Latest Server related questions

The company at which i work, requested to copy all emails sent to a specific external email address(bcc those emails to an internal monitoring email account). They specifically asked for one recipient account, and not for all the outgoing emails. Is it possible to implement this in postfix?

The postfix server uses virtual users (set up in a plain text file, not mysql)

Host cannot send mail over relay host with port 587.

I have two servers. One mail server and one server that uses the mail server as a relay host.

The client server should send over Port 587. A telnet connection is possible between the client and mail server on port 587. But trying to send mail results in the following lines (/var/log/maillog):

May 23 07:16:56 mail postfix/smtpd[15476]: connect from HOST ...

So, I have a Node.js server on render.com. It has only 2 files (server.js and index.html). But, when I load myservername.onrender.com/index.html, the request for file index.html fails and throws 502 Bad Gateway. server.js contains this:

const http = require('http');
const ws = require('ws');
setInterval(()=>{}, 60000);
// Create an HTTP server
const httpSrv = new http.Server(function(req, res){  ...

Hi I'm someone relatively new to openstack. I setup the cloud using microstack on an Ubuntu 22.04 machine(Fresh install). I used the following to set it up. Initially when we setup the cloud, we ran into the invalid image identifier or unable to access requested image (HTTP 400) which we solved as mentioned by jimkeon in the link. Next we followed the normal microstack multi-node deployment instruct ...

I'm using firewalld with the iptables backend. I added "direct" rules for ssh connection limiting:

sudo firewall-cmd --add-port=22/tcp

sudo firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 \
  -p tcp --dport 22 \
  -m state --state NEW \
  -m recent --name ssh --set \
  -m comment --comment "limit ssh connections per ip"

sudo firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 1 \ ...

I am trying to apply a salt.states.alternatives to set my default java to java 11. However, I need to put in the full path for the openjdk, which includes the version number that changes every time there is a version change (meaning I have to update salt state frequently):

set-java-11:
  alternatives.set:
    - name: java
    - path: /usr/lib/jvm/java-11-openjdk-11.0.19.0.7-1.el7_9.x86_64/bin/java
 ...

Background

We use Ansible/AWX running in Kubernetes (awx-operator) to manage workstations with dynamic hostnames. Authentication is handled by Red Hat IDM (FreeIPA) and the same credentials are used to log in to each workstation.

The problem

Hostnames don't always update immediately, and sometimes Ansible connects to a host the wrong host (e.g. DNS for test1.domain.local -> 172.1.1.10, which actuall ...

I need to configure two websites that need to have access to two different network folders (for example website1 needs access to X:/netfolder1/ and website2 needs access to X:/netfolder2/)

I've read the following two articles:

https://learn.microsoft.com/en-us/iis/manage/configuring-security/application-pool-identities

And

https://learn.microsoft.com/en-us/troubleshoot/developer/webapps/iis/www-authentic ...

#!/bin/sh

 

#grab oldest file from queue

stuff=\`ls -1 /var/spool/lp/requests/localhost/ | /usr/bin/head -1\`

#pull printer name from lp requests (first line in file)

puff=\`cat $stuff | /usr/bin/head -1 | sed -e 's/-.*//' -e 's/$/ is having issues printing from /'\`

 

if [ "$(ls -A /var/spool/lp/requests/localhost/)" ]

then

        echo $puff | /usr/ucb/mail [email protected]
else

        echo lp que ...

Using LVM, I would like to create a mirror of a LV, sync it, break it off, attach the mirror-piece to a different system, use it there.

Start with a ordinary linear LV. Here is the procedure I have:

#### create a mirror
##   variables
OLDPV=/dev/sdf
NEWPV=/dev/sdj
VG=somevg
OLDLV=data
NEWLV=mirr

## add storage to machine, put it under LVM control, add to $VG
pvcreate -vy $NEWPV
vgextend -vy $VG $NEW ...

I installed WordPress from the Google Cloud Marketplace into a Compute Engine instance, and am trying to connect to the MySQL instance on that machine using DataGrip on my local machine (macOS).

I can connect in the SSH terminal, so I know the instance is up and running and the credentials are correct.

I have opened the port (3306) on both ingress and egress on the VM and I have the external IP. How ...

In the company I work for, we occasionally need to build out servers which we sell to clients. Part of this process includes installing an OS, and in the past, we have used Windows 10 Ent. IoT and Windows Server 2019. Now, with the release of Windows 11 Ent. IoT recently, we are hoping to switch to this OS.

I currently have a flash drive which I purposed into a Ventoy bootloader for the housing o ...

I am having similar issues to this Bitlocker GPO automatic? However mine is not permissions based. It does not matter what user I log in as normal user to domain admin.

RSOP shows the policies applied, GroupPolicy operational log shows they processed properly.

Bitlocker log shows this, which looks like a smoking gun...

Drivers for this device list 1968 as publish date, but after a quick google search, ...

I created a new EC2 instance, generated a key with PuTTYgen and was able to successfully log in on my machine using Pageant and PuTTY as well as WinSCP. My security group is open to all IPs, but my developer in another state (I'm in the US) is unable to replicate this same log in procedure, even after remoting into my machine to see exactly how I accessed the server. He gets a permission denied error. A ...

A SSL Report from SSL Labs for a domain of mine indicates that ECDH key-reuse (ECDH public server param reuse) is happening on the IIS 10 (Windows Server 2016) with TLS 1.2. I have verified it with TestSSLServer and testssl.sh.

I am not able to find a solution on the big Internet to disable the ECDH key-reuse on IIS 10. It does not seem to work with MaximumCacheSize nor ServerCacheTime.

Can anyone o ...

I have an HPC with 17 nodes running CentOS 7 and a dedicated Mellanox SX6036 Infiniband switch, each node has an Infiniband FDR interface.

Recently one node started giving errors and a quick look showed that the ib0 IPoIB interface was down.

4: ib0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 4092 qdisc pfifo_fast state DOWN mode DEFAULT group default qlen 256
link/infiniband 80:00:02:08:fe:80:00:00 ...

I have OpenVPN server installed on debian (public ip 90.191.183.193). I run OpenVPN client on Windows 10, put generated .ovpn file and connect. I can see devices connected to the network the server is running on, however, I can also see devices, connected to my local network, which I don't like. Here are some files:

openvpn.conf

server 192.168.255.0 255.255.255.0
verb 3
key /etc/openvpn/pki/private/90.19 ...

I have a very strange problem. First of all. I have 2 servers

1. VDS server with (for instance) IP 100.11.100.22 (vpn ip: 10.8.0.1)
2. Server behind the VPN (ip: 10.8.0.7) with iredmail (postfix, devcot, etc)

And I routed all ports 143, 587, etc and all OK, but only 25 port does not work. What I do

1. If I do nothing, I can send email from 10.8.0.7 and telnet google.com 25 worked
2. But if I add code on the ...

I have an API hosted on a docker image which worked in the past, but which now is failing to work except on the host machine. I can successfully run queries using either localhost or the machine's local IP address from the host machine, but when I try to query from a remote computer, I get the "EOF occurred in violation of protocol" error, both from my browser and from the requests Python package. Th ...

Goal: I need to load a PHP website (7.4) running NGINX using ASDF plugin. (Mac OS, M2 processor, NGINX and ASDF installed)

issue: when I load the website via nginx I get this:

Fatal error: Composer detected issues in your platform: Your Composer dependencies require a PHP version ">= 7.4.0". You are running 5.6.40. in /usr/local/var/www/my_sulu_project/vendor/composer/platform_check.php on line 25 ...

I recently moved my domain from GoDaddy to DigitalOcean and the DNS records updated successfully. Then a subdomain was created on DigitalOcean called cms.eminenceconstructionlv.com. The NS records appear to have been assigned but not the A record. I used the dig command line tool to check the subdomain and there was no ANSWER SECTION in the response as expected, just an AUTHORITY SECTION with the  ...

I have an http software that let people be logged and download data according to sent bytes. It's an infinite download until connection stopped. I want to know the time for each download.

The connection is like that:

• Curl start login with header/user etc
• HTTP server answer and start connection
• curl send bytes -> the server answer each times

Before, I were using only curl -so /dev/null -w '%{t ...

We have a hybrid active directory set up between our servers held in a DC and our Azure AD.I am currently working on the configuration of our Autopilot and Intune deployment. At the moment we deploy new laptops manually, so I am looking at our configuration to make it more of a white glove experience.  

The devices will have line of sight access to a DC via a point to site VPN connection, but a ...

My company has an existing Windows AD DNS zone that I do not directly manage (but i know the folks who do manage it). The zone will accept dynamic updates, but the updates must be "secure". I have a Linux box (it runs an IPAM system) from which I'd like to send arbitrary DNS updates to AD. How can this be done?

This looks like the same issue as Windows Server 2022 Time Service Jumping into the future. I've also added a support ticket at Microsoft (Feedback Hub) for the issue: https://aka.ms/AAkwnpl

As the system clock is essential for correctly working software and probably the most central shared mutable state, this issue is wreaking havoc on both our systems and everyone we communicate with, causing ri ...

I have a domain environment with 4 2012 Domain Controllers that I am working on replacing with 4 new 2022 domain controllers. I have some questions regarding how the CA works when issuing certificates to domain controllers for LDAPS authentication.

All 4 2022 domain controllers are now online and there are no issues with replication, however LDAPS doesn't work on 3 of the 4. I determined that the ...

Let me start with context. I have react app that takes around 8192MB to during build. Deployment to GAE has been failing as fax memory we can have is 3072 MB (using instance_class: F4_1G).

I was wondering we can we specify more resources during build on GAE deployment? After build app can run in smaller server like F2 (768 MB).

I been trying install openstack overcloud with tripleo but not work container-puppet-rabbitmq container.

===environment===

Hypervisor : Vmware

VM#1 : Undercloud

VM#2 : Overcloud_Controller

VM#3 : Overcloud_Compute

OS : Centos stream 8

Openstack Version : Wallaby

===deploy logs===

2023-05-22 17:29:06.370739 | 000c29c7-41d9-74b1-3404-00000000354f | TASK | Create containers managed by Podman for / ...

I'm creating a brutally simple HTTPS server on render.com using Node.js, which upgrades to WebSocket communication. Here's the code:

    const https = require('https');
    
    // Create an HTTP server
    const server = https.createServer((req, res) => {
      res.writeHead(200, { 'Content-Type': 'text/plain' });
      res.end('okay');
    });
    server.on('upgrade', (req, socket, head) => ...

We have on-prem cluster. I am trying to cordon a node using kubectl cordon <node> the command is successful, but when I am running command kubectl get nodes I see nodes is still ready. Where should I check next?

I didnt find any error in api-server. Where should I check? Etcd logs (how to check them) ? Scheduler?