serverfault.com

When squid version 5.7 (on Debian 12) is configured to listen to a specific DNS name, it is only binding to the IPv6 addressed resolved from this name, even though the name resolves to one IPv6 and one IPv4 addresses. Config: http_port my.host.com:3128 DNS: # nslookup my.host.com Server: 1.1.1.1 Address: 1.1.1.1#53 Non-authoritative answer: Name: my.host.com Address: 1.2.3.4 Name: my.host.com Address: 1:2:3:4:5::6 Listening ports: # ss -lptn State Recv-Q Send-Q Local Address:Port Peer Address:Port Process <snip> LISTEN 0 128 0.0.0.0:22 0.0.0.0:* users:(("sshd",pid=660,fd=3)) LISTEN 0

I have a problem. I have a WebSite made in PHP Laravel 10, using MariaDB. The issue is that the WebSite is online and on port 443 HTTPS. And the DB is only accessible on localhost. The Server (Digitalocean) is with the UFW firewall on and only has open port 80, 443 and the custom SSH port. Now, SSH root access is forbidden, my SSH access user has long and complicated password. The problem is that every now and then I see that in my DB, in the “users” table that I use for my website, a new row appears with a new user created, with name adminxps and email [email protected]. And I have to enter locally to the server and delete that row from the DB. But after a couple of weeks it appears again. Is my site being hacked? Is it because of Laravel? Or are they accessing the Digitalocean server? I would be grateful if you could give me some guidance on how to check. PS: I use fail2ban on the server. Thank you.

Good afternoon, everyone. I am turning to the community to ask for help with a rather intriguing problem. Context: I cannot get Outlook clients to connect to the KingHost email server when they are behind our firewall, even after opening the necessary ports. Below, I present the tests I performed, divided into scenarios, to facilitate understanding: Scenario 1 Firewall: openSUSE 11.3 Connection: ADSL Result: Outlook connects normally to the KingHost email server. Scenario 2 Firewall: openSUSE 11.3 Connection: Fiber (1 Gbps) Result: Outlook does not connect, even with the same firewall rules. Scenario 3 Firewall: openSUSE 15.6 Connection: ADSL Result: Outlook connects normally to the KingHost email server. Scenario 4 (Current) Firewall: openSUSE 15.6 (new server) Connection: Fiber (1 Gbps

I'm using kube-prometheus-stack to monitor cluster metrics, and I noticed that node memory usage in the Grafana dashboard differs significantly from what I see using kubectl top node. The default query currently used in Grafana is: 100 - ( avg(node_memory_MemAvailable_bytes{job="node-exporter", instance="$instance", cluster="$cluster"}) / avg(node_memory_MemTotal_bytes{job="node-exporter", instance="$instance", cluster="$cluster"}) * 100 ) This shows me 43.7% memory usage for k8s-master-00 but when I run kubectl top node k8s-master-00, i get 67% memory usage. I tried to replicate the kubectl top node result manually using: kubectl get --raw /apis/metrics.k8s.io/v1beta1/nodes/k8s-master-00 | jq .usage.memory

I need to create a task scheduler that invokes a powershell. This powershell must go to a remote machine on the network, and perform a copy-item from a folder on which the user has permissions. The question is: with which user should I launch the powershell? I want to be as independent as possible from the different users that can be created on the machine. A user who needs to access the remote machine must have read permissions, but if it is not a user also present on the remote machine, it must have the access credentials. I tried with Network Service, but it gives me access denied even if I gave full control on the folder from which to take the sources

I have the following configuration in Apache below. I need to set username from decoded Base64 JWT token. I get the correct ENV for REMOTE_USER_LOCAL, but this doesn't work with mod_gssapi: <VirtualHost *:80> ServerName apkrb-test1.reg.intra.net:80 SSLProxyEngine on ProxyPass "/" "https://server_proxy/" ProxyPassReverse "/" "https://server_proxy/" RewriteMap jwt_decoder prg:/etc/httpd/conf.d/extract_jwt.sh <Location / > RewriteCond %{HTTP:Authorization} ^Bearer\s+(.+)$ RewriteRule . - [E=JWT_TOKEN:%1] RewriteCond %{ENV:JWT_TOKEN} ^(.+)$ RewriteRule . - "[E=JWT_DECODED:${jwt_decoder:%{ENV:JWT_TOKEN}}]" RewriteCond %{ENV:JWT_DECODED} \"userPrincipalName\"\s*:\s*"([^"]+)" [NC] RewriteRule . - [E=REMOTE_USER_TEMP:%1] RewriteCond %{ENV:REMOTE_USER_TEMP} ^(.*)@reg\.ad2012\.loc$ [NC] RewriteRule . - [E=REMOTE_USER_LOCAL:%[email protected]] rewriteCond

Most filesystems seem to get slow for folders with many small files. I have a lot (100,000 to 1,000,000) of small text or image files (tens to a few hundred kb) and having them all in one large folder makes many operations slow, sometimes even a simple ls. Syncing them with rsync to another disk is also very inefficient. Some tricks like using tar can help a bit, but in the end, it seems that storing many small files is not well-supported by usual Linux filesystems. Is there a way to increase the efficiency when I know in advance which folders will have a large amount of files? I know that tools like git use a subfolder structure to reduce the number of files per folder, but I want to keep their paths as they are and using subfolders still wouldn't speed up copying the complete directory. Even modern filesystems like BTRFS can't handle large amounts of files well. Should I test more different filesystems or are there other ways to increase the efficiency f

I just set up a fresh Proxmox server and created an NGINX VM within it to access Proxmox via the domain "proxmox.net", but I can't connect to it locally. Every time I try, it just won't let me in. The A record seems to be working fine — I can connect using the IP and port (proxmox.net:8006), but accessing it directly through proxmox.net without specifying the port doesn't work. I’ve searched everywhere and haven’t been able to find a solution. Here's what I’ve already tried: Deleted the default NGINX page Made sure the Windows firewall is disabled during testing Flushed the DNS cache before accessing Verified that NGINX is listening on ports 80 and 443 If anyone has any ideas or suggestions, I’d really appreciate the help! (Even if i left out the first part it wont work) enter image description here

I'm not sure if this right place. How to make exe file that will use powershell to run it? https://notebin.de/?6ca87f62cd53dea7#4WjYm5fH7gXA2CoVHwv6TtsTxXheBz5SUvryQDvMLfCV Currently those command manually run under powershell with admin privilege. https://prnt.sc/BkidBfnlAKcX Possible to put in execute file? Thanks.

tw5@renegade:~$ dig @192.168.57.1 tw5.helpdesk.com ; <<>> DiG 9.18.30-0ubuntu0.24.04.2-Ubuntu <<>> @192.168.57.1 tw5.helpdesk.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40082 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;tw5.helpdesk.com. IN A ;; ANSWER SECTION: tw5.helpdesk.com. 0 IN A 192.168.57.37 tw5.helpdesk.com. 0 IN A 192.168.57.43 ;; Query time: 3 msec ;; SERVER: 192.168.57.1#53(192.168.57.1) (UDP) ;; WHEN: Wed May 28 21:17:18 EDT 2025 ;; MSG SIZE rcvd: 82 I've seen google's and facebook's DNS records come back this way as well, only with a heck of a lot more servers. Now, as I understand it, (if I understand it), there should also be filesystem syncing between any of the applica