The whole list of all files found with find / -perm -4000 -print and find / -perm -2000 -print commands (same) are on the screenshot. So is it an efficient and safe thing to delete SUID, SGID from all of them? Or it won't give any additional safety and just meaningless? Thank you in advance!

There is only one added user and we won't add any more users.

List of found files

I want to change the postfix or system configuration to have all the information of each month saved in mail.log, mail.err, and mail.info.

The system or postfix make new empty files after reaching some kb or maybe it has another form when the gz files are created.

How and where can I change that in system or postfix cfgs?

os is debian + standard postfix/dovecot cfgs.

I'm wondering about the difference in performance, security and scalability for nginx and ssh tunnel for a web application.

For my case, I have a VPS set up, whos only job is to forward the traffic to my home router. This traffic travels between the 2 servers unencrypted (HTTP) and I think it would be easier to use a SSH tunnel for this case instead of having to set up HTTPS twice.

I could not find  ...

I try to install mongodb on Debian 11 in a proxmox VE 7.1 container as described in this tutorial https://www.mongodb.com/docs/manual/tutorial/install-mongodb-on-debian/

But I get the following error:

error setting ownership of './usr/bin/bsondump': Invalid argument

uname -a
Linux chat 5.13.19-2-pve #1 SMP PVE 5.13.19-4 (Mon, 29 Nov 2021 12:10:09
+0100) x86_64 GNU/Linux

Here the full log:

root@ch ...

I manage some Debian 11 server VMs using Vagrant. Sometimes I need to vagrant suspend them, and I noticed that after vagrant resume, their system time is off. Running systemctl status ntp shows the NTP service is turned off by a failure. I could solve this by restarting NTP manually after vagrant resume, so I wanted to add a trigger to the Vagrantfile:

config.trigger.after :resume do |trigger|
   ...

OS - debian 9-like, PC, not a VM. So, the first start was ok but with no GUI. I decided to install video driver for Nvidia card, did it from tty1 but caught a problem after reboot. It was booted only into "initramfs".

"Warning: couldn't identify filesystem type for fsck hook, ignoring"

I guess that there is a trouble with UUID or so in /etc/fstab.

disk layout

I ran a service on my host (lightdm) that runs a gui on my debian server, but when I enter my password it bricks on authentication.

Is there a way to either A) enter command line before gui startup/started or B) Login from a live CD?

I didn't have SSH configured yet.

We have the following Dockerfile:

FROM debian:stable-slim

ARG DEBIAN_FRONTEND=noninteractive

RUN apt-get update && apt-get full-upgrade -y && apt-get install -y --no-install-recommends \
    systemd \
    procps \
    apt-utils \
    build-essential \
    postgresql-server-dev-all \
    postgresql-plpython3-13 \
    pgxnclient \
    libc6-dev \
    wget \
    python3 \
    python3-pip \
 ...

I have a Debian machine, I can see that a React website is running on port 4173 but can't find out where it is so that I can change the port.

I assume it is in some config file somewhere.

• it's not in package.json

{
  "name": "debiantest",
  "private": true,
  "version": "0.0.0",
  "scripts": {
    "dev": "vite",
    "build": "vite build",
    "preview": "vite preview --host"
  },
  "dependencies":  ...

I installed Debian 11.3.0, upon first boot, it appears to crash right after entering the LUKS password. No oops or kernel panic or other errors or warnings.

The freeze occurs immediately after this:

cryptsetup: sda3_crypt: set up successfully

No more text. The screen remains on. No blinking cursor. Scroll lock, caps lock, num lock, does not work.

There are no terminals available, alt+f2, f3, etc. does not ...

I'm setting up my raspberry pi for shared hosting. My aim is to host more websites by purchasing domain names through providers such as ovh.com or register.com I am using webmin to create the web servers, I have installed the modules: Apache Web Server, DNS Bind Server. My problem is that mine is a home hosting so I have only one public ip address, how do I make sure to use the same shared ip address wi ...

My system setup is as following:

1. One single SSD with LUKS and LVM (and of course an unencrypted boot partition). The debian system is installed there.
2. Two HDDs assembled as RAID0 with LUKS and LVM for some custom data

To unlock to LUKS-devices at boot time from remote, I tried to use dropbear-initramfs.

That works fine, to unlock the first LUKS device (on the SSD, with the debian system installed on) ...

On my Windows 10 machine I have several samba share folders with a user assigned to my debian machine.

On my debian machine, as I had already made cifs mount to a share folder (www) of the same windows machine that works, I first simply copied the mount point with the folder name.

//192.168.1.2/musicprojects /media/smbDesk/Projects_-_Music cifs nofail,credentials=/etc/cifs-creds/cred,ro,iocharset=utf8 ...

I have setup my exim4 as a local mta with smarthost delivery (debian 10 vm) following this guide: Exim on DebianWiki

If my smarthost is expecting a ssl connection (smtp over ssl) it does not work.

When a local web application sends an email to localhost:25, it remains stuck in the queue; if i try to force deliver it, this happens:

root@testbug:~# date && exim -v -M 1nrqKZ-0003Ji-WE
Fri 20 Ma ...

I am in the process of upgrading to Debian Bullseye. When doing apt full-upgrade I see that apache2 is going to be installed. I do not want apache on my system, I have nginx already running.

How can I prevent this?

Is it safe to do apt-mark hold apache2, apt-mark hold apache2-bin, etc. and then do the upgrade?

Update:

Ok, from the Bullseye Release Notes I learned that "It is desirable to remove any holds ...

I am trying to install an apt package without one of its dependencies (specifically, git without Perl to reduce Docker image size by >50MB).

I can think of two options:

1. installing the package without this specific dependency
2. installing the package with all dependencies and removing the dependency afterwards

and I investigated them both, and none of them worked. So my question is: is there a clean  ...

I am trying to fix a thumbnailer problem on my omekaS (a php cms, that uses laminas framework),

I realized that new thumbnails weren’t being generated on my system, and that even forcing them to be regenerated wouldn’t work.

In my error logs, i would get

 Thumbnails creation failed for media 2086: Failed to copy /var/www/Limunata_litteraria/files/original/93128024e4e53cfa9b7d4d0d12c69290410ba4c4 to / ...

Dear internet & users & robots & AIs & other entities with access to digital,

one fine day... decided to compile the latest currently available kernel under Debian 11.

last time did that it was Debian 9 and with a bit of tinkering it worked.

now of course - things are different - again.

after a bit of even more tinkering, managed to compile the kernel and all modules (i5 took 100Min)

I'm trying to make LVM VDO work on my Debian 11.3 (test VM installed from scratch). I've shared my installation procedure here if someone wants to reproduce the problem. Now I'm stuck with a "basic" problem which is : the logical volume is inactive at startup. After VDO is compiled and installed, I run the following script:

# Create zeroed VDO volume and format to ext4
DESTINATION_LVM_VG="/dev/Pepper-Pott ...

I need to install MySQL 7.5 on Debian 9 stretch, I tried to download it using PPA but when I try to update and complete download I get error apt-key expire.

Err:2 http://repo.mysql.com/apt/debian stretch InRelease
  The following signatures were invalid: EXPKEYSIG 8C718D3B5072E1F5 MySQL Release Engineering 
Hit:4 https://packages.sury.org/php stretch InRelease

I tried to del the key and re-add it but  ...

I want to generate a Let's Encrypt certificate for my server, so that I can renew it automatically. I ran the command certbot --nginx -d testpbx.info.eu and got the following error.

certbot --nginx -d testpbx.info.eu
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  ...

I'm given the task to create a unified Debian image for all my teammates laptops. My plan is to create a KVM with all the necessary software and settings and copy this image later with dd to the hard disks of my colleages' laptops.

• Can I use a KVM image as the source for a bootable image for a hardware device such as a laptop?
• I think the answer to the previous question is yes, but since this is th ...

When I reboot the server, it is getting stucked here.

It may have problem with this webdav mounting in fstab:

https://webdavdir /home/user/Maildir davfs rw,uid=user,gid=user,file_mode=0660,dir_mode=0770 0 0

Any solution for this?

Background

I'm working on an internal server running Debian

Uname - r output :

Linux osteocalcine 5.10.0-13-amd64 #1 SMP Debian 5.10.106-1 (2022-03-17) x86_64 GNU/Linux

This server (which is planned to be used as a shared document repository etc etc ...) receives a fixed ip address from the local dhcp server, based on its MAC address.

here is the relevant section of etc/network/interfaces

auto lo
iface ...

I have a NGINX server and I use Certbot to generate a Let's Encrypt certificate. I saw that my certificate was not renewing automatically despite the cron I had set up. I tried to renew it manually with the command:

$ certbot renew --cert-name pbx.info.eu --nginx
Could not choose appropriate plugin: The manual plugin is not working; there may be problems with your existing configuration. The error  ...

I want to use a mounted drive as Maildir for imap mails but it always has data loss possibilities because of connection problems etc..

What type of solution should I use for this?

I have a downloader-application that downloads data and saves it as files and folders. Another application then processes this data.

The files and folders get created with ACLs applying to them.

$ ls -al
drwxrwsr-x+ 23 application application 4096 Feb 18 07:45 .
drwxr-xr-x+ 23 root        root        4096 Feb 18 07:45 ..
drwxr-xr-x+ 8  downloader  downloader  4096 Feb 18 07:44 data

The "+" here after the ...

Question

Setup

On a Proxmox server I create an LXC container with:

pct create 101 local:vztmpl/centos-8-default_20201210_amd64.tar.xz --features mknod=1,nesting=1,fuse=1 --ostype centos --storage=CTVM --description "centos glusterfs" --hostname thorgluster --password "password" --onboot 1 --net0 name=eth0,bridge=vmbr0 --unprivileged=0

Then can device mount /dev/sdd into it with:

lxc-device add - ...

i tried it now several times but it won't work. I have a Server which running Debian 10 with NGINX and Wordpress installed.

Now i need to rewrite some old URLs to the new place.

We must rewrite URLs like this:

example.com/artikel.html?id=##ID##&meldung=###Meldung### to example.com/artikel/$2

server_name example.com www.example.com;
root /var/www/example.com;

index index.html index.htm index.p ...