Hallo mosu,
Ich habe tatsächlich di Variablen im Univention Configuration Registry gesetzt. Ich dachte eigentlich Squid installiert zu haben, da habe ich mich wohl mit den verschiedene Configurationen geirrt. Sorry.
Ich habe die Variablen über die Registry gelöscht. Mit dem Ergebnis:
:~$ sudo ucr dump| grep proxy
proxy/http:
proxy/https:
security/packetfilter/package/univention-bind/tcp/53/all/en: DNS proxy
security/packetfilter/package/univention-bind/udp/53/all/en: DNS proxy
Dannach habe ich den oben beschriebenen Befehl ausgeführt:
:*$ sudo ucr unset proxy/http proxy/https
Unsetting proxy/http
Unsetting proxy/https
File: /etc/systemd/system/docker.service.d/http-proxy.conf
File: /etc/clamav/freshclam.conf
File: /etc/apt/apt.conf.d/80proxy
File: /etc/profile
File: /etc/default/docker
Mit dem Ergebnis:
:~$ sudo ucr unset proxy/http proxy/https
W: The config registry variable 'proxy/http' does not exist
W: The config registry variable 'proxy/https' does not exist
Das scheint jetzt also funktioniert zu haben.
Der curl Befehl macht aber komische Sachen, das habe ich nicht verstanden:
ohne sudo:
:~$ curl -v https://appcenter.software-univention.de/meta-inf/categories.ini > /dev/null
* Trying 192.168.95.1...
* TCP_NODELAY set
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* connect to 192.168.95.1 port 3128 failed: Verbindungsaufbau abgelehnt
* Failed to connect to 192.168.95.1 port 3128: Verbindungsaufbau abgelehnt
* Closing connection 0
curl: (7) Failed to connect to 192.168.95.1 port 3128: Verbindungsaufbau abgelehnt
und mit sudo:
:~$ sudo curl -v https://appcenter.software-univention.de/meta-inf/categories.ini > /dev/null
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Trying 176.9.114.147...
* TCP_NODELAY set
* Connected to appcenter.software-univention.de (176.9.114.147) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
* CAfile: /etc/ssl/certs/ca-certificates.crt
CApath: /etc/ssl/certs
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
} [5 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* TLSv1.2 (IN), TLS handshake, Server hello (2):
{ [113 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [4472 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [333 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [70 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Client hello (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS change cipher, Client hello (1):
{ [1 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* ALPN, server accepted to use http/1.1
* Server certificate:
* subject: C=DE; postalCode=28359; ST=Bremen; L=Bremen; street=Mary-Somerville Str. 1; O=Univention GmbH; OU=PremiumSSL Wildcard; CN=*.software-univention.de
* start date: Aug 31 00:00:00 2015 GMT
* expire date: Nov 28 23:59:59 2018 GMT
* subjectAltName: host "appcenter.software-univention.de" matched cert's "*.software-univention.de"
* issuer: C=GB; ST=Greater Manchester; L=Salford; O=COMODO CA Limited; CN=COMODO RSA Organization Validation Secure Server CA
* SSL certificate verify ok.
} [5 bytes data]
> GET /meta-inf/categories.ini HTTP/1.1
> Host: appcenter.software-univention.de
> User-Agent: curl/7.52.1
> Accept: */*
>
{ [5 bytes data]
< HTTP/1.1 200 OK
< Date: Tue, 07 Aug 2018 18:49:25 GMT
< Server: Apache/2.4.25 (Debian)
< Last-Modified: Thu, 31 May 2018 09:04:45 GMT
< ETag: "181-56d7cc235338a"
< Accept-Ranges: bytes
< Content-Length: 385
<
{ [385 bytes data]
* Curl_http_done: called premature == 0
100 385 100 385 0 0 7453 0 --:--:-- --:--:-- --:--:-- 7549
* Connection #0 to host appcenter.software-univention.de left intact
Das hat prinzipiel jetzt geklappt, wobei mir der unterschied zwischen dem Befehl mit und ohne sudo nicht klar ist. Das Problem mit dem AppCenter ist jetzt gelöst.
Also erstmal vielen herzlichen Dank
Gruß Jo