Latest Server related questions

My guest OS shows about 5 percent CPU usage, but my host machine shows the QEMU process taking about 25 percent.

I'm trying to understand where this difference comes from, as I am using KVM acceleration and the CPU should have near-native performance.

I think the disk or network access may contribute to this difference, as these layers are invisible to the guest.

But is there a way I can determine exac ...

When I configure more CPU cores, the load average in my Guest OS as shown by top also increases linearly.

I'm trying to understand why this happens, because I expected either the opposite or at least for it to stay the same. As load average should be calculated independantly of the amount of cores?

For example, with 4 vCPU using -smp 4 the load average of my guest is around 2.60. If I decrease to 2 vCPU ...

Fist and foremost, due to limitations imposed by our service provider I can only use 1 IP address for both 80 and 443, so multiple IP address configuration is simply not an option. So, I have a server 2022 with IIS 10. I would like to redirect a website: https://www.gmcomputers.co.za to https://www.gmcomputers.co.za:4443 without having to stipulate the :4443 part. I found a possible URLRewrite ru ...

I want to create a network using the google-terraform-network module. Additionally, I want to pass the firewall rules I made as a parameter to the module so that the created network contains these two rules.

When I pass the firewall rules directly, i.e.:

firewall_rules = [google_compute_firewall.allow_ssh, google_compute_firewall.allow_http]

I receive the following error: The given value is not ...

FYI:

• we have a custom domain and we pay for Google Workspace to use that domain for our email/gmail.
• i have SPF, DKIM, & DMARC all setup, and a Google tek support person verified it was correct over a year ago.
• we use the Apple Mail app on our Macs & iPhones to send/receive these emails.
• i've also verified that the Apple settings are correct.
• it's been working great, for many many years, until re ...

This seems like it should be a really simple question but I have had no luck in figuring it out. I have a service 'Alice':

[Unit]
Description=Alice
After=network.target

[Service]
Type=simple
Restart=on-failure
RestartSec=5
StartLimitInterval=0
ExecStart=sleep 30d

[Install]
WantedBy=multi-user.target

I would like to write a second service Bob such that:

• Bob starts when Alice has started successful ...

I've run into this strange issue of not being able to connect with ssh user@domain -s sftp.

sshd_config on target specifies Subsystem sftp /usr/libexec/openssh/sftp-server, the sftp-server file is there and I've created symlinks to it in /usr/bin, /usr/sbin etc. as so which sftp-server shows correct executable.

Plain sftp user@domain and ssh user@domain are working without problems.

running with

Note that I understand what "Amazon S3" is; I'm asking only about the software that handles the HTTP interface.

If I check the HTTP headers for github.com, for example, one of the response headers is:

server: AmazonS3

Does Amazon actually have a web server that it calls 'AmazonS3', or are they just modifying headers from Apache/nginx/etc?

My nginx server is setup so that all URLs example.com/url are forwarded to www.example.com/url

In the cloudfront origin domain when I create the distribution should I enter example.com or www.example.com ?

Will this make a difference in any case?

I am trying to force redirecting all HTTP traffic to HTTPS using my httpd.conf file on my Apache server.

Expected behaviour: When users visit http://example.com, they should get redirected to https://example.com/.

Actual behaviour: When users visit http://example.com, they stay at the same link and an error message is shown by the browser (This site can’t be reached, http://example.com/ refused to co ...

I'm trying to set up backups of dovecot emails between 2 servers. The command doing the heavy lifting is:

 doveadm -D backup -R -u [email protected] ssh MAINSERVER.IP doveadm dsync-server -u [email protected]

For most users it works fine, but for a couple of users I am getting an error 65 or error 75. (The script says remote command returned error 75..." but when I put this in a script th ...

For example

/\.host$/ REJECT We reject all .host domains!
/\.pw$/ REJECT We reject all .pw domains!

In this way, I prevent the receiving of e-mails from the domain names I want. No problem here.

I don't want emails to be sent to the domain names that I have determined that I am trying to do. Example;

.com.br
.it
.host

like this. Is there a way to do this? I repeat, what I want to do is block the outgoi ...

My website received DDOS attacks (confirmed). I use Nginx as the reverse proxy server and have 3 WebApps (A,B,C) in the backend. The status is very strange. In DDOS status:

1. Nginx cannot return backend (A and C) results and show 504, but can return backend B.
2. Access A and C directly (without through Nginx), Okay (performance is normal).

I thought the connections were exhausted, but as #1 mentioned, ...

I would like to know in an (2+1) Erasure coding storage setup, can it detect corruption when one node is lost, and there is a silent data corruption from HDD on one of the remaining node.

I am experimenting GlusterFS dispersed volume which use erasure coding. I created a 3 node (2+1) dispersed volume (erasure coding). Put a file in it. Then I poweroff one of the node. On one of the remaining node ...

Setting up a new VPS with almalinux.

I've set up firewalld with the following settings

  target: default
  icmp-block-inversion: no
  interfaces:
  sources:
  services: dhcpv6-client http https
  ports: 80/tcp 443/tcp 7822/tcp
  protocols:
  forward: no
  masquerade: no
  forward-ports:
  source-ports:
  icmp-blocks:
  rich rules:

Why is there still failed log in attempts logged in /var/log/secure when t ...

I've got a Terraform deployment that deploys a Docker image into ECS Fargate. It attaches an EFS volume to the container. When I SSH into the container, I see the volume mounted, but I am unable to write to it. All of the POSIX permissions seem right.

Here's an illustration of the problem:

$ ssh -i ~/.ssh/_inletchef/ifsudo.pem [email protected] 
Last login: Fri Apr 14 21:45:27 2023 from ip-1 ...

I tried with NEG but it has limitations to only point to zonal cluster.however i have regional cluster so want to point the node pool as backend to http loadbalancer.how can i do that?

I'm using RHEL 7.9 (Maipo) and need to setup for all iSCSI clients the same device name, like /dev/sdb or /dev/thiscustomname.

I could do that by sharing the source disk using multipath, but for Db2 pureScale it cannot be a a symlink. This is how it is showing in the clients A and B:

Client A:

/dev/sdb                  mpath_me
└─/dev/mapper/db2data
/dev/sdc                  mpath_me
└─/dev/m ...

We're migrating some servers from centos 7.7ish to Rocky linux 8, and we're finding just about every process is using 20-50% more memory, causing machines to lock up.

For example, sh on centos:

# sh -c 'egrep "VmRSS|VmSwap" /proc/$$/status'
VmRSS:       664 kB
VmSwap:        0 kB

vs. rocky:

# sh -c 'egrep "VmRSS|VmSwap" /proc/$$/status'
VmRSS:      1136 kB
VmSwap:        0 kB

That's just a simple examp ...

I have installed an Enterprise version of DB2 on my local Windows 11 pro laptop for some development tasks. Installation proceeded without errors but, it seems I cannot connect using TCP. If I try to stop/start from the admin console, it says I do not have set the environment variables even if I try to printout it works.

This is what I can see with db2set -all

C:\Windows\System32>db2set -all
[e] DB ...

When i add error_log('what ever') in my php scripts and there are to many in one script, it generates a 502 error with "upstream sent too big header while reading response header from upstream" in the error log. When i remove any of the error_log('what ever') in the php script, all is working again. Anybody any idea what the issue is?

I know there are lots of variables here, and they're highly dependent upon the applications in the environment as well as the needs of the org. I read this post first, as the question was similar. [https://serverfault.com/questions/380701/replicate-main-mysql-db-to-a-development-server-to-play-with-real-data][1]

I thought I could add some depth from my perspective to the question and hopefully g ...

I'm trying to configure certificate-based authentication in WinRM. I need this to source-initiated subscription of WEF from non-domain machine. I use manual published by MS: https://learn.microsoft.com/en-us/windows/win32/wec/setting-up-a-source-initiated-subscription My environment - I have 2 servers:

• wef01.mydomain.local (this is machine which will send events; it is not joined to AD)
• wec01.my ...

We are currently doing fact finding in microsoft azure. For one of our software stacks, having known UUIDs is important (defined as the output from dmidecode|grep UUID).

In virtualbox/vagrant, it is possible to force a specific UUID on to a vm using something like this in the vagrantfile:

  config.vm.define :"box01" do |box01|
    box01.vm.box = BOX
    box01.vm.network :private_network, ip:"192.168.57.14 ...

I created a startup script like this:

$FolderPath = "C:\Path\To\Your\Directory"
$UserAccount = "Domain\User" # Replace with the appropriate user or group
$Acl = Get-Acl $FolderPath
$AccessRule = New-Object 
System.Security.AccessControl.FileSystemAccessRule($UserAccount, "FullControl", 
"ContainerInherit, ObjectInherit", "None", "Allow") # Replace 'FullControl' with the desired permission level
$Ac ...

I am developing a Live filesystem and need to be able to download deb files with its dependencies which I manually do using:

apt download $(apt-cache depends --recurse --no-recommends --no-suggests \
--no-conflicts --no-breaks --no-replaces --no-enhances \
--no-pre-depends ${PACKAGES} | grep "^\w")

After that, I need to extract all data.tar.gz from required deb packages combined to one unique folder ( ...

I have a rule in my Apache config like this:

<FilesMatch "xyz">
 Order deny,allow
 Deny from all
 ErrorDocument 403 "Custom Response"
</FilesMatch>

In the error log it will always add an entry like:

[Fri Apr 14 09:46:10.706192 2023] [access_compat:error] [pid 12345] [client 93.184.216.34:47540] AH01797: client denied by server configuration: /var/www/example.com/xyz

Is there any way to a ...

I had a php tool working on my old macbook pro. I've recently install via homebrew the HTTPD server and install PHP per a few websites.

The local page loads but it seems that PHP isn't working properly. When trying to use the following, nothing shows up

PHPinfo error

There may be more errors with my new OSX Ventura with PHP 8.2 that I didn't have before, but nothing in the error_log's shows anything ...

I'm trying to troubleshoot an issue with a gMSA and the error is displayed interactively. psexec is blocked by sophos, which is quite a hasle to whitelist (would be the sure way to get an interactive session).

I tried putting the gMSA in all obvious groups. Tried login via rdp, but this gives 'To sign in remotely, you need the right to......'. Tried runas. Pssession works but not interactively. s ...

my goal is to automate some tests for a web app and in parallel do some other staff manually (like writing code locally or research or writing reports) and don't collide with it. I used softwares like Ginger, Power Automate Desktop but i'm not able to do anything else until the automation is done otherwise it's interrupted. The RPA works as if it is me. It takes control of the computer it's running on.  ...