Questions tagged as ['linux']

Linux is the generic term for a UNIX-like open source operating system based on the Linux kernel.
Score: 0
J.Wincewicz avatar
GCP Compute Engine full disk not resized file system on public image
us flag

GCP VM with 99,8% full disk has not resized its file system after increasing the disk capacity in google console.

I have a small VM on GCP based on public image ubuntu-2004-focal-v20220419. There was a 10GB disk with root partition and file system. Some logs occupied 99,8% of the disk capacity. I am able ssh the VM because GCP can still copy ssh keys to it, but to detect a heavy folder I had to use a ...

Score: -1
Kuezy avatar
How should I design my 'public' network of an project?
it flag

I'm thinking about doing some online projects as a Developer/IT Technician, and I have some concerns regarding security.

I'm unable to host my servers locally for my project and I thought why not to host the servers in datacenters using hosters like Hetzner. My plans are also hosting an active directory server on one of these servers and join the others to that domain to have a better management  ...

Score: 0
Eforen avatar
How to activate HD indicator lights on Dell PowerEdge 710 in Linux
cn flag

I have a particular drive that is failing (/dev/sdb)

I need to replace the failed drive but I am not sure which it is... I should have documented what drives were in what slots and what their devs were but I did not and it will be very troublesome should I need to shut it down.

I am running proxmox on the metal and the drive is part of a ZFS Pool. I would ideally have a command to make a particul ...

Score: 12
How dangerous might it be - and what performance gains may be had - by turning vulnerability mitigations off on non-Internet facing servers?
in flag

When a virtual machine Linux host server is non-Internet facing and is used exclusively on a LAN and is using a relatively well tested distribution like Proxmox, how dangerous would it be to turn off all vulnerability mitigations via the kernel arg mitigations=off?

Additionally, has anyone tested what kinds of performance gains might be seen by turning off all such mitigations?

This recently came ...

Score: 0
Kismet Agbasi avatar
OpenMediaVault SMB/CIFS Share Failed to Enumerate Objects in the Container. Access Denied
gb flag

Good-day Folks,

I have a small OpenMediaVault (OMV) v6.0.46-5 deployment, running the Proxmox Kernel v5.19.17-1-pve (so I can have a ZFS filesystem) to support Windows 10 clients (primarily) in a Microsoft Active Directory environment. OMV is integrated with Active Directory and my goal is to create a non-public share, expose it to the Windows clients via SMB/CIFS, and then allow members of a certain ...

Score: 1
Ruixing Wang avatar
Disallow port forwarding to bypass VPN
by flag

We have a linux workstation that is used by a group of users via Internet. For security, users must connect to our private network by VPN and then can ssh to the workstation.

The job they run on the workstation needs Internet connection, so the workstation is connected to Internet via NAT.

However, then it is possible that any normal user can use port forwarding to bypass VPN. For example, by runnin ...

Score: 0
Dima avatar
Jumbo MTU and switches
mo flag

I have a network with several file servers, workstations and application servers. For simplicity we can consider it all attached to a single switch, say Dell 4032F with maximum Jumbo MTU size of 9216. I would appreciate your help with some questions related to MTU. So my first question is:

  1. What is this (9216) - HW MTU or IP MTU according to classification (in other words, does it include 14-bytes fra ...
Score: 0
Minesh Parikh avatar
sshd service fails to start : ssh.service failed because the control process exited with error code
ky flag

I'm not sure why it isn't starting or why its preventing me from connecting, i get this error:

root@vmi: "# sudo service ssh status
ssh.service OpenBSD Secure Shell server
Loaded: loaded (/lib/systemd/system/ssh.service; enabled; vendor preset: enabled)
Active: failed (Result: exit-code) since Sun 2022-11-27 09:47:47 CST; 4min 58s ago
Docs: man: sshd (8) man: sshd_config(5)
Process: 446 ExecStartPr ...
Score: 1
kekosz avatar
Freeradius case sentivitity of letters
me flag

I have VirtualMachine with freeradius server (3.0). I am using the authorization file which contains my PPPoE users. The problem seems to be the username: the login is in UPPER CASE which collides with the incoming username.

I can't manually change this because my config file is generated by LMS (Lan Management System - I won`t change anything in code). Is there any method to turn off case-sensit ...

Score: 1
Globe avatar
Nginx not working with domain/url that points to server IP
rw flag

The configuration I have set (below) works for localhost but not for my domain. The goal is to access port 3000 externally with basic auth so only I can access it. When I go to localhost, it is upgraded to https, I have to complete the authentication, and then port 3000 is shown, just as it's meant to. However, going to does not prompt authentication, does not upgrade the connection, and  ...

Score: 3
Taknok avatar
Dedicated user vs selinux
ve flag

What are the advantages and disadvantages of running a process with a dedicated (non root) user versus with SELinux (where a SE user may be bound to a Linux user) ?

Score: 0
Dima avatar
Different behavior of SGID in *BSD and Linux
mo flag

I came across an interesting thing: on BSD systems a new file will have group set to the group of the directory. On System V systems it will have the primary group of the user that created the file. As for BSD systems, what is the purpose of such behavior and does it mean that SGID bit is useless there?

Score: 0
Havard avatar
Iptables Traffic forward
tv flag

Would you please help me . I have a 2 vps (Ubuntu) I want to forward all traffic from one vps( to another ( vps except ssh port on A vps( A server is B server is

1st try:

sysctl net.ipv4.ip_forward=1
iptables -t nat -A PREROUTING -i eth0 -d -j DNAT --to
iptables -A FORWARD -i eth0 -d -p tcp  --dport 22 -j REJECT
iptables -A FORWARD  -i et ...
Score: 0
Chris9834 avatar
xrdp no login possible for AD-users
id flag

i have set up a Fedora 37 Gnome box, as well as Fedora 32 Gnome box and a Fedora 37 KDE box (this one upgraded since about 5 years)

All PCs are part of a AD-domain, login with AD-users on local Desktop works fine, also login with AD-user via SSH works fine on ALL PCs.

But when it comes to log on via XRDP, it is only working with the "old/upgraded" Fedora 37 KDE box.

On Fedora 37/32 Gnome access via XR ...

Score: 0
award94 avatar
Script to notify me when users are created
aw flag

I've created a script from what ive found on the web to notify a SA of users being added to a server. I have it setup with a cron to run the script every 5 mins to monitor differences in the /var/log/secure file but it still sends a blank email if nothing has changed. How can i edit it to not email if no changes are made. Script is below:


while cmp "$file" "${file}_bkp"; do
Score: 0
lea pre avatar
SSH connection sometimes works other no from WIN10 client to linux server
bd flag

I'm trying to connect in ssh on port 22 (with client putty,mobaxterm..) on a remote machine with Linux, the connection sometimes works and other no. My pc run on win10 and if I try on cmd the command ssh "host" I get the following error:

C:\Users\User>ssh kex_exchange_identification: banner line contains invalid characters

Can somebody help me? Regards.

Score: 0
mrbitnbyte avatar
[AWS Lightsail wordpress]HTTPS domain name hyperlinks replaced by HTTP static IP
je flag

I moved my blog to AWS Lightsail for Wordpress instance. I have Ezoic CDN enabled + DNS management proxied with Cloudflare. Domain name redirects to HTTPS from HTTP. -->

but, but all of my hyperlinks within the articles are replaced by HTTP static IP automatically. --> hhtp://1.123.456.78/article1

what could be the reason? As it happ ...

Score: 0
nop avatar
Samba doesn't run root preexec
cn flag

I have Windows Server 2019 AD and Samba Winbind joined to the AD. The Samba is technically used for home directories and a shared folder between all domain users.

How to force Samba to create directory seems to the same issue. However, when I log into the account I just created in the Windows AD, Samba doesn't create automatically home directory. I think the script is not even executing. What is  ...

Score: 0
nop avatar
Samba Winbind - Windows Server AD - Users are able to see each other's home directories
cn flag

I'm running AlmaLinux and Samba Winbind joined into Windows Server 2019 AD. The domain users have home directories and a pccommon directory (shared folder).

When I create a new domain user in the active directory, I have to create a new folder on the linux machine in /home and change its owner to that user's name.

mkdir -p /home/newaccount
chown IIT\\newaccount: /home/newaccount


Score: 0
Bastien avatar
Two IP addresses on different networks - Netplan
ky flag

I have a server with only one network card (enp2s0) and I would like to have two IP addresses on two different networks. However, I would like to have one static IP and one using DHCP.

The first network on which I want a static IP is: This first network is only composed of 2 servers: this one and an other one, which has a static IP as well The second network on which I  ...

Score: 0
Gaurav Kumar avatar
How to delete chrony server from client side without restart service
gs flag

I am trying to setup chrony client server on local and try to add chrony server and delete on the fly

I am able to add without needing to restart chrony using this command 'chronyc add server iburst prefer' and i can check chronyc tracking show time is in sync

But when i delete 'chronyc delete ' then it deletes successfully from sources but chronyc tracking show time is still in sync

Score: 0
deservestarseed avatar
Linux distro and/or pre-configured software to start a webhosting provider?
ae flag

I have a spare server (yes, it's powerful enough) that I would like to repurpose by selling webhosting to a few clients. Ideally I'd like a distro that includes tools for this type of administration - i.e. adding new clients/domains to the web server, setting up a cpanel account, etc. Presumably I'd be selling VPS hosting to a few clients with websites that don't generate a ton of traffic (I'm not worri ...

Score: 1
Alfador avatar
RHEL won't update correctly a package for security
wf flag

What does that error even mean? I have tzdata package. I run yum update --security and I get this:

[dada@dada-dada-dispatcher aem]# yum update --security
Failed to set locale, defaulting to C
Loaded plugins: search-disabled-repos
 --> tzdata-2022f-1.el7.noarch from rhui-rhel-7-server-rhui-rpms removed (updateinfo)
 --> tzdata-2022e-1.el7.noarch from @rhui-rhel-7-server-rhui-rpms removed (upda ...
Score: 0
user3637971 avatar
Tcpdump output file is not storing the destination IP address and port number
ve flag

I'm capturing tcpdump packets. Even though, when I want to see the output by tcpdump -r I see destination hostname instead of address IP and service name instead of port number.


tcpdump -w /home/backup/out.bin -nn -i ens192 '(dst port 80)'

After a minute Ctrl + C to stop the process


tcpdump -r /home/backup/out.bin

It shows:

12:01:28.079940 IP > app.server.http: Fl ...
Score: 0
acgbox avatar
How can I organize the IPs/CIDR when executing restore ipset?
ng flag

I have this bash script of ipset v7.15 (run in ubuntu 22.04), courtesy of Martin (that I have made some modifications for this question):

ipset create -! blacklist hash:net family inet hashsize 1024
ipset save -! > /tmp/ipset.txt

cat list.txt | sort -t . -k 1,1n -k 2,2n -k 3,3n -k 4,4n -k 5,5n -k 6,6n -k 7,7n -k 8,8n -k 9,9n | while read line; do
    echo "add blacklist $line" >> /tmp/ip ...
Score: 0
erdemyanik avatar
AD joined Linux machine with different suffix
io flag

I've been struggling for 4 days and according to the information I have stated below, I can't access the linux os (debian) joined in AD to users with different UPN suffixes. What kind of config (sssd smb or krb5) should I make, can you help me?

domain name = TEST.COM
DNS domain name =

users: admin ...

Score: 0
ranban282 avatar
Are there any potential pitfalls to changing the permissions of config files under /etc to a non-root user?
mx flag

There are various services which are being run on our machines, e.g. cassandra, datadog, etc.

Occasionally, we need to change the configuration, and we wish to automate the propagation of the config files and restarts.

We use Jenkins for automate the workflow for our application software, and were thinking of using this for services as well. We do not wish the server Jenkins runs on to have remote  ...

Score: 1
Cade Daniel avatar
Why does `hdparm -t` take so long to produce accurate results on my EC2 instance?
ni flag

I'm profiling a data-processing program that I wrote and I want to understand the theoretical throughput of the machine I'm on. Specifically, I want to measure what disk read speed my g4dn EC2 instance is providing my application. This particular instance has an ephemeral NVMe drive, which is what I want to benchmark.

I notice that it takes quite a few runs of hdparm until the throughput it reports stop ...

Score: 0
Matthieu avatar
debian Linux QinQ (vlan stacking)
hr flag

I am trying to create stacked VLAN interface on a debian 10 server. Here is what I have placed in the /etc/network/interfaces:

iface enp34s0.300 inet manual

auto enp34s0.300.1239
iface enp34s0.300.1239 inet static
        address X.X.X.X
        netmask X.X.X.X

The first interface is going UP without any problem:

:~# ifup enp34s0.300

But the second o ...

Score: 0
I'm trying to provide limited access to certain functionality using links, bash scripts and SUID. SUID script does not run with root access
mr flag

EDIT: this Sticky bit enabled Script can't write to a root file appears to be a similar problem

EDIT: How can I use SetUID on a shell script to run as a non-root user? is very similar as well.

I have a script, let's call it I have a file, lets call it secret.

# cd /home/normie
# echo "some stuff" > secret
# echo "#!/bin/bash" >
# echo "cat secret" >>
# chmod 600 s ...