Latest Server related questions

Server version: Apache/2.4.37 (Red Hat Enterprise Linux) Apache is launched as a container in the Openshift cluster.

I am using Apache as a forward and reverse proxy for Kibana.

Mandatory requirement is use Kerberos and need a role model to differentiate access. I created in elasticsearch admin and viewer users. Depending on the LDAP group, the Apache must transmit either a header with the administr ...

In my cloud environment, I have a bind9 server functioning as a proxy for all outgoing DNS queries generated in the environment. I'm currently trying to configure Bind to perform the following filtering as part of its name resolution flow -

1. Allow recursive resolution for some zones (let's say, aws.com and gcp.com)
2. Do not allow queries to any other zones, including those holding the CNAMEs for th ...

We have three server instances, Nginx/PHP, PostgreSQL, and ELK stack. My idea is that the PHP server would allow public access for ports 22, 80, and 443, ELK server would have open port 5601 for public access, but all other intercommunication is only allowed through their private IP addresses.

Do I need to hide them all behind a VPN as well? What are the benefits of that? VPN would have no other  ...

We are using Ngnix as a cache-proxy in front of a 3rd party service and have the following directive to ensure upstream responses with a status code of 200 are cached...

proxy_cache_valid 200 364d

The problem is the 3rd party service returns a 200 when no results are found for the given search. This is indicated by a JSON parameter in the response body, docs: [].

Is it possible to use the proxy_no_ca ...

I have

1. an application which consists of a .NET Core 3.1 console app
2. and a .NET Standard 2.0 library.
3. The console app calls the library which uses System.Net.Http.HttpClient to call a https://... API.
4. The entire application runs on Windows Server 2016 Datacenter (Version 1607 Build 14393.4704)

When using the HttpClient I do this

HttpClient client = new HttpClient();
client.DefaultRequestHeaders.Add("WW ...

This question relates to a Debian server with KVM and a Windows guest running on it and UFW 0.36.1. The server has a local subnet 192.168.0.0/24 and KVM has its own subnet 192.168.122.0/24 through virbr0.

Unfortunately, UFW is quite verbose in filling log files. I would like to deny some broadcast traffic so that it does not flood my log files. I was able to deny broadcast traffic on the local ne ...

I'd like to install a specific version of PostgreSQL in RHEL 8 with dnf. To achieve this I followed the PostgreSQL guide : https://www.postgresql.org/download/linux/redhat/

But actually I can only install the last version (12.9) not the 12.4 (the version I want). The version is however present in the repository :

See : https://download.postgresql.org/pub/repos/yum/12/redhat/rhel-8.5-x86_64/

If I list  ...

To log all http/https requests by a specific application, we use man-in-the-middle proxies (set as http or SOCKS5 proxies). On our local Windows and Mac machines, we usually 'proxify' apps or temporarily set a system-wide proxy. This works like a charm for any app we can think of. On our remote Linux boxes, truly system-wide proxy are causing connection problems (and it's also somewhat harder to achieve ...

As the title says, I would like an HTTP filter to apply only if the request is for certain URL path. Doing this at the route level is not possible, because my route is defined like this:

- match:
    prefix: "/api/"
  route:
    cluster: some_backend_service
    prefix_rewrite: "/"

But I would like to apply different (security related) filters for /api/foo than for /api/bar. I can't seem to find ...

I tried to install telnet using yum with the following command:

yum install telnet

But I get the following error: Error

How can I solve this and add third party repositories?

Did someone have been trying to do something like that, to suspend ( deactivate ) the admin account and continue working with openstack on another account?

I have an OpenStack version 2.3.1 ( do not ask why :D ) installed on ubuntu 14.04.

I have a PHP application which is attempting to open a socket connection to a printer through my router.

A couple things to note - my networking skills are lacking so I may be missing something obvious or this may not even be possible in the way I want it to be. That being said, I have done a bunch of searching on the issue and can't seem to find anyone with this exact issue (just lots of people  ...

From the exports(5) man page, in the "User ID Mapping" section, it says:

User ID Mapping

...

Very often, it is not desirable that the root user on a client machine is also treated as root when accessing files on the NFS server. To this end, uid 0 is normally mapped to a different id: the so-called anonymous or nobody uid. This mode of operation (called `root squashing') is the default, and can be ...

I have poked around in all similar topics and can't seem to cut through this one.

My set up: 2 different JS apps served through their index.html files:

/var/www/html/original_dir/dist -> served from my.awesomesite.com

/var/www/html/not_so_original_dir/dist -> served from my.awesomesite.com/oldie

server {
  root /var/www/html/original_dir/dist;
  index index.html;
  server_name my.awesomesite.c ...

I'm changing a node setup from node 14 x64 to node 14 arm64 in an Amazon ECR (Docker) entry.

It build with no problem when I use this image: FROM aws/lambda/nodejs:14 and this command to install sharp RUN npm install --platform=linux sharp

Now I need to use Node 14 arm64 image, but it launches this error while building with Sharp JS (Linux arm 64):

Dockerfile:

FROM public.ecr.aws/lambda/nodejs:14-a ...