Latest Server related questions

I'm trying to test the performance of my external USB drive. I have two partitions on it. One is formatted as exFAT whereas the other is a RAW windows partition.

I am at a loss about using IOMeter to test the RAW partition. The drive letter never shows up in the disk targets. I see some volume GUIDs in the list so I used DiskExt and this is what I see (my RAW partition is mounted at E:)

D:\Softwar ...

I use the following config for nginx with http and stream. Each of them should include the same IP whitelist.

The whitelist looks like this:

allow 78.153.123.0/20;
allow 2a01:123::/32;
deny all;

My nginx config:

user www-data;
worker_processes  auto;

error_log /var/log/nginx/error.log debug;

events {
    worker_connections  1000;
    multi_accept off;
}

http{
 include /etc/nginx/server.whitelist; ...

I am using redhat 6.7.When I tried to start or stop the services these errors happen.

service vsftpd stop
Shutting down vsftpd:                                      [FAILED]
[root@PHY-HUB_TrfGen_VSAT vsftpd]# service vsftpd start
Starting vsftpd for vsftpd:                                [FAILED]

This is the content of my vsftpd.conf file

anonymous_enable=YES
local_enable=YES
write_enable=YES
local_umas ...

I am using lighttpd version 1.4.55 within an ARM environment. I created an HTML pages in which there is a button used to download some json data. This button trigger a submit form that calls a cgi script. This script has to take the output of the form and write into a file. But when I click on the button, the response text of the xhr request is the content of the cgi script instead of the printf message ...

Owing to an error long ago our company web site has been serving image URLs containing a significant amount of white space.

E.g.

http://www.example.com/                      /assets/ProductPhotos/image.png

Somehow, browsers have handled this (presumably by stripping out the whitespace) and nobody noticed the problem.

We have now fixed the problem, but crawlers that aren't being so intelligent have ...

I have a dl385 g8 with the p420i radi controller. I went through a lot of steps upgrading the server firmware to the latest, rapid controller and iLo. After a lot of work I was able to boot the the intelligent provisioning and access the raid arrays.

I currently already have 2 logical volumes made up of 6 x 1.2 TB 6/Gbs 10k SAS drives. One runs the OS and the other is a data store housing vms.

I pur ...

I set up a postfix email server following an article series from the linux babe for my company and it seems to be working fine with a couple of exceptions. In the maillog I am seeing the following warnings:

• postfix/10025/smtpd[169161]: warning: milter inet:127.0.0.1:783: unreasonable packet length: 1397768525 > 1073741823
• postfix/10025/smtpd[169161]: warning: milter inet:127.0.0.1:783: read er ...

https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd197552(v=ws.10)?redirectedfrom=MSDN

I know that the client resolver on W10 switches to the second DNS server after trying and failing with the first server for 1 second. But when does it switch back? I know it does after a restart, but what about during regular operation? From my findings, Windows doesn' ...

I'm configuring a new system to host VMs with libvirtd (AlmaLinux 8.9, 4.18.0-425.13.1.el8; libvirt 8.0.0-10.2) and I'm seeing a weird behavior when I reboot the system.

On boot, libvirtd fails to start with a fatal "Network already in use" error. But then if I log in and manually start it, it fires right up without complaint. I have no idea why that would be. Here's what I'm seeing:

# uptime
 22:52:2 ...

I have some users in the shipping department that aren't getting automatic updates to their Drive mappings upon reboot or fresh login. H for example is supposed to be mapped to \server\boxes

but the old servers are still mapped on quite a number of systems and I have to fix it manually. On the other hand, the majority of users aren't experiencing this.

The policy is linked in the Users OU.

I can tell y ...

I am using https://github.com/evertramos/nginx-proxy-automation/ and it has as a component https://github.com/nginx-proxy/docker-gen.

I would like to proxy a location on my host https://someurl.com/consumer -> https://project_id.cloudfunctions.net

In a non-docker setup I would write something like so in a someurl_com.conf file:

server {
    listen 443 ssl;
    server_name someurl'.com;

    ss ...

I am making a network-connected device (using Raspberry Pi 4 inside), and I would like a way for these devices to discover each other (when on the same local subnet). I am vaguely aware of protocols like SSDP / UPnP which can help with things like this, but the complexity and security concerns lead me to believe that that is not the best option.

Update: The feedback I have gotten so far suggests t ...

tl;dr; We need to disable or hide the file history for active directory users who access a network shared folder, so that only the IT team can restore files to previous versions.

We have a small server with Windows Server 2019. In this server we have many network shares for active directory users. The access to these folders is being controlled by Groups. The whole drive has shadow copy enabled, and t ...

How to write a regex that matches a path node with reserved characters like '+','-' ? for example:

https://e.example.com/foo+/bar/file/test.txt need to be re-written as https://e.example.com/bar/file/test.txt

I tried rewrite ^/foo+(/.*)$ break; but it couldn't match the string.

Any suggestions?

Ubuntu 20.04
Postfix 3.4

For each message received by my Postfix I see the following two entries:

Mar  8 16:34:42 mail postfix/smtpd[863775]: discarding EHLO keywords: ETRN DSN
Mar  8 16:34:42 mail postfix/smtpd[863775]: discarding EHLO keywords: ETRN DSN

My configuration...

me@mail:/etc/postfix$ postconf -n |grep smtpd_discard_ehlo_keywords
smtpd_discard_ehlo_keywords = ETRN, DSN

smtpd_discard ...

I am trying to stand up a new domain controller and add it to an existing domain. The two servers are in two separate cloud zones. Before promoting the new server I was able to contact the existing DCs. I was able to add it to the domain, update group policy, and update via WSUS so there is no issue with communicating with the domain (after adding the DCs to the hosts file).

However when I add ...

This is a new one for me. My agency has (1) 2028U-E1CNRT+ with a Supermicro motherboard Super X10DRU-i+. Approximately a month ago both power supplies died at the same time, the LED lights on the back of the power supplies was amber (one slightly brighter than the other). I've never seen both power supplies pop at the same time so we purchased a new-to-use same model motherboard which did not fix the ...

I want to use 2 network interfaces, each one has its own default gateway, at the same time. I found on google that iproute2 program could solve my problem but I also have to config netplan in order to accomplish that. The only info I found is about /etc/network/interfaces

auto lo
iface lo inet loopback

allow-hotplug enp7s0
iface enp7s0 inet static
    address 192.168.0.101
    netmask 255.255.255.0
    g ...

So, my Log Parser Query fails and states that the remote procedure call failed.

However, I am able to connect using the Event Viewer (which I hate); what does the event viewer use to connect that the log parser does not?

C:\Program Files (x86)\Log Parser 2.2>LogParser -e:1 "SELECT EventId, RecordNumber, EventId, SourceName, TO_STRING( TO_UTCTIME( TimeGenerated ), 'yyyy-MM-dd hh:mm:ss.ll' ), Strings ...

I have an exchange server behind a PfSence unit, internal mails are routing effectively, but external mail are not being delivered. Must i publish my server on pfsense before external mails can be delivered.

Please help, I am a rookie

If I run sudo opendkim-testkey -d mydomain.com -s selector -vvv, I get

opendkim-testkey: using default configfile /etc/opendkim.conf
opendkim-testkey: checking key 'selector._domainkey.mydomain.com'
opendkim-testkey: key not secure
opendkim-testkey: key OK

and I can't figure out how to fix "key not secure".

If I do dig selector._domainkey.mydomain.com TXT +dnssec then the ad flag is missing from ...

I have to make an image of a VM instance on Google Cloud, if I use the Create Machine Image option will this shut down the VM instance while it is creating, I'm reading the documentation on it but it says absolutely nothing about that and this instance has to be turned on 24/7 schedule

At our company, we use RDP sessions to a JumpHost/Gateway to access customer servers and databases and disallow leaking data to employees computers. This is enforced via group policy to disallow clipboard redirection (described here).

But not being able to use the local clipboard to paste into the remote host is somewhat impractical. I've just discovered that the Mac »Microsoft Remote Desktop« app off ...

We have a server runnnig Linux 5.15 and we've had multiple verified situations where a process is killed by OOM and that leaves the whole system inaccessible on the network, both for inbound and outbound traffic. This is a recent syslog trail for the event:

Mar  8 05:16:01 ip-10-110-10-133 kernel: [203986.004138] amazon-cloudwat invoked oom-killer: gfp_mask=0x1100cca(GFP_HIGHUSER_MOVABLE), order=0, ...

My host acts as a router and has two network interfaces enp1s0 (1 host connected with ip 192.168.10.20) and enp2s0. enp1s0 is used to receive UDP packages and enp2s0 usually has the listening hosts connected.

When I activate the nftables logging with:

table ip filter {
        chain logging {
                type filter hook prerouting priority filter; policy accept;
                ip saddr 192.168.10. ...

i'm running a Debian container in rootless mode and can't set an acl for groups and users besides my own group and user (at least it seems so). I started a bash in a container ( runc --root /var/slurm/run/ run --bundle ~/containers/test01/ test01) and then:

touch test.txt
setfacl -m g:adm:r-x test.txt

This leads to setfacl: test.txt: Invalid argument.

The group 'adm' exists. No other groups of /etc ...

I have a php script which is communicating with an external API via curl requests. Suddenly last week some requests got an empty response from the server, instead of the requested data (although the action was performed on the server). Affected were for example the upload of pictures or the update of a larger data set. On other clients the same requests were working as expected, so I suspected that it i ...

I am trying to access resources inside an Active Directory domain from a non-domain joined Windows 10 machine. The domain is ad.example.com, but there is also the alternative UPN suffix example.com.

When I access, for example, a file share using a user with the default UPN suffix (e.g. [email protected]), Kerberos authentication works, as it automatically guesses the correct realm (ad.example.c ...

I would like to make deny for specific domains + path preferably using maps or text file in haproxy. For example, I would like to define file with domain:

example.com/test-path
example2.com/another-path
etc.

And do deny for each domain + url in the file. Is such a configuration possible in haproxy? I know i can do that using simple acl:

acl block_example_path path_beg /test-path
acl block_example ...

I am trying to deploy Ceph Quincy using ceph-ansible on Rocky9. I am getting some problems and I don't know where to search for the reason.

PS : I did the same deployment on Rocky8 using ceph-ansible for the Pacific version on the same hardware and it worked perfectly.

I have 03 controllers nodes : mon, mgr, mdss and rgws. And 27 osd nodes : with 04 nvme disks (osd) each. I am using a 10Gb network w ...