Latest Server related questions

Score: 0
Eva4684 avatar
Prevent SSH lockout due to file permissions
ps flag

I followed the common practice to only allow public key login with SSH into Debian, then somehow I accidentally changed the permission of ~/.ssh/ folder (I think it got owned by root), after that openSSH refused to log me in! (and server was in a different country, with no remote/KVM console)

I find this setup quite fragile. Is there a way to prevent this, and maybe just give me a warning on next ...

Score: 0
jnd avatar
Setting ACL on OpenLDAP server
zw flag
jnd

I did setup OpenLDAP server, but I need to implement ACL. I'm not linux admin and I'm not even sure if what I'm trying to achieve is possible.

I have 3 groups. These has users which are posixAccount and inetOrgPerson object classes. I want admin users to be able to edit everybody, users from group "B" be able to edit only users from group "C" and users from group "C" will not have access at all.  ...

Score: 1
Include matching rspamd rules in mail headers
in flag

Spamassassin has a feature to include the matching rules in the headers of mails flagged as spam, so one can see why the mail was classified as spam and possibly adjust or create mailbox filters that match in specific rules.

Can I configure rspamd to add a similar header? It doesn't have to match the spamassassin format, it just should contain the matching rules and possibly the scores generated  ...

Score: 0
Orlando avatar
NGINX: Return CORS headers when request method is OPTIONS and file exists, otherwise pass to PHP-FPM
cn flag

I have an NGINX with a PHP-FPM instance behind it. OPTIONS requests for paths for which a file exists in the file system should be handled by NGINX. For those requests, NGINX should return Access-Control-* CORS headers. OPTIONS requests for which no file exists should be passed to PHP-FPM.

The logic should be something along those lines:

    location / {
        # In this case: Check if file exists
    ...
Score: -2
Alix Blaine avatar
Server with scalability for real-time collaboration and editing
eu flag

I am here, to ask for absolute input. I have setup a local Apache Server with PHP 7.2 (currently), I am aware newer PHP exists. I know PHP and Python, I also know Node.js (server/back-end).

With Node.js, I can get most of the packages through npm command line. I been reading, Node.js vs. PHP and it all depends on what you are going to develop. In addition, I know that Golang programming can also b ...

Score: 0
victoriaviolet avatar
How to fix speed optimization of Laravel website?
fo flag

I have developed a website in PHP Laravel. It is working fine but there is some core web vitals issues. I have tried to fix it but it has not done all. LCP, FCP INP (interaction to next paint) and TTFB (time to first byte). These core web vitals factors are stills red and speed index value is also red.

I have reduced CSS and Javascript manually. There are no images in this website. I have put my  ...

Score: 0
moutonjr avatar
Why python-journald-rsyslog seems to batch/dely log write?
cn flag

I intend to log a python script output. Here what it looks like :

arm@stackoverflow > cat test.py
#!/usr/bin/python
from time import sleep
while True:
        print("Hello")
        sleep(1)

I try to use standard syslog way to handle logs, I therefore tried to configure JournalD & SystemD to send everything as Syslog:

arm@stackoverflow > cat /etc/systemd/journald.conf | grep -vP "^#"
[Journal] ...
Score: 0
Ivarvdw avatar
Cronjobs not running (Job execution of per-minute job scheduled delayed)
ml flag

The cronjobs on an AlmaLinux 9 64bit system are not running.

I added 2 simple jobs to the crontab, which run fine from the command line:

[root@sendy ~]# crontab -e

* * * * *       date > ~/cron.log 2>~/cron.log
* * * * *       env > ~/env.output

It doesn't matter if I change the schedule (every 5 mins, every hour) or if I only have 1 record in the crontab, they won't execute.

crond is ru ...

Score: 0
Nish avatar
Possible to serve 100% traffic during upgrade and rollback?
ch flag

My spring boot application is deployed with 6 replicas on Kubernetes using Helm charts. It is currently deployed under load test with 6K TPS traffic. We wanted to test the behavior of ongoing traffic during upgrade of application using helm upgade. During upgrade window we see approximate 0.6 % of request failure. The upgrade strategy is set to rollingUpdate with maxUnavailable and maxSurge set to 25% ...

Score: 0
sadkin avatar
Bridge between physical interface and virtual (Cockpit)
mr flag

Good afternoon.
At the moment I'm using Debian 11 as the main system and Ubuntu 18.04 as the system for virtualization, I do all the management through Cockpit.
The server is connected via a router, the connection to the router is via DHCP.
Currently, I'm assigning an address IP for the virtual machine like this:
enter image description here
direct->eno1 - router network from the physical port.
 ...

Score: 0
biplab  avatar
Setting up slurm with 2 different nodes and 2 different partation on 1 physical server
pg flag

I have a requirement for setting up slurm on one physical server, with 2 different partation and 2 main node so, need to have,

partation1 wihich need to have node1 and need to be used by group1 user partation2 wihich need to have node2 and need to be used by group2 user

in 1 physical server , if anybody could help on this, is this possible , if yes , how?

Score: 0
Crypto Coupons avatar
Site with subdomains in redirect loop - Nginx configuration Issues
cy flag

this is the website (the website also have subdomains)

nginx configuration:

# You should look at the following URL's in order to grasp a solid understanding
# of Nginx configuration files in order to fully unleash the power of Nginx.
# https://www.nginx.com/resources/wiki/start/
# https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/
# https://wiki.debian.org/Nginx/DirectoryStr ...
Score: 0
porg avatar
Serve mixed case files case-insensitive on Linux Apache without mod_speling?
gb flag
  1. On my media subdomain (nice separation of concerns, also for rulesets)
  2. I have files which are in Mixed-Case-intentionally (for maximum semantics, also for downloads)
  3. which I want to serve case-insensitive (for maximum reliability, also when told media URL orally)

mod_speling with CheckSpelling on and CheckCaseOnly on (and CheckBasenameMatch off to be strict) would do the job perfectly for me! Only ...

Score: 0
frankg avatar
Migrating old RM-COBOL to GNU on Ubuntu 22.04
eh flag

I foolishly thought that it would be simple to move the source from a SCO server running RM 6.61 to the gnucobol 4.0 on Ubuntu 22.04, and just compile it to sort out the errors. Right off the bat the compiler complains that it cannot find the division headers. The code starts with an IDENTIFICATION DIVISION in the right place, followed by the PROGRAM-ID, ENVIRONMENT DIVISION, etc., but the compiler cann ...

Score: 0
lumi avatar
iptables rules for dsvpn
mm flag

on github i'm looking at this vpn project called dsvpn. it sets up some firewall rules by running iptables commands. One of them is (i hope the names are self-explanatory) :

iptables -t raw -I PREROUTING ! -i $IF_NAME -d $LOCAL_TUN_I -m addrtype ! --src-type LOCAL -j DROP

i've done some reading but still it's not quite clear to me what this rule does. I'd be grateful if someone could give a more or le ...

Score: 0
jrd1989 avatar
Create Salesforce CICD Pipeline Using Azure DevOps
cn flag

A client has an Azure DevOps subscription and they're looking to use it for automated builds and releases with their Salesforce app they're using. The previous dev team was only using Azure Repos as their code repository and the client was using Boards for ticket tracking. I believe the previous team used Salesforce DX/CLI to perform deployments using VS Code so no pipelines exist and they'd have t ...

Score: 0
user69374 avatar
Are processes under Wine on Ubuntu 22.10 linked in any way
cn flag

We use Wine 7 on Ubuntu 22.10 to run multiple instances of a Windows executable that opens a socket connection and does various communications. Each instance of this Windows program connects to a different venue.

Occasionally all these instances will lock up at the exact same time. The program freezes and all threads stop running. (We added a thread which just pops a message in a log file every f ...

Score: 0
sanket jaiswal avatar
How to create Iptables rules for squid to only handle web traffic request
sz flag

I'm using Squid Proxy for (DNS Filtering), I have configured squid proxy behind my GCP Cloud NAT in transparent mode to intercept HTTP and HTTPS Web Traffic, I have added only below rules to redirect HTTP and HTTPS traffic to squid.

iptables -t nat -A PREROUTING -s 0.0.0.0/0 -p tcp --dport 80 -j REDIRECT --to-port 3129
iptables -t nat -A PREROUTING -s 0.0.0.0/0 -p tcp --dport 443 -j REDIRECT --to-p ...
Score: 0
Apache RewriteRule losing one slash of the https://
de flag

On my apache server, I need to pass full URLs as parameters to a php function. However, when I use something like:

RewriteRule ^(.*)$ ../image.php?url=$1

$1 ends up losing one of the slashes of the https. So, in other words, if I try using it to parse https://example.com/img01.jpg, $1 is only receiving https:/example.com/img01.jpg

Score: 1
moray avatar
Postfix white listing a badly configured server not working: Helo command rejected: Host not found;
ke flag

My mail server configuration is rather strict and some times incoming mails from legit servers get rejected because the remote end has a configuration problem, a common one is the HELO hostname.

I have a specific example that is from the most important electrical company in Italy, ENEL, that apparently sends transactional emails with an HELO hostname that does not resolve:

Feb 20 18:31:10 MYHOST postf ...
Score: 0
Ars avatar
NGINX forwarding by 3rd level domain name
ge flag
Ars

I have two local web apps which should be accessible from external network, but only one external IP. Both web apps use 443 port which can't be changed. So the task is to configure nginx in the way so that it can forward the incoming requests based on the 3rd level domain. Let's say my web apps live on 192.168.1.55 and 192.168.1.65 My public IP is 9*.23*.15*.12 and I have configured 2 dns A entries site ...

Score: 1
AmenzO avatar
Execute js script to update requestBody before redirect
jm flag

I am configuring à nginx location but I need to run a script (njs) that update requestBody before redirection :

This my conf but when i deploy it still redirect without update requestBody or return error

Parent nginx.conf:

     // .....
     js_import checkScript from  /etc/nginx/js/scripts/checkScript.js;
     // ....

In checkScript.js :

export default {
    rights
}

function rights(r) {
    const b ...
Score: 1
Джон Смит avatar
Adaptec ASR-6805T can create raid from ssd only?
kw flag

I'm about to move my Proxmox home server from NAS to RAID 10. I'm a hardware RAID fan, so I chose a solution among inexpensive old controllers. In the course of studying budget solutions for the home, the choice fell on the "Adaptec ASR-6805T (BBU) 512 MB".

I came across some controversial information on the net, saying that it will only accept HDD or HDD + SSD hybrid. Is it possible to use an SS ...

Score: 0
BeeOnRope avatar
How is the correct MTU used for connections through an IGW on EC2
th flag

If you bring up a couple of default image VMs in the default VPC in EC2, they will generally have their interface MTU set to 9001. If you sent TCP traffic between those two instances using their private IP addresses, it is easy to verify that full 9K jumbo frames are used (e.g., by examining interface stats and calculating the packet size as "TX bytes / TX cnt").

If you send data between the two instanc ...

Score: 0
Mike Hermary avatar
Poor server performance on Linux Ubuntu 20.04 with PHP-FPM, MySQL, and Redis Server installed
in flag

My client’s server has recently started having performance issues. The single website hosted on the server loads very slowly. It is built with WordPress using a custom theme. There are a minimum amount of plugins installed, and none were added in the last few weeks when the performance issues began.

The server has 2 CPUs and 2GB of memory. The server stack is LAMP with Ubuntu 20.04 and PHP FPM. ...

Score: 0
Matt avatar
Cloud File Storage: Does zipping files reduce data transmission speed / costs?
pl flag

If I need to store, say, a 5gb file on a cloud file storage location (e.g., aws s3 bucket), will zipping the file reduce the cost / latency when people download it?

Obviously zipping a file reduces the storage size, but my specific question is:

  • Do webservers compress data automatically before sending to another computer?
  • If so, does zipping a file reduce transmission cost beyond anything the webserver is ...
Score: 0
Niyaz avatar
How many times will postrotate run when defining logrotate for multiple directories?
us flag

I have the below configuration for rotating the DB backups. The /var/mysql_backup/data/ contains two subdirectories db1 and db2.

/var/mysql_backup/data/*/db.sql.gz {
    daily
    rotate 7
    nocompress
    notifempty
    missingok
    create 640 root root
    dateext
    dateformat _%Y_%m_%d_%s
    extension .sql.gz
    
    postrotate

        PATH=/var/mysql_backup/data/
        MYSQL_USER=USER
 ...
Score: 2
ShadowGames avatar
Access of K8s service within WSL2 + Docker Desktop from Linux machine over HTTPS
mx flag

I've setup an authentication service in a Kubernetes cluster which lives in a Docker Desktop + WSL2 environment on a Windows 11 Pro machine.

It can be reached e.g. via CURL & PostMan requests from the same Windows machine (outside that WSL2 layer).

However, and here's the problem, that rest endpoint cannot be accessed from a Linux machine within the same LAN network.

In order to verify that a conne ...

Score: 3
inframan avatar
How to handle network changes and restart with Ansible?
cn flag

I'm currently developping a network configuration role used by Ansible to customize our fresh new virtual machine that came from our Debian 11 template.

The following role changes from DHCP to static interface configuration and then restart the networking service.For testing purpose i set IP/netmask/gateway as extra vars (and it's dynamically changed depends on the server i have to use my role)

  - na ...
Score: 0
Ravi avatar
Cloud Run Secret Reference getting mounted as Directory instead of File
cn flag

Need some help with Cloud Run with Secret Manager, we need to mount 2 secrets as volume (file only), following is the yaml from Cloud Run.

        volumeMounts:
        - name: secret-2f1d5ec9-d681-4b0f-8a77-204c5f853330
          readOnly: true
          mountPath: /root/key/mtls/client_auth.p12
        - name: secret-29c1417a-d9fe-4c37-8cb0-562c97f3c827
          readOnly: true
          mountPat ...

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.