Latest Server related questions

I have a nginx server functioning as a reverse proxy. It is sat behind Cloudflare.

The website is functioning fine (there are no errors on the browser), but there are lots of warnings in the logs like this:

[info] 1187517#1187517: *2446393 SSL_do_handshake() failed 
(SSL: error:0A000412:SSL routines::sslv3 alert bad certificate:SSL alert number 42) 
while SSL handshaking, client: 127.0.0.1, server: 0. ...

I have a Kubernetes cluster, every node is located in a different network (different data centers) So I need to route a public IP address range to this cluster and use those IPv4 addresses within the cluster using Multus CNI as the second network interface for VM pods (KubeVirt).

The first scenario in my mind is creating a virtual network and connecting those nodes to that using a VPN or so on, t ...

Server version: Apache/2.4.6 (CentOS) Server built: Nov 5 2018 01:47:09 centos-release-7-6.1810.2.el7.centos.x86_64

We are trying to solve a reverse problem and we need you help Reverse proxy Apache should send a %2C in url but instead send a classic comma , other lines without comma are OK.

example

attended by software : GET /xxxx/rest/typevt/contexte/actif/INDORI%2CACTREAL%2Cnull HTTP/2.0 200 15

I am currently working with Azure Front Door to create sub domains for my websites

We have a (third party) wild card certificate for a website (bignose.com) and we want to create the subdomain pick.bignose.com.

I am using azure front door for this, since the application is run in an Azure Webservice Azure Front Door Sub domain gives a CNAME error

Azure front door tells me to add a txt record in our DNS ...

How to send k8s audit logs to multiple servers/endpoints?
I tried to

• pass multiple --audit-webhook-config-file arguments to kube-apiserver
• add another cluster to the webhook config file

but these modifications are invalid and the kube-apiserver won't start up.

During the stop of the apache service, the httpd -prefork processes take 100% load on all cores and take up all available memory, as a result of which the oom killer is triggered.

Stop command: ExecStop=/usr/sbin/start_apache2 -DSYSTEMD -DFOREGROUND -k graceful-stop

Why is this happening and how can these loads be reduced? This happens every night at logrotate.

Server version: Apache/2.4.23 (Linux/SUSE ...

I have two problems related to Postfix.

1. I have 4 local mailboxes on my mail server :

• [email protected]
• [email protected]
• [email protected]
• [email protected]

The mail is fetched via fetchmail and is split from the catchall mailbox [email protected] to local mailboxes.Everything that is not addressed to qaz, yhj and qwe should go to other.

I also have redirections set up on some addresses that are sent to ...

I currently configure a Webserver with SSL certificate on a Red Hat 8 machine. I could not run properly apachectl configtest returning Invalid command 'SSLCertificateFile', perhaps misspelled or defined by a module not included in the server configuration

I found that the module mod_ssl is missing since I simply tried yum install mod_ssl which match no repository in Red Hat 8. Then I searched on

i use netplan to assign ip address with vlan on my ubuntu 22.02.

i disabled dhcp for enp2s0 which is parent of my vlan.20.

But It has dhcp random ip addresse. I want to disable. how to do this?

$ cat /etc/netplan/02-netcfg.yaml
network:
  version: 2
  renderer: NetworkManager
  ethernets:
    enp2s0:
      dhcp4: no //disable 
  vlans:
    vlan.20:
      id: 20
      link: enp2s0
      addresses: ["192.1 ...

I have a very old physical server using many disks in a number of RAID6 group. Those disks are not in the same chassis, instead is a JBOD system connected through the RAID controller on this server. In one of the RAID group, I had a disk failed. After replacing the failed disk, below is the storcli output:

$ storcli /c0 show
…
---------------------------------------------
DG Arr Row EID:Slot DID Type  S ...

I have two completely separate tenants in Azure. PROD tenant hosts a zone in Azure DNS. I want to delegate a subdomain (sub-zone) to a DEV tenant also running Azure DNS. Is this supported? If yes - how do I do it?

If this isn't supported, then what would be a sane and secure way to grant users in DEV tenant to edit DNS records for that subdomain in the PROD tenant?

The prerequisite is:

HostA: (can access public machine, can't access hostA and hostB)              CentOS 7
HostB: (private machine, I can login, and it can access hostA and hostC,  )   CentOS 7
HostC: (private machine, svn server， IP:)

I need to hostA to "svn co http://hostC_IP:port/svn_repository".

And I set a "screen -dmS svn ssh -R HostAPublicIP:11002:HostC_IP:80 user@HostA_PublicIP -p2222" on host ...

We have a domain served by CloudFront and now we need to add a reverse proxy using Nginx (unfortunately the reverse proxying capabilities of CloudFront are insufficient for our use case). My question is, where should we put this Nginx server?

1. Before CloudFront - In this case my fear is that we are completely loosing the benefits of the CDN. The entrypoint is Nginx which means we can't leverage the edge  ...

My mail server (sendmail) has a bridged DSL connection running PPPoE to the outside world.
The network interface is initially assigned an IP address for my domain, but when PPPoE starts the IP address is forced to one from my ISP which is not in my domain, and I have no control over it or its reverse-dns.

This IP addr is the one which appears in the envelope for outgoing mail; e.g., outgoing mail is re ...

I am facing a very strange issue which I cannot solve. Basically, I have 2 VPS machines which I connect via RDP as they are both Windows Server machines. I have cURL on both of them. One is running Windows Server 2016 which we will call SERVER A. The other is running Windows Server 2022 which we will call SERVER B.

If I run curl https://jira.mysite.com:2053/rest/api/2/serverInfo on SERVER A, I get a val ...

I am supporting Windows again after many years. This client I'm assigned to has Domain Controllers running 2008r2 and 2012r2 and they want Azure AD Connect Password Hash Sync. The minimum requirement for this is a functional level of 2016.

I installed a new Server 2019 instance, migrated the FSMO roles, and ensured all DCs are replicating to each other. I created a new domain user and ran the log ...

I’ve just replaced a SAS drive that was reporting a smart error and had orange led indicating problem.

New drive is in and no more orange light, green light flashing as normal but ILO still reporting smart error. Should it still say this until it restores the new drive? From memory I thought it would remove the error immediately.

This might be blatantly obvious, but I cannot install a package from the remi-modular repository, despite having added the repo file in the /etc/yum.repos.d/ and validating it.

I have attempted clearing all the repo cache on the system and also ran a makecache command using both dnf and yum. The package does appear to be present in the rpms website of Remi, however I cannot install it from the co ...

Hi I have searched all around to find this case.

I have a PC WITH 3 disk a main disk with os completly destroyed an another couple of disk with LVM on it

If I mount it under linux I can do:

    sudo su
root@mint:/home/mint# lvmdiskscan
  WARNING: Metadata location on /dev/sdb at 5632 begins with invalid VG name.
  WARNING: bad metadata text on /dev/sdb in mda1
  WARNING: scanning /dev/sdb mda1 failed to  ...

Two Helm chart for managing db cron jobs and monitoring cron jobs separately . Which k8s components can i use ? as k8s deprecated CronJob kind from v1.25, https://kubernetes.io/docs/reference/using-api/deprecation-guide/#v1-25 . Please share example and also how to test in my environment .

I am trying to set up oauth2-server to set up GitHub authentication before reaching my code-server. I am using Nginx and Cert bot to deploy the server.

This is what I have configured in Nginx to connect to the oauth2-proxy

location / {
   proxy_pass http://127.0.0.1:4180;
   proxy_set_header Host $host;
   proxy_set_header X-Real-IP $remote_addr;
   proxy_set_header X-Forwarded-For $proxy_add_x_forwar ...

I have a computer that has a wireless connection and has an ethernet. I need to communicate with a connected device through a local network created between my computer and this device (communication will be done via TCP/IP using socket).

For this communication, I need my computer to have the IP 192.168.0.57 (will be the host) on the ethernet. The other device expects to have the IP 192.168.0.201, ...

Is there any CLI/CMD way to check the supported (RDP) TLS version on Windows 10? I don't know if the RDP TLS will be equal to that of Windows SSP TLS, but I suppose yes. By default, Windows should apply the highest supported TLS encryption to RDP, should it?

I used this reference sheet with the SSP version matrix

https://learn.microsoft.com/en-us/windows/win32/secauthn/protocols-in-tls-ssl--schannel-ssp- ...

I recently installed docker in a RHEL 8 that rely on a proxy for HTTP/HTTPS connections. Setting environment vars in /etc/systemd/system/docker.service.d/http-proxy.conf made docker working fine:

[Service]
Environment="http_proxy=http://192.168.10.40:8080/"
Environment="https_proxy=http://192.168.10.40:8080/"
Environment="ftp_proxy=http://192.168.10.40:8080/"
Environment="HTTP_PROXY=http://192.168. ...

I would like to provision compute (servers), gpus (say 2 A100 80GB or H100), storage and network (may be 100GbE) to run OpenApaca 7B (https://huggingface.co/openlm-research/open_llama_7b) model.

How do I go about sizing this? AWS/GCP cluster sizing is okay too.

I have a Server 2019 server that I configured Windows Event Collector on. I have six systems successfully sending logs to it (specifically AppLocker logs). I'd like to expand this to to about 20 systems sending logs, plus I'd like to forward Security, Application and Setup logs. But I don't want all the logs from the four event logs, from every server going to Forwarded events. I'd like to create new ev ...

I have IIS 10 running on windows server 2022, wordpress website running php is setup on iis. Everything was working fine until we decided to upgrade php from 7.4 to 8.0. now the website is painfully slow. It takes 10-20 seconds to load first page and then even more for other pages. I am responsible for maintaining infrastructure not for website maintenance. I am beginner in this setup, tried multiple th ...

I am working on setting up a reverse proxy for my Odoo service but I am getting an error of "too many redirects". I am using Cloudflare and their origin certificates that would be placed on the nginx reverse proxy. Below is my latest NGiNX config that fails with too many redirects:

#odoo server
upstream odoo {
server 192.168.4.100:8069;
}
upstream odoochat {
server 192.168.4.100:8072;
}

# http -&g ...

We need to block Logitech Unifying dongles now that it's public knowledge you can both sniff\decrypt keystrokes, and also inject keystrokes.

Is there an easy way to block these common dongles with GPO or InTune?

All I have so far is a PowerShell script to disable devices but this would have to be run after the device is plugged in, which is reactive and not preventative.

# Disable Unifying receiv ...

Here's a log line from an appliance coming in as UTC:

<166>2023-06-13T16:03:44Z ..................

We store this as in files, in Europe/London timezone:

destination d_all {
    file("/srv/logs/$HOST-$FACILITY-$YEAR-$MONTH-$DAY-$HOUR.log"
         time_zone("Europe/London");
};

The time_zone("Europe/London") here works in that the log lines themselves have been converted. However, the $HOUR  ...