Latest Server related questions

I put malicious code in a Docker image. I wonder if the scanner can detect malicious code.

I used the command which was given by GPT. The result of scanning the image I made myself (Ubuntu based, named t_mal:1.0) and the result of scanning the Ubuntu 20:04 image are the same. (Scan results are the same)trivy Image [imagename] --Vuln-type malware

[스캔 한 결과][1]

But I know this is an inappropriat ...

There is a ceph mount on two nodes. The content should be available to applications running on one of the two nodes but they should not make changes to the content. Instead I want those applications to make their changes synced on another place (synced via network) using OverlayFS.

1. Try

mount -t overlay overlay -o lowerdir=/media/ceph/A,upperdir=/media/ceph/B,workdir=/media/ceph/C /media/avail ...

Just spin up an EC2 instance with Ubuntu, if it is a new fresh instance, isn't supposed the Kernel to be up to date?

After I run a sudo apt update && sudo apt install <any-package>, I receive the message below:

Package configuration

  ┌───────────────────────┤ Pending kernel upgrade ├────────────────â ...

I have a mixed k8s cluster v1.23.2 (

• control plane on a linux VM Centos 7 ( running on ESXi host, let's call it SRV1)

and a

• windows server 2019 node on another physical server ( SRV2 )

• both SRV1 and SRV2 are directly connected through a network cable

Both linux and windows enpoints have 2 Network interfaces ( the one I want to run k8s cluster is 192.168.100.0/24 and it has no internet access ). Th ...

I'm trying to configure PXE server for both Legacy/UEFI support. So I need to provide different bootloaders based on architecture of machine.

Here's part of dhcpd.conf:

option architecture-type code 93 = unsigned integer 16 ;

next-server 10.10.10.10;
if option  architecture-type = 00:07 {
  filename "grubx64.efi";
} else {
  filename "pxelinux.0";
}

This block doesn't seem to work at all. Whatever ma ...

If I install apache2 on debian 11 and access one of the following urls:

http://localhost/.htm

http://localhost/.html

I don't get the expected HTTP status-code 404, I get a HTTP-status code 403 instead!

However, if I access the url http://localhost/.abc I get HTTP-status code 404.

Does anyone know, why apache returns 403 and not 404 for the not existing ./.htm and ./.html files?

I did not change any config ...

First off, I made a mistake & I acknowledge that, but now I'm stuck with a "broken" ZFS driver and want to restore it without rebooting my machine.

How I can say ZFS on Linux to just forget the existence of a pool (forcefully unmount & "export" it) while all drives are disconnected?

While I had a running ZFS pool with two drives (as mirror), I disconnected both of them (more specific: their  ...

I wrote a bash script for inserting the summary of the daily energy database "xxx_d" into the monthly database "xxx_m" - triggered on every 1st day of the month at 02 o'clock by a systemd-timer. That's a pretty nice working workaround for the missing "1M" on the continuous querys of InfluxQL.

Now I've the following issue (it's an example; every entry is timestamped too early): the entry in the mo ...

I need to redefine the NTP server for every device in my company network and I have two options:

1. Configure each device for using the default company NTP server
2. Configure each device for using their default gateway as NTP server

What do you think is the best solution?

Recently I installed DevStack (OpenStack distro) on my servers. I uploaded there Ubuntu server 20.04 LTS cloud image as well as Ubuntu Server 22.04 LTS cloud image. The images came from https://cloud-images.ubuntu.com/. Now when I run Ubuntu Server 20.04 VM everything works fine and systemd-resolved.service is running properly. I can ping www.google.com and so on. But when I run Ubuntu 22.04 LTS  ...

As per OpenStack nice documentation, I configure the neutron minimal setup with the "self-service network" option. when all configurations done i see the verify command "openstack network agent list" output not showing linuxbridge. then check the log file and see the error found.

2023-04-06 11:34:36.731 2553631 CRITICAL neutron [-] Unhandled error: neutron.privileged.agent.linux.ip_lib.InterfaceOperati ...

This is a brand new Windows Server 2022 EC2 instance. I am Administrator.

I'm trying to use NICE DCV. I have it installed, I guess, but I don't see it anywhere. Amazon's instructions are to start it from the MMC but the MMC is empty.

To open MMC I do win+r>mmc.

I have installed SSL certificate for Azure front door and set the policy to access the website with particular IPs. With HTTP I am a not able access the website which is correct according to the policy from the outside of the network. But when I am using HTTPS with the same website it is accessible which is we are not looking for from outside the network.

I have a problem with transferring my OS from SATA SSD to PCIe NVMe and maybe someone can give me more ideas to solve the next problem.

The hardware is HPE MicroServer Gen8 running Windows Server 2022. BIOS. SATA SSD. MBR.

I've tried multiple times to clone the SATA SSD to PCIe NVMe SSD, but the only message I get after boot is "Non-System Disk or Disk Error". I have used this methods:

1. Acronis TrueI ...

I have a HyperV server with a VM for a windows file share. I have a VHDX attached to the VM that has all the data for the file share. I needed to temporarily remove the VHDX disk, and upon clicking "Remove" it prompted me to create a checkpoint to avoid data loss:

I clicked "Create Checkpoint and Continue" and I have a checkpoint from that time.

After reattaching my VHDX file, I'm missing months o ...

All of my route table definitions throw a deprecation warning during the plan/apply stages. I can't figure out how I should be defining my routes so that I stop getting these warnings.

Here's an example of one of my route table resources:

resource "aws_route_table" "rtb_public" {
  vpc_id = aws_vpc.app_vpc.id
  route = [
    {
      cidr_block                 = "0.0.0.0/0"
      gateway_id             ...

I have a Java web application which interacts with dovecot 2.2.36 and postfix 3.3.1 and I see errors from application log as keeps:

Java application Log:

04-06-2023 10:18:40 ERROR http-nio-8080-exec-58 comun.Correos:198 - javax.mail.AuthenticationFailedException: [UNAVAILABLE] Maximum number of connections from user+IP exceeded (mail_max_userip_connections=10)
        at com.sun.mail.imap.IMAPStore.pr ...

Given following network setup:

Debian bullseye host (Proxmox VE) -> OPNsense firewall doing NAT -> DSL modem (connected via PPPoE) -> Internet

The host isn't able to establish a tcp connection to any host in the internet. I tried to reach different hosts, also a server where I am able to capture traffic.

I captured some traffic using port mirroring of the DSL modem switch port ensuring I reall ...

I have a bunch of load-balanced Azure VMs running Windows Server 2019 that are running IIS with ASP.NET MVC/Web API 2 applications running on them. They communicate with a Database in a SQL Server Managed Instance.

The VMs and the Managed Instance are in separate subnets with the same Virtual Network, and most of the time, it all works perfectly.

However, a few times per day, seemingly randomly, all ...

0

I have 5 nodes hadoop cluster with different fqdns with domain xyz.com like node1.xyz.com, node2.xyz.com ... node5.xyz.com, its hostnames are configured with this domains, so if we write hostname command inside linux terminal it returns nodeX.xyz.com.

Now Due to some use cases i cant change hostname, and also cant add alias in /etc/hosts file cluster is kerberized so whenever i start datanode it u ...

i have server with raid card support 8 disk drive and and created raid. but to to large data storage getting full. so i want to know if i add another raid card with same model and capacity. and create same raid like raid 10 or 5 on both raid drives. is possible i will merge both raid storage as one drive. server del T630 internal sotrage bay 8 with 8tbx8 external storage bay 8 with 8tbx8 and use same ra ...

One of our users recently switched roles to a new position where they will not need computer access anymore, except for checking emails. I need to disable their AD account while not removing their Outlook login or mailbox.

My first thought was to remove the proxyAddress attribute value in AD, do a sync, then disable the user in AD. But what I've read is that you need to disable the user in AD, or move t ...

If this is a duplicate, I'm sorry.
I have searched my case but I couldn't find the right scenario that resembles my situation, although I thought that this situation must have come up before for someone.

Here we go:
I have a user on my remote linux server, ServerUser.
I have a user on my home PC, HomeUser.
I have a user on my work laptop, WorkUser.

I want to connect with HomeUser and WorkUser to the Ser ...

Is it possible in Exim4 to reject emails sent to a subdomain, eg sub.example.com?

A user has started a loop that is sending too many emails to the server, which generates the error "refused: too many connections".

Or is it possible to temporarily reject for a specific email address, eg [email protected]?

I have a service defined as bellow:

Unit]
Description=My Service
After=network.target

[Service]
ExecStart=/usr/local/bin/myservice
KillMode=process
Restart=on-failure
ExecStartPost=/usr/local/bin/script.sh

[Install]
WantedBy=multi-user.target

and script.sh contains commands like:

while ! $(systemctl is-active --quiet myservice) ; do echo "waiting.."; sleep 5; done

(and other calls to the servic ...

Question

Is there a way to configure multiple authentication mechanisms for SSH logins on an HPE switch? Either I did not find that in the manuals yet, or there is no information on that topic.

This is what I want to do:

1. Authenticate users in normal operation

users should be authenticated using a RADIUS server. This can be configured easily by specifying RADIUS server details and then enable the  ...

We use AWS fargate with containers. To reduce price we are looking for options. So question how to use AWS EC2 reserved instances with fargate?

As I understand steps look like this:

• purchase reserved instance(s)
• create new fargate cluster with supporting EC2 instance with some instance type (micro...)
• create services/EC2 based tasks Question is, will this setup use reserved instances?

Looking for info ...

I am coding my own version of TOR and I am trying to set up circuit management. I looked at the TOR spec and it says:

To prevent CircID collisions, when one node sends a CREATE/CREATE2 cell to another, it chooses from only one half of the possible values based on the ORs' public identity keys.

I would like to implement this approach in my code as well, but I don't understand how can the node figure out ...

I have 2 DCs in my lab environment. So I just wanted to check the replication status using repadmin /replsummary but it throwed me an error : 1722 The RPC server is unavailable. I forced replication using the command repadmin /syncall /AdeP. It replicated with no issues. However after that I retested repadmin /replsummary and it returned the same 1722 error. Check the picture here

Context :

We have a computing cluster based on 7 servers, running Debian 11:

• a storage (HDD NAS, ~500TB, RAID5, LVM)
• a frontal server, running SLURM, nfs-common
• 5 nodes on which the storage is mounted through NFS.

When business users run SLURM jobs on frontal, python threads are ditributed to nodes, which read & write data on their shared NFS mount.

Everything was working fine until last week. We lo ...