Recent Questions - Server Fault |
- Good architecture for redis cluster in HA scenario with low writes and high reads?
- Enabling Journaling in Exchange Online
- Apache2: Disable web services and only use mod_proxy
- Routing IP packets coming to SoC A over to SoC B
- AWS code commit how to block put, push, pull access to branch
- Server Fans Never Slow Down After Speeding Up
- How to calculate the optimal number of replicas for AKS
- Amazon Linux 2 - EC2 PostgreSQL
- SSH tunnel attempt. Unable to establish SSH connection without actual shell. (Arch Linux)
- Can you implement token based authentication/authorization without a 3rd party?
- Licensing Windows Server 2016 for limited RDP use on a single workgroup server
- Why is my server using a well known port as source port
- .htaccess redirect based on the visitors host name, not IP address
- Check if someones connected to PC through Windows RDP
- GCP: How can I view all services / resources in an organization
- Automatically add certain AD users to local admintrator
- Nginx error 403 on file upload - passing multipart/form-data to the proxy/server
- Is this an IIS issue or a Database Issue? Non Concurrent collections must have exclusive access
- How do I remove a user's home directory without deleting the user?
- MySQL 8 on CentOS 7 - after update to 8.0.16-1, service won't start
- openssl verify error 2 at 1 depth lookup:unable to get issuer certificate
- SQL Server Kerberos Configuration Manager error "The LDAP server is unavailable"
- Bacula storage daemon won't write to labeled volume
- How to install a default ssl cert for apache on debian
- How to use environment variable in haproxy?
- pam_mount not working when logging in from ssh or console
- Export munin data, import it and rebuilt html and graph
- Can't boot VM after P2V or ghost - Linux 2.6
- haproxy header rewrite to lower case
- Samba config and Mac OS X mounting
| Good architecture for redis cluster in HA scenario with low writes and high reads? Posted: 06 Apr 2021 10:12 PM PDT I was going through different clustering docs of redis available online and came across two types of clustering. How are the two different given in the first also the slave becomes master if the master goes down? It also has a sentinel service running. I am confused between which deployment strategy should we use, our application is written in java and jedis is used as a connector. Details of requirement. Txns Expected perfomrance We can flush the entries after 24 hrs or lesser time cycle. Tolerable data loss The data we are maintaining is stale tokens so we can tolerate fine amount of ocassional data loss Hardware we are felxible to any harware configution.  |
| Enabling Journaling in Exchange Online Posted: 06 Apr 2021 09:46 PM PDT I'm trying to migrate a small company from an ancient, on-premise Linux mail server over to Exchange Online. One of their core requirements is that they need copies of all inbound and outbound e-mail to be saved in a separate mailbox called "group", where none of the messages can be deleted. My understanding was that journaling could do this, but as I'm preparing to enable it, the documentation seems to say that you can't journal to another Exchange Online mailbox, so I'm a little puzzled as to how this works with Exchange Online. Can someone explain how this could be done with or without journaling?  |
| Apache2: Disable web services and only use mod_proxy Posted: 06 Apr 2021 09:23 PM PDT Is there a way to disable the webserver functionality of the Apache2 webserver and only use mod_proxy?  |
| Routing IP packets coming to SoC A over to SoC B Posted: 06 Apr 2021 09:18 PM PDT I have an evaluation board that has two embedded SoCs running Linux with one of them being IMX8 (SoCB) while the other being a custom one (let's call it SoCA). Both the SoCs are connected over USB, and there's a USB interface coming up in SoCB.
rmnet interface on SoCA (sorry couldn't copy right now) The interface on SoCB doesn't have an IPv4. Would the initial step be to statically assign an IP to it (which perhaps sets the subnet itself?) I have seen some articles/threads like this that use IP tables but they seem to be using ports which I'm uncertain of. Though after reading up a bit, would the following suffice?  |
| AWS code commit how to block put, push, pull access to branch Posted: 06 Apr 2021 07:30 PM PDT I am trying to create an IAM policy to block a user from making any write changes to a branch on code commit. It would be great to block read access as well, but I don't know if that is happen. I need them to have access to other branches, but one in particular, read only.  |
| Server Fans Never Slow Down After Speeding Up Posted: 06 Apr 2021 05:54 PM PDT I have a server motherboard in a large tower case with several hard disks installed. It's basically a media server that serves over CIFS. I'm using the 'sensors' command on linux to monitor the system temperatures. It typically runs around 70c, but if it gets a tough load (downloading several things, hashing the downloaded content) it can cause the fans to spin up to max. An first this would happen briefly, then the fans would spin down after the system cooled. Now, however, the fans never spin down and just howl at full speed forever until the system is shut down for a moment then booted again. Rebooting vs hard cycling the system, curiously, often results in the fans never leaving the "bad state" and they stay on full power. Troubleshooting steps I've tried:
I'm using:
 |
| How to calculate the optimal number of replicas for AKS Posted: 06 Apr 2021 05:39 PM PDT I'm a beginner on AKS and there are a lot of notions that I don't really understand. For example, I tried to deploy a node of 3 (agent_count_value) agents of type Standard_B2s and 2 replicas (num_replicas) but I had an error: Deployment request failed due to insufficient compute resource. For the specified compute target, 2 replicas cannot be created per specified CPU/Memory configuration(0.1 CPU Cores, 0.5GB Memory). You can address this problem by adjusting number of replicas, using a different CPU/memory configuration, or using a different compute target. InnerException None ErrorResponse Knowing that a VM of type Standard_B2s has 4 GB of RAM and 2 cores I don't understand how assigning 2 replicas for 3 VMs of type Standard_B2s can return this error. Can someone tell me how to calculate the optimal number of replicas for a given VMs node? Thank you in advance for your help  |
| Amazon Linux 2 - EC2 PostgreSQL Posted: 06 Apr 2021 05:39 PM PDT I've the following:
I'm using ssh to connect to my instance. The issue is that it doesn't let me to connect to my postgres database. I've created a user using something like: and postgres server is running ok, but when i try to connect to my db it throws: I don't know why it doesn't recognize my user. Thanks in advance  |
| SSH tunnel attempt. Unable to establish SSH connection without actual shell. (Arch Linux) Posted: 06 Apr 2021 08:28 PM PDT So I'm trying to figure out how to establish a tunnel, but nothing else. I don't want the user to have shell access. I found this ssh tunneling only access Is this information outdated or something? Everytime I try to login through ssh where I've set the shell of the user to /usr/(s)bin/nologin, or /bin/false, bin/true, etc., instead of saying: it says: Password is correct. I know this with absolute certainty because I typed it out and then pasted it into the console to make sure there were no mistakes. Changing the user's shell back to nologin and trying to reconnect with the same password that worked with an actual shell still in the clipboard it said Permission denied. I've tried putting ForcedCommand internal-sftp in the config file, but that didn't do anything either. I've tried using one those scripts I found from searching to make a fakesh and set the user's shell to that, but ssh doesn't accept that either. The only way to make it work is to set the user to an actual shell. What is going on here?  |
| Can you implement token based authentication/authorization without a 3rd party? Posted: 06 Apr 2021 04:39 PM PDT fyi I'm a total newbie to server stuff (I'm an app developer, trying to implement a simple but secure api back end) It sounds simple enough, user sends his username/password, if it authenticates, you give them a token, and they include that token in all future requests. But every example I find online to use a 3rd party auth provider (like auth0 or Facebook) for the log-in part of this process. Is there a reason why I cant just send an encrypted username and password in a regular api request to my own server, check it against a table that contains a hashed password, and generate a token on my own server? If not why isn't there any examples of this, if there are please point me to it. I'm developing with ktor (kotlin), but any java style language such as node will do.  |
| Licensing Windows Server 2016 for limited RDP use on a single workgroup server Posted: 06 Apr 2021 05:50 PM PDT I have a Windows Server 2016 Standard in a Workgroup and a Windows Server 2019 Standard (which should never need anything other than the allowed Admin users) that is going to be an Active Directory/Domain Controller in the very near future. Due to some unexpected circumstances I have discovered that an application that was just migrated to the 2016 server needs to allow 3-5 RDP based users directly on the server with the application for the foreseable future. I was never planning on joining the 2016 server to the new domain and was always planning for it to be isolated in a Workgroup, but I am horribly confused over RDP licensing as well as the whole workgroup/active directory business. What happens if I turn on RDP licensing service on the 2016 server? Can even do RDP licensing on the 2016 server without it being in a domain? I've already read this doc and honestly I'm still super confused: https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-client-access-license Thanks.  |
| Why is my server using a well known port as source port Posted: 06 Apr 2021 03:42 PM PDT Is it normal that my server is requesting 8.8.8.8 dns with 22/udp as source port? How can i get it to use unregistered ports only  |
| .htaccess redirect based on the visitors host name, not IP address Posted: 06 Apr 2021 06:02 PM PDT I have done several attempts to figure out how to redirect visitors from the visitors hostname to some other place. I know with IP this works: But in this case, I need to do it by domain, any suggestions? Something like  |
| Check if someones connected to PC through Windows RDP Posted: 06 Apr 2021 03:01 PM PDT Is there any way to tell whether someone is already connected to a computer through Windows' "Remote Desktop Connection"? Me and a co-worker need to remotely connect to a PC in our remote office, and we keep kicking each other out of the session when trying to connect (if the other one is connected). Could you perhaps check if the RDP port 3389 is in use?  |
| GCP: How can I view all services / resources in an organization Posted: 06 Apr 2021 03:37 PM PDT How can I view, or list, all services / resources in a Google Cloud organization? Basically I want to take audit of what services are active / inactive, prior to deleting the organization.  |
| Automatically add certain AD users to local admintrator Posted: 06 Apr 2021 04:58 PM PDT I am trying to setup an AD domain and I have certain users that need some "power" privileges for installing software on their own machine and on their own machine only. Which is the correct and the best way to achive this? I am thinking on creating a users group called Power Users, add the users I want to be eligible, but I am missing how to apply this only on their own computers. I don't want that their are local admin while they trying loggin on other users computers.  |
| Nginx error 403 on file upload - passing multipart/form-data to the proxy/server Posted: 06 Apr 2021 04:01 PM PDT I have a very simple Nginx server that forwards traffic from subdomain to my http server on port 8000 like so : My http server then takes care of everything by reading the hostame etc and it's working fine for any basic api/json requests. Now i'm trying to send a file to my server but get a 403 error from nginx on sending the file / multipart form data. From reading the doc i'm a bit confused as " upload_pass_args " seems to require a dedicated route configured in the conf file and that's not something i want at all. I just need the multipart / form data passed to my server's router to be handled ( the http server on :8000 ) I've also try to include  |
| Is this an IIS issue or a Database Issue? Non Concurrent collections must have exclusive access Posted: 06 Apr 2021 07:04 PM PDT I am using asp.net core api with EF core and today I got this error message and it confuses me as of why it could have happened. this is the code it is referring to. It seemed like anyone who tried to access that method go the same error. I did an IIS reset and all was good but I am trying to figure out what happened. Not sure what else to add.  |
| How do I remove a user's home directory without deleting the user? Posted: 06 Apr 2021 10:08 PM PDT This user should not have a home directory. I'd like to update its entry in  |
| MySQL 8 on CentOS 7 - after update to 8.0.16-1, service won't start Posted: 06 Apr 2021 05:01 PM PDT This morning, I updated MySQL as there was an update available, but since then, the service won't start. Below is a screen grab from the output from systemctl status mysqld.service - the error seems to be "no such file or directory", but I can see the data...
From mysqld.log I've tried un-installing the update (but found a line in the mysqld.log that says 'downgrade not avialable'. I've tried deleting ib_logfile0 & ib_logfile1 as suggested in another forum. Please help... EDIT: I've tried the solution from MySQL PID file missing (as I couldn't see a pid file), so did: The error has changed - below is the updated output from systemctl status mysqld.service In the output from there isn't anything listed for port 3306...  |
| openssl verify error 2 at 1 depth lookup:unable to get issuer certificate Posted: 06 Apr 2021 05:01 PM PDT Openssl is telling me it can't verify my concatenated cert. I downloaded the intermediate cert from the issuer (AlphaSSL) and concatenated that with my domain cert I purchased (domain cert first, then the AlphaSSL intermediate cert) as instructed by google app engine. I then followed their instructions for verifying: I tried to verify using the above and received this error message: I googled it, but the results said I forgot to append the cert to the file. I did not. What else can cause this issue?  |
| SQL Server Kerberos Configuration Manager error "The LDAP server is unavailable" Posted: 06 Apr 2021 10:08 PM PDT Running v3.1 of the SQL Server Kerberos Configuration Manager (KerberosConfigMgr) on Windows Server 2012 against a SQL Server Developer 2016 instance on same server. Running tool as admin (logged in to server as domain admin account). Default blank details specified in the Kerberos tool. I have also tried entering details of another server running same version of SQL along with my domain admin user account details, with same result. The application thinks for about 10 seconds then responds with error message "Unable to access User Principal information from the System" Log has the following: As a test, I have successfully run ADFind to get a listing of admin users from the default DC. I have tried all solutions from this post to no avail (no orphaned GUID users in local administrators group, run tool as a different user account) Kerberos Configuration Manager for SQL Server error "unable to access user principal information from the system" Any ideas what else I can do here?  |
| Bacula storage daemon won't write to labeled volume Posted: 06 Apr 2021 08:03 PM PDT My Bacula configuration won't write to any labeled volume, as long as it's outside of I set the proper permissions to let Bacula write to a specific directory, yet without success. The error message I get is below:  |
| How to install a default ssl cert for apache on debian Posted: 06 Apr 2021 06:06 PM PDT Learning linux skills...please be patient! I have found lots of tutorials on installing a cert for a single site but not a default. I have a wildcard cert for my domain. I had support install this cert installed on a server. Since I am learning linux server skills I want to install this on a Debian server with Apache. I want it to be the default ssl cert for all sites regardless of domain name unless they have their own ssl cert. The place where I bought the cert has text that I can copy and paste for:
I have found the I am finding different tutorials that have terms like private key, SSL cert, intermediate cert, etc. It seems that there are a few terms that are used interchangeably. I think the process is:
My questions:
I realize that I don't know some things...What else do I need to know? PS. ISPConfig is installed on this server but there does not seem to be a place to do what I want to do. I will eventually want to know how to create a site specific ssl cert as well.  |
| How to use environment variable in haproxy? Posted: 06 Apr 2021 07:04 PM PDT I work with haproxy 1.5.2 My haproxy.cfg has this server definitions: I set the UCD1_END_POINT_IP and UCD1_END_POINT_PORT in the bash and start haproxy with service haproxy restart The haproxy restarted OK but the UCD1_END_POINT_IP and UCD1_END_POINT_PORT are not resolved. I see that as per haproxy doc it is supported: If I change it for hard coded ip and port it works fine. What do I miss? Thank you!  |
| pam_mount not working when logging in from ssh or console Posted: 06 Apr 2021 09:02 PM PDT okay so i configured pam_mount on my centos 6 machine as i did on my centos 7 and 5 machines. But when i login locally or via ssh, pam_mount can't mount my home dir. when i login with a local user, and su to a user who needs the hmoe dir mounted pam_mount works fine and mount the home dir. the error i get, when i ssh or log in from console is found in my pam.d/system-auth: my my pam_mount.conf.xml: can anyone see the error, and knows how to fix this?  |
| Export munin data, import it and rebuilt html and graph Posted: 06 Apr 2021 08:03 PM PDT I am trying to read data collected from a server to an other server. Reading Change a Munin server and keep the data seems show a way to do this.
Next I declare in the destination server the hostname list in /etc/munin/munin.conf Now, I would like munin recreate the html pages and the graphs corresponding to the hostname list. Update Even the index.html is not updated and does not include a link to  |
| Can't boot VM after P2V or ghost - Linux 2.6 Posted: 06 Apr 2021 06:06 PM PDT I got this old machine that runs on a p2 400 and a Linux Debian 3.1 with kernel 2.6.8 and since it has modified binaries due to internal undocumented changes in the code, migrating off manually isn't an option, so I was trying to P2V this box with VMWare Converter and had no luck. The P2V resulted in a VM that hangs on a black screen but I can get it to boot off a LiveCD like CloneZilla. I tried in this order :
Is it normal that a bootable CD can see the disks but not the virtual BIOS? Any idea what could cause this and how to solve? could it have to do with the fact the machine is based off IDE HDDs and that the virtual machine uses scsi/sata? Thanks  |
| haproxy header rewrite to lower case Posted: 06 Apr 2021 09:02 PM PDT I have a custom app behind an haproxy server. Can haproxy rewrite the case of the header? For example changing If so, how?  |
| Samba config and Mac OS X mounting Posted: 06 Apr 2021 04:01 PM PDT I'm aware that his question should maybe be posted on SuperUser. But as it probably has something to do with the Samba server, i'm posting it here. I'm trying to mount one of my Samba shares in Mac OS X, but haven't had any luck yet. I'm able to mount the same share as a networkdrive in Windows XP. I have tried to mount it in various ways, CMD+K in finder and the following command in terminal The output of that command is just the help thingy, i have tried many possible combinations Samba config on FreeBSD:  |
| You are subscribed to email updates from Recent Questions - Server Fault. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment