serverfault.com

I'm using a PACS (physical access control system) that displays maps with campus doors and their status. The maps have some delay to retrieve doors status info, but succeed everytime. The PACS client is hosted in IIS RDWeb, connected to a remote PACS server and its maps use mshta.exe to display, I cope with a situation where I need to diagnose the latency of executing some IRP_MJ_XXX routines called as dependencies of mshta.exe? For that purpose, I'm using Process Monitor and have enabled estimation of task duration. How to confirm that one IPR_MJ_XXX duration is normal and another one is long? Is there any time threshold?

Having received an email from Google about Secure Boot certificates expiring, I'm not sure if my servers are affected! I'm pretty sure I'm unaffected as these are the Shielded VM settings. If someone could confirm I'd be happy :) Secure Boot Off vTPM Off Integrity Monitoring Off Thanks

I set up Zabbix on my infrastructure and added a host. Attempting to fetch disk usage details from the host results in this error: Latest data Details Cannot execute operation Cannot send request: item "FS [(C:)]: Get data" on host "CS-COK-LAP-036" is not monitored. But it can fetch other metrics. What is the cause?

I have a Windows Server 2025 machine I am trying to rejoin to an Active Directory 2019 domain that is healthy and has all FSMO roles. Attempting to join, results in "The request is not supported". Some background -- this Server 2025 machine was previously a domain controller on this same domain, but was decommissioned due to replication was broken. I had the worst time trying to gracefully remove the Server. To attempt to clean up the old metadata, I went into ADUC on the 2019 DC, navigated to the Domain Controllers OU, right clicked the Server 2025 machine and deleted it. It warned me that it was a global catalog and I confirmed the deletion. I uninstalled the The AD DS and DNS roles, but I'm not sure how much is remaining. The server is in WORKGROUP. The old computer object was cleaned up from AD on the 2019 DC. Here is what I have tried and verified: Discovered replication was broken between the two domain controllers Ran dcdiag /te

In Microsoft Entra, are equivalent timestamps for registered and last activity and signed on and last password reset an indication of a persistence play by an attacker or is it a normal activity? Example: Registered / Activity (phishing mail, eg. 5th May 07:00): BCC dispenser user account device: 5/5/2026, 08:27 and AM / 5/10/2026, 08:27 AM Some other user account device: 5/5/2026, 08:45 AM and / 5/10/2026, 08:45 AM ... etc, 1:1 matching timestamp, close proximity to sending phishing event. Looking at these user accounts properties, they all show timestamps like this: User 1 properties: Sign in sessions valid from date time: 5/5/2026, 07:21 AM Last password change date time: 5/5/2026, 07:21 AM User 2 properties: Sign in sessions valid from date time: 5/5/2026, 07:12 AM Last password change date time: 5/5/2026, 07:12 AM Lets assume the attack happ

I am trying to a setup dual wan on a pfSense SG-6100 but cannot figure out how to do it when we only have a single gateway. We have 2 fiber lines coming into the premises from BT that go into 2 separate Cisco switches controlled by BT. The IP address details we have been given are as below Line 1 IP address - 70.x.x.195/28 next hop gateway address - 70.x.x.193 Line 2 IP address - 70.x.x.196/28 next hop gateway address - 70.x.x.193 I have set interface WAN to the 70.x.x.195/28 address and if I try to set WAN2 to the 70.x.x.196/28 I get an error stating that the address overlaps with the 70.x.x.195 address. If I change both WAN and WAN2 to /32 addresses then I can set WAN to the 70.x.x.195 address and WAN2 to 70.x.x.196 but I cannot set both interfaces to use the same next hop gateway address. Can anyone point me in the right direction to set this up using the details above?

Trying to bring up a Dovecot 2.4.3 installation on my publicly accessible home server. I had a working 2.3.x installation and have followed all the migration advice on the dovecot website. Eventually, I archived the previous config and started again with a de minimis configuration from the dovecot website (1, below). I narrowed the problem down to the server closing the connection immediately after a successful login, but the question is, why does it do that? I used 'openssl s_client' to test the link, and you can see at the end of recording (3, below), it successfully connects, logs in, but immediately closes. In other sessions I've attempted login with an intentionally wrong password, which it correctly rejects, and maintains the connection. Then I login with the correct password which it accepts and gives a prompt expecting a command, but then it disconnects immediately. I'm mystified. I expect it's something stupid, but I've been at it all weekend without

We have some equipment in our server rack that doesn't draw a lot of power, like a USB-to-network adapter and a fiber modem. Right now these small devices are powered over a simple power strip attached to a UPS (Eaton 9PX 11000i). I was told during an audit that the power strip should have its own fuse. Is this really necessary, just a good idea, or does it not matter at all? I'm in central Europe if that matters.

I have a server that runs Ubuntu 24.04, which functions as the master-zone-server using Bind9. I store all my zone files in two separate folders: /etc/bind/master-zones/forward-zones/ /etc/bind/master-zones/reverse-zones/ I implemented zone-based DNSSEC by adding the following to the zones. zone "zone1.com" IN { type master; file "/etc/bind/master-zones/forward-zones/zone1.com.zone.db"; dnssec-policy default; inline-signing yes; }; But this is forcing me the follwing: Give write permission to the bind-user to the zone file folder "/etc/bind/master-zones/forward-zones/", which I want to keep it as read-only. After I gave the write permission, the Bind9 is now creating three additional files for each zone in this folder, which is making the folder very crowded and destroying the neatness of my zone folder. zone1.db --> my ori

I'm using Windows Server 2022. I want to list files and subfolders in a directory in a tree structure. I used this cmd: tree /f /a "C:\Users\Administrator\Desktop\Manga\Complete\Watashi no Fushidara (complete)", and it returned this result: Folder PATH listing Volume serial number is 000001EF B640:4E39 C:\USERS\ADMINISTRATOR\DESKTOP\MANGA\COMPLETE\WATASHI NO FUSHIDARA (COMPLETE) Watashi no Fushidara - v01 ch 01-06 (omake not translated).cbz Watashi no Fushidara - v02 ch 07-13 (end).cbz The indented lines are not included if there are no subfolders in the directory. I want to hide the header information and include indented lines so it looks like this: C:\USERS\ADMINISTRATOR\DESKTOP\MANGA\COMPLETE\WATASHI NO FUSHIDARA (COMPLETE) ∟ --- Watashi no Fushidara - v01 ch 01-06 (omake not translated).cbz ∟ --- Watashi no Fushidara - v02 ch 07-13 (end).cbz How can I achieve this?