Join Log in

Latest Server related questions

Score: 0
transient_loop avatar
Do I need to allow ssh v6?
ru flag
transient_loop

I ran

sudo ufw allow from <IPv4> proto tcp to any port 22.

But this resulted in allowing ssh in from Anywhere to ssh v6. Which is kinda not what I wanted so I sudo ufw delete <sshv6-rule-index>.

Now I am unsure though if I did right. Do I need to re-add the ssh v6 rule if I want to restrict ssh access from specific hosts only?

The problem is that I am logging in mostly from my home, whic ...

Server firewall ipv6 ufw
Score: 2
How is CGNAT routed on the client?
ch flag
WoJ

When testing a Zscaler POC (from a security perspective), I had a hard time understanding how CGNAT is routed on the client.

My main concern (and question) is that the 100.64.x.y route is not in the routing table (Windows 10). The default gateway is on my local network gateway so that traffic cannot go there either.

What is special about how CGNAT traffic is routed?

The routing table on the client is

Server nat routing
Score: 0
RustyShackleford avatar
Achieving mTLS with AWS ALB
fm flag
RustyShackleford

If I have an ALB in my infrastructure with ECS target groups downstream, will SSL/TLS always be terminated at the ALB?

If so, are my only options ELB/NLB to preserve the SSL/TLS context?

Server load-balancing nlb amazon-web-services amazon-elb amazon-alb
Score: 3
Ansible variable without quotes
cn flag
raw

To use a variable gathered from json, I need it to be raw, without quotes:

I have

ok: [device] => {
    "fact": {
        "int": "7"
    },
}

I want

ok: [device] => {
    "fact": {
        "int": 7
    },
}

The thing is that the quotes are not part of the variable so I cant use | int or | replace to remove the quotes.

Is there a way ?

Server ansible
Score: 0
Swap used but there is free RAM
tt flag
qq72

I am surprised to see my Ubuntu 20.04 using swap as there is 700G in buffers/cache.

It has never done this before.

Is something wrong?

I feel like it should return RAM used in buffers/cache to be free prior to using swap.

# cat /proc/sys/vm/swappiness
0
# cat /proc/sys/vm/vfs_cache_pressure
100

# free -g
              total        used        free      shared  buff/cache   available
Mem:           1007 ...
Server memory swap
Score: 0
matteo nunziati avatar
add notty to authorized users
co flag
matteo nunziati

I miss to understand the topic: a request from my corp's sec team.

while setting up an sftp with chroot they insist I've to (quoting) "add notty to authorized users". to my knowledge the notty is the outcome of a login made by a user with no shell (e.g. an ssh user whose config bind her to sftp only and -to-say- has /usr/sbin/nologin configured).

what am I missing? any pointer on the openssh docs (r ...

Server ssh redhat
Score: 0
Chris Lannister avatar
Cloaning a VM in Hyper-V - System Out-of-Box Experience (OOBE)
eg flag
Chris Lannister

I need to clone a VM on Hyper-V. I was going to just Export and Import then change the IP address/name of the cloned VM. However, with non server VM's people recommend running the OOBE to assign a new SID on start-up. Is this the case with server VMs too?

There's loads of config files and obscure 3rd party integration tools on this server. It says it should affect these files (OOBE) but I was loo ...

Server hyper-v
Score: 0
Matrix avatar
Multiple SSL-certificates for one domain on Azure Application Gateway
cn flag
Matrix

We need to use two ssl certificate files on one wild-card domain (*.mydmain.io) on Azure Application gateway. I already sat up it for using one ssl-cert and it workes fine but I need to add one more cert for it. As I went through the setup I couldn't see a way to add several certificates under one listener.

Is there any way to make this happen?

Server ssl-certificate azure-application-gateway
Score: 0
James Bradbury avatar
Rerouting requests from site.org/old to site.org/new in nginx
cn flag
James Bradbury

I have a site deployed at www.site.org. I have routes at www.site.org/old/article and I want to automatically redirect people to www.site.org/new/article. Ideally this would work as a wildcard to capture anything and not just article.

I'm not great at Nginx so any advice would be useful on best practices. I have seen a few people do it with location blocks with a mixture of return 301 woven in as well as ...

Server nginx web-server
Score: 0
Dell Equallogic PS 6210 is not Booting up After Power Outage
in flag
Jabi

Our EqualLogic PS 6210 is not booting up properly after the power outage, unfortunately it is not under warranty

We can power it on, the disks are blinking and both controller is powered on (but either of them are not active). It stays few minutes before it shut off itself

I tried both management and serial port to access the console, to no avail.

Does anybody have an idea on this issue

Server storage-area-network dell dell-equallogic
Score: 0
Lucas avatar
Keep showing old node in munin to review data
cn flag
Lucas

I am using munin to monitor some servers and now I have delete a server but I want to keep the graphs in my overview to be able to compare the data from the old server to the things that happen on the new server (for example questions like "how many apache accesses did we get in May last year on the main webserver (now delete) and how many do we get now on the current webserver?").

I tried to put ...

Server munin
Score: 0
Gill-Bates avatar
Snort DAQ: which NIC should run in promiscuous mode?
ps flag
Gill-Bates

I want to use Snort 2.x as IPS. i understand that I need two NICs to capture the traffic (DAQ-Mode).

  • eth0 = my network card to the WAN
  • eth1 = my internal (virtual) NIC for Snort.

My current Run-Command:

snort -u snort -g snort -c /etc/snort/snort.conf --daq afpacket -i eth0:eth1 -l /var/log/snort -Q

Which of the two card do i need to put in promiscuous mode? eth0, eth1 or even both?

Server linux ips snort

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.