Latest Server related questions

Score: 0
Linh Nguyen avatar
nginx config reverse proxy lose basepath on redirect without slash
in flag

i have the following nginx configs to redirect the url path to it's perspective services

server {
    listen 80;
    server_name abc.com;
    location = favicon.ico { access_log off; log_not_found off }
    
    proxy_http_version 1.1;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection 'upgrade';
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
 ...
Score: 0
How can I setup 2FA on non-interactive SSH connections?
my flag

I would like to add a level of security for logins to an SSH server (Ubuntu), using two factor authentication. One particularity on how the users connect to the SSH server is that sometimes they do it in a non-interactive way: the SSH server is configured in the users' MySQL client to be used as a bastion/proxy to reach a database. As a consequence I'm looking for 2FA setups that don't require the user  ...

Score: 0
Gianluca avatar
Oracle Linux 8.5 upgrade with local mirror
cn flag

I have an Oracle Linux 8.5 system with a local packages mirror to upgrade some internal system. Everything works fine, except for the "dnf/yum upgrade" command; there are problems with upgrading some perl module:

Problem 1: package perl-TermReadKey-2.37-7.el8.x86_64 requires libperl.so.5.26()(64bit), but none of the providers can be installed
cannot install both perl-libs-4:5.30.1-452.module+el8.4. ...
Score: 0
Stuperfied avatar
HP DL360 Gen6 Fan failure with new fans
cn flag

The server reported 2 fans failed so I bought a whole new set and replaced the two that were failed. The server then immediately reported all fans failed so I tried replacing the other two and then re-installing the old ones to no avail. I have checked and can hear all fans running at full speed.

Some other posts suggest disabling the onboard fan check however I do not get a bios prompt. Is there ...

Score: 0
how to read ssh_host_rsa_key
es flag

I have a vanilla install of ubuntu 22.04 with openssh-server installed. /etc/ssh/ssh_host_rsa_key is automatically created. I can "cat" the file to stdout:

b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAABlwAAAAdzc2gtcn
NhAAAAAwEAAQAAAYEAsyIRkQsSQqxvrv67Xo9UdbdN+c81KfRS2WzDf8zna1AiYNP1riT+

however it appears I cannot read this file using tools eg:

# openssl rsa -in /etc/ssh/ssh_host_rsa_k ...
Score: 0
RequireAll in Apache 2.4.41 (Ubuntu) not working
us flag

The directive below, to limit access to a site to a single IP address, has been working happily for months but I suspect a recent update to Apache may have changed the behavior.

Instead of limiting the access to a single IP address it completely blocks all access to the site.

Has anyone had a similar experience and knows of a work around ?

<Location "/testqc">
   <RequireAll>
      Require ip ...
Score: 0
Matthew Wozniak avatar
How do I allow git HTTPS cloning without a password but require one for pushing?
cn flag

I am using nginx, and my current server configuration is as follows:

server {
    listen 443 ssl;
    listen [::]:443 ssl;

    server_name  git.wozzes.me;

    ssl_certificate           /etc/letsencrypt/live/wozzes.me/fullchain.pem;
    ssl_certificate_key       /etc/letsencrypt/live/wozzes.me/privkey.pem;
    ssl_protocols             TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
    ssl_prefer_server_ciphers o ...
Score: 0
wildcard url in ingress-nginx kubernetes Ingress to redirect to path based url doesn't seem to pass regex value
ke flag

Trying to setup a wildcard url in ingress-nginx kubernetes Ingress to redirect to path based url it doesn't seem to pass the wildcard regex value.

The url would be something like "https://test.dev.example1.com/admin" and it should redirect to https://example2.com/folder/test

The result I am getting is redirect to https://example2.com/folder/

It appears I am not getting the wildcard value of "test"  ...

Score: 1
Why are Nix programs not able to resolve mDNS names when native programs are?
ng flag

My native programs (on Fedora) are able to resolve mDNS / Avahi / zeroconf names, like so:

$ ping felonyspork.local -c 1  
PING felonyspork.local (192.168.88.169) 56(84) bytes of data.
64 bytes from 192.168.88.169 (192.168.88.169): icmp_seq=1 ttl=64 time=1.73 ms

--- felonyspork.local ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 1.734/1.734/ ...
Score: 1
How do I configure postfix to reject all email that doesn't have a specific 'from' field?
in flag

I have an SMTP relay that relays to our email forwarding server but currently it's accepting mail from all sorts of nasty spammers and our email forwarding host have (rightly) suspended the forwarding until we can lock things down a bit more. I'd therefore like to lock down this relay so that only emails with a specific 'from' value are accepted as a good start.

As per the Q-A in Rejecting unlisted se ...

Score: 0
How can push AzureAD identities to on prem ActiveDirectory
in flag

Situation is that we have multiple sites (AWS VPCs), each with their own self-managed ADDS domains with no network connectivity between them (by design). We need to provision each sites ADDS users automatically from AzureAD identities including password writeback (passwords should only be changed from Azure).

A possible solution (I believe) is to use a cron (scheduled task) to query the Azure gra ...

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.