Latest Server related questions

The lastest openscap package I downloaded for Debian 10 does not include a datastream or benchmark for Debian 10. The latest release they have is debian 8 and I get "Not Applicable" when using this for the scan. Can someone tell me how I can get the benchmark for debian 10? it would be called something like "ssg-debian10-xccdf.xml"

Thanks!

i have this config file domain.beta.conf

server {
    listen 80;
    listen 443 ssl;
    server_name ~^(www\.)?(?<version>(.+\.))?domain.beta$ domain.beta
    root "X:/xx/www/domain"

    location / {
        try_files $uri $uri/ =404;
        autoindex on;
        rewrite ^/([^/]+)/?$ /$1.php last;
    }
    location ~ \.php$ {
        include snippets/fastcgi-php.conf;
        fastcgi_pass php_ups ...

I have a server running Debian 10 and I use "ufw" as my firewall tool, I used it to open few ports only 80,443,22
I tried to execute "netstat -na" to see if any unauthorized connections to my server and this what I got :
......................
udp________0______0 my_public_ip:45859_____162.159.200.123:123_____ESTABLISHED
udp________0______0 my_public_ip:60435_____162.159.200.1:123_______ESTABLISHE ...

I am running Ubuntu 20.04 with wireguard and Kubernetes. Traffic between nodes is going through wireguard interface wg0. No matter what I do some traffic is being blocked by UFW. I have the following rules to allow traffic:

6443                       ALLOW       Anywhere
Anywhere                   ALLOW       10.0.0.0/24
Anywhere on wg0            ALLOW       Anywhere

But UFW still is blocking the tra ...

Server: Linode Dedicated 4G Ubuntu 18.04, Webmin + Virtualmin

Every now and then, mysql server stops and fails on restarting. Here is the logs I was able to find:

Apr 11 20:54:57 bamboo kernel: [ 2082.915857] [ 7664]   112  7664   406072    46295   745472        3             0 mysqld
Apr 11 20:54:57 bamboo kernel: [ 2082.915859] [ 7701]     0  7701   129687      307   679936     1435             0 ap ...

AuthType Basic
AuthName "staging"
AuthUserFile "/etc/httpd/pass/password"
require valid-user

I see this and inside /etc/httpd/pass/password

I see

example1:justanexample
example2:dasd
example3:notatruepass

and none of these credentials works when Apache request an username and password.

I have two instances of the same VueJS app in two different servers. I'm trying to use upstream form nginx for load balancing but it is returning 404 on all files under static.

I've tried to keep this as simple as I could, this are the Nginx config files:

Proxy:

upstream frontend {
    server 10.16.19.173;
    server 10.16.19.166;
}

server {
    location / {
#       try_files $uri $uri/ /index.html;
    ...

I am trying to add DKIM to an existing windows server which is currently using IIS SMTP for outgoing mail.

It seems like this could be done by using E-Mailrelay. Unfortunately I could not find any reference on how exactly to configure DKIM in E-Mailrelay.

Is there something I missed in the docs or perhaps some third party tutorial that describes how to do this?

TL;DR: How to setup ejabberd to only allow some Active Directory group members?

Hello,

After having successfully set up an ejabberd service plugged in to our AD, I'd like to narrow the allowed users to a specific group.

My working setup is :

auth_method: [ldap]
ldap_servers:
  - 1.2.3.4
  - 1.2.3.5
ldap_uids:
  mail: "%[email protected]"
ldap_base: "OU=FON,OU=Domain,OU=Global,DC=domain,DC=lan"
ldap_rootdn ...