serverfault.com

So I have this legacy system that is being migrated to a new architecture. The database stores passwords as plain MD5 hashes, as in passwordhash = md5('plaintext') Yes, I know this is insecure, I will have to live with that for now. The system runs Apache 2.2 with the mod_auth_mysql module. The HTTP authentication configuration looks like this: AuthType basic AuthMYSQLEnable On AuthMySQLHost dbserver ... AuthMySQLPwEncryption md5 This setup apparently supports plain md5 password hashes for authentication. It appears that in Apache 2.4 the authentication architecture has changed, and I have found no way to specify legacy MD5 password hashes for HTTP authentication. It is my understanding that the so-called MD5 hash in Apache 2.4 basic authentication is an apache specific algorithm, so it fails against plain MD5 hashes. The same goes for digest authentication. Any idea how to get A

We're building a job board on Node.js + PostgreSQL, hosted on Hetzner VPS in Central Europe. Text-only listings, no media. Core features: job listings, search, filtering, employer/candidate messaging. We're trying to understand the realistic scaling journey and costs. Would love to hear from anyone who's run something similar. 5k – 50k monthly users What Hetzner VPS size makes sense to start? (CX22 = 2 vCPU, 4GB RAM, ~4 EUR/month) Single VPS for everything or separate DB server from day one? What hits the ceiling first – CPU, RAM, or database connections? 50k – 300k monthly users When do you split the DB to a separate server? When does Redis caching become necessary? Real-world Node.js gotchas in production – memory leaks, connection pool exhaustion? 300k – 1M monthly users When do you add a second app server + load balancer? How do you handle unexpected t

SPF configuration for all my domains works, but fails for DSNs sent by my mail server. The headers for a regular message look like this: Authentication-Results: posteo.de; dmarc=pass (p=reject dis=none) header.from=example.com Authentication-Results: posteo.de; spf=pass smtp.mailfrom=example.com While bounce message looks like this: Authentication-Results: posteo.de; dmarc=pass (p=reject dis=none) header.from=mail.example.com Authentication-Results: posteo.de; spf=tempfail smtp.helo=mail.example.com DMARC passes becauses the bounce messages are DKIM-signed. The mail server initially had a MX record pointing to itself, and a corresponding TXT (SPF) record ("v=spf1 mx -all"). After reading about a similar problem and its solution, I changed the SPF record to refer to the IPv4/IPv

I have a remote machine which executes a number of measurement tasks. Users are supposed to execute a startup via command line (login via SSH). However we have to make sure that any possible previous instance of the started programmes is terminated, so that the data acquisition scripts only run once, and are in a prestine state - thus we kill preemptively any instance of them at the start of this batch script with a command like taskkill /F /FI "WINDOWTITLE eq check_logfile" /T. This command fails from an unpriviliged account. Is there a way I can configure the computer such that this particular command in the script (or this whole batch script) runs with admin priviliges even when invoked by an unpriviliged user? Entering a separate password to execute this command is ok, changing to another user completely would make the whole procedure pointless from a security POV. Assume that the unpriviliged user is only capable to a

I spent half a day searching the internet for answers to my question, on both English and Russian websites. This WPABALN.EXE and \ooobe\msoobe.exe \a , but it's still not it. help please

I am trying to create an OAuth 2.0 Client ID in Google Cloud for n8n (Google Sheets integration). The client ID is created successfully when no redirect URI is included, but the creation process fails instantly when I add the authorized redirect URI. This happens in a new project with Google Sheets and Drive APIs enabled, no organization restrictions, and after trying different browsers and incognito mode. The error is “Attempted action failed” with a request ID. It appears to be a Google Cloud Console issue where the OAuth client creation fails only when adding the redirect URI.

On June 3rd we noticed that one of our tables was not showing up in SHOW TABLES, but a direct SELECT * FROM table_name returned data normally. When we ran FLUSH TABLES the select command stopped working. (Our interpretation is that the table handle was still open in the InnoDB buffer) Then we inspected /var/lib/mysql/<database_name>/ and found that a significant number of tables across the database were in inconsistent states: Some tables had both .frm and .ibd → worked fine Some tables had only .frm, no .ibd → visible in SHOW TABLES, failed on query Some tables had only .ibd, no .frm → not visible in SHOW TABLES, but still queryable until FLUSH TABLES What the error log tells us: The server had been r

I need help on how to correctly setup postfix for multi-instance. For few months now I have been trying to configure 2 separate domains, example: domain1.com and domain2.com. The resources I found on the internet, or Postfix website (confusing), does not help to correctly configure the multi-instances. Everything use to work fine for both domains without multi-instance configuration. Recently, I have been suspended from using Brevo relay service. I had no issues using them on single instance configuration. To start, here is the general setup: I use VPS. I have 2 public IPs from hostwinds.com. On Hostwinds server, I have haproxy setup to translate public IPs, ports: 25, 587, etc to private IPs and ports: 2525, 10587, etc. The Hostwinds server connects to my postfix server via wireguard. On my local postfix server, there is a postscreen configured to use translated ports; 2525, 10587. Example: <IP_1:2525>, <IP_1:10587> , and &

Our Environment: Active Directory domain domain.local, Forest and Domain Functional Level 2016 8 Domain Controllers (mixed Server 2019 and 2022) replication healthy (repadmin /replsummary: 0 errors) The Problem: Two computer objects were affected (both members of Server 2022 (HyperV VMs)). The servers were re-joined under new names after losing trust (rejoining over PowerShell was not possible). How it manifests over time: The AD-object becomes "frozen" at some unknown point (root cause unclear) Netlogon Event 3224 fires every 4 hours: machine account password change fails with the same internal error After several weeks the trust relationship breaks (the server can no longer authenticate against the domain) The administrator re-joins the server under a new name and the old object cannot be delete

I have several Windows 11 Pro machines joined to a domain. The domain controller is currently offline, and users logon using cached credentials. We temporarily moved some shared folders to a workgroup Windows 11 Pro host. Users authenticate using local accounts and integrated pass through Windows authentication. This works fine from most clients, but some Windows 11 machines suddenly stopped working. From the affected clients: net use \\192.168.0.6\share /user:192.168.0.6\user System error 86 has occurred. The specified network password is not correct. The same credentials work: From other Windows 11 clients Against the same server For the same share What I already tried on the failing clients: Remove all stored credentials (cmdkey, Credential Manager) Use explicit local credentials with net use (server\user, IP\user) Test from a local account on the clie