Latest Server related questions

Score: 1
Bil5 avatar
Showing message to the user during a Debian unattended preseeded installation
tr flag

During the late_command step of an unattended installation, I'm running a shell script :

d-i preseed/late_command string in-target /bin/sh -c './execute-script.sh'

When the late_command step is reached, the UI (blue background, grey window) displays a "Running preseed..." message :

enter image description here

I'm wondering if there is any way to lively displaying other messages based on what the execute-script.sh is doing.

Score: 0
Can a replica to an RDS MySQL instance be setup outside RDS?
ca flag

I have a running RDS Mysql 5.7 instance that I would like to replicate to a MySQL 8 instance running on a Linux server (not on RDS).

Is this possible? I cannot find an option to do this from the dashboard.

Score: -2
YKB XCV avatar
Windows Server 2019 not updating after restoring recent snapshot
fr flag

I'm facing an issue regarding the Windows Server 2019 update.

I have recently restored the Windows Server with a recent snapshot. Every time I install a Windows Update it's undoing changes, this is the error code list in event viewer 0x800f0922.

Note: I'm installing updates through a WSUS server

Score: 0
toggetit avatar
Migrate instances/volumes between availability zones
pl flag

In my OpenStack setup (RDO, Victoria) there is 2 availability zones - every AZ is a separate datacenter. In every availability zone I have a storage-node with FC-backend. Part of cinder config:

AZ1:
[3par]
volume_backend_name=FC
volume_driver=cinder.volume.drivers.hpe.hpe_3par_fc.HPE3PARFCDriver
...
AZ2:
[huawei]
volume_backend_name=FC
volume_driver=cinder.volume.drivers.huawei.huawei_driver.Huawei ...
Score: 2
Elias Arellano avatar
Azure run command for Fortinet virtual machine with serial console?
cn flag

I'm trying to execute with Azure a .conf file that has some command lines that are executable into the Fortinet's serial console in a virtual machine with FortiOS v6.4.3 (Linux based system).

I use AZ CLI to execute the script into the virtual machine. the command is the following:

az vm run-command invoke --subscription "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx" --resource-group "myresourcegroup" --name  ...
Score: -1
uday avatar
How to check if a Product is installed from launch condition of msi?
ke flag

We are creating an msi, which is a sidecar/config for our main product ,an installshied exe(embedded an msi inside).

This new msi should be installed only when the main msi is already installed on the machine and also above a specific version only.

How to set that in the Launch condition of msi? If not launch conditon, any other options in Installshield/msi.

Also, this is not for silent installation or ...

Score: -2
DottorBooom avatar
Setup an Email server
ng flag

I know that the title of this post is not very indicative. But I thought the simpler it was the more people would watch.

I am trying to set up a mail server with Ubuntu 20.04. The software I am using are: Dovecot, Postfix and Fetchmail. The machine where I work is running webmin which allows me to access the server management directly from the browser. Returning to the main problem, I would like  ...

Score: 0
Hills of Eternity avatar
PowerDNS: spoof NXDOMAIN response from "forward-zones" server and forward it
cn flag

I faced an issue trying to setup PowerDNS for my local network. I have a domain example.com managed by Cloudflare.

For instance I have A record on Cloudflare like server.example.com pointing to 1.1.1.1 but my local clients should resolve server.example.com to 10.10.10.1 and it's not a problem by using forward-zones="example.com=127.0.0.1:54"; in recursor config, but I have another record like mail.example ...

Score: 0
Semjon Mössinger avatar
Remote Desktop CAL - Why do I get 1000 licenses when I only bought 2 CALs?
vn flag

We bought 2 CALs from Microsoft and I installed them (probably) successfully (see screenshot below).

Screenshot Licensing Manager

Most things work as expected:

  1. I installed the 2 CALs as "per user" which shows up in the Licensing Manager
  2. For test purposes I connected with 5 different users --> 5 Licenses were issued

What I don't understand/ask myself:

  1. I installed 2 CALs but got 1000 licenses. I had expected to only get 2  ...
Score: 4
Hamish Moffatt avatar
SSH public key authentication with google authenticator still asks for password
de flag

I'm trying to enable 2FA with ssh using libpam-google-authenticator. Not all users need authenticator enabled. Everybody uses ssh public keys, and nobody has a password. I'm running Debian buster, and I've also tried libpam-google-authenticator from bullseye.

My problem is that no matter what I put in the PAM config, users without authenticator enabled are never logged straight in, but always asked for  ...

Score: 0
8bit avatar
Create own filter for fail2ban fails
kr flag

I'm playing around with fail2ban in kubernetes. For that I created a pod that creates fake log messages: 2021-08-04 18:33:13 Authentication failed 15.15.15.15 I created a custom filter, to test if fail2ban is working. I first tried the fail2ban-regex util with a file containing 10 lines of these log messages and got this output:

Running tests
=============

Use   failregex filter file : test, basedir: ...
Score: 2
mahen3d avatar
SELinux - blocks postfix emails sending out from the Web Application
cn flag

My System environment, is Centos-7.9, Apache2.4, Php-fpm, PHP-7.4

I have postfix setup to send emails from the website, which is working in stand-alone test emails and when I turn the SELinux off.

However, if SELinux is enabled it will block sending the emails out from the server with below error in the /var/log/maillog

 postfix/sendmail[10883]: fatal: execv /usr/libexec/postfix/smtpd: Permission  ...
Score: 0
anVzdGFub3RoZXJodW1hbg avatar
Mount S3FS mount to EFS additionally and share to other Kubernetes pod
es flag

What I need to achieve that is almost done without the EFS/S3FS share:

  1. SFTP pod used by some microservices that process content and deliver back processed content have sftp users that go to tenant specific paths (e.g. tenant-1, tenant-2) through SFTP, these chrooted paths are mounted to different EFS points through EFS provisioner.

  2. Tenant pod - each mounting /var/s3fs <-> S3FS S3 bucket. A ...

Score: 0
Can a VPN service be used like a reverse VPN allowing inbound traffic for serving a website?
sy flag

I’ve done quite a bit of searching, and it seems this can be done, but the answers I seem to find are either vague or responses are something along the lines of “but why would you want to do that?”

I’m hoping someone can point me in the right direction to accomplish the following:

CURRENT SETUP

Visitor - > Cloudflare Proxy -> Web Server

Cloudflare DNS proxy sits in front of my web ser ...

Score: 0
Whip avatar
Fail2ban exited and didn't start back up
cn flag

Today I faced a what seemed like a DDOS attack. My server provider warned me about excessive CPU usage (400% for over 6 hours) and I couldn't access any website, could not login via SSH either. Lish console reported an error that went something like 'php-fpm out of memory'.

Only thing I could do was a hard reboot. After server was up again, I looked at fail2ban's status and it shows 'active(exite ...

Score: -1
Rented Dreams avatar
Trying to resurrect 10 year old software - can't activate Windows Server 2008 R2 and problems with Activate by Phone
je flag

I wrote a workshop database application for a client in Romania that had a Land Rover dealership a long long time ago in Access 2.0. Haven't heard from him in years, then last week he calls. He is still using the program ! and want me to "update" it.

Thank goodness for old MSDN library CD folders in back of file cabinets. So, I have installed an old copy of Win Server 2008 R2 Enterprise and load ...

Score: 0
Port numbers reused after Reset
mx flag

Recently in our production Kubernetes cluster, we saw a lot of outbound reset connection, after some troubleshooting, we have below network flow captured.

Network Capture

we are really confused by this flow. in this flow.

  1. from localport 33890, a new connection is created and sync packet is send out
  2. for whatever reason, remote reset this connection.

then here comes the confusing part, all sync packs s ...

Score: 0
Empty Email when using MS365 as a mail relay from a Python application
co flag

We've got a very weird issue going on here.

Take this example email (raw form, sanitized):

To: TestList@example.com
From: Thomas Ward via TestList <TestList@example.com>
Subject: Test Message
Date: Wed, 4 Aug 2021 19:44:49 -0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
 boundary="------------EFA1B8DAB3C4E625DD16F705"
Content-Language: en-US
Sender: TestList@example.com
Reply-To: Th ...
Score: -1
Maxim Khokhryakov avatar
Why does this routing setup not working
cn flag

I have two interfaces on server machine. The output of ip route is next:

default via 192.168.100.1 dev enp1s0 proto static metric 100
10.8.0.0/24 dev tap0 proto kernel scope link src 10.8.0.1
192.168.100.0/24 dev enp1s0 proto kernel scope link src 192.168.100.201 metric 100

and ip address is next (MACs are hidden):

...
1: enp1s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state U ...
Score: 0
send google calendar notifications with my domain address by my postfix server
us flag

I have a mail server for my domain with postfix and dovecot: mydom.com I want to send google calendar notifications with my own domain: user@mydom.com I explored two alternatives unsuccessfully

  1. I created an alternative address on my gmail user I could send mails with my own address (user@mydom.com) but my calendar notifications have always as sender my gmail address although alternate address i ...

Score: 0
synth45 avatar
Jenkins linux master <=> windows build agent/slave WMI issue
cn flag

I'm trying to set up a build agent on a windows host using this plugin in Jenkins: https://plugins.jenkins.io/windows-slaves/

I've configured the windows build agent/node on the Jenkins master, and have set up the correct service account on the windows side and provided password, but am getting an error related to Netbios and CIFS, it seems:

Here is the error message:

[2021-08-04 10:36:28] [windows-agents ...
Score: 0
How to configure Windows>Vmware>Docker>nginx so I can access http
cn flag

On my PC I have this stack:

  • Microsoft Windows [Version 10.0.19042.1110]
  • VmWare Player 16.1.2 build-17966106 installed in windows
  • CentOS Stream 8 installed in a VM
  • Docker 20.10.7 installed on CentOS
  • nginx latest launched via docker run -p 8000:80 nginx

How can I access nginx from Windows chrome browser?

Within the VM it works - I can browse to http://localhost:8000 and see the nginx landing page, but s ...

Score: 0
Grafana anonymous user unable to modify default dashboard
pt flag

...or, when does Admin not mean Admin?

I have Grafana configured to permit anonymous access:

GF_AUTH_ANONYMOUS_ENABLED=true
GF_AUTH_ANONYMOUS_ORG_NAME=Main Org.
GF_AUTH_ANONYMOUS_ORG_ROLE=Admin

For the most part this works great, but with the anonymous user I seem to be unable to do certain things, such as:

  • Modify the default bashboard (e.g., I can't clink the "Remove this panel" link in the "ba ...
Score: 0
richardwhitney avatar
How do I set the anomaly score in crs-setup.conf?
cn flag

I am using v3.0.0 of CRS with ModSecurity set to DetectionOnly mode and the nginx connector. I want to set the anomaly score to 100 or so to fine-tune the settings, but I can't see where or how to do that. Looking in crs-setup.conf

nginx 1.18.0 if that helps

Score: 0
etcd cluster with DNS Discovery - client: etcd cluster is unavailable or misconfigured; Error: unexpected status code 404; dig SRV returns blank
cn flag

I am configuring etcd to bootstrap using DNS discovery but it says that the server is misconfigured and it appears to be querying the wrong port, and the SRV records don't seem right.

Please could you review the below and see my questions at the bottom of this post?


Specifications

root domain: etcd.ksone

server SRV record:

_etcd-server-ssl._tcp.etcd.ksone    SRV Simple  -   
0 0 2380 etcd2.ksone
0 0 2380 ...
Score: 0
iraqiboy90 avatar
Incoming DKIM verfication check working but not rejecting
de flag

I have SPF, DMARC and DKIM configured for my mail server (postfix) on a CentOS 7 OS. Outgoing mail is getting signed as normal. All email check sites says my stuff are secured and working great but there is a site I use that purposely sends various types of spoofed emails to test all parts of incoming filters and my server seems to fail a specific DKIM part.

Site used: https://emailspooftest.com Mail 5  ...

Score: 1
ePezhman avatar
While creating instances, Cloud-init stops before creating the SSH keys
gb flag

We have OpenStack v2.3.1, Mitaka with KVM installed on our cluster. While creating instances, the VMs are created successfully every time. However, Cloud-init randomly stops before creating SSH keys only on a few of the instances (this is not dependent on the node running the VM). Therefore, we cannot SSH to the created VM. This strangely does not leave any errors behind in the logs. Any idea wha ...

Score: 0
alexjohnson avatar
Automating Adding Projects to the Metric Scope
pl flag

I have an "Alerts" project in Google Cloud and want it to monitor the metrics of several other projects. On the Cloud Console, I can easily add these projects to the metric scope of my Alerts project. However, I would like to automate this process in Terraform. Does anyone know how?

Score: 1
Laney avatar
CRL distribution point with multiple names
se flag

I'd like to create a certificate with CRL discribution point, which contains multiple URLs (poiting to the same CRL, according to RFC 5280):

When OpenSSL parses such certificate, it shows something like this:

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://addr1
                  URI:http://addr2
                  ...

How to create such certificate by ...

Score: 1
Continuous SPAM from certain IP/s hosting provider, how to report them if not responding at abuse@company.mail
cn flag

last maybe 4 weeks is coming SPAM e-mails from various domains. In common is that when i paste the source code of the e-mail to

https://www.spamcop.net

is detected this provider and their mailbox: abuse@des.capital i have reported this activity to des capital numerous times via spamcop and also manually to info@des...(got no reply) no effect. I would block the sender, but it is from various domains  ...

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.