I have a working Nginx config that:
Performs a hard-redirect (301) from http to https
Additionally, ignores subpaths on http (http://www.example.com/ANY/THING redirects to plain https://example.com)
Serves an application from https
How can I modify the config file so that I can:
Generate the HTTPS certificate with certbot/Let's Encrypt
In 90 days, run certbot renew without having to edit the config
If I run certbot renew --dry-run and make no further changes to my Nginx configuration, am I guaranteed that certbot renew will succeed 90 days later? In other words, can the result be a false positive?
If so, should I rather run certbot renew --force-renewal for a thorough test?
Let's say I'm running two OpenLDAP servers which I can use independently for authentication: ldap.example.com (a production site) and ldap.example.io (a testing site).
Is it possible to configure ldap.example.io so that if a user is not found, instead of failing authentication, an attempt is made using ldap.example.com? This way an application using the OpenLDAP server for authentication only needs to be aware of a single LDAP resource.
I imagine there are complications to consider (e.g. duplicate usernames, where do new users get added, should the grafted tree be read-only) but for now I just want to find out if such a mechanism even exists.
I am configuring a Prosody server for use with mobile clients supporting OMEMO. I've picked Conversations as a reference client since I'm familiar with it. What Prosody modules do I need to install to support it?
I am adding the mod_proxy65 module to a Prosody server so that it is suitable for XMPP clients supporting XEP-0065. This allows file transfers between clients that are each behind a firewall (NAT).
Minimal configuration examples:
Component "proxy.example.com" "proxy65"
or
Component "proxy.example.com" "proxy65"
proxy65_address = "example.com"
proxy65_acl = { "example.com" }
The documentation (linked above) suggests that the mod_proxy65 component should point to "a bytestream proxy", but what does this mean, concretely? What is an example of a service I should install at the proxy.example.com endpoint?
On Windows 8 you can hide the Recycle Bin (and other icons on the desktop) by following Charms bar > Settings > Personalization. But on Server 2012 this returns an empty window with the message "This page is not available in this version of Windows."
Is it possible to hide the Recycle Bin on Windows Server 2012?
The most I have found is an instruction to go to User Config > Administrative > Desktop > Hide recycle icon which I can't find.
I have defined a non-homogenous Supervisor group. However I cannot control that group with the group name.
If I try, I get the following error:
$ supervisorctl start groupname
groupname ERROR (no such process)
I can, however, control a single elements of the group, for example supervisorctl start groupname:programname
Is it possible to control the entire group at once (start/stop/restart all programs in the group)? If so, how?
I am trying to get basic LDAP authentication running on Windows Server 2008 (for testing purposes, so running in VirtualBox on an Ubuntu 12.04 host). I am installing Active Directory Rights Management Services. To do so I need a domain user that is not the administrator I am using to install AD RMS.
I have created the domain user in "Active Directory Users and Computers". I have also created them through "User Accounts" (thinking that could be the step I missed out). However the users credentials are not accepted by AD RMS, nor can I log onto the machine using their credentials (I get "You cannot log on because the logon method you are using is not allowed on this computer").
I have tried using gpedit.msc to add Users to "Allow log on locally" but I can't edit that setting (it has a lock icon next to it).
Is there any obvious step or setting that I have missed out on? What do I need to do to create a domain user that the AD RMS installer will accept?
I have just installed Oracle 11g XE on a Windows 7 VirtualBox VM, using all the default options.
"Getting Started" fails
When I click on Getting Started I get taken to http://127.0.0.1:8080/apex/f?p=4950 which fails. After some browsing I came across a suggestion to confirm the HTTP port, but I can't get this far, because I can't connect.
connect system fails
If I select Run SQL command line I get taken to a SQL prompt. I enter connect system and get prompted for a password. I enter the password. I immediately get the following error:
ERROR:
ORA-01033: ORACLE initialization or shutdown in progress
Process ID: 0
Session ID: 0 Serial number: 0
Info: Start database
This happens whether or not I run Start database first. (Start database just opens a Windows command prompt window.)
Info: Windows services
My Oracle services start as follows:
Starting the manual services doesn't resolve the problem. Enabling and starting the disabled service doesn't resolve the problem.
Is there something I haven't done? How can I resolve this connection error?
I'm running PostgreSQL in Windows. I have a vanilla installation with a single admin Windows user account, which I've used to install PostgreSQL and pgAdmin III. Using pgAdmin III I created a database owned by the postgresql account.
I have an external application which needs to access the database. I have provided that application with the postgresql username and password.
If I do not connect to the database via pgAdmin III (a red X appears on the database), the external application cannot connect to the database. As soon as I do connect to the database via pgAdmin III, the external application can connect. This is a problem because both programs (PostgreSQL and the application) are running as services and need to be able to start up and connect automatically when the server is restarted (both services do start correctly when the server is restarted).
In desperation I even saved the password when connecting to the database via pgAdmin III, hoping that the connection would persist between reboots, but it didn't.
How can I set the database up to be permanently available for logging in with the correct username and password? Preferably without saving the password in plaintext.