Latest Server related questions

Score: 0
YusufD avatar
Is it possible to alias a non aws service with AWS Route 53
cn flag

We have a domain wich is managed on AWS 53. Is it possible to create an alias record in AWS route 53 to refer to a public IP address (for instance AZURE VM public IP). So that I could use this example "azvm.domain.com" to reference to the Azure VM .

Score: 1
Service account does not have storage.buckets.get access to the Google Cloud Storage bucket
cn flag

I am running Ansible with a service the following configuration which should create a storage bucket on Google Cloud.

- name: "Create {{ environ.name }}-cluster-backups"
  google.cloud.gcp_storage_bucket:
    name: "zeipt-io-{{ environ.name }}-cluster-backups"
    location: "{{ google_cloud.region }}"
    storage_class: "NEARLINE"
    lifecycle:
      rule:
        - condition:
            age_days ...
Score: 0
Redirect traffic from an interface to a VPN tun interface with iptables
ge flag

I'm trying to achieve something easy but apparently I'm missing something.

In my box I have a VPN client running which created a tun0 interface. The box has external traffic coming from the eth0.

I would like to forward the traffic from eth0 to tun0. I run the following commands:

iptables -A FORWARD -i eth0 -o tun0 -s 192.168.100.0/28 -j ACCEPT
iptables -A FORWARD -i tun0 -o eth0 -m state --state ESTAB ...
Score: 0
Ivan Santana avatar
How to get PID of an EXE file from Windows command line
ng flag

How do I get the PID of an EXE file from Windows command line?

I want to query the PID from the command line, rather than manually search in Task Manager.

I've found something similar in nix

Score: 2
Jungroy avatar
I'm not sure if basic auth on my server is being secured
cn flag

This may be a really dumb question but I had to make sure that i'm fine with this.

I setup an HTTPS server with basic auth, but the browser informs me that the connection is not secured when i connect to the auth page, and tells me that the connection is secured after i sign in. I want to know whether this is safe, and if not, how can i make it secured?

Config(NGINX):

server {
    listen 80;
    server_ ...
Score: 1
Gooze avatar
Nextcloud can't connect to Collabora
cn flag

i've setup a docker host, and wanted to setup nextcloud with collabora-office. But it simply does not find the collabora host. my compose file is the following:

version: '3.2'

services:
  db:
    image: mariadb:10.5
    restart: always
    volumes:
      - db:/var/lib/mysql
    environment:
      - MYSQL_DATABASE=xxx-nextcloud
      - MYSQL_USER=xxxnc
      - MYSQL_PASSWORD=evilcorp
      - MARIAD ...
Score: 1
develop1 avatar
Raid controller can't erase RAID config
gt flag

I bought a Dell PowerEdge T320 that came with 2 1TB HDD and I just ordered 6 more used 3TB HDD. When setting up an array I'm able to see the original 2 HDD that came with the server but the 6 used drives are showing up as "foreign". I'm trying to erase the RAID configuration from those HDD's but I'm getting the following message

One or more of your disks were secured using a different controller. This c ...

Score: 0
JavaJoeUK avatar
Centos 7: veth interface starting at boot how do i find and disable it
ve flag

Hi I have a centos 7 server which after removing the program (oracle vm maybe) has left an ophaned script which is starting a veth interface at boot how do I find which one it is in /etc/sysconfig/network-scripts. I think thats the right location to be looking any any help would be great.

Thanks

Score: 0
Joe avatar
debian as gatway block port from ip
cn flag
Joe

I have a number of public ips behind a debian router connected to vms. I want a specific ip not to be able to use port 25 outgoing.

I have tried /sbin/iptables -A OUTPUT -o ens19 -p tcp --destination-port 25 -s xxx.xxx.xxx.xxx -j DROP along with several other combinations of command but I cannot get it to work. It will block outgoing ports on the router fine but not for systems behind it.

Score: 1
someone324443 avatar
nginx subdomain wrong redirect
cn flag

I have set up a nginx server with this config:

server {
        server_name key.mydomain.fun;
        location / {
                proxy_pass      http://mydomain.fun:6969;
        }
}
server {
    listen 80;
    server_name admin.mydomain.fun;
    return 301 https://$server_name$request_uri;
}

server {
    listen 443 ssl http2;
    server_name admin.mydomain.fun;
    ....
}

The strange thing is: Whe ...

Score: 4
In AWS, can an EC2 instance be in more than one VPC at the same time?
lk flag

I think the answer is no, but I want to make sure that I'm not missing anything. Is it possible for an EC2 instance to have IP addresses in more than one VPC at the same time?

I tried creating 2 VPCs, and then two network interfaces, one in each VPC, but it seems it's not possible to attach them to the same EC2 instance because it's not possible to attach them to an instance that's not on that VP ...

Score: 0
OpenDkim install on Docker fail
in flag

I have a docker container, and I have installed postfix successfully, but I can not install OpenDKIM successfully.

I tried the command service OpenDKIM status, get this error opendkim is not running

I refered following link to install OpenDKIM https://www.linuxbabe.com/mail-server/setting-up-dkim-and-spf

*My docker Linux version as follow:

NAME="Ubuntu"
VERSION="20.04.2 LTS (Focal Fossa)"
ID=ubuntu
ID_L ...
Score: 0
SF.express avatar
vSphere PortMirror: What does "Source/Destination" mean as in "Remote Mirroring Source" and "Remote Mirroring Destination"?
us flag

The following is from vSphere's admin doc:

To begin a port mirroring session, you must specify the type of port mirroring session.

Procedure

  1. Browse to a distributed switch in the vSphere Client navigator.

  2. Click the Configure tab and expand Settings.

  3. Select the Port mirroring option and click New.

  4. Select the session type for the port mirroring session.

    Option Description
    Distributed Port Mir ...
Score: 0
JoBe avatar
Squid! FATAL: No valid signing certificate configured for HTTPS_port
ng flag

I've been struggling with Squid 4.13 on Ubuntu 20.04 for about a week now.

My latest (and hopefully last) problem is this:

FATAL: No valid signing certificate configured for HTTPS_port

and this is my line that says so:

https_port 0.0.0.0:3128 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=4MB cert=/usr/local/squid/etc/rootCA.crt key=/usr/local/squid/etc/rootCA.key option ...
Score: 0
Spratty avatar
AD account for monitoring services across servers
bq flag

We have some Windows servers that run various services and we have a situation where sometimes those services just stop. To monitor these services I have written a Windows service that uses the ServiceController to look at the suspect services and check their current status. This works fine when I configure the new service to run under an account which has local admin permissions to the servers in quest ...

Score: 0
Apache2 mod_userdir+mod_authnz_external, how to limit access to own home
de flag

I have an Apache2 setup with mod_userdir and mod_authnz_external+pwauth so that each user can access his home and can be authenticated by his local UNIX credentials.

Now I need some kind of authorization so that each user can, after being authenticated, only access his own home directory, but not those of other users.

The caveat: in my setup, a user is not necessarily the owner of his home directory, so ...

Score: 0
Debugging "upstream prematurely closed FastCGI request while reading upstream"
us flag

I am running an nginx + php-fpm setup. I recently ran into problem returning binary data to the Nginx server. Nginx show this in the error log:

2021/08/04 19:22:27 [error] 996463#996463: *1 upstream prematurely closed FastCGI request while reading upstream, client: 192.168.1.10, server: foobar.com, request: "GET /somemedia.mp4 HTTP/2.0", upstream: "fastcgi://unix:/run/php-fpm/www.sock:", host: "foo ...
Score: 0
VagrantPaladin avatar
Apache Config file blank
in flag

I have a server hosting many sites, many of which have SSL set up.

For these the SSL config are held in a separate config file, being /etc/httpd/conf/httpd-le-ssl.conf

This has been in use and working for a long time - SSL certs are updated using the Lets Encrypt certbot utility

Yesterday I found that the SSL config file was suddenly blank (It should have in the region of 3000 lines)

While finding a ba ...

Score: 3
UncleBob avatar
Cannot connect to Amazon RDS with TLSv1.2
in flag

I set up a new machine with Ubuntu 20, and found I wasn't able to connect to my RDS databases anymore.

The spring-boot application that was supposed to connect to the development environment throws the following exception:
javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)

So I dug out mySql workbench and tried with that. That resulted ...

Score: 0
Ileana Profeanu avatar
ADFS - Deny authorization to all groups from location
se flag

I want to restrict a domain and all its groups from being authorized by AD FS.

In the server, on AD FS manager, I managed to create a new Access Control Policy group, but I am not sure what to select in "Permit users... except.." so that any user from a specific domain is not authorized by the access control policy.

I can add individual groups, but is there something I could add so all users from t ...

Score: 1
Parzival avatar
What happens to new connections during nginx reload
us flag

When nginx reloads, The master process first checks the syntax validity, then tries to apply new configuration. If this succeeds, it starts new worker processes, and sends messages to old worker processes requesting them to shut down gracefully.

When does the master process send shutdown message to old worker processes - is it in parallel to creating new worker processes or only after new worker  ...

Score: 0
Azure Access control (IAM) roles - Reader vs Resource specific Reader
za flag

I can see it very clear from documentation, so asking this here does Azure IAM Reader role includes all that resource type specific Reader role or not exactly? For example if I take some resource, like Log Analytics Workspace - there I can assign both Reader and Log Analytics Workspace Reader, roles descriptions provided by documentation/Azure portal UI are the following:

Reader - The Reader role al ...

Score: 0
antimatter avatar
How to setup ssh public key for another machine without access?
pk flag

This might be a stupid question but I have to ask it anyway:
I already did setup an ssh public key for my client machine A. I copied the public key to the remote server, everything works fine, I can log in from machine A.

Now I also want to access that server from another machine and following best practices, I wanted to generate another key for client machine B, rather than using the key from machine  ...

Score: 0
John Doe avatar
Function wcwidth not found - python
cz flag

I installed wcwidth through pip on cygwin but I get this error when I try to run Ansible-playbook binary through powershell. Ansible-playbook binary works fine from cygwin but doesn't work from powershell

PS C:\> c:\cywing\bin\bash.exe /usr/bin/ansible-playbook
Traceback (most recent call last):
  File "/bin/ansible-playbook", line 64, in <module>
    from ansible.utils.display import Dis ...
Score: 1
danone avatar
spawn-fcgi doesn't start automatically even though has root permission Centos 7
br flag

I have very strange problem I don't know how to solve this. I have spawn-fcgi service only starts if I manually start as root but not with on boot

systemctl enable spawn-cgi gives me this information I don't know if this error message or just information

[root@www ~]# systemctl enable spawn-fcgi spawn-fcgi.service is not a native service, redirecting to /sbin/chkconfig. Executing /sbin/chkconfig sp ...

Score: 0
CHANDAN BR avatar
Regarding freeradius rlm_rest module configuration to authenticate user from elasticsearch
tf flag

I'm trying to authenticate user using rest module in freeradius, user data is stored in elasticsearch database.

testing using: < radtest -x chandanbr 008627 localhost 0 testing123 >

i'm getting access-accept for all time, if i enter wrong password and user name im getting accept only,

please help me how to do configuration for authenticate user in freeradius with elasticsearch.

configuration ...

Score: 1
solveit avatar
How to delete the grepped iptables
ar flag

I have iptables starting from cali-

 root@Ubuntu-18-VM:~# iptables -S | grep -oP '(?<!^:)cali-[^ ]+'
    cali-FORWARD
    cali-INPUT
    cali-OUTPUT
    cali-cidr-block
    cali-from-hep-forward
    cali-from-host-endpoint
    cali-from-wl-dispatch
    cali-from-wl-dispatch-5
    cali-fw-cali2847b154969
    cali-fw-cali4bb24809f90
    cali-fw-cali531f8f2e712
    cali-fw-cali5a82b3ff301
    cali-pri-_CV ...
Score: 0
Min avatar
How to start a VNC viewer to display all previously saved VNC viewer desktops (that are now destroyed)?
au flag
Min

Problem:

  1. My current VNC viewer (let say VNC viewer 'A') resides on a machine (let say machine 'A') that need to be killed because our IT department need to rebuild the machine 'A'.
  2. I have a lot of xterms, GVIM windows opened in this current VNC viewer 'A'.
  3. We are advised to move all our works to a new machine.

Question:

  1. I would like to ask is it possible to save all opened xterms and GVIMs in al ...
Score: 0
Brandon Pham avatar
Cron Tab as specific user and python virtual env
us flag

Wanting to run an hourly cron job as a specific user (xfeautomation) and python virtual environment. Running as a specific user, will I have to add the script location into PATH? My current cron job looks like this:

0 * * * *  xfeautomation /opt/scripts/wf_venv/bin/python /opt/scripts/wf_api_linux.py 2>&l /opt/scripts/log.txt

Is this the correct or optimal way? TIA

Score: -1
sfgroups avatar
Kube-proxy pod not starting v1.21.3
cn flag

I have delete kube-proxy pod from my master nodes to get the new kube-proxy configmap values, when I reboot the node still kube-proxy is not coming up ?

How to start the kube-proxy?

# crictl ps
CONTAINER ID        IMAGE               CREATED             STATE               NAME                ATTEMPT             POD ID
19376bdbc55eb       c4d75af7e098e       17 minutes ago      Running             calico- ...

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.