Ech0's Blog

Ech0 - 00 / 00 / 00

Jitsi

Before we start, you will need a Debian 10+ VPS (you can get one on digitalocean for example), if you prefer to use your own self hosted server, make sure that port 80 and 443 are correctly port forwarded so that the public ip points to the server and not the router. Once that's done, go and ssh into your debian 10 server.

You can use DuckDNS to get a free domain name:


[ 192.168.100.1/24 ] [ /dev/pts/13 ] [~/Documents/Github/blog/Conf]
→ ssh root@ech4.duckdns.org
The authenticity of host 'ech4.duckdns.org (178.128.46.38)' can't be established.
ECDSA key fingerprint is SHA256:z2HAncB99pfbAUfj9tJY7vlo8EGUzCIUxWBAnjAflcA.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added 'ech4.duckdns.org,178.128.46.38' (ECDSA) to the list of known hosts.
Linux debian-s-1vcpu-1gb-lon1-01 4.19.0-10-cloud-amd64 #1 SMP Debian 4.19.132-1 (2020-07-24) x86_64

The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.

Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
root@debian-s-1vcpu-1gb-lon1-01:~#

1 


apt update -y ; apt upgrade -y
#hostnamectl set-hostname jitsi.mydoma.in
#hostname
echo '127.0.0.1 jitsi-test.duckdns.org' >> /etc/hosts

apt install gnupg -y
wget https://download.jitsi.org/jitsi-key.gpg.key
apt-key add jitsi-key.gpg.key
rm jitsi-key.gpg.key

echo 'deb https://download.jitsi.org stable/' >> /etc/apt/sources.list.d/jitsi-stable.list
apt update -y ; apt upgrade -y
apt install jitsi-meet -y



apt install certbot prosody -y
/usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh

nano /etc/prosody/conf.avail/jitsi.your_domain.cfg.lua
#CTRL+W to authentication =
#then edit it as follows to force registration:
authentication = "internal_plain"
#OR (risky)
authentication = "internal_anonymous"

echo '
VirtualHost "guest.your_domain"
    authentication = "anonymous"
	c2s_require_encryption = false
' >> /etc/prosody/conf.avail/jitsi-test.duckdns.org.cfg.lua
#OR
echo '
VirtualHost "guest.your_domain"
    authentication = "plain"
        c2s_require_encryption = false
' >> /etc/prosody/conf.avail/jitsi-test.duckdns.org.cfg.lu


nano /etc/jitsi/meet/jitsi-test.duckdns.org-config.js

#EDIT THE FOLLOWING LINE IF YOU CHOSE ANONYMOUS
#anonymousdomain: 'guest.your_domain',



Then CTRL+S and CTRL+X to exit nano


echo 'org.jitsi.jicofo.auth.URL=XMPP:jitsi-test.duckdns.org' >> /etc/jitsi/jicofo/sip-communicator.properties

prosodyctl register User your_domain P@SSW0RD

systemctl restart prosody.service jicofo.service jitsi-videobridge2.service nginx

doesn't quite work yet. even through a nginx reverse proxy.

Looks like it needs to be an actual signed certificate !!!


apt install socat -y
wget -O -  https://get.acme.sh | sh
source ~/.bashrc

#GET THE CNAME RECORD jitsi-test.duckdns.org pointing to void.yt !!!! or an A RECORD jitsi-test.duckdns.org to the server's IP !!! 
systemctl stop nginx
acme.sh --issue --standalone -d jitsi-test.duckdns.org -k 4096
#then go replace the existing .cer , .key and ca.cer files

cd /etc/jitsi/meet/
cp /root/.acme.sh/jitsi-test.duckdns.org/jitsi-test.duckdns.org.cer jitsi-test.duckdns.org.crt
cp /root/.acme.sh/jitsi-test.duckdns.org/jitsi-test.duckdns.org.key jitsi-test.duckdns.org.key

systemctl start nginx

Then simply login :

Once you're done, hit "go"

Once in the conference room you can just invite people and give them the private link:

For instance, this current instance is the following link : https://jitsi-test.duckdns.org/ExceptionalGroundsGazeSecond

2

3

My Bunker

Some Address 67120,
Duttlenheim, France.

My Links

Discord
Hack The Box

About Ech0

This cute theme was created to showcase your work in a simple way. Use it wisely.