Comment by lkraav on Postfix: on multi-recipient e-mails of same domain, how...
@sebix There's multiple business reasons why a generic shared e-mail address would be sub-optimal and cause other types distress, so it would be just swapping one problem for another. But you may be on...
View ArticleComment by lkraav on Is it possible to use subjectAltName with one word domains?
More security.stackexchange.com/questions/6873/…
View ArticleComment by lkraav on How do I prevent Linux from freezing when out of memory?
What up @Tronic. Long time no see. Your tip for manually running oom-killer via SysRq-F is the best tip I've come across for this problem (y)
View ArticleComment by lkraav on Postfix aliases and duplicate e-mails, how to fix?
Thanks a ton for pointing this mechanism out. That "finding a needle in a haystack" feeling.
View ArticleComment by lkraav on Is it possible to serve different DocumentRoot from...
6 years later, does apache-2.4 make it possible with the If clause now?
View ArticleComment by lkraav on Apache2 VirtualHost IfPort?
Yeah, main problem with <If> is "Only directives that support the directory context can be used within this configuration section." httpd.apache.org/docs/2.4/mod/core.html#if
View ArticleComment by lkraav on Rewriting URLs while using mod_proxy_fcgi and PATH_INFO...
I might be working on a similar issue (WordPress) at bz.apache.org/bugzilla/show_bug.cgi?id=51517#c22 The solution w/ 2.4.26 seems to unintuitively be ProxyFCGIBackendType GENERIC. Digging for further...
View ArticleComment by lkraav on Resolving to virtual host very slow on Mac OS X Lion
dscl exception strategy is quite nifty. @artur-bodera your link has expired, but they archived their old blog on github github.com/icebourg/itandme-archive/blob/master/posts/2011/0‌​8/…
View ArticleComment by lkraav on Postfix - Opendkim - Unable to connect to local socket
On Gentoo, the systemd unit overrides the UserID setting.
View ArticleComment by lkraav on How to change "From:" field for emails from Cron?
serverfault.com/a/437319/30697 should probably be the Accepted answer.
View ArticleComment by lkraav on Upgrading PHP 5.3 to 7.x on CentOS 6.10 (final) - Unmet...
It seems like IUS repository for CentOS 6 only goes up to PHP 7.1 repo.ius.io/6/x86_64/packages/p
View ArticleComment by lkraav on postfix - different header checks for incoming and...
Yep, so need to use smtpd option called cleanup_service_name and define such an alternate in master.cf.
View ArticleAnswer by lkraav for openwrt dmz nat loopback not working
This particular scenario was an OpenWRT NAT loopback configuration issue. Looking at the changelog, this was implemented in base system /etc/hotplug.d/firewall/10-nat-reflection only starting from...
View ArticleAnswer by lkraav for How to emerge different versions , ebuilds of php
didn't emerge spit an error notification immediately? keyword specifications are supposed to go into /etc/portage/package.keywords.@comment:emerge -av =php-5.2.17if any of them are keyworded, then:echo...
View ArticleAnswer by lkraav for OpenWRT + OpenVPN client forwarding from lan to vpn not...
You most likely don't have the openvpn client side routing set up. http://openvpn.net/index.php/open-source/documentation/howto.html#scope section "Including multiple machines on the client side when...
View ArticleAnswer by lkraav for cd + bash completion script
Correct me if I'm wrong, but I think this is exactly what Lightning was created for. It's a Ruby project, so this isn't a good answer if using Bash is a goal in itself.
View ArticleAnswer by lkraav for dnsmasq: mapping 2 MAC addresses to the same IP address
(random semi-opinionated comment: it's rare to see this highish count of unconstructive and plain inaccurate answers and comments to a question)In contrast to others here, I claim that your request is...
View ArticleAnswer by lkraav for Gentoo headless server suddenly hangs and needs a reboot...
Not sure if this should be an answer or a comment.Your description feels a bit like https://bugs.gentoo.org/show_bug.cgi?id=359671. Although some parameters of the situation seem to be different, esp....
View ArticleAnswer by lkraav for Gentoo apache configuration. virtual hosts problem
First, perhaps you can edit your question and differentiate olololo into different letters for the domain part. abcde.com is just a lot better to read.Second, do NOT give the same IP addresses to...
View ArticleAnswer by lkraav for Windows 2008 R2 vpn tunnel to DD-WRT
(converting comment to answer)Why not OpenVPN again? It'd be a breeze making your Windows boxen connect to DD-WRT running openvpn server, just follow the HOWTO on their website.
View ArticleAnswer by lkraav for dd-wrt Bonjour/ netbios etc on two subnets
Back in the day when I was trying to get my mt-daapd server visible for iTunes clients over VPN, I used RendezvousProxy. This thing is pretty much deadpooled development wise, but I think even the...
View ArticleAnswer by lkraav for Different color prompts for different machines when...
We are working on a more comprehensive hostname string checksum based solution in this gist incl. 256 color compatibility. Aside from the case where you're actually interested in determining a specific...
View ArticleAnswer by lkraav for Force local IP traffic to an external interface
A lot of stuff to go through here, so I can't totally guarantee my accuracy, but the original question seems to be looking for what's known as "send to self" technique. Linked search shows what I think...
View ArticleOptions for non-virtualized network interface isolation? [closed]
My server has two physical NICs, interfaces are eth0 192.168.1/24 (lan) and eth1 192.168.3/24 (dmz). Both NICs are connected to a router via wire. Router has two vlans for lan and dmz with separated...
View Article"hot swapping" linux md raid1 - does re-mounting file-system temporarily...
There's is an ext3 filesystem on top of Linux md raid1, array consists of two hard drives. Various services, including databases run on and write to it.Let's say for argument's sake that to minimize...
View ArticleAnswer by lkraav for Fix mail that has been put in deferred folder
You will probably want to look into http://www.postfix.org/ADDRESS_REWRITING_README.html#canonicalThis is what I just did for my recent case, although this is on the receiving side. "travelmate.lan" is...
View ArticleAnswer by lkraav for Gentoo maintenance [make updating]
1. Can I add proposed line without deleting the old mutter-3.1 related line? It it safe, correct?Yes, it's just fine. Once you have the upgrades done, just remove the old version lines.2. If the 1st...
View ArticleAnswer by lkraav for Postfix virtual aliases end in forwarding loop
So it turned out to be a dangling ~/.forward file.
View ArticleAnswer by lkraav for How do I set up Postfix *_restrictions configuration...
Whatever you do, don't leave home without:smtpd_client_restrictions = reject_rbl_client zen.spamhaus.org, reject_rbl_client bl.spamcop.netThese have been catching the majority for me all by themselves.
View ArticleHow do I send different SSLCertificateFile based on SSL_TLS_SNI environment...
Idea is to run a wildcard cert off an internal CA for *.domain.com, while public-facing domain.com site is validated by a world recognized CA. Application serving requests is the same though, so I'd...
View Articleopenwrt dmz nat loopback not working
I would like to have my "dmz"-connected visitors to be able to access services by their global DNS IP (wan) that are redirected to another zone, let's say "lan".openwrt wan - 12.23.34.45client is...
View ArticleHow broken is routing strategy that causes a martian packet (so far only)...
I believe I've achieved a table that routes packets from and to eth1/192.168.3.x through 192.168.3.1, and packets from and to eth0/192.168.1.x through 192.168.1.1 (helpful source).Question: when doing...
View ArticleHow do I get a simple non-reload logging toggle switch for Apache?
On a development server, I'd like to turn logging on only when needed for specific debugging operations. One way I can think of is Apache checks for the existence of certain dotfile somewhere and...
View ArticleApache 2.4 + PHP CGI SAPI: separate access_log of requests hitting PHP...
It's hard to tell from Apache general access_log which requests are processed by PHP, because direct file hits muddy the waters.PHP FPM SAPI has a super useful access_log directive, but how do I get...
View ArticleHow to reliably capture Linux kernel log messages in case of a system...
I'd like to have access to the lines/tracebacks/whatever whispered by the kernel right before dying. This has proven problematic, because all interfaces I have access to become disabled. Post-reboot,...
View ArticleAnswer by lkraav for Set Up Apache as a Forward Proxy with Caching
I had to specifically do CacheQuickHandler off, because of ProxyPass inside of Location. Caching would not start until this was correct. Example:CacheQuickHandler off CacheRoot...
View ArticleHow to get an unprivileged public status page showing in OpenWrt 12.09 or newer?
For the use case where the WAN connection goes down, but employees can still access wifi, I'd like them to be able to check on some sort of a public router status page in their problem reports. This...
View ArticleIs it possible to get some indication that YubiKey (or another USB device) is...
Scenario in question:Slowish Atom netbook. I resume from sleep or hibernation. Windows 7 login prompt displays. I have a loooong password stored in YubiKey. I plug in YubiKey, it lights up, like it's...
View Articlesmtpd_helo_restrictions = ..., reject_unknown_helo_hostname occasionally...
I have configured my postfix as follows:smtpd_helo_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unknown_helo_hostnameThis is working well because most spambots don't seem to have...
View Articlecloning with dd - is non-partitioned space considered the same as empty space...
note: all = all that i've foundAll the "cloning with dd" information talks about how dd copies all the "empty space", but literally all writings seem to be responding to a situation where filesystems...
View ArticleComment by lkraav on What are the correct dovecot file permissions for...
Good find. This is a signal to migrate /etc/dovecot/sieve.d elsewhere, I chose /home/mail/.sieve.d.
View Article