serverfault.com

I have mod_security enabled on apache2. I have inline map in a page. All cross-origin requests are blocked. Loading anything (css, js, ...) from any external source like CDN does not work. Google Fonts, inline Google Maps, Google Analytics, none of them work. There is no .htaccess. I get the following errors for google font and google maps: Refused to load the stylesheet 'https://fonts.googleapis.com/css?family=Roboto:ital,wght@0,100..900;1,100..900' because it violates the following Content Security Policy directive: "style-src 'self' 'unsafe-inline'". Note that 'style-src-elem' was not explicitly set, so 'style-src' is used as a fallback. Refused to frame 'https://maps.google.com/' because it violates the following Content Security Policy directive: "default-src 'self'". Note that 'frame-src' was not explicitly set, so 'default-src' is used as a fallback. I disabled mod_security, removed the config, but I get the sa

Is RAID becoming an obsolete concept with the rise of SSDs, or does its role shift from performance enhancement to redundancy and storage capacity in modern systems?

We have a parent site (called SHORE) and a child domain site (Called CHILD) From the parent DC, someone deleted the CHILD site and everything in it (NTDS Settings and the child domain Domain Controller computer used for the connection) We don't have AD Recycle Bin, and Tombstone Reanimation doesn't show the deleted site. I recreated the CHILD site and the associated subnet and link, however the KCC doesn't create the NTDS Settings. What is the correct procedure?

My goal is to configure socksify so that both traffic and DNS requests are sent to Tor. It is installed as follows: apt install dante-client and by adding the following line in your ~/.bashrc using nano: export SOCKS_CONF=/etc/socks.conf Then, add the configuration by editing: nano /etc/socks.conf ——————————————————————————— For example, Tor is installed on the server with the following configuration: SocksPort 127.212.254.221:2494 DNSPort 127.12.52.220:4525 RunAsDaemon 1 AutomapHostsOnResolve 1 VirtualAddrNetworkIPv4 10.192.0.0/10 Log notice file /var/log/tor/log I configured the socks.conf file for socksify, but no matter what I did to run commands that require DNS resolution (like dig, etc.) through socksify and Tor's dnsport, it did not work. I tried: Setting different reso

Kindly confirm that AWS Cloudfront is to get access from the public Internet. It is not possible to access CloudFront from within a corporate network via AWS Direct Connect without any traffic going to the Internet. This is my understanding that Cloudfront is for the Internet, but need to convince others that it is not possible to access Cloudfront from within private network without Internet.

I'an Newbie with Openstack and I learning it. I have installed Openstack following official doc on multinode https://docs.openstack.org/kolla-ansible/latest/user/quickstart.html 1 controller 1 storage 1 compute Installation completed with no issue. When I tried to create firt instance using GUI I had Issue [Error : No valid host was found. ]. Searching the issue, I discovered what nova-compute is not running, so I'am wondering if the issue come from this missing nova-compute. openstack compute service list +--------------------------------------+----------------+----------------+----------+---------+-------+----------------------------+ | ID | Binary | Host | Zone | Status | State | Updated At | +--------------------------------------+----------------+----------------+----------+---------+-------+-------

Consider having email box [email protected] with it's own set of credentials. I want to set up another account [email protected] with it's own set of credentials but when authenticating it should show the inbox/data of [email protected] Basically, I want two accounts to same email address with their own credentials (I dont want alias or forward) Is it possible in zimbra ? Thanks

I have trouble understanding permissions with QEMU/KVM images in storage pools. My machines store their QCOW2-Files in an LVM thinpool device. Here are the relevant parts: vgdisplay machines --- Volume group --- VG Name machines System ID Format lvm2 Metadata Areas 1 Metadata Sequence No 214 VG Access read/write VG Status resizable MAX LV 0 Cur LV 11 Open LV 10 Max PV 0 Cur PV 1 Act PV 1 VG Size <430,14 GiB PE Size 4,00 MiB Total PE 110115 Alloc PE / Size 75389 / <294,49 GiB Free PE / Size 34726 / <135,65 GiB VG UUID Y3iwxU-bsZr-BDBI-Xo27-x6Ih-IuNP-60vlRa lvdisplay machines --- Logical volume --- LV Name thinpool-machines VG Name mac

I'm evaluating the best approach for serving the static assets (JavaScript bundles, CSS, HTML, etc.) of a React application that uses Module Federation and Webpack. I have two potential options: Kubernetes Pod: Deploy a dedicated pod with ngnix serving the static files Object Storage: Host the static assets on an object storage solution (such as AWS S3, Azure Blob Storage, or Oracle OCI Object Storage) fronted by a CDN. Key considerations include: Performance & Latency: How do these options compare in terms of response times and latency, especially when integrated with a CDN? Scalability & Cost: What are the trade-offs regarding auto-scaling and overall cost-effectiveness? Operational Overhead: How does the maintenance and deployment complexity

I have a customer that owns domain foo.com. I am hosting their website at a different location, bar.com. The customer wants DNS for www.foo.com, and potentially foo.com, to resolve to the site at bar.com. The browser should continue to show foo.com, not bar.com. They created CNAME www.foo.com. In order for a TLS connection to be established, a valid TLS certificate needs to be served. My questions are: Who is responsible for the TLS certificate(s)? Does only the customer need to present one since the domain won't change? Will I need to create a custom TLS certificate with www.foo.com and potentially foo.com in the SAN and/or subject of the certificate? How would the customer setup DNS for the apex (root) domain, foo.com? Is the customer required to create DNS records (TXT) for ACME challenges and domain validation?