugin is enabled
  91. \[PASS] The /etc/passbolt/jwt/ directory is not writable.
  92. \[PASS] A valid JWT key pair was found
  93.  
  94. SMTP Settings
  95.  
  96. \[PASS] The SMTP Settings plugin is enabled.
  97. \[PASS] SMTP Settings coherent. You may send a test email to validate them.
  98. \[WARN] The SMTP Settings source is: env variables.
  99. \[HELP] It is recommended to set the SMTP Settings in the database through the a dministration section.
  100. \[WARN] The SMTP Settings plugin endpoints are enabled.
  101. \[HELP] It is recommended to disable the plugin endpoints.
  102. \[HELP] Set the PASSBOLT\_SECURITY\_SMTP\_SETTINGS\_ENDPOINTS\_DISABLED environment v ariable to true.
  103. \[HELP] Or set passbolt.security.smtpSettings.endpointsDisabled to true in /etc/ passbolt/passbolt.php.
  104.  
  105. \[FAIL] 5 error(s) found. Hang in there!
  106.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!