We have servers in a colocation DC and have two uplinks: A fast metered connection (for live traffic) and a slow flat rate one (for things like backups). We'd like to use a Linux box for routing and have a specific uplink be used depending on the local source subnet, effectively meaning two different default routes. This should be possible with separate routing tables, but I haven't quite been able to g ...

I am new on CentOS 7. Trying to install Postfix on centOS7 with Nginx. I am following a tutorial, but I get an error message.

I have a 502 Bad Gateway on my server, http://domainname.com , how do I fix it?

023/04/29 15:56:32 [crit] 1525#1525: *5994 connect() to unix:/run/php-fpm/www.sock failed (2: No such file or directory) while connecting to upstream, client: IPAddress, server: domainname.com,  ...

Im a newbie with the "real" server-world, previously I've used ordinary pc's for servers but got my hands on a ML350 Gen9 recently and decided to have a go.

Now to my questions.

1, How large SATA drives can the motherboard handle? Thinking of getting 2x Seagate Exos 16TB and doing Raid1 for secure storage.

2, Will the ML350 "accept" the non-HP certified discs and not send the fans into max-speed?

I have two server with Bind installed. One is a public dns for resolving domains I own. The other one is another dns that I'd like to use for my customers.

On the first one i set the forwarding to the second one and I have created a forward zone for a domain, pointing to the second bind server.

Server1:

acl internals {
  172.16.0.0/24;
  127.0.0.1;
  };
acl domain {
  192.168.1.0/24;
};
acl externals {
  ...

For the first time, I want to deploy a java web application in tomcat9 (On the Linux OS). I have successfully deployed it and tomcat is running. Also, on the browser, the index.jsp page is shown correctly. But when I try to call the application web services (using a login button), it gives 404 error.

Here is a part of the LoginController class:

@PostMapping(value = "/v1/security/login")
@CheckAccess(p ...

So, I'm trying to clean up some backups I have, and they're getting bigger and bigger because of, mainly, the number of thumbnails generated by WordPress per image. I came close to finding a solution, but, naturally, there are a few outliers that make my solution not work, and I can't figure out either the proper regular expression or an alternative way to handle this.

Currently, I am going this  ...

What Postfix virtual domain variable should I use in outgoing header creation?

Current server

I'm running a database-driven virtual domain server managed by PostfixAdmin. I want to put statements in the header of all outgoing emails using the Postfix system, not using the responsible web app or client.

We need to produce...

The question is not about a List-Unsubscribe header, which we already know  ...

I recently upgraded a Zabbix server from version 5.x to 6.4, after doing so, a regular user (not an admin) stopped being able to access a certain dashboard on any of the hosts he have access to.

Reproduction scenario:

1. log in to zabbix frontend
2. search for the host name using the search bar -> will give you the search results page
3. in the search result page, on the relevant host line, click on "Das ...

So I've got: machine001, machine002, machine003.

machine001 has 2 resources, machine002 has 1 resource. Normally they don't go on the same host, unless machine002 goes in standby.

Recently, I saw machine002 appearing 2 times. 1 time online, 1 time offline.

Checking with sudo crm_mon -R showed they have different node ids.

I tried deleting the node id, but it refused. I tried deleting the node name, but ...

Please is there a way to stop bitnami/nginx to generate RSA key pair on start (since I am not using SSL in nginx.conf)?

It takes 25-30 seconds to start the app :(

Thanks

nginx 20:56:32.30
nginx 20:56:32.50 Welcome to the Bitnami nginx container
nginx 20:56:32.80 Subscribe to project updates by watching https://github.com/bitnami/containers
nginx 20:56:33.00 Submit issues and feature requests at https://g ...

I am taking care of a few Microsoft 365 tenants and I set up audit logging for all of them.

One of these tenant only provides administrative audit logs but no user audit logs (for example no logs about deleted item from exchange mailbox or downloaded file from OneDrive etc.).

All the tenants use the same licensing (mix of "Microsoft 365 Standard, Essentials, Premium, Exchane Online).

These steps I have ...

If you set CLIFF_FIT_WIDTH=1, openstack cli will fit table output to the screen width.

However, this breaks if you try and pipe to less.

It seems like a possible workaround could be: alias openstack='openstack --max-width "$(tput cols)"' but this seems hacky. Is there a flag or env var for openstack cli I missed so that I can pipe the output to less without the width breaking?

I have 1 box that seems to not want to run chef, while I have 5 other identical boxes that are working just fine using the same rhel and chef versions. On the non-working box, Chef runs correctly when the runbook is empty, but it fails when I add something to the runbook and try again.

Here is some of the error that is returned

/opt/chef/embedded/lib/ruby/2.6.0/fileutils.rb:529: [BUG] rb_sys_fail_path ...

Is it possible to create an ETR that blocks certain combinations of recipients? Imagine I have two customers in different domains with similar email addresses. I want to prevent sending to recipient lists that inadvertently mix users from the two domains.

Ideally, I'd block outbound messages with *@domainA.com AND *@domainB.com recipients. Also, blocking outbound messages with [email protected] AND ...

I am having difficulties (confused) understanding SSL for a domain for mail server. GMail "send mail as" set up is reporting error with "550 certificate name does not match host name" while trying to connect with SSL/TLS.

Domain: domain.com

Mail domain: mail.domain.com

Email account: [email protected]

DNS

A domain.com IP

CNAME mail domain.com

MX @ domain.com

Tried with SSL certificates for both doma ...

I have a role ovirt_vm_add_disk_role that creates a new disk for a VM with ovirt_disk module.

In that role I register the variable disk_info which contains the results of the ovirt_disk module:

- name: "Update disk information"
  ovirt_disk:
    auth: "{{ ovirt_auth }}"
    activate: true
    name: "{{ disk_name }}"
    poll_interval: 10
    vm_name: "{{ HOSTNAME }}"
  delegate_to: localhost
  regist ...

I'm trying to set up fail2ban to monitor our traefik access logs but I'm not getting fail2ban to actually ban anything even though fail2ban-regex shows a lot of matches.

I've also specified loglevel = HEAVYDEBUG for fail2ban but it's not logging anything special to my logtarget (/var/log/fail2ban.log)

I've checked that pyinotify is installed. I also tried switching for a polling backend but the resu ...

Update: after commenting out the line in /etc/hosts that is kinda like

#127.0.1.1  my-host.domain.edu  my-host

and rebooting, the firewall does open the expected ports. I thought to do this because, during testing with the firewall down, binding to host '' was able to accept connections, but binding to the host my-host did not (because that was only binding to 127.0.1.1, not my external address).

I don't want to require the use of TLS 1.2 in Exchange online/O365 as it might result in some important business email not being sent/received.

So has anyone found a way to actually encrypt all in/out going emails with e.g. Office 365 Message Encryption (OME) to ensure it is encrypted, if not using TLS.

Our monitoring sensor connection for https 443 to our secondary ADFS server is refused.

We recently renewed theADFS SSL certificate, and since the secondary server is not listening on port 443.

All changes appeared to have been replicated successfully and correctly from the primary server. i.e. can see New SSL is bound to port 443, and ADFS service restarted.

The servers are in AWS, both have the same ...

I wrote the following script; it's modified for simplicity and privacy reasons:

FILES_ROOT='/data/FILES'

BACK_B2B_RETURNS_S="$FILES_ROOT"'/wms-m-company/w2z/b2breturns/backup'
BACK_B2B_RETURNS_D="$FILES_ROOT"'/wms-d-company/w-to-z/backup/m-company/b2b-delivery-confirmations'
find "$BACK_B2B_RETURNS_S" -maxdepth 1 -type f -exec mv {} "$BACK_B2B_RETURNS_D" \;

LOG_B2B_RETURNS_S="$FILES_ROOT"'/wms-m- ...

Is there a way to delete olcAttributeTypes from my schema?

It's not a system attribute, I added it myself, now I need to delete it.

I'm using LAM (LDAP Account Manager) v5.6

The attribute is located at /etc/openldap/slapd.d/cn=config/cn=schema.ldif

The way I added it was ldapmodify -Y EXTERNAL -H ldapi:/// -f ldif.ldif

Contents of ldif.ldif were:

dn: cn=schema,cn=config
changetype: modify
add: olcAttribu ...

I'm trying to create an azure pipeline. Part of the process involves creating a service connection so that I can copy files to the remote server securely.

I have 2 questions:

1. What do I put in the Service connection name field? An example with a brief explanation would suffice.
2. How do I create this SSH service connection if I have MFA enabled? There's no option related to this on UI.

I asked Chat ...

I encountered an interesting problem while examining a specific AD/OpenLDAP interop case. On the OpenLDAP server, there is a user1, whose gidNumber corresponds to a group1. There is another user2, whose gidNumber corresponds to group2. However, group1 lists only user2 as its member, group2 lists both of them. How is this possible?

I expected gidNumber in Linux environments to work similarly to ho ...

I was so confused with my configuration.

In my server I have 2 interfaces:

eth0: 192.168.1.22  gw 192.168.1.1
eth2: 10.2.1.6 gw 10.2.1.1

I wrote a static route:

ip r a 8.8.8.8 via 192.168.1.1
 worked great!!

then I deleted it and
ip r a 8.8.8.8 dev eth0
 From 192.168.1.22 icmp_seq=1 Destination Host Unreachable

Why?????

I need to use the following cmdlets from ExchangeOnline Powershell module with an unattended connection.

• Get-QuarantineMessage
• Preview-QuarantineMessage
• Release-QuarantineMessage
• Export-QuarantineMessage

1. Following this first documentation https://learn.microsoft.com/en-us/powershell/exchange/app-only-auth-powershell-v2?view=exchange-ps, I created an Azure App registration with self-signed certif ...

I create a KVM Guest VM (virsh define a.xml, virsh start a.xml). Guest uses pre-configured/pre-made QCOW2 disk image, which represents a virtual router (Arista vEOS). Host is Redhat 9.1. Guest is based on Centos 7.9. The VM uses a boot loader (Aboot) in a cdrom. The guest has two environments where one can configure it: Bash Shell as well as "Arista CLI".

I use bash to make changes to the system: addus ...

I have an mlflow server that is hosted on aws, that uses s3 in the background for storage. I am trying to run a lambda-function that runs a python script which accesses the mlflow server, loads a pytorch model, makes predictions and finishes. The code where my problems arise is:

with open('./data/api_keys.json', 'r') as f:
    API_KEYS = json.load(f)

os.environ['AWS_DEFAULT_REGION'] = API_KEYS['AWS_ ...

When attempting to discover iscsi targets using the following command, I get (as expected not running with sudo) the following:

iscsiadm -m discovery -t st -p 192.168.1.199

Result:

iscsiadm: Could not open /var/lock/iscsi: Permission denied iscsiadm: Could not open /var/lock/iscsi: Permission denied

When attempting to run elevated:

sudo iscsiadm -m discovery -t st -p 192.168.1.199

I get the fol ...

So I have purchased a domain on go daddy by the name let's say example.com. Now I want to direct all *.example.com to a nextjs app hosted on heroku.

I followed the standard process to point any subdomain to a heroku app which was

1. Add a custom domain to heroku app by name *.example.com.
2. Copy the dns target given by heroku
3. Create a cname record in go daddy's DNS records page for the site with * as name and ...