Latest Server related questions

I've got two ThinkServer RD440 servers and equipped them with the extension to use KVM via BMC Web interface. But it's not completely working: When starting the server I can send the F1 key to enter setup via the Java console, but then in BIOS no input is possible. Also Ctrl+H to access RAID-Config and when the installed OS is started no keystrokes (including macros) are recognized.

On server sid ...

I’m not receiving emails on my business gmail account domain. When people message me they get a bounce back message. How can this be solved.

enter image description here

since Object-GUID is a non replicated attribute, then how All DCs have same object-GUID for an object?

how object-GUID is replicated to all DC

I have the following setup on my local network:

• A local DNS server running at 10.0.0.102
• On the router i have set the primary DNS to 10.0.0.102 and secondary to 8.8.8.8
• An Ubuntu server running on 10.0.0.106 with a DNS entry "myserver.lan" on my DNS server

Now on my windows pc I can ping or ssh into myserver.lan without issues. On my Ubuntu server however I cannot and I just can't understand how Ub ...

I have a MySQL table on a Ubuntu or CentOS machine which contains rows on when to start and stop a bunch of 1000 AWS / Azure servers.

Right now its implemented in such a way that a cron is running every minute to check the rows data and start / stop the respective servers.

I want to know if there's a more efficient method to achieve this ?

I am using an amazon linux 2023 box and i joined the instance to domain using realmd.

The issue is that when i try to login with my AD credentials, the user directory is being created as /home/username@domain instead of /home/username.

Here is my /etc/sssd/sssd.conf file:

[sssd]
domains = avengers.local
config_file_version = 2
services = nss, pam
default_domain_suffix = AVENGERS.local

[domain/avengers ...

Please help. I've read so many topics of not-quite-the-same problem and none of them have guided me to my answer. When trying to connect to a server using any FTP client, I get this error:

/etc/ssh/ssh_config: line 2: Bad configuration option: 2020/07/17
/etc/ssh/ssh_config: terminating, 1 bad configuration options

I've enclosed a screenshot of my ssh_config file. What do I need to change and how do ...

There are a million site-to-site and host-to-host examples. I can't seem to find a single site-to-host example. I am looking for the most basic possible example with no certificates at all, that just listens and accepts with a simple username and password from any ipaddress, one that will work with the built-in windows client.

EDIT: When I try the roadwarrior examples it just says my username or  ...

I'm setting up nfs4 ACLs on directories for users that are not local Linux users. I can use chown 23524356:474688 dir and that works. But what does the OWNER@ ACE represent? Is it an alias to user 23524356?

To reload firewalld I could use:

• firewall-cmd --reload or
• firewall-cmd --complete-reload

How do those differ from:

• systemctl reload firewalld and
• systemctl restart firewalld

Is there an alias for deny that I could use? So far I have not had any luck removing the EVERYONE@ ACE. Maybe that a bad idea. You tell me.

I was just able to nfs4_editfacl and change the A::EVERYONE@rxtncy to D::EVERYONE@rxtncy. I'd still like to know how to do the same thing without having to use the editor.

There are two servers with the same VIP, and when one server curls another server, the reply packet (which has src addr same as lo addr) seems to be dropped by the request server. How can I allow it?

edit: only on ipv4, ipv6 work, rp_filter off, forward on

Context: I have an ipvs LB that also acts as a router that connects to a server over layer 3. When I curl with VIP less from the LB, everything w ...

I have THALES TOTP hardware tokens (MFA) which I would like to use as and additional protection against the accidental S3 object deletion (https://docs.aws.amazon.com/AmazonS3/latest/userguide/MultiFactorAuthenticationDelete.html)

I know how to do that via AWS CLI and that it can be only enabled by the root of the account. But what I do not understand is who should be owner of the token devices? It  ...

I have a web app running in LAMP server now I want to have some features transferred to web socket without changing the directory structure which means the root directory of the web app should be secure HTTP and the "websock" directory under the root to be a web socket application directory.

I have my web pages are working but besides I want websock directory also work

/home/webuser/www/html/app.mydom ...

Under RHEL7 we have a logical volume consisting of 27 volume groups PVs. Each of these VGsPVs was added sequentially as we ran out of space on the LV.

We do not have a backup of the data. There are no snapshots of the VM.

Recently it refused to mount with a "Remote I/O" error.

I turned this over to our sysadmins, who have basically said there is nothing more that they can do. They specifically t ...

i have an exchange server in a small office, and a synology web server running the website. Iam forwarding https 443 to my exchange server from my router for owa/ecp etc with a SSL. The synology NAS running my website is just using 80 right now, id like to add a SSL cert to the website for this id need to forward 443 to the NAS also.

so right now the flow is - external 443 > mydomain (my publi ...

Recently, our server shut down out of nowhere, this what Apache logs show up:

[wsgi:error] [pid 8837:tid 140646648096512] (2)No such file or directory: [client] mod_wsgi (pid=8837): Unable to connect to WSGI daemon process 'project' on '/var/run/apache2/wsgi.22155.8.1.sock' as user with uid=33., referer: http://project.com/login/

I fixed it by running a sudo service apache2 restart and everything is bac ...

Is there a keyboard shortcut to lose focus of a TigerVNC viewer window in full-screen mode so that Alt+Tab can be used to switch windows of the host system?

I'm looking for something like Ctrl+Alt+← in Hyper-V VM viewer or Right Ctrl in VirtualBox.

I'm aware of sequence [Menu key] f allowing to escape full-screen mode however it's a bit cumbersome.

Or possibly is there a way to define such keyborad sho ...

new to linux/ubunutu environments and currently helping do some admin work on a perforce server, needing to free up space on the / directory, read that rotating logs is the best way to do so.

Upon trying, I get "Access for user 'admin' has not been enabled by p4 protect. Any and all advice is greatly appreciated. Previously i had good luck using the "gzip" command to free up space, but now that t ...

I have 2 networks that are configured just about identically. The both have the same Router - Mikrotik RB2011UiAS-RM, with a direct fiber link to the ISP. I am using the same ISP for both networks. My first network has been up and running with no significant issues for about 4 years now. The new network has been up for maybe 2 months. I have patterned the second network after the first so they are  ...

I built a new server using Amazon Linux 2023 and I join it to our domain avengers using realmd.

I am however getting an issue where i can't login to the server with this command [email protected] but works if i do mervin@[email protected].

Can someone help please ? i want it to be able to ssh using just the username of the AD account [email protected]

I'm looking for a way to import an aws_spot_instance_request into Terraform.

I already made a Spot Request on AWS console, now I would like to put this request on my code. How can I do that?

In the Terraform documentation there is no mention how to import it, but there is instructions on how to do it for aws_spot_fleet_request.

I want to setup a new webserver for public shared hosting under Rocky Linux 9 with apache.

Our old webservers (CentOS 7) have the mpm-itk module installed which assigns a userId and groupId to every request coming in. So if I chown the webfolders of the customers no cross access is possible.

So far so good, but the mpm-itk module is fairly old and therefore not part of the standard repos of RHEL/Cen ...

I have 20 computers in my office network and all the computers run windows10 except one which is running Ubuntu. I have setup a samba share on that machine so that others can access the share drive which I have mapped as a network drive. This worked fine for months and today for some reason the drive shows the capacity on Windows "This PC" , but when opened it says, It is empty. I tried booting one of t ...

Attackers are repeatedly using the same off-the-shelf exploit to attack my server. It doesn't work because my server is patched and I have some server side modules to prevent the exploit.

However I am wandering how I can get the AWS WAF to block these attacks as I assume it is preferable to block these upstream so to speak.

The exploit is to a Joomla CMS. They are attempting this exploit:

https ...

I am trying to integrate our self-managed GitLab 15.9.3-ee instance with our Azure AD. Using Azure AD as the IdP for SSO in to GitLab, I have been using the documentation here:

https://docs.gitlab.com/ee/administration/auth/oidc.html

https://docs.gitlab.com/ee/integration/omniauth.html

https://docs.gitlab.com/ee/integration/azure.html

to set up OmniAuth to use OpenIdConnect to access our login.microso ...

I want to add eight public keys via instance metadata to avoid adding them manually (i.e.: ssh to VMs, pasting the keys to .ssh/authorized_keys, etc.).
I added the keys in Terraform (four distinct keys for two users) using the metadata attribute of the google_compute_instance:

resource "google_compute_instance" "host" {
  count         = var.number_of_hosts
  
  // vm details...

  metadata = {
    "s ...

I am performing the same task, upgrading the azure VM public ip SKU from basic to standard but using terraform code. My plan is

1. Disassociate nic from UI
2. Include SKU = "Standard" in my existing terraform VM code (IP allocation is static and is not specified to any zones)

I executed terraform plan but didn't find this particular change.

I am a complete beginner in terraform. Can anyone suggest whether  ...

We mount NFSv4+krb5 shares with automount, and it works fine. We are now trying to mount home directories with nfs4 and automount. We get the directories mounted, but still get some directories/files mounted as "nobody". Mounting the same directory manually doesn't give us a problem. So I decided to mount these home directories using pam_mount. It works fine for me, but some users still get nobody ...

I have a VLAN interface (enp98s0f0.4000) set up on my KVM host, which is a Hetzner dedicated server. The VLAN is set up to route through a Hetzner vSwitch, and I can ping out to Cloud instances sitting on the other side of the vSwitch (for the sake of example, I can ping to a Hetzner Cloud instance at 10.0.0.3 from the host just fine).

I'm trying to configure networking such that a VM running on the ho ...