Tag: SysAdmin

You can now get up to 33% off the price of a cPanel-managed Web Hosting plan at Heart Internet.

Did you know that the fonts you use on your website can impact the way your customers perceive and interact with your brand?

Including options for optimising your cart, boosting customer loyalty, and selling tickets.

Discover the appeal of .ninja, .coffee, .guru and more - all available in our domain name sale.

We’ve just slashed the price of WordPress Hosting at Heart Internet.

A guide to what to do next once you've chosen your perfect domain name.

Including quotes from Amelia Earhart and Barack Obama, to give you a little pick me up.

When browsing through hosting packages, you’ll often come across the word cPanel. But what exactly does this word mean and what are the benefits of buying a hosting package with cPanel included?

Did you know that domains can be so much more than a mere address or waymark? In this blog, we look at how they can be a powerful tool for online brand protection.

Celebrating World Wide Web Day by looking at why it's never been more important to have an online presence.

I'm looking at migrating from AWS Cognito to Azure Entra ID. The documentation flows are a bit sketchy around using external SAML provider when users don't exist in Azure AD and only get add on first login. Does anyone know if this even possible with Azure Entra ID, in AWS Cognito it's only a few clicks to set this flow up. Appreciate any advice.

I have an AWS S3 bucket s3://mybucket/. Running the following command to count all files: aws s3 ls s3://mybucket/ --recursive | wc -l outputs: 279847 Meanwhile, the AWS console web UI clearly indicates 355,524 objects: Why does aws s3 ls s3://mybucket/ --recursive | wc -l list fewer files than the number of objects mentioned in the AWS web UI in my S3 bucket?

I have some Linux servers integrated into AD. One joined to the domain with no error, but it does not authenticate any AD users. Could you help me? Log and configuration files: [root@oracleLinux72 ~]# cat /etc/krb5.conf # Configuration snippets may be placed in this directory as well includedir /etc/krb5.conf.d/ [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log [libdefaults] dns_lookup_realm = false ticket_lifetime = 24h renew_lifetime = 7d forwardable = true rdns = false pkinit_anchors = FILE:/etc/pki/tls/certs/ca-bundle.crt # default_realm = EXAMPLE.COM default_ccache_name = KEYRING:persistent:%{uid} default_realm = MYDOMAIN.CORP [realms] # EXAMPLE.COM = { # kdc = kerberos.example.com # admin_server = kerberos.example.com # } # .example.com = EXAMPLE.COM # example.com = EXAMPLE.COM [root@oracleLinux72 ~]# cat /etc/sssd/sssd.conf [sssd] domains = mydomain.corp config_file_ve

I am using nginx as a reverse proxy to have all my services on port 443. I have various services such as : web : about 6 websites/admin panels SSH SFTP WireGuard and maybe others in the future... I am using the following config to separate web traffic and other traffic : stream { upstream ssh { server localhost:<sshPort>; } upstream sftp { server localhost:<sftpPort>; } upstream vpn { server localhost:<WGPort>; } upstream web { server localhost:<X>; } map $ssl_preread_protocol $upstream { "" ssh; default web; "TLSv1.3" web; "TLSv1.2" web; "TLSv1.1" web; "TLSv1" web; } server {

I have this all working, but I am wondering if there is a better way to do this? It seems very difficult to make small changes this way. I'm using the vsphere-iso provisioner here, but I can also work off a template if that makes sense. I'd like to avoid the extra step. Ideally, I'd like to do this with Ansible, I'm just not sure of the best way. I build the image with Packer and Ansible and SHell. Provision with Terraform and Ansible. So please give me advice on where the best place to do this is. The thing i'm trying to do is set up LVM partitions in Ubuntu22. For EL I just do this with Kickstart. In my ./http/user-data I have something like this ssh: allow-pw: true authorized-keys: [] install-server: true storage: config: - ptable: gpt path: /dev/sda wipe: superblock-recursive preserve: false name: '' grub_device: true id: disk-sda type: disk - device: disk-sda s

I have a raid5 array in a Seagate Blackarmor 440 nas that suddenly started showing disks 1 and 4 as "failed". I moved all of the drives over to a Ubuntu box and tried to assemble the array with mdadm. Long story short, here's where I'm at. It looks like Seagate creates a raid partition for the fs, swap, hard reset files, and finally data. The fs, swap, and "hard reset files" are in raid 1, but the data was in 5. If I do an mdadm --assemble --scan I get sudo mdadm --assemble --scan mdadm: /dev/md0 has been started with 4 drives. mdadm: /dev/md1 has been started with 3 drives (out of 4). mdadm: /dev/md2 has been started with 3 drives (out of 4). where md0 is the filesystem, md1 is swap, and md2 is reset stuff, but md3 doesn't come up. The drives seem fine, just seem to have the wrong slot assignment (-1) sudo mdadm --assemble --run /dev/md3 /dev/sd[abcd]4 --verbose --force mdadm: looking for devices for /

Hi I have an instance that is marked shelved, but the option to un-shelve it doesn't show.

We have the use case for mTLS on nginx where : client laptop1 (have client certificate) --> acme1 portal(mTLS) where: the mTLS on acme1 portal is configured to use this below instruction, and this case works fine https://medium.com/@mahernaija/how-to-configure-mutual-tls-mtls-for-nginx-736dec9f819d and https://medium.com/@badawekoo/apply-mutual-tls-over-kubernetes-nginx-ingress-controller-4ea203bce3e0 Now, we have the use case: we have 3 acme portals with mTLS enabled, for instance acme1 portal (mTLS) acme2 portal (mTLS) acme3 portal (mTLS) and from client laptop, we could hit at each of above acme(x) portals with mTLS enabled.

i have a pam.d configuration with MFA authentication on a test server. I noticed that the IP addresses that are in file access-without-MFA.conf mentioned, can login without password and without private public-key. The expected result that Ip addreses in access-without-MFA.conf file would not need MFA but still need Public/Private Key or password to login. I have tried to change places and put the list bellow but in this case, every login requires password and ignores public-key. ssh-copy-id did not help. This is not allows any automation. #%PAM-1.0 # # skip one-time password for special hosts auth [success=done default=ignore] pam_access.so accessfile=/etc/security/access-without-MFA.conf # auth requisite pam_nologin.so auth include common-auth account requisite pam_nologin.so account include common-account password include common-password session required pam_loginuid.so session include c

I'm trying to launch Rancher with the AWS LB controller and i'm getting health checks failed for the ingress. Can someone please look at my set up and let me know if something that's obvious? EKS cluster version: 1.28 EndPointAcces: Public and Private Nodegroup: Private Subnet Security Group ALB-Ingress allows Inbound & Outbound traffic from 0.0.0.0/0 on port 80 and 443. Outbound rule allows traffic to the security group created for the EKS nodegroup. I updated the rancher service to a NodePort. Error message for healthcheck failed "request timed out" Type: NodePort │ │ IP Family Policy: SingleStack