Highest Voted Questions - Server Fault Stack Exchange

82

votes

5 answers

bad ownership or modes for chroot directory component

I created the user MY_USER. Set his home dir to /var/www/RESTRICTED_DIR, which is the path he should be restricted to. Then I edited sshd_config and set: Match user MY_USER ChrootDirectory /var/www/RESTRICTED_DIR Then I restarted ssh. Made…

ssh chown chroot

asked Mar 27 '14 at 18:50

MultiformeIngegno

1,687
9
26
31

82

votes

6 answers

How to accurately check if package is installed in yum?

I keep getting answers like: yum list installed | grep bind or rpm -qa | grep bind But that is not accurate as I'm getting a list of few other bind packages like…

yum rpm package-management

asked Dec 03 '13 at 15:18

checksum

1,015
1
11
15

82

votes

5 answers

Choosing between meaningful and meaningless hostnames

Assume an environment with a puppet-managed cluster of different servers - various hardware, software, operating systems, virtual/dedicated, etc. Would you choose meaningful hostnames (mysqlmaster01..99, mysqlslave001..999, vpnprimary, vpnbackup,…

configuration-management best-practices

asked Feb 18 '13 at 14:04

keymone

958
8
10

82

votes

7 answers

Log all commands run by admins on production servers

It is company policy for admins to login to the servers via a personal username, and then run sudo -i to become root. Upon running sudo -i, sudo will create an environmental variable called SUDO_USER, which contains the original user's username. Is…

centos bash logging sudo

asked Jan 20 '13 at 04:35

Soviero

4,366
8
36
60

82

votes

4 answers

Running Cron every 2 hours

I have the cron job as shown below, and wanted it to run every 2 hours, but it keeps running every 2 minutes. Can someone tell me where I'm going wrong? * */2 * * * /path-to-script

linux cron

asked Jul 21 '09 at 13:24

Helen

953
1
6
7

82

votes

4 answers

dig show only answer

I want dig only to show the answer of my query. Normally, it prints out alot of additional info like this: ;; <<>> DiG 9.7.3 <<>> google.de ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55839 ;; flags: qr…

dig

asked Sep 23 '12 at 08:05

Zulakis

4,153
14
48
76

82

votes

1 answer

What does "debconf: delaying package configuration, since apt-utils is not installed" mean?

I have just installed Debian and I was just installing some packages using apt-get instal when I saw this message: debconf: delaying package configuration, since apt-utils is not installed What does this mean? And once I have installed apt-utils…

linux debian apt

asked Feb 10 '12 at 20:53

David

1,067
1
10
15

82

votes

1 answer

SSH Allow Password For One User, Rest Only Allow Public Keys

Is it possible with ssh to allow passwords from a certain user, but deny using passwords for everybody else? Basically I want to allow password auth for user justin but everybody else must use public keys. PasswordAuthentication no Seems to be…

ssh ssh-keys

asked Sep 01 '11 at 22:33

Justin

5,328
19
64
84

82

votes

2 answers

How to configure a Windows machine to allow file sharing with a DNS alias

What process is necessary to configure a Windows environment to allow me to use DNS CNAME to reference servers? I want to do this so that I can name my servers something like SRV001, but still have \\file point to that server, so when SRV002…

windows domain-name-system file-sharing alias netbios

asked Jun 11 '09 at 02:24

Michael Ferrante

1,641
1
13
10

82

votes

7 answers

OpenVPN vs. IPsec - Pros and cons, what to use?

Interestingly I have not found any good search results when searching for "OpenVPN vs IPsec". So here's my question: I need to set up a private LAN over an untrusted network. And as far as I know, both approaches seem to be valid. But I do not know…

security openvpn vlan ipsec

asked Nov 17 '10 at 13:41

jens

1,001
1
10
10

82

votes

4 answers

Automate the installation of postfix on Ubuntu

My system configuration script does an apt-get install -y postfix. Unfortunately the script is halted when the postfix installer displays a configuration screen. Is there a method to force postfix to use the defaults during installation so that an…

ubuntu postfix installation automation apt

asked May 21 '10 at 01:43

sutch

1,006
1
8
9

82

votes

11 answers

Dealing with HTTP w00tw00t attacks

I have a server with apache and I recently installed mod_security2 because I get attacked a lot by this: My apache version is apache v2.2.3 and I use mod_security2.c This were the entries from the error log: [Wed Mar 24 02:35:41 2010] [error]…

apache-2.2 security spam

asked Mar 24 '10 at 05:33

Saif Bechan

10,960
10
42
63

82

votes

15 answers

What causes SSH error: kex_exchange_identification: Connection closed by remote host?

I setup a SSH server online that is publicly accessible by anyone. Therefore, I get a lot of connections from IPs all over the world. Weirdly, none actually try to authenticate to open a session. I can myself connect and authenticate without any…

ssh ssl openssl ssh-keys connection

asked May 04 '20 at 09:25

soliz

922
1
5
7

81

votes

2 answers

How to open port for a specific IP address with firewall-cmd on CentOS?

I would like to open port 4567 for the IP address 1.2.3.4 with the firewall-cmd command on a CentOS 7.1 server. How can I achieve this, as the documentation I could find was too specific on this?

centos firewall centos7 firewalld

asked Apr 22 '15 at 09:46

Michaël Perrin

913
1
7
7

81

votes

8 answers

Apache2 config variable is not defined

I installed apache2 on ubuntu 13.10. If I try to restart it using sudo /etc/init.d/apache2 restart I get this message: AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1. Set the 'ServerName'…

apache-2.2 ubuntu

asked Nov 29 '13 at 16:49

Kurt Bourbaki

913
1
6
7

Most Popular