Latest Server related questions

My networking knowledge is limited to just Ping, Ipconfig and basics so this question might seem strange or inadequate. I've installed a custom SMTP server (which I've used successfully on many different machines) on a newly installed Windows 2019 server, and it is responding slowly even using the Telnet test tool on port 25. SMTP Response 220 takes 15 seconds to return even on test local network that ...

To summarize the context, it's an lxd container that always connects as an OpenVpn client.

{wan} <-> {192.168.x.x <-> iptables <-> lxd bridge host 10.0.3.1} <-> {lxd container 10.0.3.3 | openvpn <-> iptables}

In the container there is

• eth0 (ip 10.0.3.3) which is the client interface on an lxd bridge
• tun0 which connects as a client to an OpenVpn server

The host lxd (10.0.3. ...

I have a windows organization for which I'm the administrator. The users are registered to an Azure active directory which is managed with Intune.

When I set up the computer I first sign in with my windows admin account. Then I add the the user's account as a normal user.

When my users try to set up fingerprint or picture sign in, they are getting the alert in the image below.

How do I allow the users  ...

We have migrated a database (backup to .bacpac and restore to the new tenant) but the database was encrypted using always encrypted and the key is stored in the original tenant's key vault. I can look at the data in SQL management studio by authenticating with the first tenant when it tries to decrypt (it automatically pops up the authentication dialog), but I need to move the key so my web app can acce ...

Given a backend that running on:

172.18.1.125:8888

curl tested:

curl --location --request GET "http://172.18.1.125:8888/oauth/sign-key"
sample_response    //>> HERE IS RESPONSE

On another host, I install and config haproxy:

global
    log         /dev/log local0
    chroot      /var/lib/haproxy
    pidfile     /var/run/haproxy.pid
    maxconn     4000
    debug
    user        haproxy
    ...

I have followed the steps from RedHat to start the multiple services into one service. https://access.redhat.com/solutions/3097871

/etc/systemd/system/myapps.target

[Unit]
Description=App Service Unit

# This collection of apps should be started at boot time.
[Install]
WantedBy=multi-user.target

App1.service

/etc/systemd/system/app1.service

[Unit]
Description= Instance of App1 Service
PartOf=myapps ...

I get a project where the outer websocket reverse-proxy is implemented by nginx stream.

However, steam only means "TCP" and it lost http features like writing the IP's alone the route.

Here is the config of the outer layer in encrypted SSL:

stream{ 
        upstream mysvr {
            server 10.3.3.7:1111;
    }
        server {
            listen 3331; 
            ssl_preread on;
            # proxy_s ...

I have installed OpenLDAP on Ubuntu Server 20.04. It works fine so far. Now I want to restrict access to the server, as by now anyone can read all entries e.g. in Thunderbird. Therefore I created a ldif file like this:

dn: olcDatabase={1}mdb,cn=config
changetype: modify
replace: olcAccess
olcAccess: to attrs=userPassword
  by self write
  by anonymous auth
  by * none
olcAccess: to attrs=shadowLast ...

I have recently started working with a museum (UK) who's 1-year-old Cisco wifi setup has been experiencing connectivity issues from day 1.

Essentially a significant proportion of devices (both in-house and personal) are unable to connect to wifi - user selects an SSID, enters correct password, authenticates and instantly the connection is dropped. This effects some laptops, phones and tablets, bu ...

We recently got a "too many open files" error in our production Wildfly 17 on debian 9. A simple restart of the wildfly service got rid of the error but I'd like to avoid the problem to come back. I'd like to increase the limit but I'm not sure what I should change and how can i know the configuration as been taken into account.

I checked the ulimit for the loginless wildfly user :

    sudo su - wildf ...

According to my understanding the popular syslog formats are:

• RFC 3124 (BSD syslog):

  Format: < priority >timestamp hostname application: message

  Example: <133>Feb 25 14:09:07 webserver syslogd: restart

• RFC 5424 (IETF syslog):

  Format: < priority >VERSION ISOTIMESTAMP HOSTNAME APPLICATION PID MESSAGEID STRUCTURED-DATA MSG

  Example: <34>1 2003-10-11T22:14:15.003Z mymachine.examp ...

Nginx has set_real_ip_from and real_ip_header proxy_protocol directive to restrict the trusted IP address of the TCP load balancer. https://docs.nginx.com/nginx/admin-guide/load-balancer/using-proxy-protocol/

But Apache only have RemoteIPTrustedProxy, which only works on the traditional X-Forwarded-For header.

What is the Apache equivalent of Nginx set_real_ip_from, real_ip_header for proxy protoc ...