Latest Server related questions

In an previous job mny years ago a pam module was in use to stop users being able to log in if their home directory did not exist. I would like to use this module but can't find any information about such a module. THe only thing I can find is the mkhomedir one which is kind of the opposite of what I want. I think it was called pam_nohome.so but am not sure. Anyone got any clues about such a pam module? ...

Using Keycloak with OID, we normally authenticate users through our client applications via API, using the JWT access token emitted by Keycloak.

Our clients receive the JWT token, which gets injected into related applications to let them recognize user's attributes and role.

I'm wondering whether with interactive (Keycloak's UI login form) authentication, to which users would be redirected accessing ...

We have many production apps (first and third-party) that leave logging up to the process that runs the app and just log to stdout for INFO and stderr for ERROR logs (ie only 2 log priorities: INFO|ERROR).

With a systemd service unit for an app this can be setup like this:

StandardOutput=journal
StandardError=journal

This allows devops to manage everything through systemd units and the journal in or ...

I've set up an Azure virtual machine in a virtual network, and have joined it to an Azure AD Domain Services domain. The virtual network uses the AADDS DNS servers.

I've created a private link to connect to an Azure storage account file service in the virtual network, and I can confirm that it has an IP address in the subnet to which the virtual machine is connected.

However, from the virtual machin ...

We have Amazon Linux 2 with Selinux enabled on it

from audit.log file, we have the following denied:

type=AVC msg=audit(1645462240.556:179): avc:  denied  { connectto } for  pid=7329 comm="plymouth" path=002F6F72672F667265656465736B746F702F706C796D6F75746864 scontext=system_u:system_r:iptables_t:s0 tcontext=system_u:system_r:plymouthd_t:s0 tclass=unix_stream_socket permissive=0

Was caused by:
    Mis ...

I have a Dell T110 II with 32GB of RAM (4 sticks) and a Dell T1605 with 16GB of RAM (4 sticks). Would it be possible to take the RAM from the T110 and transfer it to the T1650? They appear to have the same type of RAM, and the T1650 will handle 32GB, but I'd like to confirm it would work before stripping the machines down.

Is there an open source or commercial product or service that can offer ssh login to linux servers without having to manually manage and deploy SSH keys, or at least to do it in more automated manner.

I want to turn my raspberry pi into a personal server than I can access from anywhere but from what I've learnt SSH requires port forwarding to access from another network but my internet provider (Vodafone) does not allow port 22 forwarding . Is there anyway to achieve the same thing that SSH does? Maybe some sort of TCP reverse shell is viable. I'm new to all of this.

My question is, can we run a windows server in a different time zone than it's domain controller? All my searches came up with results for time syncronization, but that's not what I'm interested in.

Right now all our on-premises servers are in a domain and in CET time zone. Can anything go wrong if we set one of the servers to UTC? The reason: all cloud servers are in UTC, and we use this server  ...

I am trying to achieve following: I have language directories eg. mysite.com/en/ mysite.com/th/ and so on. I want main site/files from root directory will be diplayed when someone enters mysite.com/en/something.html

So mysite.com/en/something.html actually diplaying files from mysite.com/something.html

I have Postfix running with a number of smtpd processes configured in master.cf like this:

# Internet facing one
1.2.3.4:25      inet  n       -       y       -       -       smtpd
  -o ...   # internet-only overrides

# Internal facing one
10.0.0.1:10026      inet  n       -       y       -       -       smtpd
  -o ...   # internal-only overrides

Now, I'd like to add a single header, with static name ...

I have a server running Wireguard (thus needing masquerade) and a container running on port 2525.

I have the following iptables rules:

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 25 -j DNAT --to-destination 172.18.0.1:2525
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

When connecting to server:2525 directly, the Docker container is able to see my real IP address (1.2.3.4). When connecti ...

I have several servers from Hetzner AX and EX series (AMD & Intel), that I installed with Centos 8, then migrated to Centos Stream, but I get a Kernel Panic every time I try to boot with any image from Stream.
Of course, they are not very helpful with suggestions on potential kernel configuration for it to work except claiming that there are no know issues (HA!). As it doesn't even get to loggin ...

At work we have a varnish cluster. All the remote backends us the .host value (which I assume is required) but all the configs for the local backend, ie the backend running on the server the config/varnishd is on, use the .path value. This morning I had an issue with one of the varnish servers, basically the socket referred to by the .path did not exist and so it wouldn't start. I tried various ways to b ...