Latest Server related questions

Score: -1
Simon avatar
Does blocking all output connections protect us from exploits on our server?
ua flag

Let's say a hacker found a way to execute a vulnerability in my container and he can execute any code there (for example he has upload a bash file with HTTP protocoll). Let's make it more dangerous: his bash file is executed with root permissions.

I'm wondering how can I prevent him to do any action there. Does blocking all output connections in a firewall outside of the container (on kubernates  ...

Score: 0
David Greenberg avatar
Not able to receive email on postfix
dj flag

So I am trying to set up a catchall forwarder using postfix on a pi using my own domain name and a ddns service.

I followed this guide https://notepad.patheticcockroach.com/2762/how-to-simply-create-a-catchall-e-mail-and-forward-all-e-mails-to-another-address-in-postfix/

The https://pingability.com/ site it suggests using returns SocketTimeoutException error

Through a VPN and telnet I know that the ...

Score: 0
Adam P. avatar
Dnsmasq forward refused to other Dnsmasq in Docker container
in flag

Given two DNS servers, one runs on localhost (127.0.0.1:53) and the other in a Docker container (172.18.0.3:5300).

When I tried to check domain resolve through at localhost DNS with dig or nslookup commands the request is refused:

adam@adam-desktop:~$ nslookup whoami.docker
Server:     127.0.0.1
Address:    127.0.0.1#53

** server can't find whoami.docker: REFUSED

and checked with dig but the result i ...

Score: 0
Choolo avatar
How to Include Elastic IP on EC2 on my VPN
ph flag

I am able to ping and access SSH on my EC2 using Private IPs.

However I want to access the SSH using the Public IP ( elastic IP ). Is that possible?

note: my VPN step up and EC2 is under 1 VPC

I have already added the Public IP to VPN Authorization and Security Group

Score: 0
dc09 avatar
Why is getent appending domain name to all .org lookups?
ru flag

On running the following command in CentOS 7, getent is appending my domain name to .org domains only:

[root@panel ~]# getent hosts ballotpedia.org
2606:4700:3031::6815:241e ballotpedia.org.mydomain.com
2606:4700:3032::ac43:b854 ballotpedia.org.mydomain.com

This doesn't happen when I lookup any other domain that doesn't contain .org extension as seen below:

[root@panel ~]# getent hosts google.com
2404:6 ...
Score: -1
Matt avatar
Mounting a docker volume fails with the `no such device` error
tm flag

I have set up Docker in a multi-user environment with the following daemon settings

{
  "userns-remap": "default",
  "data-root": "/data/docker"
}

where /dev/sda1/ is mapped to /data as follows:

/dev/sda1 /data ext4 rw,relatime,quota,usrquota,grpquota,prjquota 0 0

I added the quota options to enable setting up constraints on Docker volumes, and defined a new volume with the following command:

docker  ...
Score: 1
Nginx proxy get each slash part into a variable
in flag

how can I get each slash part of the url into a variable to write the proxy URL?

Example:

https://example.com/part1/part2 or https://example.com/sub/8080

Then

proxy_pass http://$part1.example.com:$part2;

Score: 0
jdege avatar
Unable to renew Let's Encrypt SSL certificate in Nginx Proxy Manager
at flag

I've set up a few sites in Docker, on Linode.

I started by following these instructions:

Connect Your Docker Containers to Domain Names For Easy Access using Portainer on Linode

The steps I followed are:

  1. Created a Linode
  2. Installed NGINX Proxy Manager in a Docker container
  3. Add my domain in https://cloud.linode.com/domains, point it to my Linode
  4. Redirect my domain's domain server to Linode on my dom ...
Score: 0
ArekBulski avatar
SSHFS performance tanks, why?
mq flag

I have two Ubuntu 22.10 computers connected one to another via SSHFS. When I copy small files there is no problem but... once I start copying several gigabytes of data at a time, the performance sinks to zero for more than half the time. See screenshot.

system monitor stats

I do not copy thousands of files, rather a few files at a time but those go into several gigabytes at a time. Gigabit ethernet adapters, switch, and ca ...

Score: 2
aep avatar
highly available storage over infiniband: what other than mdraid?
ng flag
aep

is mdadm over infiniband a bad idea? what is the real trick to get reasonable performing storage to survive a single machine failure?

We have been running ceph for a few years now and its great for easy (ish) redundancy, but its performance is eye watering. NVMEs easily get to 3GB/s, while our ceph is doing 100MB/s over 50Gbs network while consuming 64 core CPUs. I just don't think i made the righ ...

Score: 0
Gregoire avatar
How to setup 301 redirections in GCP load balancer?
lk flag

I've setup a static website on GCP using this tutorial. So I have a bucket and a load balancer.

I'm trying to setup URL redirections in the load balancer to avoid BC breaks on old URLs. I want an user arriving to https://example.org/foo to be redirected to https://example.org/bar. I have a dozen redirections like this to setup.

Is there a way to configure that in the load balancer? Or anywhere else?

Score: 0
user3731591 avatar
Nginx Downloads Slow From Browser - CURL/WGET Are Fine
es flag

I'm trying to serve large files (50-800mb) from a VPS using Nginx to host map files for a game server. Oddly, when downloading map files in game or in a browser I'm hitting only ~15mbps. When downloading via CURL or WGET on a separate machine (same network) I'm hitting 60mbps (my maximum). I have tried a variety of settings (sendfile on, max_chunk_size, directio, etc) without any change in behavior betw ...

Score: 0
Johnny Bravo avatar
502 Bad Gateway when using NginX proxy_pass for subdomain on different LAN server
my flag

In a nutshell, I want to host a second domain (sub.domain.com) on a different server, on the same network (192.168.1.240).

I understand I have to make use of the proxy_pass, so I have this configuration on the first server (/etc/nginx/sites-available/sub.domain.com):

server {
    server_name sub.domain.com;
    location / {
        proxy_pass https://192.168.1.240;
        proxy_set_header Host $host; ...
Score: 0
Do I need to install docker engine on proxmox's LXC to run a portainer agent?
cn flag

Currently I am running Proxmox and have installed the docker-engine and Portainer on the main Proxmox node. I would like to add more environments, including an LXC which I downloaded from a template that came from Proxmox.

My question is, can I install the portainer agent on this LXC without installing the docker engine on it first? installing a docker engine on every LXC to manage it through por ...

Score: 1
Mévatlavé Kraspek avatar
404, 50x error handling HTML pages in nginx is not detected
cn flag

nginx version: nginx/1.18.0

This is my 'nginx' conf default 'vhost':

cat /etc/nginx/sites-enabled/000-default
server {
    listen 80;
    listen [::]:80;

    server_name example.org;
    return 301 https://$server_name$request_uri;
}

# HTTPS
server {
    listen 443 ssl http2;
    listen [::]:443 ssl http2;

    index index.html;

    server_name example.org www.example.org;
    root /home/www/example.o ...
Score: 0
Laenka-Oss avatar
Linux randomly & uncontrollably changes tabs infinitely
lk flag

For sometimes now my Ubuntu Linux machine with OS Ubuntu 18.04 suddenly, randomly & uncontrollably changes tabs. Imagine when you press the TAB key on your computer without releasing, the blinking pointer on the computer will infinitely keep changing tabs. That is what I experience with my linux.

What I usually attempt as remedy it is to force stop the computer & this is not always nice. I a ...

Score: 0
hajime avatar
Compute engine stopped by itself
cr flag

I did not perform any operations and did not set any auto-stop, but the compute engine stopped on its own.

The logs for the day, which can be viewed from GCP, are as follows.

----------Log below----------
{
  "insertId": "0",
  "jsonPayload": {
    "bootCounter": "4",
    "shutdownEvent": {},
    "@type": "type.googleapis.com/cloud_integrity.IntegrityEvent"
  },
  "resource": {
    "type": "gce_instan ...
Score: 0
paskaloverpo avatar
Configure DHCPv6 on a Layer 3 Switch
us flag

I am training under Packet Tracer and I would like to be able to assign IPv6 addresses to my VLANs using a Layer 3 Switch as a DHCPv6 server (Between Layer 3 Switch and PCs there is a normal Switch). I tried Stateless and Statefull but it seems that my subnets are not taken into account. I specify that the IPv6 address pool provided is 2001:0:ABCD::/64.

Here is a part of my Layer 3 Switch code:

ipv6 u ...
Score: 1
Ivan Carlos avatar
Unable to create a script that list shared link for SharePoint that I am not owner or member
mx flag

I am looking for a script that lists all shared links for one (or all) SharePoint sites, got one that you can specify the site, put your credentials and it generates a CSV report. Works fine, but I need to give myself permissions on this site to get it.

Please, how can I edit this script to list shared links of one or all sites as admin?

I already tried to connect using Connect-PnPOnline and reclari ...

Score: 0
Alvin Kam avatar
Bird imported from BGP doesn't have proper gateways
gp flag

I'm having troubles in BIRD configuration, Let me share some background. There are 2 hosts, host A is 192.168.0.188, and host B is 192.168.0.224. And created the new IP address on the loopback interface:

  1. host A(192.168.0.188)
  • lo.0 2.2.2.1/32
  1. host B(192.168.0.224)
  • lo.0 3.3.3.1/32

I want to build routes between these 2 hosts. Let the host A be able to connect loopback IP address(3.3.3.1) on host B. ...

Score: 0
oim avatar
nginx rewrite both .php and .html
st flag
oim

Have 2 rules for working files with (html, php) prefix and without.

But working only first rule. If first php, second with html prefix show not found.

if (!-e $request_filename){
    rewrite ^/([^\.]+)$ /$1.php break;
}

if (!-e $request_filename){
    rewrite ^/([^\.]+)$ /$1.html break;
}

If I swap them working with html. How merge to working both. Thanks

Score: 0
Arman Nayyeri avatar
Redirecting OpenVPN client traffic through a SOCKS proxy using Redsocks and iptables on Ubuntu
kn flag

I am trying to redirect all traffic from an OpenVPN tunnel to a SOCKS proxy using Redsocks and iptables on my Ubuntu server. While locally generated traffic is being routed through Redsocks without any problem, I am having difficulties with routing the VPN client's traffic through the Redsocks proxy. The VPN client either loses internet connectivity or does not have its traffic routed through the Redsoc ...

Score: 0
Sertan Pekel avatar
MPLS Implementation OpenFlow Iperf Testing
ye flag

I have a mininet topology that consists of two hosts and two ovs switches. h1-eth0 is connected to s1-eth1 and h2-eth0 is connected to s2-eth2 and s1-eth2 and s2-eth1 is also connected. h1 is for client and h2 is for server. In flows, ARP packets are flooded. In s1, outgoing h1 packets are pushed with mpls label (i.e.55), and in s2, mpls labels popped and directed to h2. h2 outgoing packets does not a m ...

Score: 0
Johnczek avatar
How to properly set up private key for gitlab runner
ng flag

I would like to make this scenario possible (some problem unrelated aspects were simplified for better understanding)

Imagine we have a simple gitlab repository with only two files.

  • index.html - stores static web page
  • gitlab-ci.yml - stores pipelines for this repository

And we have Debian 11 server (with root access on it so I can do anything I want)

The mail goal is to create a gitlab pipeline which  ...

Score: 0
Esam Olwan avatar
Why is request argument not returned in response?
ye flag

I'm trying to match a location url to this format /v1/images/{path1}/fetch?imageUrl={imageUrl} and I managed to do so with this snippet of code

location ~ ^/v1/images/(?<path1>[^/]+)/fetch {
    if ($args ~* "imageUrl=.*") {
      set $path1 $arg_path1;
      set_sha1 $variable $arg_imageUrl;
      set $imageUrl "https://testing.com/test/images/$variable/$path1.$image_ext";
      return 200 $imageUr ...
Score: 0
Eastman avatar
How to route privately traffic from VPN into EKS cluster in AWS?
cn flag

There's an OpenVPN server running in a pfSense VM in eu-west-1 region and there's a EKS cluster in eu-central-1 region.

I'm trying to figure out how to route traffic via AWS private network and not via public network from the OpenVPN into the EKS cluster. I have create multiple VPC peering network before, but I'm not sure what is the API server endpoint in this case.

The API server endpoint has p ...

Score: 0
Ujjwal Gupta avatar
fuser not listing the process even netstat and lsof list
fm flag
hostserver:~# lsof | grep *:6343
sflowtool 979324                              root    3u     IPv6         1443815323       0t0        UDP *:6343 
hostserver:~# netstat -ntlup | grep 6343
udp6       0      0 :::6343                 :::*                                979324/sflowtool
hostserver:~# fuser 6343/udp
Cannot open a network socket.
hostserver:~# fuser -n udp 6343
Cannot open a network socket.
ho ...
Score: 0
Are files in a public GCS bucket discoverable?
cn flag

I have a bucket in GCS that I have made publicly available. Are objects stored in this bucket publicly discoverable?

For example, if the bucket is called my-public-bucket and I have an object in that bucket called 38bdac44efec6c54136fbfab496d0a16.key is there any way someone can figure out that object name (short of guessing, of course)? Is the list of all the objects in that bucket publicly available? ...

Score: 0
Liu Dowson avatar
iptables port forwarding is not working
lv flag

I have a domestic server, and there are two public IPs on this server: One is domestic IP: 1.1.1.1 One is the IP of Hong Kong: 2.2.2.2

The default route of the server is to go out from the Hong Kong side of 2.2.2.2. I now have a server 3.3.3.3 in the United States as a scientific server. The port is 2080.

I want to access port 1080 of 1.1.1.1 and redirect the traffic to 3.3.3.3:2080 in the United St ...

Score: 0
Arunkumar Subbiah avatar
Trying to update instance properties as per the google gcp documentation but getting error while importing the yaml file
kn flag

Followed the instruction as per https://cloud.google.com/compute/docs/instances/update-instance-properties#updatable-properties

ERROR: (gcloud.compute.instances.update-from-file) 'VIRTIO_SCSI_MULTIQUEUE,' is not one of ['FEATURE_TYPE_UNSPECIFIED', 'GVNIC', 'MULTI_IP_SUBNET', 'SECURE_BOOT', 'SEV_CAPABLE', 'UEFI_COMPATIBLE', 'VIRTIO_SCSI_MULTIQUEUE', 'WINDOWS']

Failed validating 'enum' in schema['prop ...

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.