Well today I found out that coturn does NOT use /etc/coturn/coturn.conf but actually /etc/turnserver.conf 😅

I poured hours and hours in getting stuff to work and it turns out that I was editing the wrong file for this service the whole time... (the nextcloud interface only checks if the server is running and not whether the credentials you give it actually work)

In other news nextcloud talk is finally working XD
(though I get the same errors from the signaling backend as before)

#sysadmin #coturn #turnServer #nextcloud #nextcloutTalk

Поднял свой #xmpp сервер + #coturn для звонков для своего круга общения. Казалось бы, звонки работают, писульки пишутся. До тех пор пока не начинаешь приглашать людей. После начинается херобора с шифрованием, доверенные/недоверенные, нужно в ручную устанавливать доверие. Это слепое доверие приводит к "я твоя не понимать".

Нагородили какой - то херни. В matrix такая же хуйня.

С клиентами тоже беда, установил себе терминальный #profanity, так он не понимает зашифрованные файлы. Есть #gajim так он по дизайну застрял где-то в середине 2010-х годов.

На android monocles более менее юзабельное. Не все клиенты и web морды работают с шифрованием.

Наверное это лучше чем ничего, но теперь я понимаю, почему это не так популярно в массах.

If anyone wants to build a [Matrix] stack, I’ve made a working stack publicly available. Feedback and contributions are welcome.

https://github.com/nean-and-i/matrix-stack

#DigitalSovereignty #DIDit #Matrix #Tuwunel #Caddy #LiveKit #Coturn

Is there a way to configure #Coturn like this?

#WebRTC #Linux #HomeAssistant

Coturn: TURN Server in Docker installieren

Ich brauchte kürzlich für ein Update einen funktionierenden TURN Server. Ohne den lief das neue Feature schlicht nicht. Meine erste Idee war bequem. Öffentlichen TURN Server nehmen, fertig. Kostenlose Basisversion, 20 GB Traffic im Monat, klang ausreichend.

War es nicht.

Ich hatte Verb...

https://www.cleveradmin.de/blog/2026/03/eigenen-coturn-turn-server-mit-docker-installieren/
#Allgemein #coturn #docker #netzwerk #selfhosting #webrtc

RE: https://infosec.exchange/@enablesecurity/116130697375709804

Published the "how to fix it" companion to our TURN security threats post. Best practices guide + coturn config templates at three security levels.

Also discussing TURN security on WebRTC Live today: https://webrtc.ventures/webrtc-live/

https://www.enablesecurity.com/blog/turn-security-best-practices/
https://www.enablesecurity.com/blog/coturn-security-configuration-guide/

#infosec #webrtc #security #TURN #coturn #voip

Two weeks ago we published our analysis of TURN security threats. Today: how to fix them.

New guides covering implementation-agnostic best practices (IP range blocking, protocol hardening, rate limiting, deployment patterns) and coturn-specific configuration with copy-paste templates at three security levels.

Best practices: https://www.enablesecurity.com/blog/turn-security-best-practices/
coturn guide: https://www.enablesecurity.com/blog/coturn-security-configuration-guide/
Config templates on GitHub: https://github.com/EnableSecurity/coturn-secure-config

coturn 4.9.0 dropped yesterday with fixes for CVE-2026-27624 (IPv4-mapped IPv6 bypass of deny rules) and an inverted web admin password check that had been broken since ~2019. The guides cover workarounds for older versions.

#infosec #webrtc #security #TURN #coturn #penetrationtesting #voip #serversecurity

https://simplex.chat

重新配置自托管了simplex，踩了一点坑，但是终究是配置好了（

部署SMP服务器：https://simplex.chat/docs/server.html
部署XFTP服务器：https://simplex.chat/docs/xftp-server.html
部署WebRTC服务器：https://simplex.chat/docs/webrtc.html
测试WebRTC ICE服务器：https://icetest.info

客户端下载页面：https://simplex.chat/downloads/

#simplex #coturn #selfhosting

Few days ago I successfully configured #coturn to have a TURN/STUN server for in-family calls. But … looks like bots or some bad guys constantly trying to connect to my TURN server to use it for something :-(

Of course, it is impossible, since anonymous access or any other access without right key is impossible. But, there are no IPs of attackers in the log file, even wth "Verbose" directive — only my local and public IPs and my server's hostname  

Maybe, there is some way to force coturn to display IP addresses of connected clients, so I could ban them all with fail2ban?

#TURN #STUN #selfhosting #networking #AskFedi

So, der prosody #xmpp server läuft mit #coturn für Voice und Video, allen Features passen und wir haben 100% Compliance. Yay.

Mal sehen, was es jetzt wieder für einen Kampf wird, vom Test- auf den Prodserver umzuziehen.

Das letzte Zahnrad für die digitale Unabhängigkeit … #selfhosting