Latest Server related questions

I have the following problem.

We currently have an AD user in use, which has been defined as local administrator for some Active Directory OUs. In the meantime, the concept we came up with at that time has become obsolete, as it has some disadvantages.

To simplify administration, we would now like to split it up in such a way that there should be a separate administration user for each individual OU ...

I have an RTL8125B-CG NIC which, from what I gather from their product page, has hardware support for PTP. However, sudo ethtool -T does not detect any HW timestamping capabilities.

I've tried with the r8169 driver and with the r8125 driver from Realtek (both this one from Github and this one from Realtek's download page), but without success. In the Makefile in the source code, there seems to be ...

I'm having problems finding a bottleneck of my slow server performance. Single wordpress site (10-40 online users) with fastcgi caching and full HTML cloudflare caching. Site performance is fine for visitors because of caching, logged in users are facing 1-10s page load times. Query monitor is used for debugging. Site was running way better on 1 core, 2gb ram machine. No idea what is causing this. Any h ...

I'm trying to achieve rootless PHP-FPM pod running in Kubernetes.

I tried simply running process in Kubernetes pod via init script that does php-fpm -FO as www-data user but it complaints about not having permissions to access /dev/stderr (log output location). Adding www-data user to the tty group also didn't help.

I tried specifying another location like /proc/self/fd/2 and even /dev/pts/1 as log  ...

I am deploying a newer version of my Spring MVC Java application to the Google app engine. But it is not building application on google server and throwing Error 404.

While debugging I found that the WEB-INF folder of the newer (11) version has not included JSP files and classes folder on the App engine server which was there in the previous(8) version.

I have tried all things but am unable to figur ...

I searched through serverfault but couldn't find an answer to this. Maybe I just don't know the right keyword or it's a conceptual misunderstanding. Any help would be appreciated!

The situation:

1. My local services are running behind an NGINX reverse proxy
2. I use a LAN DNS on the router (Draytek) to resolve local requests to *.example.com directly to my local server (192.168.1.2).

Even if there is no inte ...

I have Proxmox Mail Gateway facing internet with port 25. When the email is recieved it is read and then forwarded to mail server. On my mail server i see that all the emails are going from this PGM ip address. Is it possible to rewrite some setting in postfix,etc... on PMG so that the original senders IP is kept and my email server will see the senders IP and not the PMG IP?

Thank you

P.S. I asked  ...

I'm trying to send some info to www2.agenciatributaria.gob.es. I can do it from several hosts but one.

From this one I get the error Temporary failure in name resolution. However, from the same host I can reach many other servers though its default DNS (I can ping www.google.es, etc).

So I used dig to check what happens. If I execute dig www2.agenciatributaria.gob.es, the IP of the remote host is searc ...

I am hoping someone can point me in the right direction here please.

Running proftpd (with tls support) on a public IP.

FTP client connects, but can't do a directory listing. When I change the "INPUT" policy on iptables to ACCEPT, it does work.

The following is my relevant iptables rules:

$IPTABLES -A INPUT -i eno1 -s 0/0 -d x.x.x.x -p tcp --sport 1024:65535 -m multiport --dports 20,21,989,990 -m  ...

I have a virtual proxy client and I have a squid proxy server.

root@arch:/etc/squid # cat /etc/squid/acls/ports.acl
80 # http
21 # ftp

root@arch:/etc/squid # cat /etc/squid/acls/sslports.acl
443 # https
3001 # ntop

I am curious about port numbers and squid. I know that the port number is not "magic", you can use any port from 1-65535 you like. Ports in the range 1-1023 are "well-known ports" which ar ...

I am trying to filter icmpv6 type messages where my packets look something like this in the logs

**IN= OUT=tun0 SRC=2620:0107:4000:cfff:0000:0000:f200:f198 DST=fddd:1194:1194:1194:0000:0000:0000:2000 LEN=160 TC=0 HOPLIMIT=62 FLOWLBL=109562 PROTO=ICMPv6 TYPE=3 CODE=0 [SRC=fddd:1194:1194:1194:0000:0000:0000:2000 DST=2a03:2880:f11c:8183:face:b00c:0000:25de LEN=112 TC=0 HOPLIMIT=1 FLOWLBL=0 PROTO=ICMPv ...

I have a java application that runs on a Linux server with physical memory(RAM) allocated as 12GB where I would see the normal utilization over a period of time as below.

sys> free -h
              total        used        free      shared  buff/cache   available
Mem:            11G        7.8G        1.6G        9.0M        2.2G        3.5G
Swap:            0B          0B          0B

Recently on i ...

I have a virtual proxy client and I have a squid proxy server. I would like to add some addresses to block caching for them. Either their domain or IP address:

www.apache.org
188.184.21.108

root@SERVER:/etc/squid # cat /etc/squid/acls/dst_nocache.acl
www.apache.org
188.184.21.108

I added them to the list for non-cache, but it still caches. I check from here:

root@SERVER:/etc/squid # tail -f /var/log/s ...

I am trying to fault find a TLS connection between my solar inverter and the monitoring servers that keeps failing. The solar inverter connects to my wireless AP (Ubiquiti UAP-AC-Lite), which is plugged into a 8-port switch (Ubiquiti US-8-60W), plugged into my router (Ubiquiti Edgerouter Lite). The router connects to the internet through a PPPoE connection to my ISP.

When the Solar Inverter is co ...

Is there anything to worry? If not, how to stop these logs?

audit_printk_skb: 39 callbacks suppressed Sep 27 06:27:02 Servername kernel: [7575458.811518] audit: type=1400 audit(1632713222.554:17386376): apparmor="DENIED" operation="open" profile="snap.net-snmp.snmpd" name="/proc/13c/1286/net/snmp" pid=1286 comm="snmpd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0