How to correctly setup google domains et google cloud DNS to get certbot (Let’s Encrypt) running

I have a small server at home running TrueNas with a couple of jails. I created a jail to host the reverse proxy, nginx, to reach one of my jails, git, from the outside. I am trying to follow this tutorial and I do want to implement https. However, certbot doesn’t work with Google Domain directly but with the Google Cloud DNS API. After trying different things, I am missing the correct setup on both Google Domain and Google Cloud DNS to make certbot work and deliver the https certificates.

I own the domain name scheltienne.net through google domain. I am trying to make my jail git running gitea accessible to the address git.scheltienne.net.

On Google Cloud, I created a project, a service account with the correct permissions for certbot, and a DNS zone. Under Google Cloud DNS the created zone is:

google cloud dns

On Google Domain, I have disabled DNSSEC and set the name servers to custom name servers, matching the name servers of the zone in Google Cloud DNS.

ns-cloud-c1.googledomains.com
ns-cloud-c2.googledomains.com
ns-cloud-c3.googledomains.com
ns-cloud-c4.googledomains.com

I believe that up to this point, I did not make a mistake. Show me how wrong I am 😉

Now, I am very confused as to which step I should take from here. I thought I have to create a record of some type under the zone to map the address git.scheltienne.net to my nginx jail, but I can’t figure out the type of record and the IP address to provide.

Moreover, the second confusing point for me is the Dynamic DNS. My home network has a dynamic IP address. On Google Domain, I have a Synthetic record created with a subdomain (e.g. test.scheltienne.net) which gave me credentials to plug into the client service on TrueNas to communicate my IP address to Google. 1. Is this DynamicDNS Synthetic record still working despite having the name server changed to the custom name servers; 2. How can I set records pointing to the dynamic address instead of a static IPv4 address (record A)?

Thank you for the guidance, I am very lost..

external hard drive – Method for testing USB 3.0 devices for proper electrical setup?

I have about a dozen USB 3.0 devices per machine at my office (external hard drives) on both Windows 10 and Ubuntu. I have noticed that when you get to this scale, USB 3.0 starts being less reliable and devices, ports, or hubs may randomly disconnect. Sometimes this is caused by sudden power draw (such as plugging in a portable HDD without an external power adapter), but sometimes it seems some devices or ports are just wired incorrectly. For example, there is one USB port on my machine where anything being plugged into it causes the other devices to momentarily disconnect.

How can I test that ports and devices are meeting the USB 3.0 spec?

Mission Control (expose) disabled by CASSPP test setup

I recently setup my son’s 10.15.7 OS X mb pro to take the CASSPP test. They require that you load up a special profile that turns off a bunch of stuff, as described here:

https://ca-toms-help.ets.org/spring-21-parents-guardians/download-secure-browser/mac-big-sur/

That all went fine, as did, for the most part, the annoying mess of manual stuff you have to do to undo the damage wrought by installing the new profile. (See section “Steps to Restore Settings”). Everything came back EXCEPT mission control (expose). I usually have expose hooked to my hot corners, and I can hook pretty much anything else (e.g., enter screen saver) to the hot corners and they work fine, but expose (mission control) seems to be simply dead. It’s not dead for other accounts, just the one we did the new profile to. And it’s dead to the function keys as well (f3, I guess). I even tried using terminal commands (defaults), rebooting multiple times, resetting the SCM — pretty much everything you can think of, but I can’t get mc/expose to work.

Any further advice on how to force it on?

Thanks!

apache2 – Apache shows Magento directory index after installation (local dev setup)

So this is a bit of a debugging question, but I do not have any idea what else to try.

I am new to Magento and I wanted to set up a local instance of it to fiddle around.
I followed effectively this tutorial. After everything is done, trying to open the Magento site on browser merely shows the index of the directory Magento is installed on, as shown below:

On the same machine, another test pure php page works fine.
I will post the Apache configuration of the site and the configuration of Magento as shown by the magento config:show command. Feel free to ask whatever other configuration or log is needed to find out what is happening.

Site Apache configuration:

<VirtualHost *:80>
     ServerAdmin admin@localhost
     DocumentRoot /var/www/magento2.4/pub

     <Directory /var/www/html/magento2.4/pub>
        Options Indexes FollowSymLinks MultiViews
        AllowOverride All
        Order allow,deny
        allow from all
#       Require all granted
     </Directory>

     ErrorLog ${APACHE_LOG_DIR}/error.log
     CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>


Magento config output:

$ sudo -u www-data /var/www/magento2.4/bin/magento config:show
yotpo/module_info/yotpo_installation_date - 2021-05-08
yotpo/sync_settings/orders_sync_start_date - 2021-05-08
catalog/search/engine - elasticsearch7
catalog/search/elasticsearch7_server_hostname - localhost
catalog/search/elasticsearch7_server_port - 9200
catalog/category/root_id - 2
web/seo/use_rewrites - 1
web/unsecure/base_url - http://localhost/
general/locale/code - en_US
general/locale/timezone - America/Chicago
general/region/display_all - 1
general/region/state_required - AU,BG,BR,CA,CH,CN,CO,EE,ES,HR,IN,IT,LT,LV,MX,PL,RO,US,UY
currency/options/base - USD
currency/options/default - USD
currency/options/allow - USD
analytics/subscription/enabled - 1
crontab/default/jobs/analytics_subscribe/schedule/cron_expr - 0 * * * *
crontab/default/jobs/analytics_collect_data/schedule/cron_expr - 00 02 * * *
msp_securitysuite_recaptcha/frontend/enabled - 0
msp_securitysuite_recaptcha/backend/enabled - 0
twofactorauth/duo/application_key - FLUe5W1ndlNSCOt5ah5IUluRgIbO2ahoz8pWOVykoky06biGd0Aisvdw1slOIIfX
connector_dynamic_content/external_dynamic_content_urls/passcode - V1QrRRz31I7TUG0TZ1RDJZE7eRxFxaiR
connector_automation/review_settings/allow_non_subscribers - 1
connector_configuration/abandoned_carts/allow_non_subscribers - 1
sync_settings/addressbook/allow_non_subscribers - 1
connector_developer_settings/system_alerts/user_roles - 1

Elastic search ping command output:

$ curl -XGET localhost:9200
{
  "name" : "user-pc",
  "cluster_name" : "elasticsearch",
  "cluster_uuid" : "RfVO4Tj6TcCQWwyDegap3g",
  "version" : {
    "number" : "7.12.1",
    "build_flavor" : "default",
    "build_type" : "deb",
    "build_hash" : "3186837139b9c6b6d23c3200870651f10d3343b7",
    "build_date" : "2021-04-20T20:56:39.040728659Z",
    "build_snapshot" : false,
    "lucene_version" : "8.8.0",
    "minimum_wire_compatibility_version" : "6.8.0",
    "minimum_index_compatibility_version" : "6.0.0-beta1"
  },
  "tagline" : "You Know, for Search"
}

.htaccess file contents:

RewriteEngine on
RewriteCond %{REQUEST_URI} !^/pub/
RewriteCond %{REQUEST_URI} !^/setup/
RewriteCond %{REQUEST_URI} !^/update/
RewriteCond %{REQUEST_URI} !^/dev/
RewriteRule .* /pub/$0 (L)
DirectoryIndex index.php

Apache error log has nothing generated whenever I access the site.

Below are the contents added to the Apache access logs when I access the site:

127.0.0.1 - - (09/May/2021:19:52:43 +0300) "GET / HTTP/1.1" 200 1036 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0"
127.0.0.1 - - (09/May/2021:19:52:43 +0300) "GET /icons/blank.gif HTTP/1.1" 304 179 "http://localhost/" "Mozilla/5.0 (X11; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0"
127.0.0.1 - - (09/May/2021:19:52:43 +0300) "GET /icons/unknown.gif HTTP/1.1" 304 179 "http://localhost/" "Mozilla/5.0 (X11; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0"
127.0.0.1 - - (09/May/2021:19:52:43 +0300) "GET /icons/text.gif HTTP/1.1" 304 180 "http://localhost/" "Mozilla/5.0 (X11; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0"
127.0.0.1 - - (09/May/2021:19:52:43 +0300) "GET /icons/folder.gif HTTP/1.1" 304 179 "http://localhost/" "Mozilla/5.0 (X11; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0"

Apache modules loaded:

$ apache2ctl -M
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1. Set the 'ServerName' directive globally to suppress this message
Loaded Modules:
 core_module (static)
 so_module (static)
 watchdog_module (static)
 http_module (static)
 log_config_module (static)
 logio_module (static)
 version_module (static)
 unixd_module (static)
 access_compat_module (shared)
 alias_module (shared)
 auth_basic_module (shared)
 authn_core_module (shared)
 authn_file_module (shared)
 authz_core_module (shared)
 authz_host_module (shared)
 authz_user_module (shared)
 autoindex_module (shared)
 deflate_module (shared)
 dir_module (shared)
 env_module (shared)
 filter_module (shared)
 mime_module (shared)
 mpm_prefork_module (shared)
 negotiation_module (shared)
 php7_module (shared)
 reqtimeout_module (shared)
 rewrite_module (shared)
 setenvif_module (shared)
 status_module (shared)

I made sure multiple times to convert the permissions of all the files in the directory to www-data user, recursively.
Any help appreciated.

EDIT: So I changed my DocumentRoot to /var/www/magento2.4/pub. Now I get a page with no css apparently:

And every link I try is a 404:

The rest of the configuration is the same. pub folder has its own default .htaccess file.

How to Setup Secure Remote Desktops With VNC on Your VPS

How to Setup Secure Remote Desktops With VNC on Your VPSMost of what you do with your VPS may take place either at the command line or by interacting with various web pages.  But what if you need to run a desktop GUI application?  That’s where VNC (Virtual Network Computing) comes in handy.  You can “remote desktop” into your VPS.

In this tutorial, I’ll setup a Gnome desktop on Debian 10 and connect to it from both macOS and  Windows.  Because VNC is not a secure protocol, we won’t serve it over the Internet but instead tunnel it over ssh.

In this tutorial, I’m using a Debian 10 VPS at Linode’s Fremont, CA datacenter named vnc.lowend.party.  After imaging, I login as root and install the Gnome desktop.

apt-get update
apt-get upgrade
tasksel install desktop gnome-desktop

As you’ll see, there are more than 1,000 packages to install here, so go for a nice walk.  When you come back, install the VNC software itself:

apt-get install vnc4server

Finally, I want the system to start up in GUI as opposed to headless mode, so let’s change the default systemd target.

systemctl set-default graphical.target

Then to both test this and get the GUI fired up, I’ll just restart the VPS:

reboot

I’m going to login as an unprivileged user when I use VNC, so I’ll create an account for myself.

useradd -m -s /bin/bash raindog308
passwd raindog308

I’ll now switch to this account.

su - raindog308

I need to set a VNC password, so I’ll use the vncpasswd command.  Note that VNC only allows passwords up to 8 characters.

raindog308@vnc:~$ vncpasswd
Password:
Verify:
Would you like to enter a view-only password (y/n)? n
raindog308@vnc:~$

Now I can start up a VNC server.

raindog308@vnc:~$ vncserver
/usr/bin/xauth: file /home/raindog308/.Xauthority does not exist

New 'vnc.lowend.party:1 (raindog308)' desktop at :1 on machine vnc.lowend.party

Starting applications specified in /etc/X11/Xvnc-session
Log file is /home/raindog308/.vnc/vnc.lowend.party:1.log

Use xtigervncviewer -SecurityTypes VncAuth -passwd /home/raindog308/.vnc/passwd :1 to connect to the VNC server.

raindog308@vnc:~$

Before we go further, let’s check out security.  go back to root and install nmap.

apt-get install nmap

Now do a couple scans.  VNC runs on ports beginning with 5901, where the last digits are the number of the connection.  Let’s see what’s running both on the public interface and on localhost (127.0.0.1):

root@vnc:~# nmap vnc.lowend.party -p5900-5902
Starting Nmap 7.70 ( https://nmap.org ) at 2020-05-24 16:09 PDT
Nmap scan report for vnc.lowend.party (45.79.66.140)
Host is up (0.000046s latency).
rDNS record for 45.79.66.140: li1165-140.members.linode.com

PORT STATE SERVICE
5900/tcp closed vnc
5901/tcp closed vnc-1
5902/tcp closed vnc-2

Nmap done: 1 IP address (1 host up) scanned in 0.29 seconds
root@vnc:~# nmap localhost -p5900-5902
Starting Nmap 7.70 ( https://nmap.org ) at 2020-05-24 16:09 PDT
Nmap scan report for localhost (127.0.0.1)
Host is up (0.000027s latency).
Other addresses for localhost (not scanned): ::1

PORT STATE SERVICE
5900/tcp closed vnc
5901/tcp open vnc-1
5902/tcp closed vnc-2

Nmap done: 1 IP address (1 host up) scanned in 0.25 seconds
root@vnc:~#

So we can see that the default Debian config binds VNC only to localhost, not to the public interface.   This is good!

I can use macOS’s command line to setup the tunnel:

$ ssh raindog308@vnc.lowend.party -L 5901:localhost:5901
The authenticity of host 'vnc.lowend.party (x.x.x.x)' can't be established.
ECDSA key fingerprint is SHA256:6I33xSZa6+028+2VswynZWH+ztTPQscUzeaAeJLsKQA.
Are you sure you want to continue connecting (yes/no/(fingerprint))? yes
Warning: Permanently added 'vnc.lowend.party,x.x.x.x' (ECDSA) to the list of known hosts.
raindog308@vnc.lowend.party's password:
Linux vnc.lowend.party 4.19.0-9-amd64 #1 SMP Debian 4.19.118-2 (2020-04-29) x86_64

The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.

Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Sun May 24 16:10:29 2020 from x.x.x.x
raindog308@vnc:~$

Next go to Finder and type Command-K.  Then specify the VNC connection to connect to:

And when prompted, enter the password you setup with vncpasswd:

And now you’ve joined.

Note that closing the ssh session will kill your VNC connection as well.

To tunnel from Windows, we’ll use the venerable PuTTY program.

Start PuTTY and then go to the Connect > SSH > Tunnels section.  Under Source Port, enter 5901.  Under Destination, enter 127.0.0.1:5901.  Then click Add.

Now go back the Session and enter the hostname and a name for the session (can be the same as the hostname) and click Save.

Now, with that session selected, click Open.  Enter your credentials and login.

I’m using RealVNC as the VNC client (also known as the “viewer”).  Star the program and then enter 127.0.0.1:1 in the VNC Server section.  Then click Connect.

The VNC password prompt appears.  Enter the password you entered with the vncpasswd program.

And now you’re logged in to your desktop.

raindog308

I’m Andrew, techno polymath and long-time LowEndTalk community Moderator. My technical interests include all things Unix, perl, python, shell scripting, and relational database systems. I enjoy writing technical articles here on LowEndBox to help people get more out of their VPSes.

MyDreams.cz Best VPN Hosting, Extra quick set-up, high speed connection | Proxies123.com

MyDreams innovations s.r.o. is a company that has been operating in the field of hosting services since 2004. First as a self-employed person and now as a company. MyDreams team members are people with many years of experience in hosting

MyDreams offers Basic VPN (Virtual Private Network) hosting, which provides anonymous Internet browsing, sending emails, and files with their own fixed IP address. Basic VPN hosting is also suitable for creating a private network.

For more information: https://www.mydreams.cz/en/saas-servers/vpn-hosting.html
Price – 89 CZK/each VPN

Suitable for:

  • Only one user access
  • Restrict access to site and system administration
  • Access to a remote computer or server
  • Anonymous browsing
  • As an alternative to the proxy server

Parameters:

  • 1 User account
  • Fixed IPv4 address
  • 100 Mbps connection
  • Unlimited traffic
  • OpenVPN Technology
  • Min. 3 monthly billing period

If you have any questions, you are free to CONTACT US!

I will do WordPress install and theme setup. for $5

I will do WordPress install and theme setup.

About This Gig
Hi,
In this gig, I’ll install WordPress on your server and setup your desired theme. I’ll also customize your theme as your requirement. I have already customized so many WordPress themes and you don’t need to worry about my quality of service. I hope I can satisfy you and deliver your work within your desired time frame.

If you are looking for an expert developer to setup WordPress or to develop your current website, then you are in right place. Just contact me to get the best deal at a reasonable price.

Note: $5 is for installing wp+theme(without a demo, also you have to provide a theme file if it premium theme). Installing a demo will cost an extra $

I will do the following:

  • WordPress install
  • WordPress setup
  • theme install and
  • import demo content upload
  • theme customization

Why Choose me.?

1. Extra Fast Project Delivery

2. Excellent communication

3. Unlimited Revision

4. Work with clients all over the world.


I can also redesign with elementor plugin and develop your existing WordPress website. So, if you need this service please contact me and get your all issues solved.

I’ll be always there for you. Placing orders before inbox me.

order A service now )

Thanks

.(tagsToTranslate)WordPress-instal(t)theme-install(t)WordPress-setup(t)plugin-install

Scopehosts.com – Offshore VPS Hosting @€5.99| Fast SSD-Disk Storage | Instant Setup | Proxies123.com

“ScopeHosts provides Industry`s Best Hosting services Equipped with Enterprise level Hardware and Leading Technology. We are in the Hosting Industry for more than 13 years with 28,000+ happy customers”.

ScopeHosts “Russia KVM Linux VPS”is backed up with Premium, Enterprise Hardware, and Redundant Network. We provide dedicated resources for all our users which mean nothing will be shared with any other VPS user. Host Your Website with Best in the Industry!!! with 99.98% Uptime and 24/7 tech-support.

Get Premium features for no additional charges

Russia Offshore VPS Hosting Features:

  • Blazing Fast SSD Storage
  • 200 Mbps Network speed
  • High Performance & Highly Secured Servers
  • FREE WEB-TRANSFER from Current Provider
  • Premium 24/7 Support
  • FREE SolusVM Panel

Start with us! Completely Risk FREE with Our Anytime Moneyback Guarantee!!!

Features: Full Root Access | FREE SolusVM Panel | DDOS Protected | Instant Setup | 24/7 tech-support

“Choose Best Suitable VPS from our Russia KVM Linux/Windows VPS

Russia KVM Linux VPS

———————————-
RU1GLKVM {Price @€5.99/mo}
———————————-

CPU: 1vCPU(Core)

RAM: 1 GB

SSD: 30 GB

Bandwidth: 4TB

Free IPv4: 1

***ORDER NOW***

———————————-
RU4GLKVM{Price @€23.99/mo}
———————————-

CPU: 4vCPU(Core)

RAM: 6 GB

SSD: 80 GB

Bandwidth: Unmetered

Free IPv4: 1

***ORDER NOW***

===============================

Russia KVM Windows VPS

———————————-
RU1GWKVM{Price @€8.99/mo}
———————————-

CPU: 1vCPU(Core)

RAM: 2 GB

SSD: 30 GB

Bandwidth: 4TB

Free IPv4: 1

***ORDER NOW***

———————————-
RU4GWKVM{Price @€37.99/mo}
———————————-

CPU: 4vCPU(Core)

RAM: 6 GB

SSD: 80 GB

Bandwidth: Unmetered

Free IPv4: 1

***ORDER NOW***

===============================

Check Our “Terms of Services”

Email ID : info@scopehosts.com

Follow Us On: Facebook | Twitter

Feel Free to Contact US: Phone: +91-0836-425 4321 | Skype ID: 68ff770d25601624

Kind Regards

Andre Allan

Sales Manager

networking – trying to setup ip addresses on my network

enter image description here
here’s my schema , i’m trying to set up ip addresses to be able to ping from the first floor ( etage 1 ) to the second ( etage 2) , i tried setting up an ip address 192.168.233.2/24 with the gateway 192.168.233.1 to pcD , and 192.168.233.3/24 with the gateway 192.168.233.1 but im not able to ping please help