Latest Server related questions

We have a parent domain and multiple subdomains. We created a bind account under parent domain to read users and groups from all the subdomains. How does the account created under parent domain authenticate itself to the subdomains? Is it via kerberos?

In my Apache logs there are lots of 408 entries, it looks like connection to server is ok and then no traffic.

46.114.5.234 - - [09/Jul/2023:10:42:59 +0200] "-" 408 152 "-" "-"

I double checked all settings in apache.conf :

#
# Timeout: The number of seconds before receives and sends time out.
#
Timeout 240

#
# KeepAlive: Whether or not to allow persistent connections (more than
# one request pe ...

I am trying to ssh from a windows system to an azure centos vm. But I am getting error incorrect MAC ... On further checking i identified it only happens when the mac algorithm used is [email protected] and there is no issue connecting if I try to specify other algorithms. Moreover i can connect to the vm from other linux machines and i can conect to other linux machines from my windows system. S ...

I have two ec2 instances which run different applications on them, which is served through CloudFront. Tonight both became unresponsive at the same time. Any attempts to contact the apps through CloudFront ends up in 504.

I attempted:

• Rebooting the instances;
• Stopping them completely, restarting;
• Connecting through ssh on the console - connection times out.
• Connecting through ssh using the AWS co ...

I'm trying to run Diaspora and Mastodon on my server (crazy idea, right?) and Apache's ProxyPass won't work to localhost ports 3000 (Diaspora) and 4000 (Mastodon). I get a 403 for both https://diaspora.thechatpit.com and https://mastodon.thechatpit.com -- both have different users, but I've got both users in the same group for the user Apache uses, and the permissions have been expanded to give th ...

I have 2 ips on my server, I’m trying to set up 2 emails, one email sends from one ip, the other sends from the second ip. The first email is fine but I’m getting an error in mail-tester.com for the second email (ips are obviously dummy examples):

Your IP address 1.1.1.2 is associated with the domain port25.domain.com. Nevertheless your message appears to be sent from port24.domain.com. You may wan ...

I would like to configure Apache, such that when we send a request with a given language header, the server should send us back the right version. For example, I have index.eng.html and index.de.html. Based on the HTTP header, server should send me the proper version. I want to make it inside a Docker container.

Now the only thing I see is the directory listing ... What is wrong?

# Use the official Apache ...

The setup

I admin the backend for a website that currently exists on a single node using Nginx (webserver), Neo4J (database) and Wildfly (app server). The website is getting enough traffic that we are both storage and memory resource limited on the current 'all-in-one' node, so I instantiated two more VPS nodes (3 in total) that will only run WildFly.

I've successfully configured Nginx to use the ...

I have Windows Server with IP 10.0.0.5

Also added Firewall inbound Rules port 80,443,9444

This IP 100.100.50.50 external provided some company and connected with VPN tunnel with this Windows Server IP 10.0.0.5

From manual this company I should add to hostsfile In Windows server in hosts file I add this

100.100.50.50 someservice.com 127.0.0.1 loc.someservice.com

Now in windows server I install in ...

We're building an experimental nameserver in Python, using the standard dnslib library.

It appears to work, we have delegated a test subdomain, midsummer.beltaine.co.uk to it, and it serves the expected answers for the records in its config file.

Using the venerable squish.net DNS checker shows no faults and perfect resolution. Other major DNS test tools also report all is well with the subdomain.

Amazon's documentation includes extensive examples of using cfn-hup to automate updates of instances provisioned via CloudFormation. For one of many examples, see https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/Install-CloudWatch-Agent-New-Instances-CloudFormation.html. These typically end up pointing to examples like this one for cfn-hup iteslf or this one for the CloudWatch agent. ...

My internet connection is behind NAT, which makes it impossible to serve anything outside (security cameras, file servers, ecc)

I'm trying CloudFlare Zero Trust Tunnel to bypass it, and it seems to work fine. I ran the Windows installer, ran this cmd:

cloudflared.exe service install CLOUDFLARE_TOKEN_HERE

And cofigured the tunnel like this:

Now if I connect to emby.example.com, I can see my website, loc ...

I'm afraid of following this page's instructions for updating the OpenStack as it does not seem to consider all aspects and is not written to upgrade service-by-service. No rollback solution is also provided.

I searched for detailed documentation for upgrading but was not found.

If you have already had the experience to upgrade OpenStack by Kolla, What are the steps to go to the next version, per se ...

So I am facing a strange issue, not able to make any sense. Hope someone here can help me understand. I have my iptable rules set like this

root@COV0495:~# iptables -S
-P INPUT DROP
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
-N DOCKER
-N DOCKER-ISOLATION-STAGE-1
-N DOCKER-ISOLATION-STAGE-2
-N DOCKER-USER
-N ufw-after-forward
-N ufw-after-input
-N ufw-after-logging-forward
-N ufw-after-logging-input
-N ufw- ...

Is there a way to use the IPMITool (I'm running version 2.26.0) to remotely configure the syslog settings of an IPMI interface? I have a few dozen new systems and would prefer to not do this manually.

I've basically trying for days to achieve this. So basically, simply i just want to connect to Local IPs of VM Once we are connected to VPN Client. All VPN Server and VMs are located on Same VLAN and Private Subnet.

VPN Server has 2 NIC for Public as well as Private IP. VPN Server Public IP is xx.xx.xx.xx VPN Server Private IP is 192.168.1.100

VM 1 : zen-srv01.zenoptics.com - 192.168.1.2

VM 2 : zen-srv ...

I work with an ETL tool called airbyte to move data from various data sources to our main data warehouse. I am also asking this question in the airbyte slack channel, but would like to ask it here as well. Up until Thursday(06.07.2023) the connection from a mysql database to snowflake via airbyte was working fine. However, it stopped working and I am not sure what the reason for this is. I've added the  ...

We have a business requirement where we don't want even Admins to be able to stop a service of a specific application running on windows machines. Reason being the application plays an important role in the security and the only barrier for security is the running state of a service. We want a specific group of people only to manage the service.. Is there a way to achieve this?

I'm trying to map my backend server at http://api:4000 to my-domain.site, where api is the name of my backend service in docker compose.

I run docker compose up and everything works fine, but I can only access my backend server at localhost, not my desired domain being my-domain.site.

Below are my docker-compose.yml file and nginx configuration file:

docker-compose.yml

nginx:
    image: nginx:alpine
  ...

I'm running into a really bizarre issue that has me banging my head against the wall. Hoping someone here can point me in a direction I haven't explored yet.

I do IT work for a small insurance company. They informed me that two days ago, one of the websites they frequent was no longer loading. The website in question is for the Massachusetts RMV (https://atlas-myrmv.massdot.state.ma.us). When I took  ...

I have two IIS applications with Windows Authentication. One SharePoint Server(SE) and a provider hosted app, which is a separate website that can access SharePoint via OAuth.

The app can send AJAX requests to SharePoint just fine when there is no proxy involved. But when we introduce AD FS WAP on both applications they fail, because the AJAX request is redirected to AD FS for authentication.

I want ...

(In exploratory mode: not sure what is the right question to ask, and how to ask it. Also, new to AD GPOs: please forgive lack of clarity in the question.)

Question: how do I assign an Active Directory GPO to a specific computer, or a set of computers, through which mechanism?

(Easy to follow concrete steps or examples, please? Do not answer with "use ABC mechanism" one-liners, please.)

Goal(s):

I just did a do-realease-upgrade on ubuntu 18.04 to 20.04 and i'm getting an error while attempting to start a puma server for a mastodon instance.

bundle[8604]: [8604] ! Unable to load application: LoadError: libicuuc.so.60: cannot open shared object file: No such file or directory - /home/mastodon/live/vendor/bundle/ruby/3.0.0/gems/charlock_holmes-0.7.7/lib/charlock_holmes/charlock_holmes.so

I have  ...

I was following the Proxmox guide for enabling PCIe passthrough and SR-IOV for my NIC, since I am running Vyos in a VM as a router. However, after undoing all the changes the NIC is not working anymore. The only thing that seems to be working is DHCP (and not DHCPv6) when directly connecting another computer. I suspect it might be because I've setup a DHCP relay, since the port I connected to has a  ...

I have a PHP website for file hosting (like Dropbox) on a Debian server with Apache, but I'm running out of disk space. Is there a way to add another server in the network and somehow make Apache use the two servers as one? I've heard it can be done with Load Balancer, but I'm not familiar with it. I've Google'd it but it only mentions performance, so I'm not sure if I'm on the right track?

I want to setup my S3 bucket to replicate in another region. Once it's fully replicated, I will make that bucket the main one (the idea is to migrate all data from one region to another). I know how to setup cross-region replication, but my problem is how can I know if the two buckets are 100% in sync? Since I'll need to know that to switch to that new bucket as the main one.

Any idea how to get  ...

I setup a replica in a different region for my RDS instance. It seems to be working except that the status is always "Replicating". How can I know that the instances are fully in sync? Eventually I would like to promote the replica to master but I want to make sure, first, that all data is on it.

Any idea how to check this?

I am running a mail server (Exim) on a VPS (Ubuntu 22.04 LTS). I am able to send and receive emails without problem, but I do get the following errors from mxtoolbox.com:

Reverse DNS does not contain the hostname
Reverse DNS does not match SMTP Banner

The report from mxtoolbox gives me these details for the transcript:

Transcript: 220 server.imago-web.co.za ESMTP Exim 4.95 Ubuntu Fri, 07 Jul 2023 ...

I want to check that rules was loaded (e.g. ruleset in files are the same as in the kernel). I want to do it without modifying kernel rules. I can't compare files and nft list ruleset due to ordering, comments, formatting and so on.

Is there a way to see difference? Or, may be, there is a way to make nft to 'normalize' rules to match the format kernel rules are shown?

I am trying to assign a secondary IP to my primary interface.

I added the IP to my eth0 interface

ip addr add 172.20.14.253/21 dev eth0

$ ip a show dev eth0
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
    link/ether fa:16:3e:35:91:b5 brd ff:ff:ff:ff:ff:ff
    inet 172.20.11.35/21 brd 172.20.15.255 scope global eth0
       valid_lft forever pre ...