**Hardware: Old laptop or computer (Lenovo Think Server) YunoHost version: 3.6.5.3 I have access to my server : Through SSH and through the web admin Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : yes. If yes, please explain: I have upgraded MariaDB to 10.4.10 to support a Learning Management System application using Custom Web App.
Description of my issue
When I login to Yunohost Admin I get this error:
“Could not retrieve feed: https://yunohost.org/security.rss. You might have a plugin prevent your browser from performing this request (or the website is down).”
I put the url into my browser and got a lot html/xml code. Is this on your end? The security.rss page? Or do I need to do something from here?
"Unable to update the cache of APT (Debian’s package manager). Here is a dump of the sources.list lines which might help to identify problematic lines :
sources.list:deb …
E: The repository ‘/…/debian stretch-updates Release’ does no longer have a Release file.
E: The repository ‘/…/debian stretch Release’ does no longer have a Release file.
E: The repository ‘/…/updates Release’ does no longer have a Release file.
E: The repository ‘/…/debian stretch Release’ does no longer have a Release file.
[Update 12/8/2019] Still can’t update or access anything, can someone help ? or i’ll have to reinstall something ? @Aleks
[Edit 2] : been 14 days since last post, no answer, no solution, and the only thing I can do is edit because i’m not allowed to post new messages, this sucks very much… @SohKa@Aleks
I can’t login as admin, here’s the screen of the log
This is normal. The release 3.6.5.1 fixed the issue by removing/disabling the automatic fetching of the rss feed from the main menu.
But indeed, if you open Tools -> Security-Feed, you’ll get the error because the underlying problem is still present. Since the feed hasn’t receive any update since a long time, there is no need to open Security-Feed anyway
I’m not involved in the development of Yunohost, so I don’t have a direct explanation for you.
I can just suppose that removing this element from the web admin interface requires a bit of work (more than just disabling the automatic fetching from the main menu). And the devs are probably quite busy with some more important fixes/improvements.
My opinion is that we should just collectively decide wether or not we’re willing to keep using that feature or not. Removing this RSS check when we login was just a hasty dirty fix because people were (legitimately) complaining about it.
Personally since we didn’t use it since 2 years despite important security issue (c.f. the last thing about PHP) I think it implicitly answer the question and we should indeed just drop the section from the webadmin entirely.
I proposed another method that should be more accurate to detect and warn users about security issues on their server like this : https://github.com/YunoHost/issues/issues/1438 but that obviously requires some work.