Latest Server related questions

I have several virtual machines with Debian/GNU Linux running on OpenStack. When resolving their internal IPv4 addresses I get some strange results:

# ip -c addr show dev eth0
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    inet 10.201.2.214/16 brd 10.201.255.255 scope global dynamic eth0
…

# dig 214.2.201.10.in-addr.arpa. ptr
;; Wa ...

I have Apache HTTP server set up and running with a bunch of Virtual Hosts which are using Let's Encrypt certificates. However, I can't get sure if global SSL options are inherited by all VHosts.

In main config file (/etc/httpd/conf/httpd.conf) I have the following includes:

...

Include conf/extra/httpd-mpm.conf
Include conf/extra/httpd-autoindex.conf
Include conf/extra/httpd-languages.conf
Includ ...

I am just trying to proxy pass from Nginx to Docker Minio service; however, with my current nginx config file, it's not working as expected and keeps loading when I browse any Minio buckets from the Minio console (web interface). Note that the minio server is working fine when it is browsed from local network. The current nginx config file for the minio docker service is as follows:

Nginx config  ...

We have a reverse proxy server with nginx. We want to pass a static page in case the reverse proxy timesout.

Current configuration is:

server {

    listen 443;
        ssl on;
        ssl_certificate /etc/ssl/****.crt;
        ssl_certificate_key /etc/ssl/****.key;
        ssl_protocols TLSv1.2 TLSv1.3;

        server_name ****;

        access_log            /var/log/nginx/****.log;
        error_l ...

Please help with the following situation:

I need to access an internal site that can be accessed only from an authenticated user&computer from the internal network. No additional software can be installed on the computer from the internal network. I was planning to use SSH tunnels as follows, because on the internal computer I can run the built-in Windows SSH client:

Internal site <-> (htt ...

As per title, I would like to connect to Azure VM (Windows) from my Ubuntu machine. xrdp requires that I know the VM's IP address, which I don't know. When I connect to Azure VM from Windows machine, I only need to put the workspace URL https://rdweb.wvd.microsoft.com and my Azure auth.

Is there anything similar in Ubuntu?

I have set up my cluster with my app but now I'm facing issue in my gke cluster

Error:unable to upgrade connection:Authorization error (user=kube apiserver, verb=create, resource=nodes, sub resource=proxy)

Ok, on IIS i have GZip and Brotli installed, I changed the priority of the two around. The headers are now showing "Content-Encoding : GZIP" but when I use tools.pingdom.com , it is saying there's no compression.

I have the following in applicationhost.config

    <httpCompression directory="%SystemDrive%\inetpub\temp\IIS Temporary Compressed Files" minFileSizeForComp="0">
        <scheme nam ...

I have expanded the disk of my VM.
How do I now repartition the disk and expand the file system on the guest?
Which is Amazon Linux 2 Kernel 4.14.252-195.483.amzn2.x86_64 on an x86_64

$> sudo lsblk
NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT
sda 8:0 0 52G 0 disk
├─sda1 8:1 0 25G 0 part /
└─sda128 259:0 0 1M 0 part
sr0 11:0 1 1024M 0 rom

$> sud ...

I am trying to configure an automated Debian 12 installation using the BTRFS filesytem, which should support timeshift for snapshots. So far, I have a complete preseed.cfg, integrated into the Debian 12 netinstall iso, which fully automates the installation process. However, the Debian installer uses @rootfs instead of @ for the root BRTFS volume. Unfortunately, this layout does not work with time ...

I am trying to deploy a flask application that I made with several pages and I'm following this tutorial to do it: https://www.youtube.com/watch?v=ct1GbTvgVNM&t=94s&ab_channel=AMonkinCloud%E2%98%81%EF%B8%8F

Everything went fine but when I try connecting to my public IP address, I get the error 404 Not Found.

Could it be because something with my application?

If i user $ curl localgost:800 ...

I am trying to set up a kubernetes cluster and running this command on my worker node kubeadm join server:port --token xxx --discovery-token-ca-cert-hash sha256:xxxx and the error i have is

Found multiple CRI endpoints on the host. Please define which one do you wish to use by setting the 'criSocket' field in the kubeadm configuration file: unix:///var/run/containerd/containerd.sock, unix:///var/run/cri- ...

I am trying to set up a kubernetes cluster on centos, and installing calico is one of the steps. My control plane is ready, but coredns are still pending.

From the internet, i got the below command to install calico on the network curl https://docs.projectcalico.org/manifests/calico.yaml -O

But when i open the file, it says Redirecting to https://docs.tigera.io/calico/latest/manifests/calico.yaml

I have a Dell T420 server with a PERC H710 Adapter RAID Controller. I had a RAID 1 with two hard drives. And another disk into the same controller, with no RAID only for backup.

The Motherboard of this server now is damaged, It didn't boot because of a hardware failure in a NIC card.

I have access to another old Dell PowerEdge 2900 with a SAS Controller.

I'm trying to connect the hard disks into the ol ...

In my Mac, I'm running minikube, version minikube version: v1.24.0 commit: 76b94fb3c4e8ac5062daf70d60cf03ddcc0a741b

with VirtualBox, with this command minikube start --vm-driver virtualbox --docker-env=[REGISTRY_PATH="myregistrypath/",BASE_VERSION=local] -p mymachine

I'm using docker-compose to run the docker images. The relevant part of my docker-compose.yaml is

version: "3.7"
services:
  base:
   ...

I am using: apache2 2.4 on Ubuntu 23 / WT (webtoolkit witty).

I am trying to use WT with fcgid. My hello.conf file is:

    <VirtualHost *:80>
    ServerAdmin webmaster@localhost
    ServerName hello
    ServerAlias www.hello
    DocumentRoot /var/www/localhost/htdocs/wt-examples/hello
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined 
    <Directory  ...

In order to synchronize two web applications, I need to intercept KEYCLOAK_SESSION cookie with NGINX from upstream response - sso.example.com and if such cookie is present, create another cookie SID (copy of KEYCLOAK_SESSION ) but for .example.com domain.

Is it possible with NGINX and if so, could you please show NGINX configuration for this?

I am on Debian Bullseye and just upgraded (or at least attempted to upgrade) MariaDB from 10.11.4 to 11.0.2.

Unfortunately, the service fails to start now. All I'm getting through systemctl status mariadb.service and journalctl -xe is pretty unhelpful, like (respectively):

● mariadb.service - MariaDB 11.0.2 database server
     Loaded: loaded (/lib/systemd/system/mariadb.service; enabled; vendor preset: ...

I have two applications on the server, which have different domain names but need to be on the same IP and port. How do I do this with Nginx?

With Apache, I can do this with VirtualHost blocks, but as far as I can tell Nginx server blocks require unique listen lines.

Statement

I do have a website that has a single page application hosted in S3, and a web service hosted in AWS Lambda. To avoid cross-site requests, both share the same domain, and I route the requests on an Application Load Balancer behind a PrivateLink (Interface VPC Endpoint).

The whole thing looks like this:

[Request] --> [Application Load Balancer] +--> [AWS Lambda]
                          ...

I have a Debian system installed on zfspool of 4 HDDs (like raid10 - raid0 of two raid1). And was displayed like set of 2 mirrors mirror0 and mirror1 each with 2 HDDs.

One of the disks became Faulted. As there was no more free slots in this server, I detached it by command:

zpool detach poolname diskname

And then unplug it physically, and plug in a new one. Now zpool looks like this:

zpool status rpool
  ...

This happened in the past and is no longer an issue. Status emails about planes are sent frequently and there was a period of time where those mails were delayed by hours. To try and include only pertinent information here is a couple of hops from one message header

Received: from flyht.aero (216.220.49.132) by
 YT3CAN01FT014.mail.protection.outlook.com (10.118.140.148) with Microsoft
 SMTP Server  ...

The client and server nodes are CentOS7.9/X86_64. If the HTTP POST requests were sent directly to the server, there are about 0.2% of cases that may timeout. If the HTTP POST requests were sent through an NGINX proxy on the client node, there are about 20% of cases will timeout. I've confirmed that only one backend node has this problem. All other nodes are 100% succeeded even with higher throughput.

I am running AWStats from a NAS networked drive on a Windows network. The apache sever log files are also on the NAS network drive and the path includes the network drive letter along with locations for the log files and AWStats.

I am running AWStats from a batch file also located on the NAS network drive from a Windows task.

This setup works fine on 3 of the 8 Windows machines, but AWStats fails w ...

Looking to upgrade corosync/pacemaker, a problem is that version 2 and 4 of corosync cannot communicate.

Having 3 nodes, on Ubuntu 20.04, seems like it will lead to a momentary split brain, will all nodes upgrade and come back on, even if I carefully put them on standby and everything falls over to 1 host.

So I'm thinking: what if I:

1. Made those IP addresses static
2. Do the upgrade on all machines
3. Hav ...

Scenario: We have two sites on Windows Server 2012 R2 running IIS8. There are two wildcard certificates for each domain. *pharmlogs that binds to the site and subdomains pharmlogs.com and *traxworx that should bind to domain and subdomains of traxworx.com (shows privacy security error for traxworx) If I uncheck "Require Server Name Indication" from traxworx.com, then the pharmlogs.com sites show the pri ...

I have recently installed an instance of GitLab CE using Docker. The application sits behind an Nginx proxy and I can access the login page without problems.

Unfortunately, I also cannot log into GitLab.

Apparently, some of the startup documentation for GitLab is out of date. Instead of a setup page that allows you to set the admin username and password (as some documentation describes), there is a  ...

I am working with a number of Kali images using various automation tools for a specific customer requirement. To cut a long story short I need to enable SSH on the Kali host but without actually 'using' the host itself. Is there a way to set SSH active by simply changing files on the hard disk? (i.e. so the changes would be picked up on boot/after a reboot).

I am able to start and stop the host ( ...

A colleague's Macbook refuses to make any remote connections from the terminal. For example:

macbook-pro% rvm install "ruby-3.2.2"                                                                             /.../API/FAIRsharing-API 13:18
Searching for binary rubies, this might take some time.
No binary rubies available for: osx/13.4/x86_64/ruby-3.2.2.
Continuing with compilation. Please read 'rvm h ...

(educational purposes)

Hey Guys,

actually i'm trying to create a company network (employee clients) with wireguard. Lets say its the subnet 10.0.0.0/24. The Wireguard Server is a Hetzner Cloud server, which has surely a public ip address (to be reachable for the clients to build up the internal network) and further its connected to a Hetzner private network (Layer 2) - Lets say its 192.168.0.0/24 (o ...