Latest Server related questions

I'm configuring a new Windows Server 2019 VPS. I have set the firewall on the Public Profile to "Inbound connections that do not match a rule are blocked"

Public Profile configuration screenshot

I have setup 2 rules to allow connections to my SSH server, and to allow web traffic through, as you can see here:

Inbound rules screenshot

There's also a 3rd rule there to block traffic to port 3389 (RDP). Th ...

The nginx tries to access the key at /etc/nginx which is wrong, because nginx or openssl allows to use variables. Did I use/set it wrong?

server {
        listen 80 default_server;
        listen [::]:80 default_server;

        index main.html index.html index.htm index.nginx-debian.html;
        server_name   ~^(?<pre>.+\.)?(?<domain>.+)\.(?<post>.+)$ _;

        listen [::]:443 ssl ht ...

I am newbie to ansible. My goal is to fetch files from various servers. Each server has different path where a file is stored. Destination path is always the same.

I have the following:

- name: fetch files
  hosts: hosts
  tasks:
    - name: fetch files
      fetch:
       src: /home/ubuntu/test1/testing1.txt
       dest: /home/ubuntu/
       flat: yes
       when: inventory_hostname == "ansible1"

   ...

I have super simple iptables rule:

iptables -t nat -F
iptables -t nat -A POSTROUTING -s 192.168.0.0/16 -o ens34 -j MASQUERADE

iptables -F INPUT
iptables -A INPUT -s 192.168.3.2/32 -d 192.168.0.0/16 -j ACCEPT
iptables -A INPUT -s 192.168.3.2/32 -j DROP
iptables -A INPUT -j ACCEPT

Which gives me:

root@ubuntu:/etc/init.d# iptables -L -n -v
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes  ...

I'm running into an issue here, I'm sure I'm being a fool but after 4 hours thought I'd see if anyone can quickly educate me!

I have a new pfSense. Its going into an SMB client who currently only have a flat network.

I am trying to connect a UniFi AP to the network with a segregated SSID for public use. To do this I am aiming to have on that single port (direct cabled to the AP):

1. Untagged network ...

Was hoping someone might be able to help with a bridging issue on Debian 11... I can't get it to work and I've been tearing my hair out all day! The bridged interface will not get an IP via DHCP and if you configure it statically it's not accessible.

What I'm trying to do is simple and something I've done many times before. So to prove I'm not going mad, I've created 2 brand new virtual machin ...

I am building openstack (Yoga version on Ubuntu 22.04) high availability using ssl configuration. I was able to get other services to work using https (except neutron, cinder and dashboard), but Nova throws the error in /var/log/nova/nova-api.log below:

CRITICAL keystonemiddleware.auth_token [-] Unable to validate token: Failed to fetch token data from identity server: keystonemiddleware.auth_tok ...

Server 2019 domain controllers and Server 2019 member servers. We can enter these UNC paths in File Explorer or the Run prompt:

\\mydomain\netvol
\\mydomain\sysvol
\\mydomain.com\netvol
\\mydomain.com\sysvol

However, we cannot enter these UN paths. When we do, it fails with the error "Network Path Not Found":

\\mydomain
\\mydomain.com

If we don't specify a folder under "\mydomain," the system fails  ...

I have installed the Chocolatey Java package choco install jre8 -y which installs both the 32-bit and 64-bit packages.

When I type java.exe on the console, I see that it is the 32-bit version and that it is located at C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe. When I go to that PATH location, it seems to be a soft or hard link, and it contains java.exe, javaw.exe, and javaws.exe

I am wondering is there is another solution than iptables to redirect outgoing traffic on a port that is already used to another one, on the same machine locally.

Thanks.

mkfs.xfs has two following options among others:

-b block_size_options
      This  option  specifies  the  fundamental  block  size  of  the  filesystem.    The   valid
      block_size_options  are:  log=value  or size=value and only one can be supplied.  The block
      size is specified either as a base two logarithm value with log=, or in bytes  with  size=.
      The  default  value is 4096 bytes (4  ...

My goal: disable/drop traffic to just home IP without domain in request.

Issue: Currently, if I (or anyone else) accesses my home IP via HTTP or HTTPS, it will show the first subdomain that is configured as a virtual host. I have tried multiple different configurations to drop or show my home IP "domain" as 410 Gone or even 444 drop connection, without success.

Here is the default server block in /e ...

I'm trying to work with unixODBC and a SAP Hana database, and created a simple C program to INSERT/SELECT into the database. My problem is, if I use for example

SQLExecDirect(stmt, "SELECT * FROM NEWTABLE;", SQL_NTS);
while ((ret = SQLFetch(stmt)) == SQL_SUCCESS) {
       ...
}

It works perfectly, but if I do an INSERT statement like:

SQLExecDirect(stmt, "INSERT INTO NEWTABLE VALUES ('test');", S ...

We're really looking forward to your advice on this topic.

This issue we face in an application, using Apache Tomcat release 9.0.31. The HTTP/1.1 500 error message, we never saw it with Apache Tomcat release 9.0.22 (which we had before).

From a desktop application (installed on every users’ laptop) called Design Studio, robots need to be uploaded to the web application (called Management Console). ...

I have a SRX300 running 21.2R3-S2.9 and syslog got message:juniper.srx300 RT_UTM:

AV_FILE_NOT_SCANNED_PASSED_MT: AntiVirus: SESSION_ID=47244670993 source-zone "TRUST" destination-zone "UNTRUST"
12.18.22.19:55609->18.179.25.0:80 profile-name="av_profile"
file="download.windowsupdate.com/c/msdownload/update/others/2022/11/37862409_6e2d04bbd46824c494928b406f7f2715fb99c220.cab"
action="PASSED" reaso ...

I have an application composed of micro modules distributed on multiple hosts.

inventory:

[moduleA_hostgroup]
host1
host2
[moduleB_hostgroup]
host2
host3
[moduleC_hostgroup]
host1
host4

Each module has specific location and configuration files. I'd like to fetch the config for all installed modules

vars:
modules:
  moduleA:
    path: "/opt/moduleA"
    files_to_fetch: ['*.conf']
  moduleB:
    path: "/ ...

This is a generalised version of what I posted on stack StackOverflow.

I have a number of storage accounts in Azure - the "new" ARM deployment model. I also have a number of old classic resources (VMs and Cloud Services) - using "old" ASM model. There are reasons why these cannot be migrated to ARM at this time - the question is not about migration.

I am trying to configure the storage accounts to allo ...

I just moved my instance from Frankfurt to N. Virginia, and now I'm getting really slow loading times for my website. The DOM loads quickly, but then I wait over 40 seconds for a 500kb image. This shouldn't be happening, am I missing a config somewhere?

My company is using Google Workspace configured with one primary domain foo.com, and another domain alias foo.ai. All mail is sent and received from foo.com and foo.ai exists for backwards compatibility only.

Recently we've encountered a small number of cases where an external Gmail user never receives a Calendar invite we send them. To clarify, this is not an issue with invite responses, but with the in ...

I have a Kubernetes cluster running with containerd on the nodes. I don't have the ability to install things on the nodes. My task now is to deploy a pod which can use docker commands inside, for examle a docker pull or push. So docker should work in the container even though it is not installed on the host system. So I can't just mount the docker socket because it doesn't exist on the host. Is there a  ...

What is the maximum number of VirtualHosts a single lighttpd instance can handle?

I'd like to confirm some numbers before deploying lighttpd for production.

Here's a similar question for the old apache httpd.

Thanks.

I want to use openssl pkcs12 to convert lots of pem files into pfx files - but is it possible to pass in a password via the command line?

I have quite a lot of pem files:

So I want to enter a password into Powershell once that is then used to pass in via the command line -> rather than have to keep manually typing it in twice for each pem.

Is this even possible?

I have tried -pass pass: which does not ...

I originally ran into this problem trying to redeploy a machine using MAAS, but I can reproduce it just with the already-installed OS and GRUB, with Ubuntu 20.04. The machine is set up for UEFI boot.

To reproduce (but see below):

1. Boot the machine and get the GRUB menu.
2. Press 'c' to get a command line, run net_dhcp efinet1 (or just net_dhcp; efinet1 is the primary network interface for that machine) ...

Our VM is no longer resolving since we did a reset. Reserved IP address is no longer assigned, we can not find a way to re-assign.

Anyone know how to do this?

Thanks

Pablo

I've a service on my linux server that I need start, however when starting the service i get the follwing error code after running systemctl status [SERVICE]

Error:

$ systemctl status [SERVICE]
BUG in libdispatch 0xfffffffffffff
BUG in libdispatch 0xa14

I'm fairly new to linux and I wonder where I should start, I have not found anything in the /var/log/messages which reflects the overall OS.

One of my qu ...

Can someone point me in the right direction on how to configure the IP address of cloned VMs with UTM?

When I create a new UTM VM, the IP address is different. This is fine.

When I clone an exisitng UTM VM, the IP is the same as the clone.

My question is, where do I start with configuring the clone to have it's own IP?

Note - I am using a shared network. And I am using ubuntu.

I have the following terminal command:

find /home/not_this/ \! -user not_this_user_account

The goal is to find all the files and directories not owned by the specified user and this version of the find command works great.

However I'd really like to return the owner of the returned files and directories as well.

So:

/home/not_this/test1.html
/home/not_this/test2.html

Would return this:

someone_els ...

Very new to SSL installation in Tomcat 8.5. OS: CentOS 7

I have SSL certificates from GoDaddy and have the private key used to generate the certificates. This private key was shared in a .txt file and I copied it into a .key file to distinguish it from other files. It is stored in a file sitename.com.key

In a bundle from GoDaddy downloaded for Tomcat following files are present

1. a-hash-code.crt
2. a-h ...

I've created an EC2 instance with some 100 GB initial size, thereafter I realized this much size is not required, I've to decrease the size now.

What I tried?

• Create a new volume with the desired size.
• Attach new volume to ec2 instance.
• Setup New volume (grub-install, EFI partition, etc)
• Copy data from old_volume to new_volume.
• Detach old volume.

But this process is a little bit complex as this can't  ...

I am using the new Azure Active Directory ("AAD") Login mechanism to log in to Azure Ubuntu Linux VMs in my Azure environment, and I'd like to change the default shell for my user. The thing you'd normally do with chsh -s. chsh is not working for me, and I'm wondering what I'm supposed to do instead in this case. Does anybody know how to change the default shell for an AAD-authentication account on a ...