serverfault.com

Openvpn server is installed on centos 9 on remote vps. tun mode is set. Ovpn server was installed via https://github.com/angristan/openvpn-install this is entered firewall commands: semanage port -a -t openvpn_port_t -p tcp 11994; semanage port -a -t openvpn_port_t -p udp 11994 firewall-cmd --zone=public --add-port=11994/tcp --permanent; firewall-cmd --zone=public --add-port=11994/udp --permanent; firewall-cmd --zone=public --add-service openvpn; firewall-cmd --zone=public --add-service openvpn --permanent; firewall-cmd --reload; firewall-cmd --add-masquerade; firewall-cmd --add-masquerade --permanent; firewall-cmd --query-masquerade; VAR=$(ip route get 1.1.1.1 | awk 'NR==1 {print $(NF-2)}') firewall-cmd --permanent --direct --passthrough ipv4 -t nat -A POSTROUTING -s 10.8.0.0/24 -o $VAR -j MASQUERADE; firewall-cmd --reload; networkmanager-o

I need help with postfix on OSX. Testing with this command: echo "test email" | mail -s "test email" [email protected]``` Doesn't produce output in /var/mail/jeff postfix is running: sudo postfix status postfix/postfix-script: the Postfix mail system is running: PID: 8781 I also don't see postfix log activity in /var/log/ or via: sudo log stream --predicate 'sender == "postfix"' My main.cf file is included. compatibility_level = 2 queue_directory = /private/var/spool/postfix command_directory = /usr/sbin daemon_directory = /usr/libexec/postfix data_directory = /var/lib/postfix mail_owner = _postfix unknown_local_recipient_reject_code = 550 sendmail_path = /usr/sbin/sendmail newaliases_path = /usr/bin/newaliases mailq_path = /usr/bin/mailq setgid_group = _postdrop html_directory = /usr/share/doc/postfix/html manpage_directory = /usr/share/man

Environment server OS: Linux 5.15.0-46-generic #49~20.04.1-Ubuntu SMP Thu Aug 4 19:15:44 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux server SSH: OpenSSH_8.2p1 Ubuntu-4ubuntu0.8, OpenSSL 1.1.1f 31 Mar 2020 Describe the problem Ping the server is always OK and stable. --- ping statistics --- 2607 packets transmitted, 2607 received, 0% packet loss, time 2668547ms rtt min/avg/max/mdev = 0.056/0.104/0.580/0.027 ms The load of the server is very low. But often fail to create new SSH connection to the server, lasts for one minute to tens of minutes. But the previously established SSH connection can operate normally, in addition to using SSH related services possibly, such as using the sudo command. There are 3 servers with this problem, one of which has a more frequent problem and can be inaccessible for up to ten minutes, while the other two have a less frequent

I need to get rid of squirrelmail/ part from path that's user see. My .conf: location / { rewrite /squirrelmail/(.*) /$1 last; proxy_pass https://internal.domain.tld:8081/squirrelmail/; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Host $host:$server_port; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Server $host; proxy_set_header X-Real-IP $remote_addr; } I expect that's my app available for users at root path /, instead of constantly adding squirrelmail/ to end user path. So when user goes to https://mail.domain.tld it properly proxy pass actual app located at https://internal.domain.tld:8081/squirrelmail/ without adding squirrelmail/ to users path (e.g. https://mail.domain.tld/squirrelmail/) UPD: Without rewrite, after

In the latest version of Google App Engine, the legacy version of OpenSSL is disabled. I would like to understand if there is any way to enable it. I'm using Google App Engine standard with PHP 8.3. The last version with PHP 8.2 was working correctly. I would like to understand if there is any way to enable it.

I'm trying on resizing an ext4 partition using gparted on Ubuntu 22.04. I'm shrinking 4TB to ~3TB with ~1.5TB of the drive filled. It's now been working on this task for >24hr, but is still progressing, just painfully slow. To be exact, iotop shows resize2fs with a disk read of ~400K/s (yes K) and disk write of ~200K/sec. In addition, this is the main load according to iotop. Is there any reasonable recourse I can take or things to check beyond it not being mounted (which it isn't)?

I've been using the internal-sftp subsystem approach since 2021 without problem to allow SFTP but disallow SSH. My ssh_config file code is: ForceCommand internal-sftp Subsystem sftp sftp-server.exe -d \% ChrootDirectory \% PermitTunnel no AllowAgentForwarding no AllowTcpForwarding no X11Forwarding no AllowUsers sftpuser As others, over the weekend following October 2024 Windows updates, I can't connect to the server via SSH. On the server, the OpenSSH SSH server won't start and I get a 1067 error. As recommended, when I delete the \ssh folder, the service can now be restarted successfully but the new ssh folder automatically created has the default ssh_config file code: Match Group adminis

I'm running this huggingface example notebook for Vertex AI in Colab Enterprise: https://github.com/huggingface/Google-Cloud-Containers/blob/main/examples/vertex-ai/notebooks/trl-lora-sft-fine-tuning-on-vertex-ai/vertex-notebook.ipynb We've managed to enable all necessary IAM permissions for my user account up to the final cell, but obviously missing some permissions to execute the submit() method. All details are correct (bucket name, project, etc) and work in previous cells. The most recent permission we tried adding was: (this didn't work) gcloud projects add-iam-policy-binding my-project-name --member=user:[email protected] --role=roles/aiplatform.user Code in notebook: # a previous cell... job = aiplatform.CustomC

I can find 1001 sites describing how to configure OpenVPN for an Ubuntu user. However, I'm looking to understand if there is a way as an administrator to add a configuration once that's available to all users on the machine. I have an LDAP+Kerberos server and my router/firewall is configured as an OpenVPN server with SSL/TLS + user authentication. I intend to create machine-specific keys and certificates signed by my root CA. When I export the .ovpn client settings from the firewall they include the machine-specific private key and public certificate which I then import on the client machine. It sounds better as an administrator to install the private key and public certificate on the machine, therefore hiding the key behind /etc/ssl/private and not need to distribute the sensitive information in the .ovpn files. And as a bonus, each network-authenticated user that logs in does not need to (and can't) import the OpenVPN configurat

I use heketi to manage a glusterfs cluster. In the k8s cluster, I created PVC to mount the Gluster volume to a pod. As the application reads and writes files to this mounting directory, when I enter the pod and cd it to the mounting point, I cannot see any directories or files. But when I cd a complete directory, I can enter it and all the files exist. No matter if I mount this volume to a server or other pod, I can use the ls command to see the internal files and folders.I am curious about situations where multiple devices mount the same volume, and some clients may not be able to see hidden folders.