Latest Server related questions

I am using OpenSSL 1.1.1k 25 Mar 2021 (source) on Windows 10. I am following this help page to try to get RabbitMQ to use tls.

'c:\OpenSSL\x64\bin' is part of my path.

My openssl.cnf file in the working directory:

[ ca ]
default_ca = testca

[ testca ]
dir = .
certificate = $dir/ca_certificate.pem
database = $dir/index.txt
new_certs_dir = $dir/certs
private_key = $dir/private/ca_private_key.pem
seri ...

Our server is compromised and we would like to know which accounts sent the malicious queries from our server. I used tcpdump to get this :

 our.host.net.48194 > box5596.bluehost.com.http: Flags [P.], cksum 0x0bf8 (incorrect -> 0x5061), seq 0:741, ack 1, win 229, options [nop,nop,TS val 260555861 ecr 3817788688], length 741: HTTP, length: 741
    POST /xmlrpc.php HTTP/1.1
    Host: www.devyna ...

I have SSH access to a Cisco ASA 5506 at a remote site, this access is via another CLI device at the remote site. We have previously used ASDM from the site so know its set up correctly. However I cannot get it to work over the site-to-site VPN that connects the sites.

The main thing I have done is configure the below with the range for the site I'm trying to connect from:

http 192.168.1.0 255.255.255 ...

I'm trying to configure a proxy to public websites (origin) with the addition of my script to the head element of the HTML. The way I can access https://proxy.mywebsite.info/?script=www.myscript.com/a.js&origin=google.com and get the origin website with my script injected.

The injection part works fine but somehow any public website which is loaded shows me errors like I'm doing the proxying wro ...

I use nftables, but it hasn't got anything like iptables' string nor u32 match, so it couldn't reliably gather payload offset. If not via nftables' raw payloads, how could I analyze TCP payload efficiently without any user space bottlenecks? (nfqueue is not an answer for performance reasons)

Are there any techniques to do such filtering at the kernel level? Even marking suitable packets is enough ...

had a mosquitto 1.x running fine on Debian 10 (with SSL). Along with the upgrade to Debian 11 came mosquitto 2.0.11-1.

I had to make a couple of config file adjustments to get it to start at all. Already read through https://mosquitto.org/documentation/migrating-to-2-0/ For testing I currently start the daemon with this command interactively:

/usr/sbin/mosquitto -c /etc/mosquitto/mosquitto.conf -v

solution: The IP range in ignoreip was set incorrectly using CIDR. It should have been 192.168.2.0/24 rather than 192.168.2.1/32.

original post:

Another user had a similar problem caused by conflicting ignoreip's (jail.local's ignoreip replacing jail.conf's). However, the only ignoreip I am using is the one in jail.local, and I have not edited jail.conf at all, so the user's solution did not apply fo ...

Some background:

When I started at my current work place ( in server infrastructure ), a bash, perl and python code base already was in place for remote executing jobs on linux systems, the one guy that wrote and maintain this code base have spent years refining it, since before I started there.

Although the existing code base can do a lot, it's pretty hard to make use of sometimes due to lacking do ...

I'm deploying a small web app as a docker container on Google Cloud Run. Since I'm working with multiple, large static files (language models, such as GPT-2) I've made changes to my dev environment so that the files are mounted as a volume to the container I'm developing in.

Now I'm confused if it at all is possible to host a docker volume on google cloud and then mount it to a container running  ...

How can I set directives shared between all tasks in the file, in an Ansible playbook fragment file that only contains tasks?

# ansible/inventory/roles/os_packages/tasks/main.yaml

- name: "APT: Update available packages from Debian repositories"
  gather_facts: false
  become: true
  become_user: root
  apt:
    update_cache: true
- name: "APT: Install required packages"
  gather_facts: false
  become: t ...

how to do so that in this script which searches for something from the database. he searched for it and changed its name in the terminal. I have a problem with the quotes here. Maybe anyone know how to fix it?

spr-ustawien()
{
echo -e "\e[31;43mSprawdzanie Ustawień\e[0m \e[101mIP $1\e[0m"
intertube=0
while [ $intertube -ne 1 ]; do
ping $1 -c 5
if [ $? -eq 0 ]; then
sshpass -p (pass) ssh -t (user)@ ...

What is the main difference between the ACRN and the firecracker hypervisors ?

As I understand, ACRN

The ACRN Hypervisor is a Type 1 reference hypervisor stack, running directly on the bare-metal hardware, and is suitable for a variety of IoT and embedded device solutions.

Only on the embedded devices, why ?

As I understand, Firecracker

Firecracker runs workloads in lightweight virtual machines, c ...

I am using tail to monitor a log file and using grep to filer the keyword.

tail -F somefile.log | grep "keyword" is working tail -F somefile.log | awk '{print $4}' is working

but if to put them together is not working, like tail -F somefile.log | grep "keyword" | awk '{print $4}'

Is this the wrong way to use |? How to make tail -F somefile.log | grep "keyword" | awk '{print $4}' to work? Thanks

if I  ...

First, I check the list of windows process are running and collect the output into a register variable. next I need to start the service which are not running based on the above output(register).

- name: Check weather service is running or not
    ansible.windows.win_service_info:
      name: "{{ item }}"
    register: win_service_info
    with_items:
      - BrokerInfrastructure #Background Tasks  ...

I have a remote machine on which I run Debian and Apache. Recently, a strange problem occured.

It started with me not being able to log in by ssh anymore (I simply get a timeout) and my domain not being reachable over the browser. I think I couldn't ping it as well but I'm not sure about this. As of now, ping works.

Using the control panel of the provider, I am still able to log in. ip link shows ...