DeployHQ Getting “permission” denied error when uploading via SSH/SFTP to my Amazon Lightsail WordPress site

Hello I have a wordpress site running off an Amazon lightsail free tier instance, and when I am trying to use deployHQ for automatic deployments everytime the git repository’s master branch updates, I get the following error:

Uploading .idea/.gitignore

Uploading .idea/misc.xml

Uploading .idea/modules.xml

Uploading .idea/public.iml

Uploading .idea/vcs.xml

Uploading wp-content/themes/fictional-university-theme/front-page.php

Error connecting to server lightsail. Failed to execute [open /home/bitnami/apps/wordpress/htdocs/wp-content/themes/fictional-university-theme/front-page.php] - permission denied

I can manually upload files to the lightsail instance manually via winSCP, using this guide from bitnami docs https://docs.bitnami.com/aws/faq/administration/upload-files/, but I’d like to setup automatic deployments and DeployHQ seems to be a good service for this.

I am using the default key provided by Amazon Lightsail for my singapore region.

Importrange access permission in google spreadsheet

First, make sure that the spreadsheet_url parameter is correct. You can test it by copy-pasting it (omitting the double quotes) in the browser’s address bar and pressing Enter. If the URL opens that way, it should also work in importrange().

Second, make sure that the range_string is correct. You can test it in the source spreadsheet by choosing Insert > New sheet and inserting a test formula in cell A1 there. To create the test formula, copy-paste the range string (omitting the double quotes) in an { array expression }, like this:

={ 'Data sheet'!A1:D42 }

Third, if both importrange() parameters pass the test, confirm that you have clicked the Allow access button that shows when you hover over the importrange() formula cell.

If you do not see the Allow access button, try authorizing the importrange() formula through a temporary formula cell. In the destination spreadsheet, put this in a free cell:

=importrange("DUaK5OtSNq7D2r9h5b2JtU_9FsNDu08L_jlL1uuNPkwc", "A1")

…where the long string of letters and numbers is the spreadsheet ID. You can find it in the source spreadsheet’s address bar between /d/ and /edit. Note that the ID will have to be in double quotes.

Chances are that the new formula cell will display a red corner flag. Hover over the the formula cell and click Allow access. After that, your existing importrange() formula should start working as well.

linux – mv: cannot move, Permission denied

I’m getting mv: cannot move, Permission denied error, but before claiming this is a dupe, please see what I’ve tried first:

First of all, it has nothing to do with file or directory mode:

$ mv -f .emacs.d .emacs.d.old
mv: cannot move '.emacs.d' to '.emacs.d.old': Permission denied

$ ls -Al . | grep emacs
drwx------ 1 me me 4096 2021-06-11 23:04 .emacs.d

ls -ld .
drwxr-xr-x 1 me me 4096 2021-06-12 00:17 .

$ sudo mv -f .emacs.d .emacs.d.old
mv: cannot move '.emacs.d' to '.emacs.d.old': Permission denied

$ df .
Filesystem     1K-blocks      Used Available Use% Mounted on
rootfs         307276796 200040828 107235968  66% /

Second, I tried with every file-open checking tools that I know:

$ jobs | wc
      0       0       0

$ lsof | grep .emacs.d | wc 
      0       0       0

$ fuser .emacs.d | wc
      0       0       0

and I’ve tried to close whatever that might or might-not related to the .emacs.d directory.

Full disclosure: I am using Windows Subsystem for Linux, but I don’t think I have the directory open in any other bash instances. Moreover, as seen in first output, my home dir is within WSL, not under any windows folder (i.e., should have nothing to do with any Windows programs).

I have ran out of ideas what could possibly be holding me back to rename this newly created directory.

sharepoint online – Team Site Permission Not Showing New Group

I have a Modern Team Site and have default permission groups (Owner, Member, Visitor). For the new requirement I have created a new group with new permission level (New Group Test).

New Permission Group

But when I add users from home page this new group is not showing. There’s only Owner and Member.

Not Showing the new group

I need to assign some users to this new group.

I know I can directly add the users in the group in the first screenshot.

But is it possible to make that group available in the home page as in the second screenshot?

Or by default it only shows Member and Owner option?

man in the middle – Have I just experienced a MitM attack or is my ISP updating my hardware without my permission?

I was casually surfing the web when suddenly the antivirus on my laptop started warning on supposed ARP Spoofing attacks coming from my router’s IP, which got blocked.

The internet on my phone continued to work completely fine, but on my laptop after the blocking occurred all packets sent to IPv4 addresses got timed out. What has happened here? The internet is fine now on IPv4 and IPv6.

Maybe I’m just paranoid and the ISP was somehow doing maintenance or something like that?

P.S. I could only access the router thru the DNS name and not the IPv4 IP address for some reason too…

I am using ESET Internet Security AV solution.

No permission to download

What does this mean? How does one get permission to download?

Sharepoint list, add users (listed in a form field) to permission automatically without giving access to other list items

I have a list with permission setup as to be able to only see/modify list items created by a user. In the form we collect more names who would be responsible for this item (PM/BAs etc) and i would those additional users to be able to see/modify the list item along with one who created it.

is it possible to allow additional access without changing list setting (i know we could manage this via impersonate step in WF2010) but I only have SPD2013 and any other possible alternatives would be a great help.

Thanks.

authentication – How to force web sites and services to stop resetting passwords of accounts without user’s permission and prompt?

A new trend in account security is spreading: web services like LinkedIn reset passwords automatically when detect attempts of getting access with wrong password or from new locations. Thus, a user has to restore password every time when not using 2-Factor Authentication. The problem is that most support services ignore the rationale below. However, the LinkedIn support, to their credit, escalated the feature request for a setting “don’t reset password on failed or suspicious login attempts” to their developing team.

The root reason of password resetting is that web services like Google and LinkedIn began using contacts (mobile phone numbers and emails) as logins. By this way, these services shared logins to everyone and thus made possible brute-force attacks on passwords for many accounts simultaneously. In other words, these company canceled the first secure factor of authentication.

Previously, the user created a login, which is unknown to all by default. This login was the first secure factor for authentication. And this way was secure enough when protected with a strong password. That is why the common way of getting access by an attacker was to find out the email to restore password and hacking an email box. These services must return secure logins to user accounts to stop brute forcing attacks on passwords.

Then, to plug this self-made security hole, these services reinvented 2-Factor Authentication by introducing secure temporary codes sent by another channel to the user. However, the use of mobile phone as a central secure device makes possible to get or lose access to all accounts at once. An attacker can easily steal a mobile device or SIM card. Another case is the impossibility to read a secure temporary code sent by a web service. There are too many reasons for that, beginning from broken display and unavailable mobile service. That is why 2-Factor Authentication has increased the risk of losing access to all accounts at once.

To avoid this risk, many users disabled 2-Factor Authentication, especially after losing access to their accounts because of broken display. Then, web services have invented a new way of irritating users and wasting their time: they began to reset passwords for accounts automatically on failed attempts of logging into or on other unexplained reasons. And now, users have to restore passwords every time because attackers reset passwords by brute-forcing them continuously. Another trivial case is the user’s device with old password and the mobile app using it for getting regular updates.

Thus, these services manipulate users to force them using 2-Factor Authentication: to restore password the secure temporary code is sent. But an attacker does not have a chance to brute force strong passwords, which these services require from users. Otherwise such passwords are not considered strong, by definition. And the user location of login into does not matter in such case also.

In short, here’s two questions: how to get such services to stop resetting passwords of accounts without user’s permission and prompt? How to end this terrible trend of total neglect of user’s choice in balance between risks, usability and reliability? It is especially important for IT professionals themselves because they should be able to take care on that.

MySQL auto restart and “Permission denied” error

I have a remote MySQL server “5.7.34” running on ubuntu18, it acts recently so strange.

At a specific time each day, it goes into shutdown, I have checked crons and events, but nothing there.

When it tries to start again I get this error:

(ERROR) mysqld: File '/var/lib/mysql-files/tmp.SomeNumber' not found (Errcode: 13 - Permission denied)

Then “Aborting” and shut down forever.

I have the correct permissions on this dir “750” and it’s owned by mysql. The tmp files already in dir and have the “rw” permissions for user “mysql”.

Thank you for your help and answer.