Latest Server related questions

Score: 0
Semjon Mössinger avatar
Remote Desktop CAL - Why do I get 1000 licenses when I only bought 2 CALs?
vn flag

We bought 2 CALs from Microsoft and I installed them (probably) successfully (see screenshot below).

Screenshot Licensing Manager

Most things work as expected:

  1. I installed the 2 CALs as "per user" which shows up in the Licensing Manager
  2. For test purposes I connected with 5 different users --> 5 Licenses were issued

What I don't understand/ask myself:

  1. I installed 2 CALs but got 1000 licenses. I had expected to only get 2  ...
Score: 4
Hamish Moffatt avatar
SSH public key authentication with google authenticator still asks for password
de flag

I'm trying to enable 2FA with ssh using libpam-google-authenticator. Not all users need authenticator enabled. Everybody uses ssh public keys, and nobody has a password. I'm running Debian buster, and I've also tried libpam-google-authenticator from bullseye.

My problem is that no matter what I put in the PAM config, users without authenticator enabled are never logged straight in, but always asked for  ...

Score: 0
8bit avatar
Create own filter for fail2ban fails
kr flag

I'm playing around with fail2ban in kubernetes. For that I created a pod that creates fake log messages: 2021-08-04 18:33:13 Authentication failed I created a custom filter, to test if fail2ban is working. I first tried the fail2ban-regex util with a file containing 10 lines of these log messages and got this output:

Running tests

Use   failregex filter file : test, basedir: ...
Score: 2
mahen3d avatar
SELinux - blocks postfix emails sending out from the Web Application
cn flag

My System environment, is Centos-7.9, Apache2.4, Php-fpm, PHP-7.4

I have postfix setup to send emails from the website, which is working in stand-alone test emails and when I turn the SELinux off.

However, if SELinux is enabled it will block sending the emails out from the server with below error in the /var/log/maillog

 postfix/sendmail[10883]: fatal: execv /usr/libexec/postfix/smtpd: Permission  ...
Score: 0
anVzdGFub3RoZXJodW1hbg avatar
Mount S3FS mount to EFS additionally and share to other Kubernetes pod
es flag

What I need to achieve that is almost done without the EFS/S3FS share:

  1. SFTP pod used by some microservices that process content and deliver back processed content have sftp users that go to tenant specific paths (e.g. tenant-1, tenant-2) through SFTP, these chrooted paths are mounted to different EFS points through EFS provisioner.

  2. Tenant pod - each mounting /var/s3fs <-> S3FS S3 bucket. A ...

Score: 0
Dupre avatar
Can a VPN service be used like a reverse VPN allowing inbound traffic for serving a website?
sy flag

I’ve done quite a bit of searching, and it seems this can be done, but the answers I seem to find are either vague or responses are something along the lines of “but why would you want to do that?”

I’m hoping someone can point me in the right direction to accomplish the following:


Visitor - > Cloudflare Proxy -> Web Server

Cloudflare DNS proxy sits in front of my web ser ...

Score: 0
Whip avatar
Fail2ban exited and didn't start back up
cn flag

Today I faced a what seemed like a DDOS attack. My server provider warned me about excessive CPU usage (400% for over 6 hours) and I couldn't access any website, could not login via SSH either. Lish console reported an error that went something like 'php-fpm out of memory'.

Only thing I could do was a hard reboot. After server was up again, I looked at fail2ban's status and it shows 'active(exite ...

Score: -1
Rented Dreams avatar
Trying to resurrect 10 year old software - can't activate Windows Server 2008 R2 and problems with Activate by Phone
je flag

I wrote a workshop database application for a client in Romania that had a Land Rover dealership a long long time ago in Access 2.0. Haven't heard from him in years, then last week he calls. He is still using the program ! and want me to "update" it.

Thank goodness for old MSDN library CD folders in back of file cabinets. So, I have installed an old copy of Win Server 2008 R2 Enterprise and load ...

Score: 0
woosley. xu avatar
Port numbers reused after Reset
mx flag

Recently in our production Kubernetes cluster, we saw a lot of outbound reset connection, after some troubleshooting, we have below network flow captured.

Network Capture

we are really confused by this flow. in this flow.

  1. from localport 33890, a new connection is created and sync packet is send out
  2. for whatever reason, remote reset this connection.

then here comes the confusing part, all sync packs s ...

Score: 0
Empty Email when using MS365 as a mail relay from a Python application
co flag

We've got a very weird issue going on here.

Take this example email (raw form, sanitized):

From: Thomas Ward via TestList <>
Subject: Test Message
Date: Wed, 4 Aug 2021 19:44:49 -0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
Content-Language: en-US
Reply-To: Th ...
Score: -1
Maxim Khokhryakov avatar
Why does this routing setup not working
cn flag

I have two interfaces on server machine. The output of ip route is next:

default via dev enp1s0 proto static metric 100 dev tap0 proto kernel scope link src dev enp1s0 proto kernel scope link src metric 100

and ip address is next (MACs are hidden):

1: enp1s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state U ...
Score: 0
send google calendar notifications with my domain address by my postfix server
us flag

I have a mail server for my domain with postfix and dovecot: I want to send google calendar notifications with my own domain: I explored two alternatives unsuccessfully

  1. I created an alternative address on my gmail user I could send mails with my own address ( but my calendar notifications have always as sender my gmail address although alternate address i ...

Score: 0
synth45 avatar
Jenkins linux master <=> windows build agent/slave WMI issue
cn flag

I'm trying to set up a build agent on a windows host using this plugin in Jenkins:

I've configured the windows build agent/node on the Jenkins master, and have set up the correct service account on the windows side and provided password, but am getting an error related to Netbios and CIFS, it seems:

Here is the error message:

[2021-08-04 10:36:28] [windows-agents ...
Score: 0
How to configure Windows>Vmware>Docker>nginx so I can access http
cn flag

On my PC I have this stack:

  • Microsoft Windows [Version 10.0.19042.1110]
  • VmWare Player 16.1.2 build-17966106 installed in windows
  • CentOS Stream 8 installed in a VM
  • Docker 20.10.7 installed on CentOS
  • nginx latest launched via docker run -p 8000:80 nginx

How can I access nginx from Windows chrome browser?

Within the VM it works - I can browse to http://localhost:8000 and see the nginx landing page, but s ...

Score: 0
Grafana anonymous user unable to modify default dashboard
pt flag

...or, when does Admin not mean Admin?

I have Grafana configured to permit anonymous access:


For the most part this works great, but with the anonymous user I seem to be unable to do certain things, such as:

  • Modify the default bashboard (e.g., I can't clink the "Remove this panel" link in the "ba ...
Score: 0
richardwhitney avatar
How do I set the anomaly score in crs-setup.conf?
cn flag

I am using v3.0.0 of CRS with ModSecurity set to DetectionOnly mode and the nginx connector. I want to set the anomaly score to 100 or so to fine-tune the settings, but I can't see where or how to do that. Looking in crs-setup.conf

nginx 1.18.0 if that helps

Score: 0
etcd cluster with DNS Discovery - client: etcd cluster is unavailable or misconfigured; Error: unexpected status code 404; dig SRV returns blank
cn flag

I am configuring etcd to bootstrap using DNS discovery but it says that the server is misconfigured and it appears to be querying the wrong port, and the SRV records don't seem right.

Please could you review the below and see my questions at the bottom of this post?


root domain: etcd.ksone

server SRV record:

_etcd-server-ssl._tcp.etcd.ksone    SRV Simple  -   
0 0 2380 etcd2.ksone
0 0 2380 ...
Score: 0
iraqiboy90 avatar
Incoming DKIM verfication check working but not rejecting
de flag

I have SPF, DMARC and DKIM configured for my mail server (postfix) on a CentOS 7 OS. Outgoing mail is getting signed as normal. All email check sites says my stuff are secured and working great but there is a site I use that purposely sends various types of spoofed emails to test all parts of incoming filters and my server seems to fail a specific DKIM part.

Site used: Mail 5  ...

Score: 1
ePezhman avatar
While creating instances, Cloud-init stops before creating the SSH keys
gb flag

We have OpenStack v2.3.1, Mitaka with KVM installed on our cluster. While creating instances, the VMs are created successfully every time. However, Cloud-init randomly stops before creating SSH keys only on a few of the instances (this is not dependent on the node running the VM). Therefore, we cannot SSH to the created VM. This strangely does not leave any errors behind in the logs. Any idea wha ...

Score: 0
alexjohnson avatar
Automating Adding Projects to the Metric Scope
pl flag

I have an "Alerts" project in Google Cloud and want it to monitor the metrics of several other projects. On the Cloud Console, I can easily add these projects to the metric scope of my Alerts project. However, I would like to automate this process in Terraform. Does anyone know how?

Score: 1
Laney avatar
CRL distribution point with multiple names
se flag

I'd like to create a certificate with CRL discribution point, which contains multiple URLs (poiting to the same CRL, according to RFC 5280):

When OpenSSL parses such certificate, it shows something like this:

            X509v3 CRL Distribution Points: 

                Full Name:

How to create such certificate by ...

Score: 1
Continuous SPAM from certain IP/s hosting provider, how to report them if not responding at abuse@company.mail
cn flag

last maybe 4 weeks is coming SPAM e-mails from various domains. In common is that when i paste the source code of the e-mail to

is detected this provider and their mailbox: i have reported this activity to des capital numerous times via spamcop and also manually to info@des...(got no reply) no effect. I would block the sender, but it is from various domains  ...

Score: 0
YusufD avatar
Is it possible to alias a non aws service with AWS Route 53
cn flag

We have a domain wich is managed on AWS 53. Is it possible to create an alias record in AWS route 53 to refer to a public IP address (for instance AZURE VM public IP). So that I could use this example "" to reference to the Azure VM .

Score: 1
Service account does not have storage.buckets.get access to the Google Cloud Storage bucket
cn flag

I am running Ansible with a service the following configuration which should create a storage bucket on Google Cloud.

- name: "Create {{ }}-cluster-backups"
    name: "zeipt-io-{{ }}-cluster-backups"
    location: "{{ google_cloud.region }}"
    storage_class: "NEARLINE"
        - condition:
            age_days ...
Score: 0
Redirect traffic from an interface to a VPN tun interface with iptables
ge flag

I'm trying to achieve something easy but apparently I'm missing something.

In my box I have a VPN client running which created a tun0 interface. The box has external traffic coming from the eth0.

I would like to forward the traffic from eth0 to tun0. I run the following commands:

iptables -A FORWARD -i eth0 -o tun0 -s -j ACCEPT
iptables -A FORWARD -i tun0 -o eth0 -m state --state ESTAB ...
Score: 0
Ivan Santana avatar
How to get PID of an EXE file from Windows command line
ng flag

How do I get the PID of an EXE file from Windows command line?

I want to query the PID from the command line, rather than manually search in Task Manager.

I've found something similar in nix

Score: 2
Jungroy avatar
I'm not sure if basic auth on my server is being secured
cn flag

This may be a really dumb question but I had to make sure that i'm fine with this.

I setup an HTTPS server with basic auth, but the browser informs me that the connection is not secured when i connect to the auth page, and tells me that the connection is secured after i sign in. I want to know whether this is safe, and if not, how can i make it secured?


server {
    listen 80;
    server_ ...
Score: 1
Gooze avatar
Nextcloud can't connect to Collabora
cn flag

i've setup a docker host, and wanted to setup nextcloud with collabora-office. But it simply does not find the collabora host. my compose file is the following:

version: '3.2'

    image: mariadb:10.5
    restart: always
      - db:/var/lib/mysql
      - MYSQL_DATABASE=xxx-nextcloud
      - MYSQL_USER=xxxnc
      - MYSQL_PASSWORD=evilcorp
      - MARIAD ...
Score: 1
develop1 avatar
Raid controller can't erase RAID config
gt flag

I bought a Dell PowerEdge T320 that came with 2 1TB HDD and I just ordered 6 more used 3TB HDD. When setting up an array I'm able to see the original 2 HDD that came with the server but the 6 used drives are showing up as "foreign". I'm trying to erase the RAID configuration from those HDD's but I'm getting the following message

One or more of your disks were secured using a different controller. This c ...

Score: 0
JavaJoeUK avatar
Centos 7: veth interface starting at boot how do i find and disable it
ve flag

Hi I have a centos 7 server which after removing the program (oracle vm maybe) has left an ophaned script which is starting a veth interface at boot how do I find which one it is in /etc/sysconfig/network-scripts. I think thats the right location to be looking any any help would be great.


The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.