Então, eventualmente, quero configurar um balanceador de carga clássico na AWS e tenho uma VPC com 2 sub-redes públicas, mas agora não tenho certeza se posso usar essas duas sub-redes para essa instância do EC2 ou preciso de duas instâncias do ec2?
Então eu me vejo sendo forçado a usar uma máquina Windows apenas porque isso é o que a instituição financeira sente ser mais seguro para um contratado externo.
Estou usando o powershell e acabei de receber alguns svgativos de seu designer interno que confirmei e enviei no branch em que estava trabalhando e tentei mesclar em outro branch quando recebi este erro:
error: cannot stat 'media/images1': Permission denied
Agora eu não posso nem fazer check-out no outro branch onde comecei este trabalho e não posso nem fazer um cdem media/images1um para dar uma olhada no tipo de permissões que esses svgarquivos têm.
Então, eu estou querendo saber se alguém poderia me orientar sobre como isso é feito quando você nega a alguém a capacidade de executar um git pull, cdou mesmo git checkout <other-branches>apenas porque você não tem permissões com esses arquivos?
Melhor ainda, a quem eu normalmente pediria para corrigir isso em uma empresa? De quem seria o trabalho normalmente fazer isso?
Eu tenho solicitações de roteamento Nginx do navegador para a API Express ou meu servidor react, no entanto, no console, continuo recebendo solicitações xhr que estão apenas pendentes e, em seguida, tempo limite com erro de gateway incorreto 502, geralmente causado por Nginx incapaz de passar uma requisição para "upstream", neste caso minha API Express e normalmente eu conseguiria verificar os /var/log/nginx/arquivos, mas não tenho certeza de como fazer isso quando tudo isso está acontecendo dentro de um container Docker.
Eu tentei essa abordagem de docker logs <container name/id>comando, mas recebo Error: No such container: <container-id>.
Eu obtive o ID do contêiner da última linha após a execução docker-compose up --builde ele dizSuccessfully built <container-id>
Copiei esse id e executei docker logs <container-id>em um segundo painel no meu iTerm.
Eu então fiz um docker pse obtive esta saída:
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
f37be54a9e60 complexly_api "npm run dev" 43 minutes ago Up 28 minutes complexly_api_1
9b87bc0aa343 complexly_nginx "nginx -g 'daemon of…" About an hour ago Up 28 minutes 0.0.0.0:3050->80/tcp complexly_nginx_1
1e30a05f8e28 complexly_worker "npm run dev" About an hour ago Up 28 minutes complexly_worker_1
65611b5a6b05 complexly_client "npm run start" About an hour ago Up 28 minutes complexly_client_1
9182b26fb402 redis:latest "docker-entrypoint.s…" About an hour ago Up 28 minutes 6379/tcp complexly_redis_1
8ca3596d8a50 postgres:latest "docker-entrypoint.s…" 8 days ago Up 28 minutes 5432/tcp complexly_postgres_1
Acredito que preciso pegar um desses IDs de contêiner e fazer um docker logs, mas não tenho certeza.
No meu site, recebo um gateway ruim 502 após implementar a seguinte configuração:
# Default server configuration
2 #
3 server {
4 listen 80;
5 listen [::]:80;
6 server_name microurb.club;
7 return 301 http://www.microurb.club;
8 }
9
10 server {
11 listen 80;
12 listen [::]:80;
13
14 # SSL configuration
15 #
16 # listen 443 ssl default_server;
17 # listen [::]:443 ssl default_server;
18 #
19 # include snippets/snakeoil.conf;
20
21 root /var/www/microurb.com/public_html;
22
23 # Add index.php to the list if you are using PHP
24 index index.php index.html index.htm index.nginx-debian.htm;
25
26 server_name www.microurb.club;
27 ·
28 include global/restrictions.conf;
29 include global/wordpress.conf;
30 ·
31 # location / {
32 # # First attempt to serve request as file, then
33 # # as directory, then fall back to displaying a 404.
34 # try_files $uri $uri/ =404;
35 # }
36
37 location ~ \.php$ {
38 include snippets/fastcgi-php.conf;
39 fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;
40 }
41
42 # Allow access to the ACME Challenge directory
43 location ~ /\.well-known\/acme-challenge {
44 allow all;
45 }
46
47 include custom_config_files/x_protection.conf;
48 }
49
50 server {
51 listen 443 ssl http2;
52 listen [::]:443 ssl http2;
53 server_name microurb.club;
54 return 301 https://www.microurb.club;
55 include ssl/ssl_general.conf;
56 include ssl/ssl_microurb.com.conf;
57 }
58
59 server {
60 listen 443 ssl http2;
61 listen [::]:443 ssl http2;
62 server_name www.microurb.club;
63
64 include ssl/ssl_general.conf;
65 include ssl/ssl_microurb.com.conf;
66
67 root /var/www/microurb.com/public_html;
68
69 # Add index.php to the list if you are using PHP
70 index index.html index.php;
71
72 location ~ \.php$ {
73 include snippets/fastcgi-php.conf;
74 fastcgi_pass unix:/var/run/php7.0-fpm.sock;
75 }
76
77 include custom_config_files/x_protection.conf;
78 }
79
Eu fiz um:
sudo tail -30 /var/log/nginx/error.log
E recebi os seguintes erros, mas não sei o que significam:
PHP message: PHP Notice: Undefined index: success in /var/www/microurb.com/public_html/index.php on line 295" while reading upstream, client: 24.55.9.54, server: www.microurb.club, request: "GET / HTTP/1.1", upstream: "fastcgi://unix:/var/run/php/php7.0-fpm.sock:", host: "www.microurb.club"
2018/12/25 20:07:05 [crit] 18408#18408: *40 connect() to unix:/var/run/php7.0-fpm.sock failed (2: No such file or directory) while connecting to upstream, client: 24.55.9.54, server: www.microurb.club, request: "GET / HTTP/2.0", upstream: "fastcgi://unix:/var/run/php7.0-fpm.sock:", host: "www.microurb.club"
2018/12/25 20:07:06 [error] 18408#18408: *40 open() "/var/www/microurb.com/public_html/favicon.ico" failed (2: No such file or directory), client: 24.55.9.54, server: www.microurb.club, request: "GET /favicon.ico HTTP/2.0", host: "www.microurb.club", referrer: "https://www.microurb.club/"
2018/12/25 20:07:10 [crit] 18408#18408: *40 connect() to unix:/var/run/php7.0-fpm.sock failed (2: No such file or directory) while connecting to upstream, client: 24.55.9.54, server: www.microurb.club, request: "GET / HTTP/2.0", upstream: "fastcgi://unix:/var/run/php7.0-fpm.sock:", host: "www.microurb.club"
2018/12/25 20:07:20 [crit] 18408#18408: *40 connect() to unix:/var/run/php7.0-fpm.sock failed (2: No such file or directory) while connecting to upstream, client: 24.55.9.54, server: www.microurb.club, request: "GET / HTTP/2.0", upstream: "fastcgi://unix:/var/run/php7.0-fpm.sock:", host: "www.microurb.club"
Acredito que o problema tenha raiz na minha configuração acima, mas não tenho certeza de onde. Quando tento descomentar este bloco:
31 # location / {
32 # # First attempt to serve request as file, then
33 # # as directory, then fall back to displaying a 404.
34 # try_files $uri $uri/ =404;
35 # }
Recebo um erro depois de executar sudo nginx -tdizendo que tenho nginx: [emerg] duplicate location "/" in /etc/nginx/sites-enabled/microurb.com:31, mas só tenho um. Não tenho certeza por que recebo esse erro.
Estou tentando fazer login em um servidor centos 6.8 e tenho o endereço IP e a senha correta. Ele armazenou a chave privada no meu arquivo known_hosts, mas esqueci. Meu colega pode fazer login de seu computador, ele tem a chave privada no arquivo id_rsa.pub que ele me enviou. Quando o armazenei, ainda não consegui fazer login. Excluí esse arquivo, mas ainda não consigo fazer login e não consigo entender esse log de erro abaixo, por favor me ajude.
danales-MacBook-Pro:~ danale$ ssh -vvv <ip>
OpenSSH_7.3p1, LibreSSL 2.4.1
debug1: Reading configuration data /Users/danale/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 20: Applying options for *
debug2: resolving "<ip>" port 22
debug2: ssh_connect_direct: needpriv 0
debug1: Connecting to <ip> [<ip>] port 22.
debug1: Connection established.
debug1: identity file /Users/danale/.ssh/id_rsa type 1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/danale/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/danale/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/danale/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/danale/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/danale/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/danale/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/danale/.ssh/id_ed25519-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_7.3
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.3
debug1: match: OpenSSH_5.3 pat OpenSSH_5* compat 0x0c000000
debug2: fd 3 setting O_NONBLOCK
debug1: Authenticating to <ip>:22 as 'danale'
debug3: hostkeys_foreach: reading file "/Users/danale/.ssh/known_hosts"
debug3: record_hostkey: found key type RSA in file /Users/danale/.ssh/known_hosts:8
debug3: load_hostkeys: loaded 1 keys from 107.6.169.138
debug3: order_hostkeyalgs: prefer hostkeyalgs: [email protected],rsa-sha2-512,rsa-sha2-256,ssh-rsa
debug3: send packet: type 20
debug1: SSH2_MSG_KEXINIT sent
debug3: receive packet: type 20
debug1: SSH2_MSG_KEXINIT received
debug2: local client KEXINIT proposal
debug2: KEX algorithms: [email protected],ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1,ext-info-c
debug2: host key algorithms: [email protected],rsa-sha2-512,rsa-sha2-256,ssh-rsa,[email protected],[email protected],[email protected],[email protected],ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519
debug2: ciphers ctos: [email protected],aes128-ctr,aes192-ctr,aes256-ctr,[email protected],[email protected],aes128-cbc,aes192-cbc,aes256-cbc,3des-cbc
debug2: ciphers stoc: [email protected],aes128-ctr,aes192-ctr,aes256-ctr,[email protected],[email protected],aes128-cbc,aes192-cbc,aes256-cbc,3des-cbc
debug2: MACs ctos: [email protected],[email protected],[email protected],[email protected],[email protected],[email protected],[email protected],hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: MACs stoc: [email protected],[email protected],[email protected],[email protected],[email protected],[email protected],[email protected],hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: compression ctos: none,[email protected],zlib
debug2: compression stoc: none,[email protected],zlib
debug2: languages ctos:
debug2: languages stoc:
debug2: first_kex_follows 0
debug2: reserved 0
debug2: peer server KEXINIT proposal
debug2: KEX algorithms: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: host key algorithms: ssh-rsa,ssh-dss
debug2: ciphers ctos: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,[email protected]
debug2: ciphers stoc: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,[email protected]
debug2: MACs ctos: hmac-md5,hmac-sha1,[email protected],hmac-sha2-256,hmac-sha2-512,hmac-ripemd160,[email protected],hmac-sha1-96,hmac-md5-96
debug2: MACs stoc: hmac-md5,hmac-sha1,[email protected],hmac-sha2-256,hmac-sha2-512,hmac-ripemd160,[email protected],hmac-sha1-96,hmac-md5-96
debug2: compression ctos: none,[email protected]
debug2: compression stoc: none,[email protected]
debug2: languages ctos:
debug2: languages stoc:
debug2: first_kex_follows 0
debug2: reserved 0
debug1: kex: algorithm: diffie-hellman-group-exchange-sha256
debug1: kex: host key algorithm: ssh-rsa
debug1: kex: server->client cipher: aes128-ctr MAC: [email protected] compression: none
debug1: kex: client->server cipher: aes128-ctr MAC: [email protected] compression: none
debug3: send packet: type 34
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(2048<3072<8192) sent
debug3: receive packet: type 31
debug1: got SSH2_MSG_KEX_DH_GEX_GROUP
debug2: bits set: 1507/3072
debug3: send packet: type 32
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug3: receive packet: type 33
debug1: got SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Server host key: ssh-rsa SHA256:qISVJ4oOxnoEGlQp6HkKB7vNUMzTUFDc/yV4OBZjlN0
debug3: hostkeys_foreach: reading file "/Users/danale/.ssh/known_hosts"
debug3: record_hostkey: found key type RSA in file /Users/danale/.ssh/known_hosts:8
debug3: load_hostkeys: loaded 1 keys from <ip>
debug1: Host '<ip>' is known and matches the RSA host key.
debug1: Found key in /Users/danale/.ssh/known_hosts:8
debug2: bits set: 1557/3072
debug3: send packet: type 21
debug2: set_newkeys: mode 1
debug1: rekey after 4294967296 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug3: receive packet: type 21
debug2: set_newkeys: mode 0
debug1: rekey after 4294967296 blocks
debug1: SSH2_MSG_NEWKEYS received
debug2: key: /Users/danale/.ssh/id_rsa (0x7ff0d0e00270)
debug2: key: /Users/danale/.ssh/id_dsa (0x0)
debug2: key: /Users/danale/.ssh/id_ecdsa (0x0)
debug2: key: /Users/danale/.ssh/id_ed25519 (0x0)
debug3: send packet: type 5
debug3: receive packet: type 6
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug3: send packet: type 50
debug3: receive packet: type 51
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password
debug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password
debug3: preferred publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /Users/danale/.ssh/id_rsa
debug3: send_pubkey_test
debug3: send packet: type 50
debug2: we sent a publickey packet, wait for reply
debug3: receive packet: type 51
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password
debug1: Trying private key: /Users/danale/.ssh/id_dsa
debug3: no such identity: /Users/danale/.ssh/id_dsa: No such file or directory
debug1: Trying private key: /Users/danale/.ssh/id_ecdsa
debug3: no such identity: /Users/danale/.ssh/id_ecdsa: No such file or directory
debug1: Trying private key: /Users/danale/.ssh/id_ed25519
debug3: no such identity: /Users/danale/.ssh/id_ed25519: No such file or directory
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred: ,password
debug3: authmethod_is_enabled password
debug1: Next authentication method: password
Isso é o que menos /var/log/secure diz do terminal do meu colega:
root@server [~]# less /var/log/secure
Mar 28 13:55:15 server sshd[6952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.17.62.129
Mar 28 13:55:15 server sshd[6952]: pam_succeed_if(sshd:auth): error retrieving information about user dspace
Mar 28 13:55:17 server sshd[6952]: Failed password for invalid user dspace from 212.17.62.129 port 53429 ssh2
Mar 28 13:55:17 server sshd[6953]: Received disconnect from 212.17.62.129: 3: com.jcraft.jsch.JSchException: Auth fail
Mar 28 14:00:15 server sshd[7716]: Invalid user a from 27.41.204.187
Mar 28 14:00:15 server sshd[7732]: input_userauth_request: invalid user a
Mar 28 14:00:15 server sshd[7716]: pam_unix(sshd:auth): check pass; user unknown
Mar 28 14:00:15 server sshd[7716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.41.204.187
Mar 28 14:00:15 server sshd[7716]: pam_succeed_if(sshd:auth): error retrieving information about user a
Mar 28 14:00:17 server sshd[7716]: Failed password for invalid user a from 27.41.204.187 port 54722 ssh2
Mar 28 14:00:19 server sshd[7716]: pam_unix(sshd:auth): check pass; user unknown
Mar 28 14:00:19 server sshd[7716]: pam_succeed_if(sshd:auth): error retrieving information about user a
Mar 28 14:00:21 server sshd[7716]: Failed password for invalid user a from 27.41.204.187 port 54722 ssh2
Mar 28 14:00:22 server sshd[7716]: pam_unix(sshd:auth): check pass; user unknown
Mar 28 14:00:22 server sshd[7716]: pam_succeed_if(sshd:auth): error retrieving information about user a
Mar 28 14:00:24 server sshd[7716]: Failed password for invalid user a from 27.41.204.187 port 54722 ssh2
Mar 28 14:00:25 server sshd[7716]: pam_unix(sshd:auth): check pass; user unknown
Mar 28 14:00:25 server sshd[7716]: pam_succeed_if(sshd:auth): error retrieving information about user a
Mar 28 14:00:27 server sshd[7716]: Failed password for invalid user a from 27.41.204.187 port 54722 ssh2
Mar 28 14:20:19 server sshd[10806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.115.51.110 user=root
Mar 28 14:20:21 server sshd[10806]: Failed password for root from 123.115.51.110 port 36288 ssh2
Mar 28 14:20:23 server sshd[10806]: Failed password for root from 123.115.51.110 port 36288 ssh2
Mar 28 14:20:26 server sshd[10806]: Failed password for root from 123.115.51.110 port 36288 ssh2
Mar 28 14:20:28 server sshd[10806]: Failed password for root from 123.115.51.110 port 36288 ssh2
Mar 28 14:20:31 server sshd[10806]: Failed password for root from 123.115.51.110 port 36288 ssh2
Mar 28 14:20:33 server sshd[10806]: Failed password for root from 123.115.51.110 port 36288 ssh2
Mar 28 14:20:33 server sshd[10808]: Disconnecting: Too many authentication failures for root
Mar 28 14:20:33 server sshd[10806]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.115.51.110 user=root
Mar 28 14:20:33 server sshd[10806]: PAM service(sshd) ignoring max retries; 6 > 3
Mar 28 14:22:53 server sshd[11064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.65.211.86 user=root
Mar 28 14:22:56 server sshd[11064]: Failed password for root from 49.65.211.86 port 38625 ssh2
Mar 28 14:22:58 server sshd[11064]: Failed password for root from 49.65.211.86 port 38625 ssh2
Mar 28 14:23:00 server sshd[11064]: Failed password for root from 49.65.211.86 port 38625 ssh2
Mar 28 14:23:02 server sshd[11064]: Failed password for root from 49.65.211.86 port 38625 ssh2
Mar 28 14:23:04 server sshd[11064]: Failed password for root from 49.65.211.86 port 38625 ssh2
Mar 28 14:26:11 server sshd[11503]: Accepted password for root from 68.46.220.105 port 53344 ssh2
Mar 28 14:26:11 server sshd[11503]: pam_unix(sshd:session): session opened for user root by (uid=0)
(END)