Latest Server related questions

We noticed that our ECS Fargate backend services restart due to a health check response timeout:

(service our-site-com-stack-BackendApiServiceStack...) (port 8000) is unhealthy in (target-group arn:aws:elasticloadbalancing:us-east-1:1234:targetgroup/dev-d-ABC-ABC123/ABC123) due to (reason Request timed out).

We are trying to figure out how to conduct a health_check on our application for ECS that won' ...

Host OS: Red Hat Enterprise Linux Server release 7.9 (Maipo)

Guest OS i.e. a Docker container running: OpenSuse 15.2

Docker Version (on Host): Docker version 19.03.5, build 633a0ea

On host, when I git clone a repository "utilities_scripts" I have valid access for the user (due to umask).

• I think the issue here is not permission related but WHY the USER defined in the Dockerfile is not getting set  ...

I've had my fair share of struggles with SELinux, but this is the first time that it's totally stumped me. I have two production CentOS 8 servers with functionally identical configurations hosting a web application. I have a custom type enforcement module, the relevant parts of which for this question are as follows:

module my_app 1.0;
type my_app_rw_content_t;
files_type(my_app_rw_content_t);
requ ...

I want to create a reverse proxy under one location for two different upstreams. Upstreams are so different that they have different prefixes in URL, but the rest is the same.

• https://foo.example.com/foo/api/get/this
• https://bar.example.net/bar/api/get/this

Non-working configuration:

    upstream foo{
        server https://foo.example.com/foo;
        server https://bar.example.net/bar backup;
    ...

Following along with this documentation, got the virtual machine up and hypervisor registered in AWS Backup console but when the backup runs I get a permissions error. When I try to run a on demand job it only let me use predefined AWSBackup roles. The jobs fail almost instantly.

VSphere 6.7 storage is iScsi VMFS

Any ideas on how I can go about troubleshooting this, there's not a ton documentatio ...

We have an S2S and our DNS server in Azure can talk with the Azure VNET DNS, however our onsite DNS server cannot because of a routing issue I think.

What configuration do I need to change so that requests from our local DNS server forwarding to 168.63.129.16 go through our S2S connection to the Azure VNET? I already have the conditional forwarder added for core.windows.net.

We have a Meraki if you nee ...

This seems to happen alot (on this site), and I have tried the other remedies, to no avail. I will list the problem, then what I have tried.

I restarted the server a couple days ago, when it restarted SLURM didn't work and neither did the network.service. systemctl reset-failed fixed the slurmd error, but only changes the network.service from failed to inactive, both of which are not useful.

Here  ...

Any one tried to implement iredmail with mod security? My English is also not so good, I hope you understand my reasons. Thanks for your help in advance.

I have installed iredmail + web presentation on nginx but i have problem with modsec rules. I used apache2 + mod sec before. I implemented custom rules like rbl or drop .php or .env request, for example. You can find my examples below, wich i us ...

For a receiving MTA, it seems to be unnecessary to check both the SPF record for an incoming SMTP connection, and to do an rDNS/PTR lookup.

Consider:

1. Server gets SMTP connection from aaa.bbb.ccc.ddd, with (possibly spoofed) MAIL FROM claiming to be from mail.example.com
2. Server looks up SPF record for mail.example.com, and finds that aaa.bbb.ccc.ddd either is or isn't authorised to send emails for th ...

I got a vm (on proxmox) to which I passthrough 2 physical NIC.

• ens16f0: LAN connected (which is behind a routeur connected to a different WAN)
• ens16f1: WAN directly connected

Both work as they should if configured individually, but when I try to set up netplan to make both work as I want, I only got the ens16f1 working,inbound and outbound. If I ping WAN ips or WAN domain name, everything worked. ...

I'm running the httpd24u package from IUS on two Centos 7 servers. The version identifier for the package is "2.4.52-1.el7.ius".

For the last week or so, we've been seeing intermittent broken HTTP responses from the servers. The browser reports "net::ERR_CONNECTION_CLOSED", and the server error log includes output like:

*** Error in `/usr/sbin/httpd': free(): invalid next size (fast): 0x00007fb39401 ...

I have a Google HTTPS Load Balancer in front of a Cloud Run and a Google Storage bucket. I bought a wildcard SSL certificate for my domain from ZeroSSL and added it to the Load Balancer. The routing works fine and I can use everything as intended. If I open a URL in any browser, it confirms that the certificate is valid. However, if I send a request from insomnia with SSL validation enabled, I get the f ...

I have an old CentOS 6.2 machine and need to update a few packages on it (or many packages, I suppose).

However I can't do anything with yum because even after changing the repos to vault.centos.org, yum spits out this error whenever attempting to download any packages:

[Errno 14] problem making ssl connection

The usual solutions to this error are "update openssl or certificate bundles" but of cou ...