Latest Server related questions

I have request rate limit set as:

20 r/m
burst=4 delay=2

My expectation is that 1 request will be handled every 3 seconds. For any bursts, upto 4 requests (beyond the rate [1 per 3 seconds]) will be queued, of which 2 will be immediately handled and 2 will be handled such that it satisfies 1 req every 3 seconds.

I am testing using synchronous requests, by adding a delay of 3500ms after every 2 requests,  ...

Is it possible to configure Postfix to not send a auto response to a specific email address?

Reason:

We use a specific email address for our clients to email issues to and an external company has setup a automatic emailing when a event viewer is triggered in windows. This triggers multiple emails per day, But the mail account it is sent from does not accept replies. As a result we get a bounce back  ...

I'd like to upgrade my AWS ELBs to a security policy that only allows TLS v1.2.

Before doing this, I wanted to check the ELB logs to ensure that no current customers are using older versions.

My ELB logs have a field 'ssl_protocol'. Most requests log 'TLSv1.2' but a handful specify 'TLSv1'. (There are also a few v1.0 and v1.1 but these all received 4XX responses and so presumably are non-legit traff ...

I currently have a Nextcloud installation running on a server at home behind an Nginx proxy, which in turn is routed through Cloudflare. The proxy currently presents a Cloudflare origin SSL certificate to perform authenticated pulls from Cloudflare.

My question is: can Nginx, depending upon what IP is sending a request, serve different SSL certificates? I'd like to serve the Cloudflare origin SSL ...

http {
    #...

    limit_req_zone $binary_remote_addr zone=one:10m rate=1r/s;

    server {
        #...

        location /search/ {
            limit_req zone=one burst=5;
        }
    }
}

With this configuration, if request rate exceeds 1 request per second, requests beyond the rate will be put into the zone one. When the zone is full, excessive requests will be queued (burst), the size of ...

We are using the Prometheus Blackbox Exporter (blackbox_exporter, version 0.19.0) to check HTTP endpoints.
Now we need to implement a check with the fail_if_body_matches_regexp.
The check should fail when a certain word exists inside the html body.
For that, we created the following http prob configuration:

Module configuration:
prober: http
timeout: 5s
http:
    valid_http_versions:
        - HTTP/1.1 ...

Yesterday I took a snapshot of VM in Proxmox and today I rolled it back but the user has no sudo access anymore. I can login with the user and the user is still in the list of sudoers.

How can I solve it?

I have a main domain ( aa.example.com) with hunderds of subdomains ( bb.aa.example.com). I made a wildcard record to forward all subdomains (bb.) to a list of addresses in round-robin fashion. The problem I am fscing is the wildcard is forwarding anything towards the the IP ( example , "cc.bb." which is not a vaild subdomain). How can I limit that so it will only forwards ( bb.aa.example.com) and drops ...

i would like to redirect the request to a file from

/path/to/file/content?path=file.pdf

to

/new/path/to/file/file.pdf

under the same domain.

I tried simple rewrite rules or like this.

location ~ ^/path/to/file/content?path=(.*) {
   return 301 /new/path/to/file/$1;
}

Unfortunately, nginx does not understand the variable. What am I doing wrong? Does anyone have a tip for me, please? Unfortunately, I d ...

I have configured computer authentication on WiFi connect to company network, using the microsoft nps server, group policy certificate auto-enrollment and group-policy wifi config. Has been working just fine for several years.

Recently my laptop started showing this prompt upon each reboot/reconnect: "Continue connecting? If you expect to find X in this location, go ahead and connect"

So I checked t ...

I have an RHEL (7.6) server I'm testing Auditbeat on. (on-premise, vmware)

I've noticed that, every day at 5:20AM, there is a spam of several hundred "existing_package" events. I don't see any automatic updates being on, but there might be a mechanism I don't know of.

With that in mind, the questions are:

1. How can I verify there are no automatic update mechanisms up? (I would like to check)
2. And in  ...

During increased traffic my API which runs on Cloud Run gives the error copied below. My best guess is that this is due to some Cloud Datastore call since any calls to this Cloud Run instance which does not use Datastore does not give this error during the "outage". Unfortunately there is no indication of which quota gets exceeded I have looked through my quotas and cannot see anything that is peeking ( ...