ca17 / teamsacs Goto Github PK

For example, freecwmp client, easycwmp client, or can it only be used for routerOSs

CPE failed to connect to TR069 server. CPE's certificate is generated based on the root certificate ca.crt of TR069 server. The ACS log prompts:
tls: failed to verify client certificate: x509: certificate signed by unknown authority (possibly because of "crypto/rsa: verification error" while trying to verify candidate authority certificate "TeamsacsCA")
May I ask what the reason is

I am trying to setup TeamsACS for the first time. I am having some issues. I am not very familiar with Docker and this may be part of my issue however, I got TeamsACS running, there are some minor things like the User/Operator creation that are ONLY in Chinese I was able to get around this however a fix for that would be great.

The big issue I am facing right now is when I enable the TR069 client on my MikroTiks I get the following error:

ERROR parsing http: there was no content-length or transfer-encoding

mikrotik_cpe_setup_tr069.txt

hello sir, how to generate the tr069 certificate in the docker container? can you help me out?

当我 运行 docker-compose up -f docker-compose.yaml 的时候会报错误数据库拒绝连接，当时我本地可以连接上 qsql

docker-compose.yaml

version: "2"
services:
  pgdb:
    image: timescale/timescaledb:latest-pg14
    container_name: "pgdb"
    ports:
      - 5432:5432
    expose:
      - 5432
    environment:
      POSTGRES_DB: teamsacs
      POSTGRES_USER: teamsacs
      POSTGRES_PASSWORD: teamsacs
    volumes:
      - /data/pgdata:/var/lib/postgresql/data
    networks:
      - teamsacs_network
  teamsacs:
    depends_on:
      - pgdb
    image: ca17/teamsacs:latest
    container_name: "teamsacs"
    restart: always
    ports:
      - 9090:8080
      - 8000
      - 8106
      - 8107
      - 8108/udp
    expose:
      - 8000
      - 8106
      - 8107
      - 8108/udp
    volumes:
      - /data/teamsacs:/var/teamsacs
    environment:
      - GODEBUG=x509ignoreCN=0
      - TEAMSACS_WEB_DEBUG=1
      - TEAMSACS_SECRET=9b6de5cc-xxxx-xxxx-xxx-0f568ac9da37
    networks:
      - teamsacs_network
networks:
  teamsacs_network:

管理端 控制面板（control panel） 的用户名称与密码是啥呢？

As per #25 I am publishing the security issue I found within your project as there is no way to contact the mantainer of this repository

[Description] Cross Site Scripting vulnerability in CA17 TeamsACS v.1.0.1 allows a remote attacker to execute arbitrary code via a crafted script to the errmsg parameter.

[Vulnerability Type] Cross Site Scripting (XSS)

[Vendor of Product] CA17

[Affected Product Code Base] https://github.com/CA17/TeamsACS - 1.0.1

[Affected Component] errmsg parameter in the /login endpoint

[Attack Type] Remote

[Impact Code execution] true

[Impact Information Disclosure] true

[Attack Vectors] To exploit the vulnerability the victim has to click on a specifically crafted URL (e.g. address:port/login?errmsg={ANY_HTML_TAG})

[Discoverer] @fuomag9

tr069 client on mikrotik is not connecting to server .
SSL: ssl: hostname validation failed (6)
and the error from teamsacs server side is
teamsacs | 2023/07/06 01:41:27 http: TLS handshake error from 10.100.0.17:54564: remote error: tls: bad certificate

can you help please

nion@Debian:~/TeamsACS$ teamsacs -install
[2023-12-28T16:08:51+08:00] ERROR [email protected]/main.go:80 exit status 1