Ssl surrogafier unblockable

3rd party patches failing to install using NinjaRMM

2024.04.04 09:49 dai_webb 3rd party patches failing to install using NinjaRMM

Hello.
We have recently rolled out NinjaRMM across our endpoints and have seen a lot of failures to install 3rd party patches (things like FileZilla, Notepad++, WebEx, Chrome, etc).
I've already overcome a few issues (we're behind Sophos SG firewalls, and by default all web traffic is blocked, unless proxied, so I've unblocked thousands of Amazon IP addresses). I've also added the URLs to the exclusions for web filtering. These are the hosts I've used:

agent-app.ninjarmm.com
connect-us-west-s2.ninjarmm.com
resources.ninjarmm.com

Now, in the logs, I'm seeing HTTP 401 errors. As the log is really verbose, and consists of thousands of lines, here's what stands out:

SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
ALPN: server accepted http/1.1
Server certificate:
subject: CN=*.ninjarmm.com
start date: Jan 30 00:00:00 2024 GMT
expire date: Feb 27 23:59:59 2025 GMT
subjectAltName: host "agent-app.ninjarmm.com" matched cert's "*.ninjarmm.com"
issuer: C=US; O=Amazon; CN=Amazon RSA 2048 M03
SSL certificate verify ok.
using HTTP/1.1
<-HTTP/1.1 401 Unauthorized
<-Date: Thu, 04 Apr 2024 05:53:53 GMT
<-Content-Type: application/json
<-Content-Length: 135
<-Connection: close
<-Server: nginx/1.21.5
<-Vary: Accept-Encoding
<-
Closing connection
TLSv1.2 (OUT), TLS alert, close notify (256):
CURLINFO_HTTP_CODE=401
CURLINFO_HTTP_CONNECTCODE=0
06:53:53.294 E 3PPWRK:1876 [ serverresponse.cpp:73] RspSize[135] StatusCode[401] RequestURL[agent/credential] ResponseCode[FAILURE] ErrorInfo[HTTP 401 Unauthorized]
06:53:53.294 E 3PPWRK:1876 [ distressmonitor.cpp:293] Distress Signal[FAILED_HTTP_POST_FETCH_CREDENTIALS]:(5) Got error 401 when POST
06:53:53.294 E 3PPWRK:1876 [ credentialmanager.cpp:123] Won't retry to fetch credentials...
06:53:53.294 E 3PPWRK:1876 [ ProcessUtils.cpp:85] Failed to retrieve credentials from server.

Has anybody else seen anything similar?

submitted by dai_webb to sysadmin [link] [comments]

2024.03.28 20:44 Patient-Lettuce-8367 Trouble whitelisting url?

Hello,

I'm working with a Fortigate-VM, Firewall, and I'm having issues whitelisting a certain url...
In the past, I've had no issues creating a Web Filter>URL Filter entry with , type:simple, action:exempt.

However, with this site, normal entries in the style of the above example don't work. So I've tried different variations, including but not limited to wildcards and ip addresses.. Seemingly no matter what I do, when this machine attempts a call, I get another blocked entry in my web filter logs..

Details:>Call is attempting to make a connection over HTTPS on port 443.>I'm in the US, target destination is also in the US.>From the Web Filter logs "Message URL belongs to a denied category in policy" -This is true, but I'm not trying to unblock the whole category just for this one url. That's why I'm attempting to whitelist said url...>I've tried using just the root (destination) domain of the url as both a simple and wildcard type, neither works.

Funny thing is, if I create a whitelist entry, and attempt to plug in the url in my browser on my local machine, it works. Well, I get an error, " Error code: SSL_ERROR_NO_CYPHER_OVERLAP," but the url otherwise appears valid. I get a "passthrough" entry in my web filter logs. Wut.

Thoughts?

submitted by Patient-Lettuce-8367 to fortinet [link] [comments]

2024.03.26 10:13 AdditionalHandle3594 How to Use Blockaway Free Web Proxy?

BlockAway.net is a free web proxy site that routes your internet traffic through its servers, allowing you to unblock content restricted by geo-region limitations or hide your real IP address for specific browsing needs. It supports various websites including DuckDuckGo, Google, Facebook, and Wikipedia, as well as video streaming platforms such as YouTube and TikTok.
https://preview.redd.it/40svd2ojanqc1.png?width=804&format=png&auto=webp&s=06874f6a5e36b57994fc6c7d5dcb8781a09bea0c

Key Features of BlockAway

User-Friendly Interface: The service provides a simple and user-friendly interface suitable for users with varying levels of technical proficiency.
Data Encryption: BlockAway offers SSL encryption, ensuring secure data transfer between your device and the proxy server, maintaining privacy and security during browsing.
Support for Various Websites: The proxy supports a wide range of websites including popular social media platforms, video-sharing sites, and search engines, making it versatile for various online activities.

How to Use BlockAway Proxy

To use this free web proxy service, visit the website, input the desired URL, click "Go," and confirm the IP address change. Once done browsing, simply close the browser tab or window to disconnect from the proxy service.

Potential Risks When Using BlockAway

Risks include data security concerns, unreliable performance, IP blacklisting, and lack of support, which users should consider before using free web proxy services.

The Best Alternative to BlockAway - OkeyProxy

OkeyProxy, a premium proxy service, offers global coverage, competitive pricing, performance and reliability, dedicated customer support, and a 1GB proxy free trial, making it a viable alternative to free web proxies.
In conclusion, BlockAway is a potent and cost-free web proxy, while OkeyProxy provides an alternative with enhanced features for users with higher demands for a proxy service.

submitted by AdditionalHandle3594 to u/AdditionalHandle3594 [link] [comments]

2024.03.21 23:21 edikde1 Cool Website I Found Recently

Recently, I stumbled upon a website that looked like a calculator but when you access it, it gives tons of unblocked games and apps. I tried using it in front of my teachers and they couldn't even see the history. Normally, I'm against posting links and advertising but this deserves a round of applause: https://speccalc.web.app/
If you can, lets help others out and tell them about it.
Website Security: https://www.ssltrust.com/ssl-tools/website-security-check?domain=speccalc.web.app

submitted by edikde1 to website [link] [comments]

2024.03.13 09:06 Least-Year5076 Proxies for School to Unblock Websites in 2024

Why Use Proxies in School?
There are several instances where utilizing proxies in a school setting may prove beneficial:

Unblocking Websites: Proxies offer a means to circumvent network restrictions imposed by educational institutions. This can grant access to social media platforms, streaming services, or other websites that may be blocked.
Privacy Protection: Proxies aid in maintaining online privacy and anonymity. By directing internet traffic through a proxy server, real IP addresses can be masked, making it challenging for online activities to be traced. Proxies also afford students the ability to evade monitoring systems, providing a sense of privacy and freedom while browsing the internet.
Accessing Educational Resources: Occasionally, schools may inadvertently block educational resources or websites crucial for student research or studies. Proxies offer a simple solution to bypass these restrictions and access abundant learning materials.

While employing proxies in schools can offer advantages, it's essential to acknowledge potential drawbacks. Proper usage can enhance learning experiences, but it's crucial to adhere to the rules and guidelines set forth by educational institutions, as the use of proxies may violate school policies.

Free Proxy Websites for School

Numerous free proxy sites are accessible on the internet, offering convenience and zero cost. However, it's important to note that free web proxies often come with limitations in speed and may pose security risks.

Note that the availability of these proxy websites may vary based on location and school restrictions. If one proxy site is inaccessible, alternatives are readily available.
It's crucial to understand that using a proxy in school does not guarantee compliance with school regulations. In certain cases, proxy usage may result in disciplinary action or consequences. Therefore, it's essential to adhere to school requirements and utilize proxies judiciously.

Challenges When Using Free Proxies for School

Free web proxies may pose security risks as all data entered bypasses the host website, potentially compromising sensitive information. Additionally, these proxies commonly suffer from slow speeds and lack configuration options within software.

Consider OkeyProxy https://www.okeyproxy.com As Alternative

Schools may have already blocked certain proxies, necessitating the use of a reliable and accessible alternative. OkeyProxy stands out with its distinct advantages over free web proxies. Unlike web proxies relying on datacenters, OkeyProxy employs residential proxies using IP addresses assigned to residential devices, reducing the likelihood of detection by school websites.
OkeyProxy boasts server locations in over 200 countries, effortlessly bypassing geo-restrictions. Its fast response time ensures smooth browsing without delays, and stable connections guarantee uninterrupted web access. With 24/7 customer service support, OkeyProxy offers a reliable and affordable alternative to free proxies, catering to the needs of students seeking secure and efficient proxy services for school.

submitted by Least-Year5076 to u/Least-Year5076 [link] [comments]

2024.03.08 23:22 sudo_rm_rf_solvesALL nginx proxying to fast api (https nginx -> http fastapi)

Hello, I was wondering if anyone has any working examples of an nginx config that will allow me to proxy traffic from https on the fast api web gui via nginx to http on the docker container for fast api. It complains about sending http traffic to an https port, So i'm not sure if i'm missing something. Works find when i leave http only up. It looks like it's having an issue from the fast api container towards nginx. The nginix config i have currently is below

proxy_read_timeout 300; proxy_connect_timeout 300; proxy_send_timeout 300; # Unblock below whenever a cert is used for this server for https listen 80; listen 443 ssl; ssl_certificate /etc/nginx/conf.d/cert.crt; ssl_certificate_key /etc/nginx/conf.d/cert.key; server_name 0.0.0.0; error_log /valog/nginx/debug.log; access_log /valog/nginx/access.log; large_client_header_buffers 4 32k; location / { proxy_pass http://fastapi_tools_production:8088; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header Host $host; proxy_ssl_server_name on; proxy_redirect off; }

submitted by sudo_rm_rf_solvesALL to docker [link] [comments]

2024.01.21 06:33 Less_Pay_2741 FortiGate 600E 7.4.2 SSL/TLS and DNS issues

Hi all,
I am new to this community and I hope you can help.
I have been in the NGFW industry for close to ten years and transitioned to Fortinet devices as recently as Feb 2023.
We have a client with several private residences,with each resident on their own VLAN.
The FortiGate has PPPOE WAN connection with a fixed static IP address .
Therefore all residents in the area share the same public IP address.
Over the past two weeks I have observed two bizarre incidents;
Firstly Sky Sports Now stopped working on streaming services and upon inquiry they said the Public IP address was blocked because it was showing as a VPN on their end.
Got all residents who subscribe to contact us ,tagged their devices and added application filter as well as web filters to try and block all known VPNs.(applied rules to all firewall policies of all residents regardless of whether they confirmed they subscribe or not) though we know it would not filter all .
Sky have unblocked the service thrice and it keeps getting blocked within a few hours. Went through checking whether the IP was blacklisted anywhere and did not come across any blacklisting.
We use 1.1.1.1 and 8.8.8.8 as the primary and secondary DNS and have alternated between DNS p53 and DNS over TLS(853) with the same desired effect.
Upgraded the firmware from 7.4.1 to 7.4.2 hoping the certificates would auto -generate and renew but no fortune there.The current SSL certificate is Fortinet_Factory.
The second fault which led me to think it is firewall related is a similar problem happened at the same time Sky was blocked.
Two Xerox printers,Docuprint CM315z started having issues with scan to email.The printer status shows that the SMTP server unable to connect to (smtp.office355.com) on port 587 .
When you connect printers to any other network which does not terminate through the FortiGate appliance they immediately connect.
Would anyone have an idea of where I should look?

submitted by Less_Pay_2741 to fortinet [link] [comments]

2024.01.13 17:52 ultracute007 The Divine Prayer Honest Reviews- Does This One Minute Technique Really Work?

What is The Divine Prayer?

The Divine Prayer is a one-minute prayer that can help manifest abundance, health, and love into your life. It combines the common Prayer that is strong enough to stimulate only the mind and becomes a manifesting machine.
Having the power to unblock your true potential helps you experience the most versatile health and abundance in your life without any struggle. Following the minute prayer in your routine can block the negative energy, releasing you from all negativity and helping you connect with God.
The Divine Prayer is unique and has the tremendous transformation that keeps one's life happier, moving to the most valuable state.

The Divine Prayer Honest Reviews- Does This One Minute Technique Really Work?
It prevents you from the negative and helps manifest the dream life. The Divine Prayer's minute prayer removes the obstacles as you walk out, healing you from the inside out with no side effects.
Unfortunately, this would finally disappear as the program effects start to help you and your family. Nothing goes wrong in trying that Prayer in life for a few days. As a result, you experience a life-changing transformation, getting people's close attention.

How Well Does The Divine Prayer Help You?

A few carefully considered meditations and prayers can significantly affect you if performed correctly, enabling you to access a spiritual and divine source to manifest your life as desired.
You must let go of your past life and pay close attention to the life-changing transformation that can only be described as coming from the Source of all creation. Even five minutes a day invested in this practice can provide a lasting chance to bring your prayers to life in every area of your life.
As time passes, practicing one-minute Prayer lets you experience the accepted life. It allows thousands of men and women worldwide to design their lives, change mold, and respond as they wish. Anyone can use this to warm you. You'll experience increased warmth and energy, leading to a better, happier life if you care more about the progrm and its methods that inspire you to attract money in one go instead of following any power source for good.
Your vitality will soar, relationships will flourish, and physical and financial well-being will be abundant. Anyone can use it to strengthen their spiritual ties and establish a relationship with the divine. Whatever method works best for you, use the Prayer as a mantra, chant, or meditation.
Unlock the power to alter your life and manifest your deepest passions daily with just one minute of Prayer. Discover the simple yet effective prayer guidelines followed by thousands of people to help you achieve your goals and unlock your full potential!
👉 Click To Order Today to Save More..

What Can You Expect From The Divine Prayer?

Through the power of concentrated and meaningful prayers, Divine Prayer shows incredible efficiency in transforming one's life, assisting them in manifesting aspirations and desires.
The one-minute prayer protocol works exceptionally well at overcoming obstacles you face, giving support, and pursuing your dreams.
The program's various approaches ensure that your thoughts are organized and clear, which helps you make wise decisions that will ultimately lead to success in every aspect of your life.
The achievement of concrete, empirically verified results employing Divine prayers is a prime example of any scientific viewpoint's logic and the benefits resulting from the specific application of Prayer.
Following the one-minute prayer rituals and procedures to connect with the divine Source, transform your perspective work, and accelerate the advancement of your manifestations.
Divine Prayer offers a personalized relationship and force with the divine, making it an immensely valuable tool for individuals who face difficulty connecting spiritually with God or other entities.
Discover a powerful platform to help you achieve continuous personal growth and strengthen your spiritual connection. With its structured approach, this platform offers a proven pathway to abundance and self-discovery. The chance to unlock your full potential and achieve the desired transformation.

Benefits of The Divine Prayer:

Users can personalize their intents and prayers, making the experience more customized.
It promotes consistent Prayer and manifestation, which may result in better attentive and disciplined spiritual practice.
It assists in getting rid of any bad memories and motivates you to start your life.
With the help of its easy prayer techniques, you can attract riches and better relationships while releasing yourself from negativity.
You can break free from the cycles of darkness by achieving your life's purpose.
The Divine Prayer surpasses your prayers, providing greater mental clarity and clarity in your ideas.
Have a one-time purchase and exclusive bonus to enjoy an incredible deal for a short period.
Create a wall to keep out negativity, sense the spiritual energy around you, and shield you from harm.
Engaging in prayerful communication with God can help individuals develop their inner strength and enhance their ability to discern.

Pros of One-minute Prayer:

Full manuscript with instructions
100% satisfaction guaranteed
100% risk-free refund policy
Life transforming effects
Manifesting abundance into your life
Two free bonus gifts
One simple holistic trick

Cons of The Divine Prayer:

The Halo Frequency can only be obtained from the official website, not elsewhere.
A stable internet connection is essential for purchases on the official website.

The Divine Prayer - Pricing Details

The Divine Prayer offers a once-in-a-lifetime opportunity to bring about significant life shifts and help you manifest your dreams to facilitate ongoing personal growth. Visit the official link to get this Divine Prayer for a discounted price of $67, which is offered as a one-time entry.
Getting this guidance is easy when it's on the official page and not offered on the third-party site for any purchase. This open price matches your requirements. Utilizing Divine Prayer is quite simple. You need to establish an account, provide your name and email address, and you're ready to get started. Prior expertise or training is optional.
You can confidently complete your order by filling out the safe, SSL-protected form and making a hassle-free payment. The team and creator pride themselves on transparent pricing with no hidden fees, subscription making it easier for you to trust us with your purchase.
Take advantage of every chance to change your life for the better. In addition, you will receive a 2-special free bonus in addition to the Divine Prayer set, accessing the complete system right now, regardless of where you live or your religious background.
You can start utilizing the program and continue to work with the prayers along the path to living the life you want by participating in the revolutionary Divine Prayer program. Through Prayer, the universe helps you realize your greatest potential and have the potential to manifest your dream.
👉 Get a special deal + Discounts today!

The Divine Prayer - Bonus:

When purchasing the Divine Prayer from its authorized page, you will receive two bonus items that offer assistance in clarifying your prayers and being a supportive companion on your journey. Here are the notes on those bonuses for your reference.
Bonus #1: God's Chant
Discover the amazing benefits of God's Chant, ideally promoting the delivery of significant knowledge on life and how you can build it. Utilizing the bonus and Divine Prayer can significantly turn your life into a pleasant dream and train yourself for the upcoming wealthier life.
Citing research on hippocampal activation using distinct sounds in conjunction with a Stanford neuroscientist, Divine Prayer proposes transforming effects on the mind. However, referencing a God Chant attributed to Leonardo Da Vinci alludes to ethereal aspects and underscores the need for scientific proof for claims of cognitive enhancement.
Bonus #2: The Holy Body
The following bonus lists the benefits and effectiveness of the Holy Body, making it more versatile for purifying your health and body. It decided to hire a private celebrity trainer with maximum experience in natural weight loss techniques because the apostles of Jesus were exceptionally well-groomed.
Having seen firsthand the powerful consequences of the Divine Prayer, performed with people to combine the spiritual and corporeal elements to form the Holy Body. It discovered a simple, holistic, supplement-free, exercise-free, and diet-free approach to getting the body of your dreams.

Final Note - The Divine Prayer

Divine Prayer is a unique program that provides a customized connection to the divine world to help you activate the manifestation to attract abundance.
Connecting your inner thoughts to the universal binding of your soul paves the way for a better life ahead. Though it has received conflicting feedback, this creative method offers a unique way for people to improve their spirituality.
The creator will do everything in our power to ensure your contentment. Click the refund button in your purchase confirmation email to seek reimbursement if, for any reason, you're not delighted with the program's performance or purchase.
They will immediately return every penny to your account without requesting to correspond or exchange emails. There isn't any trouble or stress involved. Your money is protected for 90 full days. Claim the program and bonus to kickstart your manifestation process!

submitted by ultracute007 to ReviewerMart [link] [comments]

2023.11.23 09:23 ip2worldresidentip Paving a Path in the Proxy Panorama: Navigating the World of Online Intermediaries

https://preview.redd.it/m85auk7s422c1.png?width=4096&format=png&auto=webp&s=c2f059ed3f2be9e730e5bbf1191df5b41127b168
Introduction
In the digital age, where data is the new currency and privacy a prized asset, understanding and navigating the landscape of proxy servers is crucial. This article aims to illuminate the path in the proxy panorama, offering insights into the myriad types of proxies, their functionalities, and how they can be effectively utilized in various scenarios.
The Essence of Proxy Servers
A proxy server is an intermediary between a user's device and the internet. It receives requests from the client, forwards them to the web server, and then relays the response back to the client. This intermediary role makes proxies a powerful tool for anonymity, security, and overcoming digital barriers.
Types of Proxy Servers

HTTP Proxies: Ideal for web browsing, they handle requests via the HyperText Transfer Protocol.
**HTTPS Proxies: Similar to HTTP proxies but with an added layer of SSL/TLS encryption for secure data transmission.
SOCKS Proxies: Versatile and handle all types of traffic, not limited to web pages.
Residential Proxies: Use IP addresses allocated to homeowners, offering high anonymity.
Datacenter Proxies: Provide IP addresses from data centers, known for their speed and reliability.

The Role of Proxies in Online Anonymity and Security
Proxies mask your IP address, making your online activities anonymous and protecting you from potential cyber threats. They act as a buffer, screening incoming data and sometimes encrypting your requests, thereby enhancing online privacy and security.
Overcoming Geographical Restrictions
One of the most popular uses of proxies is to bypass geo-restrictions and access content from different regions. They are instrumental in unblocking websites, streaming geo-blocked content, and conducting market research in various geographical locations.
The Business Side of Proxies
For businesses, proxies are invaluable in several ways:
- Web Scraping: Collect data without facing IP bans.
- SEO Optimization: View and analyze search results from different locations.
- Competitive Intelligence: Access and monitor competitor websites anonymously.
- Ad Verification: Check ads' appearance and functionality in different regions.
Navigating the Ethical and Legal Landscape
While proxies offer numerous benefits, it’s crucial to navigate their use ethically and legally. Users should respect website terms, adhere to data privacy laws, and avoid engaging in any form of illegal activity.
Choosing the Right Proxy for Your Needs
The choice of proxy depends on the specific requirements like anonymity level, speed, security, and budget. It's important to select a reputable provider to ensure reliability and compliance with ethical standards.
Conclusion
In conclusion, the world of proxies offers a diverse landscape that, when navigated wisely, can significantly enhance online experiences. From personal privacy to business intelligence, proxies provide the tools to traverse the digital world more securely, privately, and freely. As we continue to delve deeper into the internet era, understanding and utilizing the right proxies will be key to unlocking a wealth of digital possibilities.

submitted by ip2worldresidentip to u/ip2worldresidentip [link] [comments]

2023.10.09 17:21 Specific_Guest_8028 New user, looking for clarifications

Hello, i'll preface this by saying i only have approximative knowledge of how networks operate, so that may be where my confusion stems from. I've been using the app for the past month, during which i've encountered several behaviours that left me perplexed.
I've blocked all apps on my devices, isolated the ones that actually need a connection, and manually enabled the required addresses for said apps to work (except my browser, i'm not quite THAT far gone, yet). As a result, i see the attempted connections in the network tab, and the corresponding DNS requests in the DNS tab. Whether the connection is blocked or allowed though, the DNS request always shows as allowed. On the other hand, if i block the DNS itself from the DNS tab, the connection will show as blocked, in that tab only. There is no attempted connection whatsoever logged in the network tab in this case, which means if i went the DNS blocking route, eventually i wouldn't even be able to tell which app requested connection to which DNS.
I guess my question is, what exactly happens when an app gets blocked, as opposed to when a DNS request gets blocked? My understanding was that the request has to come from the app to begin with, so wouldn't blocking the app automatically prevent the DNS lookup? On the same note, is DNS blocking more robust than simply blocking/allowing specific addresses for each app? I'd rather avoid that to retain the flexibility to temporarily allow certain apps while still blocking known trackers, not to mention at some point i wouldn't even be able to tell what i need to unblock. Maybe i'm doing something wrong, but the bypass rules haven't worked very well for me, usually i need to resort to straight up excluding the app i need.
Somewhat related, i noticed that on my older devices (below android 10) ssl.google-analytics.com always shows as allowed in the DNS tab, despite it being blocked in both tabs. The network tab does log the connection as blocked though. I did read the Firewall paragraph in the GitHub readme, is this a limitation related to how Rethink tracks app connections in older android versions, and does it matter?
Also, i'm using Rethink's DNS servers because it is recommended for best compatibility with the trust/block rules. Whether i use Sky or Max though, dnsleak.com shows i'm connecting to Google owned servers, is that the expected behaviour? Isn't Rethink supposed to use fly.io and cloudflare?
About the "block when DNS is bypassed" and "block port 80 traffic" universal rules, i'm not sure whether i encountered such cases yet, but is there a way that the app lets the user know that's the reason why a connection was blocked? I switched them off after a while because i'm scared they'll break something without me knowing, which would lead to more painful troubleshooting. Ideally, i'd like to get notified of such cases, and prompted to block/allow anyway.
A very annoying bug i encountered while using my tablet in landscape mode; when trying to allow/block addresses, the window appears as collapsed rather than expanded, unlike what happens in portrait mode. The detection zone also seems to be really difficult to hit reliably, to the point that sometimes is takes me several swipes to finally manage to expand it.
Finally, if i may offer some feedback, the only features i really miss from other similar apps is Netguard's ability to get notified of attempted connections to new addresses, being able to allow/block them on the fly and opening the app's connections window by tapping on the notification. I would also like to see a universal rule to automatically isolate newly installed apps, rather than blocking them. These two features combined would make the process of manually configuring new apps so much more convenient and seamless in my opinion.

submitted by Specific_Guest_8028 to rethinkdns [link] [comments]

2023.10.04 02:27 Kendro_Boudrizmo Anyone else having issues with "aws:domainjoin" in SSM lately? (SSL/TLS Errors)

We're using Terraform to build windows machines, then an ssm association to domain join with the AWS provided step. Ours is an on prem domain and we use AD connector.
Out of the blue a couple months ago we can't domain join for server builds in some of our AWS accounts.
Error: Failed to create domain computer account 'COMP1', Message= A WebException with status SecureChannelFailure was thrown
Amazon.Runtime.AmazonServiceException: A Web Exception with status SecureChannelFailure was thrown. - System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel."
The odd thing is this was working fine and suddenly stopped. The machines all have outbound https unblocked to reach the AWS endpoints, and our networking team is a bit stumped as to why this works in some accounts and not others. We're reaching out to AWS support but curious if anyone else saw this? I don't have the exact time it started but I think it was when the recent AWS change went out, enabling TLS 1.3. I'd be surprised if it weren't somehow related.
I've even had reports oft his being intermittent in a second account, which is really bizarre.

submitted by Kendro_Boudrizmo to devops [link] [comments]

2023.09.04 20:55 Sycrixx Struggling to get Mailu running

Two days ago, I installed Mailu to get my own mail server. I followed the documentation and had it configured using their configuration tool and got the docker compose file and env file which I deployed via a Portainer stack. I've gotten everything working, at least on the surface, got all the DNS records done and everything but when I tried to add my email to a mail client, it timed out.
After some checking, I can't reach port 993 or 465. I've tried both my mail domain (mail.mydomain.com) and my server's IP address directly, but telnet is unable to connect. An NMAP scan shows that out of all the ports Mailu needs, only port 25 is reachable, whereas the others are not.
My server is a remote one with Hetzner, and yes, I had them unblock all the mailing ports over a month ago as I wanted to do some testing with docker-mailserver. I've reached out to them and they said no ports are blocked on my account.
The only main changes I made to the docker-compose file that Mailu provided was adding Traefik labels to the "front" docker container and adding the Traefik specific network to it, and I chose the "mail-letsencrypt" option during the configuration as I wanted SSL for my emails, and not the front-end web application as Traefik would handle that and get a Cloudflare cert generated for it.
And yes, the ports required are open on Hetzner's firewall as well but I can't seem to figure out why its not working.

submitted by Sycrixx to selfhosted [link] [comments]

2023.08.01 19:07 coolerkid9090 Comcast has been blocking our website and will not unblock it!

All our clients who use Comcast as their ISP cannot access our website. They get a picture of a blue lock that says "Malware and Phishing" and below it: "This site is blocked because it is a known security threat. Please contact your network administrator to gain access".
Our website has just been scanned numerous times to be free of Malware and we use a security suite to insure it remains that way. I ran an SSL audit and everything checked out. Comcast has admitted to blocking it and after going back and fourth for several months they WILL NOT unblock it or tell me why they are blocking it. We have wasted so much time with support here and have gotten nowhere. I have been submitting removal requests to Comcast every week for months now and they have not unblocked it or responded to the requests. We have been in business for decades and our website is not a security threat.
If I do an NSLOOKUP on the domain it gives IPs for NetActuate, instead of my server. If I change the DNS server in Windows to use Google instead of Comcast it works, so they clearly are blocking my domain.
We have wasted so many months on this and it is really affecting our business, what else can we do??
This is the error:
https://imgur.com/gAypuJq
This is the NSLOOKUP
Server: cdns01.comcast.net
Address: 2001:558:feed::1
Non-authoritative answer:
Addresses: 2607:fc50:3000:2::55
2607:fc50:3000:2::1b
104.225.8.28
104.225.8.29

submitted by coolerkid9090 to Comcast_Xfinity [link] [comments]

2023.06.21 17:06 CephalonAhmes Update 33.5: The Seven Crimes of Kullervo

Source
CLICK HERE TO SHARE FEEDBACK AND BUG REPORTS IN THE DEDICATED SUB-FORUMS
77b1a0663839e804bedd36ba71e0147a.png
Update 33.5: The Seven Crimes of Kullervo
The Seven Crimes of Kullervo are on display for all to see! A new island has appeared just off the Duviri mainland, a prison to hold a guilt-ridden betrayer: Kullervo. Enter Kullervo’s Hold to uncover his crimes for yourself and be tested against this formidable opponent.
Dive into Kullervo’s story by playing the new time-limited node that shares its name with the new Duviri island Kullervo’s Hold. Accessible via the Duviri region in the Star Chart, 5 Pathos Clamps is your entry price to a Lone Story version of the Sorrow Spiral destined to bring you head-on against Kullervo to punish him for his crimes against the Kingdom.
Our 53rd Warframe, Kullervo has arrived! Dance in a flurry of blades and seize the power of treachery with his signature shotgun theRauta.
The Undercroft ’s power has grown with a brand new tile, and the Void has brought a familiar character to its Exterminate missions.
Dive into brand new side objectives in The Duviri Experience with Kaithe Racing , Undercroft Portals, Lost Belongings , and Recover the Paragrimm’s Tomes. Dominus Thrax has also made numerous new Decrees, but has gotten wise to the Drifter’s ways and included a few Spiteful Decrees.
Adorn yourself for your adventures across Duviri and the Origin System with new stylish cosmetics, including the Gauss Kresnik Collection and so much more.
It’s time for the great betrayal!
Read on for details on the above and everything else packed into Update 33.5: The Seven Crimes of Kullervo!
The Seven Crimes of Kullervo is a Mainline Update!
Meaning that everything the team has been working on since the launch of The Duviri Paradox is in this update (with the obvious exception of content that is not ready to be released). It is very likely, as it is with all Mainline updates, that things can slip through the cracks so we will be looking at reports here for any fixes and changes for follow-up Hotfixes to come.
If any of the terms above are new to you, visit “The Warframe Lexicon for Updates” to learn more about Warframe’s development cycle.
Download size: ~1.04 GB
NEW DUVIRI ISLAND & TIME-LIMITED NODE: KULLERVO’S HOLD
Duviri brings forth a formidable opponent, locked away in perpetual imprisonment for crimes listed, sevenfold.Kullervo’s Hold is a new Duviri Island and time-limited node that grants access to a most notorious inhabitant, Kullervo.
But first, you must learn what lies ahead before engaging in a tangle of blades with this mystifying convict.
The Fight: Kullervo’s fight unfolds in three stages, each requiring you to defeat Kullervo as he exits his holding cells. Prosecutor Liminus are quick to be alerted when there is activity in the Hold and will enter the fight at Kullervo’s dismay.
Dueling Kullervo will be a test of all that you have learned in Duviri. Use the skills and Drifter Intrinsics honed by your blade to battle your way to glory against this formidable master of knives. Evade ranged attacks, vengeful backstabs, and unblockable strikes if you wish to survive the onslaught of this tortured warrior. Tenno will need to parry, counter, and rely on their wits if they wish to escape Kullervo’s Hold with their lives intact.
Time-Limited Node: Starting today @ 12 PM ET until July 5th @ 12 PM ET, face off against the most felonious persona this side of the Watershed Hamlet in a time-limited node that gives you guaranteed access to him (read on to also learn about his permanent access methods).
Sealed in a permanent Sorrow Spiral, this time-limited node is a special rendition of The Lone Story which grants you guaranteed access to fighting Kullervo as part of the Stages to complete. As with all Spirals, defeating the Orowyrm is also the grand finale to this Lone Story.
Node Requirements:

Completed The Duviri Paradox Quest
(5) Pathos Clamps for guaranteed access to the fight. The Warden needs a little incentive to look the other way.

If you have yet to fight the Orowyrm to earn Pathos Clamps in Duviri, now is the time! This time-limited node is our way of encouraging players to experience and complete a full Spiral in Duviri if they have yet to do so. Duviri has much to offer, and Kullervo awaits your visitation for a dance of blades.
How to Play the Node: Enter the “Kullervo’s Hold” node from the Duviri region in the Star Chart and complete the Spiral stages. Going blade to blade with Kullervo happens during the last stage before fighting the Orowyrm.
e7cf6d65d98fb8da7c82f9520a7b7691.png
Successfully defeating Kullervo and the Orowyrm will reward you handsomely (listed below).
Permanent Access: Outside of the time-limited node, Kullervo’s Hold is an island that appears in Duviri during theAnger, Fear and Sorrow Spirals.
Fighting Kullervo at the Kullervo’s Hold island has a chance of being a main Spiral stage in The Lone Story/The Duviri Experience and can also be completed as a side objective in The Duviri Experience (during the aforementioned Spirals). Once he has been defeated he cannot be fought again in that session.
Facing off against Kullervo outside of the special Node does notcost you 5 Pathos Clamps , should you come across him as a main Spiral stage or choose to fight him as a side objective.
Fighting Kullervo in The Lone Story: Defeating Kullervo has a chance of being one of the Spiral stages to complete during the Anger, Fear and Sorrow Spirals. If it does, it will occur in the second half of the stages so that players have accumulated at least 3 Decrees before fighting him.
Fighting Kullervo in The Duviri Experience: In addition to fighting Kullervo as a main Spiral Stage, players can also voluntarily start the fight as a side objective during the Anger, Fear and Sorrow Spirals.
Head to Kullervo’s Hold island and speak to The Warden overlooking the cells. Selecting “Confront Kullervo” will begin the fight.
Tread carefully, Kullervo is a fearsome opponent and his attacks are infused with Elemental Damage based on the active Spiral. It is recommended to enter the fight with at least 5 Decrees selected.
Reminder : Facing off against Kullervo outside of the special Node will not cost you 5 Pathos Clamps.
Rewards for defeating Kullervo: The following applies to both the time-limed node and permanent post-node access.

Drifter Intrinsics
Duviri Resources
A Decree
New: Kullervo’s Bane
- Rewarded after you have defeated both Kullervo AND the Orowyrm in all of the modes (Time-Limited Node, The Lone Story, and The Duviri Experience).*
  - *If the Orowyrm is defeated before fighting Kullervo as a side objective in The Duviri Experience, Kullervo’s Bane is rewarded immediately after he has been slain (since the condition of defeating the Orowyrm has already been met).
- Normal: Chance at receiving either 4, 5, or 6 Kullervo’s Bane
- Steel Path : Chance at receiving either 6, 7, or 8 Kullervo’s Bane
  - We've caught an issue just before launch that the team will be working to Hotfix ASAP in regards to the amount of Bane given.

Acrithis’ Wares: Kullervo’s Archive Use Kullervo’s Bane to obtain Kullervo’s Blueprints and the Blueprint and Components for the Rauta , from Acrithis’ Wares under the new “Kullervo’s Archive” option.
1c4b851609c09adea44662adccae93e1.png
NEW WARFRAME: KULLERVO Kullervo answers for his sins and the sins of others. His daggers and melee prowess deal high damage. Seize the power of treachery to slake his thirst for revenge.
Passive Kullervo boasts +75% Heavy Attack Efficiency and +100% Heavy Attack Wind Up Speed on all melee weapons.
Wrathful Advance (TAP) Kullervo charges a Heavy Attack then teleports to his target and strikes. His rage-filled focus temporarily increases his Melee Critical Chance. (HOLD) Teleport to any marked location.
Wrathful Advance is Kullervo’s Helminth ability with diminished Range and Melee Critical Chance increase.
Recompense Kullervo surrounds himself with daggers. Each dagger that strikes an enemy restores his health, but each dagger that misses an enemy strikes Kullervo, dealing a bit of damage. When Kullervo has max Health, he receives Overguard* from struck enemies.
*Overguard is a defense mechanic that was made available to Warframes with The Duviri Paradox. While active, it grants additional Health protection and provides Knockdown Immunity.
Collective Curse Kullervo sends forth a curse that binds enemies. When a cursed enemy takes damage, every other cursed enemy also suffers a portion of that damage.
Storm of Ukko The Void answers Kullervo’s invocation with a storm of daggers that rain down upon his enemies.
Storm of Ukko is Kullervo’s Railjack ability.
Purchase Kullervo from the in-game Market for instant access or earn it by fighting him in Kullervo’s Hold to earn Kullervo’s Bane to spend at Acrithis’ Wares.
NEW SHOTGUN: RAUTA Kullervo’s signature weapon boasts melee synergy. Engage enemies in close combat to boost your initial melee combo and deliver a devastating takedown.
Purchase the Rauta from the in-game Market for instant access or earn it by fighting Kullervo in Kullervo’s Hold to earn Kullervo’s Bane to spend at Acrithis’ Wares.
KULLERVO USVAH HELMET Don the haze of fury.
AHLTO SYANDANA The Void makes its mark on Kullervo’s signature Syandana.
KULLERVO COLLECTION Command the wrath of Kullervo. His collection includes the Kullervo Warframe, Kullervo Usvah Helmet, Ahlto Syandana, and Rauta Shotgun.
UNDERCROFT CHANGES
New Undercroft Tile We have added a new tile to the Undercroft for you to battle and traverse. Keen Tenno will notice an academic atmosphere as they fight the hordes of Dominus Thrax’s minions. This tile will be available in both the Circuit and while traversing the Undercroft as a main Spiral Stage and side objective (read the “New Side Objectives” section to learn more!).
Captain Vor Arrives In The Undercroft To those Tenno traversing the Undercroft, there is a chance you happen across one of the Tenno’s oldest foes. Captain Vor is guaranteed to spawn in all instances of Exterminate missions in the Undercroft.
His health increases for each additional member in the squad. He must be defeated to successfully complete the Undercroft mission.
On defeat, Captain Vor will drop Rune Marrow and has a chance to drop the Vor Sigil.
Undercroft Exterminate Mission Change:

Slightly reduced the number of enemies required to exterminate (scales with number of players in squad).

Undercroft Defense Mission Changes

Reduced waves from 5 to 3.
- In an effort to decrease the length of Defense missions in the Undercroft, we’ve opted to reduce the number of waves to complete.
Increased enemy spawns and added Eximus units to defeat at the end of the mission.
- With the wave reduction, we want to maintain a level of challenge throughout the mission by ending it with a bang.
The Defense Target will now regenerate its Shields to full in between waves.
- In light of the increase in enemy spawns and the addition of Eximus units, we wanted to ensure the target wasn’t in any immediate danger of being destroyed right on wave reset.

Undercroft Survival Mission Changes

Slightly reduced drop rate of Life Support capsules from enemies.
- Since Undercroft Survival does not last longer than 5 minutes, it does not need to use the same rules that let players stay indefinitely in an endless Origin System’s Survival mission. As long as players are killing enemies and activating Life Support towers when needed, this shouldn’t cause any problems!

NEW ARCANES Power up your Arsenal with these new Arcanes! Earn them in The Steel Path Circuit, side objective Undercroft Portals in The Steel Path Duviri Experience, and from Acrithis’ Wares (with the Rank 9 “High Value Vendor” Opportunity Drifter Intrinsic).
*Stats shown at max rank
Arcane Power Ramp (Warframe) On Ability Cast: Next Ability cast gains +9% Ability Strength, stacking up to 4x. Resets when the same ability is recast consecutively.
Primary Blight (Primary) On Toxin Status Effect: +3.6%% Critical Damage and +1.8% Multishot for 12s. Stacks up to 40x
Akimbo Slip Shot (Dual Pistol Secondary) While sliding or aim gliding: Gain 65% ammo efficiency with Dual Pistols.
Secondary Outburst (Secondary) On swapping to Secondary Weapon, consume all Combo Multipliers to increase Secondary Weapon Critical Damage by 12% per Combo consumed for 15s.
NEW SIDE OBJECTIVES There are now more ways to interact with The Duviri Experience with 4 new side objectives: Undercroft Portals, Kaithe Races, Recovering the Paragrimm’s Tomes, and finding Lost Belongings.
b70d002c61f5b14de93a21ad1360431d.png
Side Objective Undercroft Portals
During your time in Duviri, you have ventured into many Undercroft portals as part of the Spiral stages. Now, you can enter the Undercroft as a Side Objective in The Duviri Experience!
Outside of the portals that spawn for Spiral stages, there will always be a total of 3 side objective portals available in Duviri. They spawn at different locations each visit! Approaching these portals will mark them on your map while you are in relative proximity to them so that you can return if you are unable to conquer them immediately.
67679a35fa652435fa1b3b902440b35b.png
Requirement to enter: You must acquire 7 Decrees before entering The Undercroft! The reason being so that you are fully prepared for the challenges that await on the other side of the portal. These side objective portals are disabled when a main Spiral stage requires you enter a designated portal. Note that the Rank 3 Opportunity Intrinsic “Lucky Opener” which grants a free Decree upon entering Duviri does not count towards the 7 Decrees needed to enter.
Difficulty: Enemies in these side objective Undercroft portals are much more challenging than your average Spiral stage portal.
In addition to the following level modifiers, these portals are also Eximus Strongholds , meaning you can expect more Eximus units to spawn for an added layer of difficulty.

Default: +25 level modifier
Steel Path: +75 level modifier (with the usual Health, Armor, and Shields modifiers)

Once you have completed the Undercroft mission, the portal then becomes deactivated - similar to other side objectives once completed.
Rewards: Completion of a side objective Undercroft Portal rewards the following:

Default: A Rare Decree, Drifter Intrinsics, and one of the following Arcanes:
- Arcane Ice
- Arcane Nullifier
- Arcane Deflection
- Arcane Healing
- Arcane Resistance
- Arcane Agility
- Arcane Eruption
- Arcane Phantasm
- Arcane Pulse
- Arcane Ultimatum
- Arcane Trickery
- Arcane Consequence
- Arcane Acrachne
Steel Path: A Rare Decree, Drifter Intrinsics, and one the following Arcanes:
- Secondary Shiver
- Longbow Sharpshot
- Arcane Reaper
- Arcane Intention
- Primary Exhilarate
- Shotgun Vendetta
- Primary Obstruct
- Magus Aggress
- Primary Blight (NEW)
- Arcane Power Ramp (NEW)
- Akimbo Slip Shot (NEW)
- Secondary Outburst (NEW)

8de0b6d0afb5291f1f565d0cf637f6ef.jpg
Kaithe Racing Returns Put your riding skills to the test! Mount your Kaithe then race across the terrain and through the sky to clear gates in record time. Kaithe Races can appear as a Spiral stage and side objective in The Duviri Experience.
How to Kaithe Race: Start the race by entering the first gate, once crossed the timer countdown begins! Clear all of the required gates to complete the race. Each successful gate crossed adds 3 seconds to the time to complete the race. Shooting the targets also grants 3 seconds of additional time. There is no penalty for skipping gates, but you do miss out on gaining those extra seconds!
d29be46fc14d69ab92f0d0da1d3d8232.png
Side Objective Kaithe Races: Can you beat Brimon , the fastest Kaithe racer in the Kingdom? Locate him in the Duviri Landscape to accept the challenge! There are a total of 2 side objective races per session that can be completed while playing in a squad (solo has no limit).
1bc6a6402ba3849e232c397b5ba0e47f.png
Kaithe Racing Rewards: Successfully completing a Kaithe race rewards Drifter Intrinsics, a Decree and Duviri resources. The more players from the squad join into the race and complete it, the better the rewards are for the whole team!
5fa271c8e5f6676ed19983fc535d6c63.jpg Recover the Paragrimm’s Tomes Take to the skies for a bird’s eye view of the area! Look through the eyes of a Paragrimm to find Tomes and mark them for collection. Recover the Paragrimm’s Tomes is available only in The Duviri Experience as a side objective.
Recover the Paragrimm’s Tomes Rewards: Finding all of the required targets will reward Duviri resources, Drifter Intrinsics, and a Decree.
Lost Belongings Duviri’s citizens have a knack for misplacing their belongings, and it should come as no surprise that some of these items have ended up in Duviri’s caves. Scour the caves of Duviri’s underbelly for Lost Belongings while keeping an eye out for Liminus who are keen on keeping these items to themselves Lost Belongings can appear as a main Spiral stage and as a side objective in The Duviri Experience.
Lost Belongings Rewards: Collecting all of the Lost Belongings will reward Duviri resources, Drifter Intrinsics, and a Decree!
NEW DECREES New Decrees have been added to the randomized pool of options upon completing Spiral stages and side objectives!
Dominus Thrax has also gotten wise to the Drifter’s ways and has introduced 5 Spiteful Decrees that require a sacrifice to gain the listed benefits.
b54392018a83c030c5e99b858e226855.png
Discover new Decree combinations to take your Drifter and Warframe loadouts to the next level.
Values marked with an asterisk* can be stacked and are shown at max.
Blazing Bombardment Every fifth shot that hits its target launches a homing fireball at a nearby enemy, dealing 240%* Heat Damage.
Nimble Gunner Rolling grants 75%* Ammo Efficiency for 4 seconds.
Tamm's Fortune Finisher attacks grant +500 Armor for 10 seconds. Armor boost triples for Warframes.
Brimon's Nerve Finishers grant +200% Ability Strength to your next Power Strike or Warframe Ability.
Wyrmling's Aid Shots deal an extra hit with 200%* Corrosive Damage.
Corrosive Grit Each stack of Corrosion grants 180* Armor, up to 5x, for 12 seconds.
Molten Mettle On Finishers, deal 60%* of enemy's maximum Health as a Heat Damage 10m around the target.
Salted Wound Heavy Attacks deal an extra hit with +180%* Corrosive Damage.
Fortified Will Every 50 Armor grants 15%* Ability Strength and Power Strike damage.
Scornful Cast Casting an Ability deals 250* Corrosive Damage to nearby enemies and applies 10* Corrosion stacks. Damage radius doubles for Warframes.
Dominus Temper (Spiteful Decree) Sacrifice -50% Maximum Health to increase damage by +10% for every 100 Health remaining.
Mercurial Bent (Spiteful Decree) -50% Status Duration, +200% Status Chance
Fragile Vanity (Spiteful Decree) Sacrifice -50% Armor to increase the base damage of your shots by 1 for every 20 Armor remaining.
Churlish Chatter (Spiteful Decree) Sacrifice weapon accuracy for +150% Multishot.
King's Collateral (Spiteful Decree) Take 50% more damage for a 200% chance to receive Rare Decrees.
General Decree Changes and Fixes:

Drifter Melee Power Strikes and Warframe Melee Ground Slams now benefit from damage buffs from Decrees.
Fixed cases where an “On damage” Decree would cancel out the ability to trigger another “On damage” Decree if both were triggered in the same instance.
- For example: Critical Frost grants an extra instance of Cold Damage when you score a critical hit, and Bombastines Malice delivers area of effect Toxin Damage on a headshot. If both were active and you got a critical headshot on an enemy while Critical Frost was triggered, Bombastine’s Malice wouldn’t have a chance to inflict area of effect Toxin Damage.
Fixed the Decree selection UI always showing the default controller binding regardless of the current assignment.
Fixed the “Reroll Decree” button appearing before the Decrees appear on screen.
- It will now appear slightly after the Decrees appear to avoid accidentally clicking it before the selections are visible.
Fixed hearing the “Decree earned” SFX when mounting Kaithe with unselected Decrees.
Fixed the “Proficient Fighter” Decree’s (Drifter Ability cooldown reduced by 45%. Warframes gain +45% Ability Efficiency.) cooldown reduction being doubled for the first two stacks.
Fixed being unable to reload or fire the Hema with the Rolling Reload Decree selected.

DUVIRI RESOURCE EXTRACTING: SPROUT You can now collect Duviri plant resources right from the comforts of Teshin’s Cave with the new SPROUT(Self-Perpetuating Regular Operation for Utilizing Terrain) system.
Grow and Cultivate in Teshin’s Cave: Every 20 hours, 6 random plants from Duviri will grow and mature for harvesting in Teshin’s Cave. Simply approach the planters located in the room between your Kaithe and the mirror to cultivate resources from these fully grown plants.
32dcf2486073e7946571cddf4ca2130c.png
The growth timer resets once you collect the resources from Teshin’s Cave. Check back once the plants have matured again to harvest, rinse repeat! The resources harvested can immediately be used to purchase wares from Acrithis if you happen to come across her in the Duviri Landscape. For the launch of this update, the plants are already fully matured and waiting for you to collect them.
If you enter Teshin’s Cave with a squad, each individual squad member has access to their own plants and will see their growth progress.
Witness Growth in the Dormizone: VERD-IE (Vegetation and Environment Regulation Drone - Independent Element) is tasked with taking care of your plants in the Dormizone while you are away conquering Duviri - what a pal! The Dormizone provides a look at how your plants are growing in Teshin’s Cave before committing to entering for harvest.
df27ec24b231a110d308173df12eb974.png
NEW ACRITHIS WARES - ENIGMA ARCHIVES Acrithis has expanded her wares in a brand new category of goods called Enigma Archives. Spend your hard earned Enigma Gyrum (from completing Enigmas in Duviri) on brand new decorations taken directly from the Duviri landscape:

Duviri Fainting Couch
Duviri Theater Seat
Duviri Repast Table
Duviri Mortis Stela
Duviri Modesty Screen
Duviri Hand Spa
Duviri Senate Seat
Duviri Hay Bale
Duviri Footstool
Duviri Lectern
Duviri Clerical Desk
Duviri Calculum
Duviri Scales

Like the Watchful Paragrimm decoration, these wares will be available perpetually, without a rotating schedule. This way you can see what items are tradeable for Enigma Gyrum and save up accordingly.
NEW IN THE DUVIRI LANDSCAPE
9de0d7bacd0a3e7cff8a568ccaf752a0.png
New Resource: Ueymag Barb Scour Duviri for the Ueymag plant to collect the newUeymag Barb resource! Ueymag meat is said to be delicious. Just mind the barbs.
Ueymag Barb can also appear in the Normal and Steel Path Circuit reward paths.
The Vagabond Rumors tell of a mysterious stranger appearing across Duviri. Sythel swears she’s being followed. Lodun is certain Thrax sent a thief to steal his things when he leaves home. Mathila keeps ranting about someone as happy as she is. But every time they turn around, the stranger is gone. How... Strange...
Zariman Tablets Tablets from the Zariman have begun appearing around Duviri. These testing tablets contain a single question and await the correct answer. You have the answers, don’t you Tenno?
Somachord Tones Duviri has plenty of unique music, and the addition of Somachord Tones means that music can now be available in the Orbiter! Find them hidden across Duviri and pick them up to unlock the songs in your personal Somachord. It’s time to bring some Duviri flair back to the Origin System.
There are 10 new Somachord songs you can unlock by collecting their fragments in Duviri:

Below The Thunder
Unbound
Drifter’s Respite
Paragrimm Ascending
Perdition’s Coils
Shadows And Summonings
He Who Waits
Into Madness
Eyes That Burn
Duviri Paradox

The Somachord has also been added to your Dormizone! Play your newly found Duviri tunes in the comfort of your Zariman domain.
c407a545fe6654d1f7f92bf2d6dc4878.png
Note: Somachord Tone progress is saved after earning a Decree. If you find a Somachord Tone, make sure you earn another Decree before leaving Duviri, or you can extract safely using the Extraction Portal that opens after defeating the Orowyrm.
NEW IN-GAME MARKET BUNDLES
93a944abf6b3993d879f1ac8487604ca.png
GAUSS KRESNIK COLLECTION Go full throttle with Gauss Kresnik. His fiery collection includes the Gauss Kresnik Skin, Bolide Syandana, and Acceltra Caduceus Skin.
Gauss Kresnik Skin Fire courses through Gauss Kresnik. Gain momentum with his thermal energy.
Bolide Syandana Gauss Kresnik’s signature Syandana proves he can stand the heat.
Acceltra Caduceus Skin Acceltra Caduceus turns up the heat of battle.
14d3bd244ae74bd1b67bdb95cfc20061.jpg STEED’S RESOLVE PACK Each Kaithe Coronet in the Steed’s Resolve Pack reflects a Duviri Mood Spiral. Express your Kaithe's moods just as Dominus Thrax expresses himself through Duviri's ever-changing sky. The pack includes the following Coronets for your Kaithe:

Vexage Coronet - Forewarn that fury awaits anyone who challenges your Kaithe and its rider.
Dauntair Coronet - A skilled rider repurposes the Void’s mark for their Kaithe.
Myrthen Coronet - Joy blossoms in the Myrthen Coronet.
Enverve Coronet - The Enverve Coronet elegantly expresses a bitter emotion.
Wistfall Coronet - The Wistfall Coronet depicts melancholy’s beauty.

013776a87152966856bcdd6f10d8a912.jpg AETHON KAITHE COLLECTION Give your Kaithe Gauss Kresnik’s singeing style. This collection includes the Aethon Chamfron, Saddle, and Tail.
adbd7fdf953430bc1c5603ad4ed409d7.jpg
ORIZU SUIT COLLECTION A full pressure suit inspired by the origami crane. Fitted for the Drifter and the Operator. The collection includes the Orizu Suit, Hood, Pants, and Sleeve.
VAENN HEAVY BLADE SKIN Give your Heavy Blade the look of Kullervo’s legendary sword.
NEW TENNOGEN Adorn yourself with the latest in TennoGen creations! Shine bright with the following items from some of our talented community artists.
05607e6baf4c13f4ca95b260a8467803.jpg

Nikana Krtrima Skin by kakarrot812
Krtrima Chest Armor by kakarrot812
Krtrima Leg Armor by kakarrot812
Krtrima Shoulder Armor by kakarrot812

dc1dfb9556ef732725c4a94287027e42.jpg

Liset Herulyst Skin by LostEpoch
Nekros Ausirylyst Skin and Helmet by LostEpoch
Vikasa Aegis Chest Armor by blazingcobalt
Zhivira Shoulder Armor by blazingcobalt

*HARRIER & SAITA PRIME SUIT CONVERSION * As part of our ongoing efforts to convert Deluxe Operator Skins to make your Drifter look as dashing as ever, the Operator Harrier Collection and the Saita Prime Suit are now available for the Drifter!
f769345c25b50793a393ccebbdcbcea6.png
*Raven Drifter is seen in the above image.
Any player purchasing these Operator cosmetics in the future will automatically receive the matching Drifter variants as well. For those of you that already own these coveted collections, the Drifter versions will be available immediately in your inventory via an account update on log-in.
36758d632ba74df318c4acdf17e34eb4.png
DUVIRI STEEL PATH TROPHIES & EMOTE
Complete the following conditions to earn an inbox message from Teshin with25 Steel Essence , theSteel Path Duviri Emote , and the Steel Path Duviri Trophy.

Complete a mission stage in the Steel Path Circuit.
Complete a full Spiral in The Duviri Experience (ie. defeating the Orowyrm)
Complete a full Spiral in The Lone Story (ie. defeating the Orowyrm)

Zariman Steel Path Trophy Fix The introduction of Duviri Steel Path Trophies also fixes the issue of players not earning Zariman Steel Path trophies after completing all nodes (as they were not registering as complete), because Duviri was being counted as part of the Zariman region upon launch. Players who have completed the Zariman nodes prior to this update will now also receive their Steel Path rewards upon login.
INCARNON GENESES CHANGES
Incarnon Geneses Removal: Cavalero can now remove Incarnon Geneses in the Chrysalith on the Zariman!
Select the “Evolve Incarnon Weapons” option and then the weapon you wish to remove the Incarnon Genesis from. The new “Remove Incarnon'' option is available upon selecting an eligible Incarnon Weapon via the Evolution screen from Cavalero.
27a6ec7bd21a86733ff517b4ab3ab475.png
Removing an Incarnon Genesis will return it to your inventory, but you will not be refunded for the original resources used to install it.
*General Incarnon Geneses Changes & Fixes: *

Added “Owned” and “Installed” Icons to Incarnon Geneses you own / have installed in the Steel Path Circuit Rewards selection screen. 75314d8c05affda26219a968b31fe55f.png
Soma (base and Prime) Incarnon Genesis Changes:
- Soma Prime’s Incarnon Form fire now triggers the “Hata-Satya” Augment Mod’s Critical Chance buff.
  - Prior to this change, the Hata-Satya was part of the following list of Augment Mods that had no interaction with their weapon’s Incarnon Form - this is their current status:
  - Kunai’s Stockpiled Blight: It is intended for the Mod not to interact as it specifies Magazine capacity and Kunai’s Incarnon Form uses charges to fire, not ammo.
  - Latron’s Double Tap: We are investigating functionality and will share the outcome.
- Increased Status Chance and weighted total damage slightly more towards Slash Damage.
- “Fresh Havoc” Evolution IV perk 1:
  - Increased the damage from +4 to +6 on reload from empty.
  - Changed stacks from 3x to 2x.
- “Elemental Balance” Evolution IV perk 2 has been replaced with “Fatal Aflection”:
  - +40% damage per Status affecting target.
- “Zeroed In” Evolution IV perk 3:
- Increased Critical Damage from +0.4x to +0.6x.
Melee Slam Damage Mods (such as Seismic Wave) now affect the Furax Incarnon Mode’s AOE Heat Damage on Heavy Slam attacks.
Updated the description for Furis’ “Stormburst” Evolution I perk to better explain how it is triggered:
- Was: Increase Damage by +28 (Furis) / +34 (MK1). On Hit with Electricity: +40% multishot for 2s. Stacks up to 3x.
- Now: Increase Damage by +28 (Furis) / +34 (MK1).On hitting enemies affected by Electricity Status : +40% multishot for 2s. Stacks up to 3x.
Changed Dread’s “Coup De Grace” Incarnon Evolution II perk name to “Stalker’s Resentment” and updated its description to better inform of its interaction with the other Stalker weapons.
- Was: Increase Damage by +10. +10% Fire Rate, stacks up to 5x. Resets on missed shot.
- Now:With Hate and Despair Equipped:Hits increase damage by +10, stacks up to 5x. Resets on missed shot.
Fixed a redundant hit effect from the Paris’ Incarnon mode by removing it.
- The projectile on the Paris’ Incarnon mode had an unnecessary passthrough effect that would still trigger every time it hit a target, which was not needed!
Fixed Furis’ Incarnon Form causing self-damage when shooting an enemy that is affected by Scourge’s Alt-Fire.
Fixed Sibear’s “ice field on Slam” in Incarnon Mode missing its VFX - making it seem as if it is not functional. This was purely a visual bug, the effects of the ice field still applied.
Fixed the Zylok's Incarnon Form explosion not hitting enemies within range of the explosion if they were obstructed by another enemy.
Fixed low level enemies killed by headshots not filling the Incarnon Mode gauge for Primary and Secondary Incarnon weapons.
Fixed the Torid gaining Incarnon charges by shooting at dead enemies.
Fixed headshots from the Dual Toxocyst counting as body shots due to its high Status - making it extremely difficult to complete the Evolution IV challenge (“Get 17 consecutive headshots”) as Status Effects would often reset it.
Fixed Melee Incarnon weapons (original and Genesis) missing their Incarnon Form stats in the Arsenal.
Fixed the Innodem not transforming into Incarnon Mode when performing a Heavy Attack with the required 5x Melee combo count (also affected the Evolution IV “Incarnon Imago” perk).
Fixed Nami Solo’s “Master's Flourish” Incarnon Evolution II perk constantly regenerating Health instead of “On Finisher” as intended.
Fixed Bronco Prime’s Incarnon Form “Max Charges” showing 40 instead of the intended 20.
- It was always 20 in mission, this was just a description error in the Arsenal stats!
Fixed the Evolution IV description of the Prisma Skana’s Incarnon Genesis stating 30% Status Chance increase instead of the intended 20%.
- It was always 20% in mission, this was just a description error in the Arsenal stats!
Fixed the resource requirements to install Incarnon Geneses at Cavalero only showing the exact amount required instead of including the total amount owned.
Fixed Atomos’ Incarnon Form missing its projectile VFX.
Fixed switching to Incarnon Mode with the Strun Wraith causing ammo to stick to the player and follow them around.
Fixed weapons with Incarnon Geneses installed not showing up in the Arsenal search function for “Incarnon”.

THE DUVIRI PARADOX QUEST CHANGES AND FIXES The Duviri Paradox Quest has been adjusted to address some of the most common player feedback points and improve the overall Quest flow based off our own findings from said feedback:

Reduced the individual stages of each Spiral from 6 to 3 objectives.
Shuffled the objectives in the Spiral stages to help with overall quest flow. The Quest stages are now as follows:
- ANGER
  - Defeat the Dax
  - Open Chest and defeat its Guardian
  - Undercroft Exterminate
- JOY
  - Conquer the Maze
  - Purge the darkened areas of Liminus
  - Undercroft Survival
- ENVY
  - Reconnect the Power Lines
  - Defeat the high ground Dax
  - Undercroft Defense
Reduced the amount of repeated actions needed to complete the Drifter Combat tutorial.

General Quest Changes:

Updated the SFX of the first dialogue line during The Covetous Courtier stage of The Duviri Paradox Quest.
Small animation polish for the opening cutscene of The Duviri Paradox Quest.

Quest Fixes:

submitted by CephalonAhmes to Warframe [link] [comments]

2023.06.13 23:29 coolerkid9090 Comcast is blocking my website!

All our clients who use Comcast as their ISP cannot access our website. They get a picture of a blue lock that says "Malware and Phishing" and below it: "This site is blocked because it is a known security threat. Please contact your network administrator to gain access".
Our website has just been scanned numerous times to be free of Malware and we use a security suite to insure it remains that way. I ran an SSL audit and everything checked out.
If I do an NSLOOKUP on the domain it gives IPs for NetActuate, instead of my server. If I change the DNS server in Windows to use Google instead of Comcast it works, so they clearly are blocking my domain.
I have been submitting removal requests to Comcast every week for months now and they have not unblocked it or responded. I spent several hours on the phone with them and they were unable to help me and they told me they don't block websites. I know it's their service because it only happens with Comcast users and it happens with all of them. We have been in business for decades and our website is not a security threat.
What else can I do??
This is the error:
https://imgur.com/gAypuJq
This is the NSLOOKUP
Server: cdns01.comcast.net
Address: 2001:558:feed::1
Non-authoritative answer:
Addresses: 2607:fc50:3000:2::55
2607:fc50:3000:2::1b
104.225.8.28
104.225.8.29

submitted by coolerkid9090 to Comcast_Xfinity [link] [comments]

2023.04.03 08:31 DinnerFew9941 Why would a VPN/proxies on mobile work on a network with many restrictions, but not on PC?

Hello!
Im currently on a public network that has many restrictions and SSL inspection.
I use a VPN on my phone to mitigate this, but on the public desktop (running my own operating system from USB stick so software wont block me) VPN and proxies are both blocked completely.
I tried spoofing the mac address but it changed nothing!
What can I do to unblock network access on the PC the same as my phone?
Thank you in advance!
Ps: I tried posting in hacking but clearly this isn’t hacking related sadly. If you know a better subreddit please let me know.

submitted by DinnerFew9941 to techsupport [link] [comments]

2023.03.03 11:24 C0R0NA_CHAN How do I bypass my uni Fortinet firewall??

Hi, I want to bypass fortinet firewall on my uni wifi. I got a droplet on Digital Ocean and tried to setup/use 1)shadowsocks proxy, 2)http proxy (squid proxy), 3)Outline (tried ports 443,53,80) Everything works on my home wifi and cellular data. But nothing seems to work on uni wifi. I can't even load outline manager on laptop when it's connected to uni wifi.
Psiphon pro works (speed is extremely low). Though from my uni wifi I can SSH into digitalocean droplet, I can Tcping my droplet server and it is successful. One thing to note is the wifi doesn't work without SSL certificate. None of the sites (except Google, gmail) load without installing certificate. I am suspicious that they are doing MiTM and doing a deep packet inspection. I used wireshark and checked, they are blocking all protocols except TCP, UDP and SSH. ICMP is blocked too.
I am not able to figure out any solution to this. Psiphon pro works but I atleast want 10 Mbps speeds which isn't possible by psiphon.
I have heard of V2ray but don't know of any proper setup guide to configure.
Any help would be Appreciated.
P.S: I know it's not ethical to bypass uni firewall, but my uni is in a remote place where none of the cellular networks work. I can't use cellular data nor even call anyone in emergency. Our emails to IT department requesting to unblock atleast WhatsApp or any other messaging application has been ignored. Hence bypassing wifi is the only option left.

submitted by C0R0NA_CHAN to HomeNetworking [link] [comments]

2023.01.21 05:34 minikatupur2012529 What is VPN? How VPN works? Bestest VPN service in 2023.

What is VPN?

• VPN stands for Virtual Private Network and is a technology used to securely connect two or more devices over the internet.
• VPNs allow users to access the internet from a remote location, while also protecting their identity and data from prying eyes.
• VPNs are used for many different purposes, including accessing blocked websites, streaming content, bypassing geo-restrictions, and keeping your data secure when browsing online.
• VPNs use encryption protocols such as OpenVPN, IPSec, and SSL/TLS to encrypt your data and prevent third parties from snooping on your activities.
• VPNs are available in both free and paid versions, with paid versions typically offering more features and better performance.
• VPNs are becoming increasingly popular as more people become aware of the importance of online privacy and security.

How a VPN works?

A virtual private network (VPN) is a technology that allows users to establish a secure connection to another network over the internet. VPNs are commonly used to provide remote access to a private corporate network, protect online privacy and security, and unblock restricted websites.
When a user connects to a VPN, it creates an encrypted tunnel between their device and the VPN server. All of the user's data traveling through this tunnel is securely encrypted, meaning it is protected from anyone trying to snoop on what they're doing. This makes it impossible for anyone to see what websites they're visiting or what files they're downloading.
To create the secure tunnel, VPNs use various encryption protocols. The most common encryption protocols are OpenVPN, SSTP, and IPSec. Each encryption protocol uses different algorithms and techniques to secure the connection. OpenVPN is the most secure and the most widely used protocol. It uses the OpenSSL library, which is an open source implementation of the SSL and TLS protocols.
Once the tunnel is established, the user's device is given a new IP address. This IP address is used by the VPN server and is different from the user's actual IP address. This makes it impossible for anyone to track the user's online activities.
In addition to encrypting the user's data, VPNs also provide anonymity. When a user connects to a VPN server, their IP address is changed to the IP address of the server. This means that websites will see the server's IP address rather than the user's IP address, which helps to keep their identity and location private.
Using a VPN is a great way to protect your privacy and security online. It also allows you to access websites and services that may be restricted in your country. Whether you're looking to protect your online activities or unblock restricted websites, a VPN is the perfect solution.

Bestest VPN service in 2023

If you are looking for the best VPN in 2023 for best speed, security, reliability, you can use CovermeVPN. You can use the VPN for streaming, torrenting, or any other facility. You must try the VPN service for the military grade encryption which will make them 100% satisfied.

submitted by minikatupur2012529 to u/minikatupur2012529 [link] [comments]

2023.01.18 21:10 AnOriginalName2021 Crash Reporter OPNsense 22.7.10_2-amd64 FreeBSD 13.1-RELEASE-p5

I checked my dashboard and I see an entry from 14 hours ago. I don't know how to fix this. Please assist me.
System Information:

User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 Edg/109.0.1518.55 FreeBSD 13.1-RELEASE-p5 stable/22.7-n250270-9d1c26e8548 SMP amd64 OPNsense 22.7.10_2 bdce9463f Plugins os-collectd-1.4_1 os-ddclient-1.9_2 os-dyndns-1.27_3 os-haproxy-3.12 os-hw-probe-1.0_1 os-iperf-1.0_1 os-upnp-1.4_2 os-zerotier-1.3.2_4 Time Wed, 18 Jan 2023 15:07:18 -0500 OpenSSL 1.1.1s 1 Nov 2022 Python 3.9.16 PHP 8.0.26

PHP Errors:
[17-Jan-2023 01:00:00 America/New_York] PHP Fatal error: Uncaught Google_Service_Exception: { "error": { "code": 404, "message": "File not found: .", "errors": [ { "message": "File not found: .", "domain": "global", "reason": "notFound", "location": "fileId", "locationType": "parameter" } ] } } in /uslocal/share/google-api-php-client/src/Google/Http/REST.php:118 Stack trace: #0 /uslocal/share/google-api-php-client/src/Google/Http/REST.php(94): Google_Http_REST::decodeHttpResponse(Object(GuzzleHttp\Psr7\Response), Object(GuzzleHttp\Psr7\Request), 'Google_Service_...') #1 /uslocal/share/google-api-php-client/src/Google/Task/Runner.php(176): Google_Http_REST::doExecute(Object(GuzzleHttp\Client), Object(GuzzleHttp\Psr7\Request), 'Google_Service_...') #2 /uslocal/share/google-api-php-client/src/Google/Http/REST.php(58): Google_Task_Runner->run() #3 /uslocal/share/google-api-php-client/src/Google/Client.php(842): Google_Http_REST::execute(Object(GuzzleHttp\Client), Object(GuzzleHttp\Psr7\Request), 'Google_Service_...', Array, NULL) #4 /uslocal/share/google-api-php-client/src/Google/Service/Resource.php(232): Google_Client->execute(Object(GuzzleHttp\Psr7\Request), 'Google_Service_...') #5 /uslocal/share/google-api-php-client/vendogoogle/apiclient-services/src/Google/Service/Drive/Resource/Files.php(224): Google_Service_Resource->call('list', Array, 'Google_Service_...') #6 /uslocal/opnsense/mvc/app/library/Google/API/Drive.php(100): Google_Service_Drive_Resource_Files->listFiles(Array) #7 /uslocal/opnsense/mvc/app/library/OPNsense/Backup/GDrive.php(209): Google\API\Drive->listFiles('https://drive.g...') #8 /uslocal/opnsense/scripts/system/remote_backup.php(11): OPNsense\Backup\Gdrive->backup() #9 {main} thrown in /uslocal/share/google-api-php-client/src/Google/Http/REST.php on line 118 [18-Jan-2023 01:00:00 America/New_York] PHP Fatal error: Uncaught Google_Service_Exception: { "error": { "code": 404, "message": "File not found: .", "errors": [ { "message": "File not found: .", "domain": "global", "reason": "notFound", "location": "fileId", "locationType": "parameter" } ] } } in /uslocal/share/google-api-php-client/src/Google/Http/REST.php:118 Stack trace: #0 /uslocal/share/google-api-php-client/src/Google/Http/REST.php(94): Google_Http_REST::decodeHttpResponse(Object(GuzzleHttp\Psr7\Response), Object(GuzzleHttp\Psr7\Request), 'Google_Service_...') #1 /uslocal/share/google-api-php-client/src/Google/Task/Runner.php(176): Google_Http_REST::doExecute(Object(GuzzleHttp\Client), Object(GuzzleHttp\Psr7\Request), 'Google_Service_...') #2 /uslocal/share/google-api-php-client/src/Google/Http/REST.php(58): Google_Task_Runner->run() #3 /uslocal/share/google-api-php-client/src/Google/Client.php(842): Google_Http_REST::execute(Object(GuzzleHttp\Client), Object(GuzzleHttp\Psr7\Request), 'Google_Service_...', Array, NULL) #4 /uslocal/share/google-api-php-client/src/Google/Service/Resource.php(232): Google_Client->execute(Object(GuzzleHttp\Psr7\Request), 'Google_Service_...') #5 /uslocal/share/google-api-php-client/vendogoogle/apiclient-services/src/Google/Service/Drive/Resource/Files.php(224): Google_Service_Resource->call('list', Array, 'Google_Service_...') #6 /uslocal/opnsense/mvc/app/library/Google/API/Drive.php(100): Google_Service_Drive_Resource_Files->listFiles(Array) #7 /uslocal/opnsense/mvc/app/library/OPNsense/Backup/GDrive.php(209): Google\API\Drive->listFiles('https://drive.g...') #8 /uslocal/opnsense/scripts/system/remote_backup.php(11): OPNsense\Backup\Gdrive->backup() #9 {main} thrown in /uslocal/share/google-api-php-client/src/Google/Http/REST.php on line 118

dmesg.boot:

arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 < arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 tailscale0: link state changed to DOWN ovpns1: link state changed to DOWN Waiting (max 60 seconds) for system process `vnlru' to stop... done Waiting (max 60 seconds) for system process `syncer' to stop... Syncing disks, vnodes remaining... 8 7 0 0 done All buffers synced. ---<>--- Copyright (c) 1992-2021 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 13.1-RELEASE-p5 stable/22.7-n250270-9d1c26e8548 SMP amd64 FreeBSD clang version 13.0.0 (git@github.com:llvm/llvm-project.git llvmorg-13.0.0-0-gd7b669b3a303) VT(efifb): resolution 800x600 CPU: Intel(R) Celeron(R) N5105 @ 2.00GHz (1996.80-MHz K8-class CPU) Origin="GenuineIntel" Id=0x906c0 Family=0x6 Model=0x9c Stepping=0 Features=0xbfebfbff Features2=0x4ff8ebbf AMD Features=0x28100800 AMD Features2=0x101 Structured Extended Features=0x2394a2c3 Structured Extended Features2=0x18400124 Structured Extended Features3=0xfc000400 XSAVE Features=0xf IA32_ARCH_CAPS=0x6b VT-x: PAT,HLT,MTF,PAUSE,EPT,UG,VPID,VID,PostIntr TSC: P-state invariant, performance statistics real memory = 17179869184 (16384 MB) avail memory = 16428244992 (15667 MB) Event timer "LAPIC" quality 600 ACPI APIC Table: WARNING: L1 data cache covers fewer APIC IDs than a core (0 < 1) FreeBSD/SMP: Multiprocessor System Detected: 4 CPUs FreeBSD/SMP: 1 package(s) x 4 core(s) random: registering fast source Intel Secure Key RNG random: fast provider: "Intel Secure Key RNG" random: unblocking device. ioapic0 irqs 0-119 Launching APs: 3 1 2 wlan: mac acl policy registered random: entropy device external interface kbd0 at kbdmux0 WARNING: Device "spkr" is Giant locked and may be deleted before FreeBSD 14.0. efirtc0: efirtc0: registered as a time-of-day clock, resolution 1.000000s smbios0: at iomem 0x78d7b000-0x78d7b01e smbios0: Version: 3.3, BCD Revision: 3.3 aesni0: acpi0: acpi0: Power Button (fixed) cpu0: on acpi0 hpet0: iomem 0xfed00000-0xfed003ff on acpi0 Timecounter "HPET" frequency 19200000 Hz quality 950 Event timer "HPET" frequency 19200000 Hz quality 550 Event timer "HPET1" frequency 19200000 Hz quality 440 Event timer "HPET2" frequency 19200000 Hz quality 440 Event timer "HPET3" frequency 19200000 Hz quality 440 Event timer "HPET4" frequency 19200000 Hz quality 440 attimer0: port 0x40-0x43,0x50-0x53 irq 0 on acpi0 Timecounter "i8254" frequency 1193182 Hz quality 0 Event timer "i8254" frequency 1193182 Hz quality 100 Timecounter "ACPI-fast" frequency 3579545 Hz quality 900 acpi_timer0: <24-bit timer at 3.579545MHz> port 0x1808-0x180b on acpi0 pcib0: port 0xcf8-0xcff on acpi0 pci0: on pcib0 vgapci0: port 0x3000-0x303f mem 0x6000000000-0x6000ffffff,0x4000000000-0x400fffffff at device 2.0 on pci0 vgapci0: Boot video device xhci0: mem 0x6001100000-0x600110ffff at device 20.0 on pci0 xhci0: 32 bytes context size, 64-bit DMA usbus0 on xhci0 usbus0: 5.0Gbps Super Speed USB v3.0 pci0: at device 20.2 (no driver attached) pci0: at device 22.0 (no driver attached) ahci0: port 0x3090-0x3097,0x3080-0x3083,0x3060-0x307f mem 0x80500000-0x80501fff,0x80503000-0x805030ff,0x80502000-0x805027ff at device 23.0 on pci0 ahci0: AHCI v1.31 with 1 6Gbps ports, Port Multiplier not supported ahcich0: at channel 0 on ahci0 pcib1: at device 28.0 on pci0 pci1: on pcib1 nvme0: mem 0x80400000-0x80403fff at device 0.0 on pci1 pcib2: at device 28.4 on pci0 pci2: on pcib2 igc0: mem 0x80200000-0x802fffff,0x80300000-0x80303fff at device 0.0 on pci2 igc0: Using 1024 TX descriptors and 1024 RX descriptors igc0: Using 4 RX queues 4 TX queues igc0: Using MSI-X interrupts with 5 vectors igc0: Ethernet address: 60:be:b4:04:4f:68 igc0: netmap queues/slots: TX 4/1024, RX 4/1024 pcib3: at device 28.5 on pci0 pci3: on pcib3 igc1: mem 0x80000000-0x800fffff,0x80100000-0x80103fff at device 0.0 on pci3 igc1: Using 1024 TX descriptors and 1024 RX descriptors igc1: Using 4 RX queues 4 TX queues igc1: Using MSI-X interrupts with 5 vectors igc1: Ethernet address: 60:be:b4:04:4f:69 igc1: netmap queues/slots: TX 4/1024, RX 4/1024 pcib4: at device 28.6 on pci0 pci4: on pcib4 igc2: mem 0x7fe00000-0x7fefffff,0x7ff00000-0x7ff03fff at device 0.0 on pci4 igc2: Using 1024 TX descriptors and 1024 RX descriptors igc2: Using 4 RX queues 4 TX queues igc2: Using MSI-X interrupts with 5 vectors igc2: Ethernet address: 60:be:b4:04:4f:6a igc2: netmap queues/slots: TX 4/1024, RX 4/1024 pcib5: at device 28.7 on pci0 pci5: on pcib5 igc3: mem 0x7fc00000-0x7fcfffff,0x7fd00000-0x7fd03fff at device 0.0 on pci5 igc3: Using 1024 TX descriptors and 1024 RX descriptors igc3: Using 4 RX queues 4 TX queues igc3: Using MSI-X interrupts with 5 vectors igc3: Ethernet address: 60:be:b4:04:4f:6b igc3: netmap queues/slots: TX 4/1024, RX 4/1024 isab0: at device 31.0 on pci0 isa0: on isab0 hdac0: mem 0x6001120000-0x6001123fff,0x6001000000-0x60010fffff at device 31.3 on pci0 pci0: at device 31.5 (no driver attached) acpi_button0: on acpi0 acpi_button1: on acpi0 acpi_tz0: on acpi0 uart0: <16550 or compatible> port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0 acpi_syscontainer0: on acpi0 acpi_syscontainer1: on acpi0 atrtc0: at port 0x70 irq 8 on isa0 atrtc0: Warning: Couldn't map I/O. atrtc0: registered as a time-of-day clock, resolution 1.000000s Event timer "RTC" frequency 32768 Hz quality 0 hwpstate_intel0: on cpu0 hwpstate_intel1: on cpu1 hwpstate_intel2: on cpu2 hwpstate_intel3: on cpu3 Timecounter "TSC" frequency 1996802980 Hz quality 1000 Timecounters tick every 1.000 msec ugen0.1: at usbus0 uhub0 on usbus0 uhub0: on usbus0 nvd0: NVMe namespace nvd0: 244198MB (500118192 512 byte sectors) hdacc0: at cad 2 on hdac0 hdaa0: at nid 1 on hdacc0 pcm0: at nid 4 on hdaa0 Trying to mount root from ufs:/dev/gpt/rootfs [rw]... uhub0: 14 ports with 14 removable, self powered igc0: link state changed to UP igc1: link state changed to UP igc3: link state changed to UP acpi_wmi0: on acpi0 acpi_wmi0: cannot find EC device acpi_wmi0: Embedded MOF found ACPI: \134_SB.WFDE.WQCC: 1 arguments were passed to a non-method ACPI object (Buffer) (20201113/nsarguments-361) acpi_wmi1: on acpi0 acpi_wmi1: cannot find EC device acpi_wmi1: Embedded MOF found ACPI: \134_SB.WFTE.WQCC: 1 arguments were passed to a non-method ACPI object (Buffer) (20201113/nsarguments-361) lo0: link state changed to UP pflog0: permanently promiscuous mode enabled igc3: link state changed to DOWN igc0: link state changed to DOWN igc3: link state changed to UP igc0: link state changed to UP tun1: changing name to 'ovpns1' ovpns1: link state changed to UP ovpns1: link state changed to DOWN tun0: link state changed to UP tun0: changing name to 'tailscale0' ovpns1: link state changed to UP igc1: link state changed to DOWN igc1: link state changed to UP arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1  arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 arpresolve: can't allocate llinfo for 192.168.12.1 on igc1 tailscale0: link state changed to DOWN ovpns1: link state changed to DOWN Waiting (max 60 seconds) for system process `vnlru' to stop... done Waiting (max 60 seconds) for system process `syncer' to stop... Syncing disks, vnodes remaining... 4 4 0 0 done All buffers synced. ---<>--- Copyright (c) 1992-2021 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 13.1-RELEASE-p5 stable/22.7-n250270-9d1c26e8548 SMP amd64 FreeBSD clang version 13.0.0 (git@github.com:llvm/llvm-project.git llvmorg-13.0.0-0-gd7b669b3a303) VT(efifb): resolution 800x600 CPU: Intel(R) Celeron(R) N5105 @ 2.00GHz (1996.80-MHz K8-class CPU) Origin="GenuineIntel" Id=0x906c0 Family=0x6 Model=0x9c Stepping=0 Features=0xbfebfbff Features2=0x4ff8ebbf AMD Features=0x28100800 AMD Features2=0x101 Structured Extended Features=0x2394a2c3 Structured Extended Features2=0x18400124 Structured Extended Features3=0xfc000400 XSAVE Features=0xf IA32_ARCH_CAPS=0x6b VT-x: PAT,HLT,MTF,PAUSE,EPT,UG,VPID,VID,PostIntr TSC: P-state invariant, performance statistics real memory = 17179869184 (16384 MB) avail memory = 16428244992 (15667 MB) Event timer "LAPIC" quality 600 ACPI APIC Table: WARNING: L1 data cache covers fewer APIC IDs than a core (0 < 1) FreeBSD/SMP: Multiprocessor System Detected: 4 CPUs FreeBSD/SMP: 1 package(s) x 4 core(s) random: registering fast source Intel Secure Key RNG random: fast provider: "Intel Secure Key RNG" random: unblocking device. ioapic0 irqs 0-119 Launching APs: 1 3 2 wlan: mac acl policy registered random: entropy device external interface kbd0 at kbdmux0 WARNING: Device "spkr" is Giant locked and may be deleted before FreeBSD 14.0. efirtc0: efirtc0: registered as a time-of-day clock, resolution 1.000000s smbios0: at iomem 0x78d7b000-0x78d7b01e smbios0: Version: 3.3, BCD Revision: 3.3 aesni0: acpi0: acpi0: Power Button (fixed) cpu0: on acpi0 hpet0: iomem 0xfed00000-0xfed003ff on acpi0 Timecounter "HPET" frequency 19200000 Hz quality 950 Event timer "HPET" frequency 19200000 Hz quality 550 Event timer "HPET1" frequency 19200000 Hz quality 440 Event timer "HPET2" frequency 19200000 Hz quality 440 Event timer "HPET3" frequency 19200000 Hz quality 440 Event timer "HPET4" frequency 19200000 Hz quality 440 attimer0: port 0x40-0x43,0x50-0x53 irq 0 on acpi0 Timecounter "i8254" frequency 1193182 Hz quality 0 Event timer "i8254" frequency 1193182 Hz quality 100 Timecounter "ACPI-fast" frequency 3579545 Hz quality 900 acpi_timer0: <24-bit timer at 3.579545MHz> port 0x1808-0x180b on acpi0 pcib0: port 0xcf8-0xcff on acpi0 pci0: on pcib0 vgapci0: port 0x3000-0x303f mem 0x6000000000-0x6000ffffff,0x4000000000-0x400fffffff at device 2.0 on pci0 vgapci0: Boot video device xhci0: mem 0x6001100000-0x600110ffff at device 20.0 on pci0 xhci0: 32 bytes context size, 64-bit DMA usbus0 on xhci0 usbus0: 5.0Gbps Super Speed USB v3.0 pci0: at device 20.2 (no driver attached) pci0: at device 22.0 (no driver attached) ahci0: port 0x3090-0x3097,0x3080-0x3083,0x3060-0x307f mem 0x80500000-0x80501fff,0x80503000-0x805030ff,0x80502000-0x805027ff at device 23.0 on pci0 ahci0: AHCI v1.31 with 1 6Gbps ports, Port Multiplier not supported ahcich0: at channel 0 on ahci0 pcib1: at device 28.0 on pci0 pci1: on pcib1 nvme0: mem 0x80400000-0x80403fff at device 0.0 on pci1 pcib2: at device 28.4 on pci0 pci2: on pcib2 igc0: mem 0x80200000-0x802fffff,0x80300000-0x80303fff at device 0.0 on pci2 igc0: Using 1024 TX descriptors and 1024 RX descriptors igc0: Using 4 RX queues 4 TX queues igc0: Using MSI-X interrupts with 5 vectors igc0: Ethernet address: 60:be:b4:04:4f:68 igc0: netmap queues/slots: TX 4/1024, RX 4/1024 pcib3: at device 28.5 on pci0 pci3: on pcib3 igc1: mem 0x80000000-0x800fffff,0x80100000-0x80103fff at device 0.0 on pci3 igc1: Using 1024 TX descriptors and 1024 RX descriptors igc1: Using 4 RX queues 4 TX queues igc1: Using MSI-X interrupts with 5 vectors igc1: Ethernet address: 60:be:b4:04:4f:69 igc1: netmap queues/slots: TX 4/1024, RX 4/1024 pcib4: at device 28.6 on pci0 pci4: on pcib4 igc2: mem 0x7fe00000-0x7fefffff,0x7ff00000-0x7ff03fff at device 0.0 on pci4 igc2: Using 1024 TX descriptors and 1024 RX descriptors igc2: Using 4 RX queues 4 TX queues igc2: Using MSI-X interrupts with 5 vectors igc2: Ethernet address: 60:be:b4:04:4f:6a igc2: netmap queues/slots: TX 4/1024, RX 4/1024 pcib5: at device 28.7 on pci0 pci5: on pcib5 igc3: mem 0x7fc00000-0x7fcfffff,0x7fd00000-0x7fd03fff at device 0.0 on pci5 igc3: Using 1024 TX descriptors and 1024 RX descriptors igc3: Using 4 RX queues 4 TX queues igc3: Using MSI-X interrupts with 5 vectors igc3: Ethernet address: 60:be:b4:04:4f:6b igc3: netmap queues/slots: TX 4/1024, RX 4/1024 isab0: at device 31.0 on pci0 isa0: on isab0 hdac0: mem 0x6001120000-0x6001123fff,0x6001000000-0x60010fffff at device 31.3 on pci0 pci0: at device 31.5 (no driver attached) acpi_button0: on acpi0 acpi_button1: on acpi0 acpi_tz0: on acpi0 uart0: <16550 or compatible> port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0 acpi_syscontainer0: on acpi0 acpi_syscontainer1: on acpi0 atrtc0: at port 0x70 irq 8 on isa0 atrtc0: Warning: Couldn't map I/O. atrtc0: registered as a time-of-day clock, resolution 1.000000s Event timer "RTC" frequency 32768 Hz quality 0 hwpstate_intel0: on cpu0 hwpstate_intel1: on cpu1 hwpstate_intel2: on cpu2 hwpstate_intel3: on cpu3 Timecounter "TSC" frequency 1996803724 Hz quality 1000 Timecounters tick every 1.000 msec ugen0.1: at usbus0 uhub0 on usbus0 uhub0: on usbus0 nvd0: NVMe namespace nvd0: 244198MB (500118192 512 byte sectors) hdacc0: at cad 2 on hdac0 hdaa0: at nid 1 on hdacc0 pcm0: at nid 4 on hdaa0 Trying to mount root from ufs:/dev/gpt/rootfs [rw]...

submitted by AnOriginalName2021 to opnsense [link] [comments]

2023.01.11 06:56 ThanEEpic Can't Leave Admin Panel after Fresh Install

Hey guys, I'm at a loss. This is my first time using NextCloud AIO and it's been a pain. I've finally reached a problem I can't handle. After running the startup script (skipping domain validation since I'm exposing it via CloudFlare Tunnels), loging in, and watching the 10 min process of it building the containers, I can't leave the admin page. Clicking the 'Open your Nextcloud' button but it brings me to the exact same page. I tried to follow the link in the GitHub:

https://yourdomain.tld/settings/admin/overview

And it brings me to a page that says:

Nextcloud AIO Login The login is blocked since Nextcloud is running. Please use the automatic login from your Nextcloud. If that is not possible, you can unblock the login by running sudo docker stop nextcloud-aio-apache

I tried running that command and testing it, only to have nothing change except being logged out and the Apache container stopping. After I try stopping and starting all containers, and the same thing occurs. This is what the logs at the top of the admin panel say.

Trying to fix docker.sock permissions internally... Creating docker group internally with id 999 Generating a RSA private key .............................................................++++ .....................................................................................................................................................................................................................................................................................................................................................................++++ writing new private key to './ssl.key' ----- [0;92mInitial startup of Nextcloud All In One complete! You should be able to open the Nextcloud AIO Interface now on port 8080 of this server! E.g. https://internal.ip.of.this.server:8080 If your server has port 80 and 8443 open and you point a domain to your server, you can get a valid certificate automatically by opening the Nextcloud AIO Interface via: https://your-domain-that-points-to-this-server.tld:8443[0m {"level":"info","ts":1673412968.9025707,"msg":"using provided configuration","config_file":"/Caddyfile","config_adapter":""} {"level":"warn","ts":1673412968.904175,"msg":"Caddyfile input is not formatted; run the 'caddy fmt' command to fix inconsistencies","adapter":"caddyfile","file":"/Caddyfile","line":2} {"level":"info","ts":1673412968.9051893,"logger":"admin","msg":"admin endpoint started","address":"localhost:2019","enforce_origin":false,"origins":["//[::1]:2019","//127.0.0.1:2019","//localhost:2019"]} {"level":"warn","ts":1673412968.9057426,"logger":"http","msg":"server is listening only on the HTTP port, so no automatic HTTPS will be applied to this server","server_name":"srv0","http_port":80} {"level":"warn","ts":1673412968.9061682,"logger":"http","msg":"automatic HTTP->HTTPS redirects are disabled","server_name":"srv1"} {"level":"info","ts":1673412968.9060874,"logger":"tls.cache.maintenance","msg":"started background certificate maintenance","cache":"0xc0004ef730"} {"level":"warn","ts":1673412968.9069452,"logger":"tls","msg":"YOUR SERVER MAY BE VULNERABLE TO ABUSE: on-demand TLS is enabled, but no protections are in place","docs":"https://caddyserver.com/docs/automatic-https#on-demand-tls"} {"level":"info","ts":1673412968.90739,"logger":"tls","msg":"cleaning storage unit","description":"FileStorage:/mnt/docker-aio-config/caddy/"} {"level":"info","ts":1673412968.907413,"logger":"tls","msg":"finished cleaning storage units"} {"level":"info","ts":1673412968.9077005,"logger":"http.log","msg":"server running","name":"srv0","protocols":["h1","h2","h3"]} {"level":"info","ts":1673412968.9080656,"logger":"http","msg":"enabling HTTP/3 listener","addr":":8443"} {"level":"info","ts":1673412968.9084177,"msg":"failed to sufficiently increase receive buffer size (was: 208 kiB, wanted: 2048 kiB, got: 416 kiB). See https://github.com/lucas-clemente/quic-go/wiki/UDP-Receive-Buffer-Size for details."} {"level":"info","ts":1673412968.9088156,"logger":"http.log","msg":"server running","name":"srv1","protocols":["h1","h2","h3"]} {"level":"error","ts":1673412968.9092345,"msg":"unable to create folder for config autosave","dir":"/root/.config/caddy","error":"mkdir /root/.config: permission denied"} {"level":"info","ts":1673412968.9095607,"msg":"serving initial configuration"} AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 172.17.0.2. Set the 'ServerName' directive globally to suppress this message [Wed Jan 11 04:56:08.920634 2023] [ssl:warn] [pid 106] AH01906: 172.17.0.2:8080:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Wed Jan 11 04:56:08.920707 2023] [ssl:warn] [pid 106] AH01909: 172.17.0.2:8080:0 server certificate does NOT include an ID which matches the server name AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 172.17.0.2. Set the 'ServerName' directive globally to suppress this message [Wed Jan 11 04:56:08.938348 2023] [ssl:warn] [pid 106] AH01906: 172.17.0.2:8080:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Wed Jan 11 04:56:08.938376 2023] [ssl:warn] [pid 106] AH01909: 172.17.0.2:8080:0 server certificate does NOT include an ID which matches the server name [Wed Jan 11 04:56:08.940620 2023] [mpm_prefork:notice] [pid 106] AH00163: Apache/2.4.54 (Debian) PHP/8.0.26 OpenSSL/1.1.1n configured -- resuming normal operations [Wed Jan 11 04:56:08.940921 2023] [core:notice] [pid 106] AH00094: Command line: 'apache2 -D FOREGROUND' [0;92mInitial startup of Nextcloud All In One complete! You should be able to open the Nextcloud AIO Interface now on port 8080 of this server! E.g. https://internal.ip.of.this.server:8080 If your server has port 80 and 8443 open and you point a domain to your server, you can get a valid certificate automatically by opening the Nextcloud AIO Interface via: https://your-domain-that-points-to-this-server.tld:8443[0m {"level":"info","ts":1673413510.552625,"msg":"using provided configuration","config_file":"/Caddyfile","config_adapter":""} {"level":"warn","ts":1673413510.5542262,"msg":"Caddyfile input is not formatted; run the 'caddy fmt' command to fix inconsistencies","adapter":"caddyfile","file":"/Caddyfile","line":2} {"level":"info","ts":1673413510.5555587,"logger":"admin","msg":"admin endpoint started","address":"localhost:2019","enforce_origin":false,"origins":["//localhost:2019","//[::1]:2019","//127.0.0.1:2019"]} {"level":"warn","ts":1673413510.5560508,"logger":"http","msg":"server is listening only on the HTTP port, so no automatic HTTPS will be applied to this server","server_name":"srv0","http_port":80} {"level":"warn","ts":1673413510.5563421,"logger":"http","msg":"automatic HTTP->HTTPS redirects are disabled","server_name":"srv1"} {"level":"info","ts":1673413510.5563157,"logger":"tls.cache.maintenance","msg":"started background certificate maintenance","cache":"0xc0003c9340"} {"level":"warn","ts":1673413510.5569005,"logger":"tls","msg":"YOUR SERVER MAY BE VULNERABLE TO ABUSE: on-demand TLS is enabled, but no protections are in place","docs":"https://caddyserver.com/docs/automatic-https#on-demand-tls"} {"level":"info","ts":1673413510.5572708,"logger":"tls","msg":"cleaning storage unit","description":"FileStorage:/mnt/docker-aio-config/caddy/"} {"level":"info","ts":1673413510.557328,"logger":"tls","msg":"finished cleaning storage units"} {"level":"info","ts":1673413510.5577333,"logger":"http.log","msg":"server running","name":"srv0","protocols":["h1","h2","h3"]} {"level":"info","ts":1673413510.5577788,"logger":"http","msg":"enabling HTTP/3 listener","addr":":8443"} {"level":"info","ts":1673413510.557981,"msg":"failed to sufficiently increase receive buffer size (was: 208 kiB, wanted: 2048 kiB, got: 416 kiB). See https://github.com/lucas-clemente/quic-go/wiki/UDP-Receive-Buffer-Size for details."} {"level":"info","ts":1673413510.558502,"logger":"http.log","msg":"server running","name":"srv1","protocols":["h1","h2","h3"]} {"level":"error","ts":1673413510.5588822,"msg":"unable to create folder for config autosave","dir":"/root/.config/caddy","error":"mkdir /root/.config: permission denied"} {"level":"info","ts":1673413510.558902,"msg":"serving initial configuration"} AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 172.17.0.2. Set the 'ServerName' directive globally to suppress this message [Wed Jan 11 05:05:10.564908 2023] [ssl:warn] [pid 85] AH01906: 172.17.0.2:8080:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Wed Jan 11 05:05:10.564951 2023] [ssl:warn] [pid 85] AH01909: 172.17.0.2:8080:0 server certificate does NOT include an ID which matches the server name AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 172.17.0.2. Set the 'ServerName' directive globally to suppress this message [Wed Jan 11 05:05:10.587445 2023] [ssl:warn] [pid 85] AH01906: 172.17.0.2:8080:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Wed Jan 11 05:05:10.587462 2023] [ssl:warn] [pid 85] AH01909: 172.17.0.2:8080:0 server certificate does NOT include an ID which matches the server name [Wed Jan 11 05:05:10.589663 2023] [mpm_prefork:notice] [pid 85] AH00163: Apache/2.4.54 (Debian) PHP/8.0.26 OpenSSL/1.1.1n configured -- resuming normal operations [Wed Jan 11 05:05:10.589816 2023] [core:notice] [pid 85] AH00094: Command line: 'apache2 -D FOREGROUND' [0;92mInitial startup of Nextcloud All In One complete! You should be able to open the Nextcloud AIO Interface now on port 8080 of this server! E.g. https://internal.ip.of.this.server:8080 If your server has port 80 and 8443 open and you point a domain to your server, you can get a valid certificate automatically by opening the Nextcloud AIO Interface via: https://your-domain-that-points-to-this-server.tld:8443[0m AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 172.17.0.2. Set the 'ServerName' directive globally to suppress this message [Wed Jan 11 05:08:07.584078 2023] [ssl:warn] [pid 86] AH01906: 172.17.0.2:8080:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Wed Jan 11 05:08:07.584318 2023] [ssl:warn] [pid 86] AH01909: 172.17.0.2:8080:0 server certificate does NOT include an ID which matches the server name AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 172.17.0.2. Set the 'ServerName' directive globally to suppress this message {"level":"info","ts":1673413687.6018066,"msg":"using provided configuration","config_file":"/Caddyfile","config_adapter":""} {"level":"warn","ts":1673413687.6034422,"msg":"Caddyfile input is not formatted; run the 'caddy fmt' command to fix inconsistencies","adapter":"caddyfile","file":"/Caddyfile","line":2} {"level":"info","ts":1673413687.6045873,"logger":"admin","msg":"admin endpoint started","address":"localhost:2019","enforce_origin":false,"origins":["//localhost:2019","//[::1]:2019","//127.0.0.1:2019"]} {"level":"warn","ts":1673413687.6050973,"logger":"http","msg":"server is listening only on the HTTP port, so no automatic HTTPS will be applied to this server","server_name":"srv0","http_port":80} {"level":"warn","ts":1673413687.605111,"logger":"http","msg":"automatic HTTP->HTTPS redirects are disabled","server_name":"srv1"} {"level":"info","ts":1673413687.6053023,"logger":"tls.cache.maintenance","msg":"started background certificate maintenance","cache":"0xc0004e35e0"} {"level":"warn","ts":1673413687.6059585,"logger":"tls","msg":"YOUR SERVER MAY BE VULNERABLE TO ABUSE: on-demand TLS is enabled, but no protections are in place","docs":"https://caddyserver.com/docs/automatic-https#on-demand-tls"} {"level":"info","ts":1673413687.6065056,"logger":"http.log","msg":"server running","name":"srv0","protocols":["h1","h2","h3"]} {"level":"info","ts":1673413687.6065657,"logger":"http","msg":"enabling HTTP/3 listener","addr":":8443"} {"level":"info","ts":1673413687.6067922,"msg":"failed to sufficiently increase receive buffer size (was: 208 kiB, wanted: 2048 kiB, got: 416 kiB). See https://github.com/lucas-clemente/quic-go/wiki/UDP-Receive-Buffer-Size for details."} {"level":"info","ts":1673413687.6069882,"logger":"http.log","msg":"server running","name":"srv1","protocols":["h1","h2","h3"]} {"level":"info","ts":1673413687.606508,"logger":"tls","msg":"cleaning storage unit","description":"FileStorage:/mnt/docker-aio-config/caddy/"} {"level":"error","ts":1673413687.607017,"msg":"unable to create folder for config autosave","dir":"/root/.config/caddy","error":"mkdir /root/.config: permission denied"} {"level":"info","ts":1673413687.6070297,"msg":"serving initial configuration"} {"level":"info","ts":1673413687.6070387,"logger":"tls","msg":"finished cleaning storage units"} [Wed Jan 11 05:08:07.610827 2023] [ssl:warn] [pid 86] AH01906: 172.17.0.2:8080:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Wed Jan 11 05:08:07.610843 2023] [ssl:warn] [pid 86] AH01909: 172.17.0.2:8080:0 server certificate does NOT include an ID which matches the server name [Wed Jan 11 05:08:07.612993 2023] [mpm_prefork:notice] [pid 86] AH00163: Apache/2.4.54 (Debian) PHP/8.0.26 OpenSSL/1.1.1n configured -- resuming normal operations [Wed Jan 11 05:08:07.613141 2023] [core:notice] [pid 86] AH00094: Command line: 'apache2 -D FOREGROUND' Deleting duplicate sessions n 11 05:14:46.538360 2023] [php:notice] [pid 585] [client 127.0.0.1:59516] 404 Not Found\nType: Slim\\Exception\\HttpNotFoundException\nCode: 404\nMessage: Not found.\nFile: /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/RoutingMiddleware.php\nLine: 76\nTrace: #0 /vawww/docker-aio/php/vendoslim/slim/Slim/Routing/RouteRunner.php(56): Slim\\Middleware\\RoutingMiddleware->performRouting(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#1 /vawww/docker-aio/php/vendoslim/csrf/src/Guard.php(476): Slim\\Routing\\RouteRunner->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#2 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(168): Slim\\Csrf\\Guard->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Slim\\Routing\\RouteRunner))\n#3 /vawww/docker-aio/php/vendoslim/twig-view/src/TwigMiddleware.php(115): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#4 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Views\\TwigMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#5 /vawww/docker-aio/php/src/Middleware/AuthMiddleware.php(38): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#6 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(269): AIO\\Middleware\\AuthMiddleware->__invoke(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#7 /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/ErrorMiddleware.php(76): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#8 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Middleware\\ErrorMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#9 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(65): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#10 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(199): Slim\\MiddlewareDispatcher->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#11 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(183): Slim\\App->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#12 /vawww/docker-aio/php/public/index.php(167): Slim\\App->run()\n#13 {main}, referer: https://mydomaindonttouch.ligma/containers n 11 05:20:14.153240 2023] [php:notice] [pid 1264] [client 127.0.0.1:59600] 404 Not Found\nType: Slim\\Exception\\HttpNotFoundException\nCode: 404\nMessage: Not found.\nFile: /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/RoutingMiddleware.php\nLine: 76\nTrace: #0 /vawww/docker-aio/php/vendoslim/slim/Slim/Routing/RouteRunner.php(56): Slim\\Middleware\\RoutingMiddleware->performRouting(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#1 /vawww/docker-aio/php/vendoslim/csrf/src/Guard.php(476): Slim\\Routing\\RouteRunner->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#2 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(168): Slim\\Csrf\\Guard->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Slim\\Routing\\RouteRunner))\n#3 /vawww/docker-aio/php/vendoslim/twig-view/src/TwigMiddleware.php(115): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#4 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Views\\TwigMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#5 /vawww/docker-aio/php/src/Middleware/AuthMiddleware.php(38): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#6 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(269): AIO\\Middleware\\AuthMiddleware->__invoke(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#7 /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/ErrorMiddleware.php(76): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#8 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Middleware\\ErrorMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#9 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(65): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#10 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(199): Slim\\MiddlewareDispatcher->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#11 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(183): Slim\\App->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#12 /vawww/docker-aio/php/public/index.php(167): Slim\\App->run()\n#13 {main}, referer: https://mydomaindonttouch.ligma/api/dockelogs?id=nextcloud-aio-apache [Wed Jan 11 05:20:59.181127 2023] [php:notice] [pid 884] [client 127.0.0.1:59606] 404 Not Found\nType: Slim\\Exception\\HttpNotFoundException\nCode: 404\nMessage: Not found.\nFile: /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/RoutingMiddleware.php\nLine: 76\nTrace: #0 /vawww/docker-aio/php/vendoslim/slim/Slim/Routing/RouteRunner.php(56): Slim\\Middleware\\RoutingMiddleware->performRouting(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#1 /vawww/docker-aio/php/vendoslim/csrf/src/Guard.php(476): Slim\\Routing\\RouteRunner->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#2 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(168): Slim\\Csrf\\Guard->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Slim\\Routing\\RouteRunner))\n#3 /vawww/docker-aio/php/vendoslim/twig-view/src/TwigMiddleware.php(115): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#4 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Views\\TwigMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#5 /vawww/docker-aio/php/src/Middleware/AuthMiddleware.php(38): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#6 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(269): AIO\\Middleware\\AuthMiddleware->__invoke(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#7 /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/ErrorMiddleware.php(76): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#8 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Middleware\\ErrorMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#9 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(65): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#10 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(199): Slim\\MiddlewareDispatcher->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#11 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(183): Slim\\App->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#12 /vawww/docker-aio/php/public/index.php(167): Slim\\App->run()\n#13 {main} [Wed Jan 11 05:21:59.171630 2023] [php:notice] [pid 122] [client 127.0.0.1:59616] 404 Not Found\nType: Slim\\Exception\\HttpNotFoundException\nCode: 404\nMessage: Not found.\nFile: /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/RoutingMiddleware.php\nLine: 76\nTrace: #0 /vawww/docker-aio/php/vendoslim/slim/Slim/Routing/RouteRunner.php(56): Slim\\Middleware\\RoutingMiddleware->performRouting(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#1 /vawww/docker-aio/php/vendoslim/csrf/src/Guard.php(476): Slim\\Routing\\RouteRunner->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#2 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(168): Slim\\Csrf\\Guard->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Slim\\Routing\\RouteRunner))\n#3 /vawww/docker-aio/php/vendoslim/twig-view/src/TwigMiddleware.php(115): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#4 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Views\\TwigMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#5 /vawww/docker-aio/php/src/Middleware/AuthMiddleware.php(38): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#6 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(269): AIO\\Middleware\\AuthMiddleware->__invoke(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#7 /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/ErrorMiddleware.php(76): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#8 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Middleware\\ErrorMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#9 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(65): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#10 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(199): Slim\\MiddlewareDispatcher->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#11 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(183): Slim\\App->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#12 /vawww/docker-aio/php/public/index.php(167): Slim\\App->run()\n#13 {main} Deleting duplicate sessions Deleting duplicate sessions Deleting duplicate sessions [Wed Jan 11 05:29:00.441781 2023] [php:notice] [pid 2080] [client 127.0.0.1:59694] 404 Not Found\nType: Slim\\Exception\\HttpNotFoundException\nCode: 404\nMessage: Not found.\nFile: /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/RoutingMiddleware.php\nLine: 76\nTrace: #0 /vawww/docker-aio/php/vendoslim/slim/Slim/Routing/RouteRunner.php(56): Slim\\Middleware\\RoutingMiddleware->performRouting(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#1 /vawww/docker-aio/php/vendoslim/csrf/src/Guard.php(476): Slim\\Routing\\RouteRunner->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#2 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(168): Slim\\Csrf\\Guard->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Slim\\Routing\\RouteRunner))\n#3 /vawww/docker-aio/php/vendoslim/twig-view/src/TwigMiddleware.php(115): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#4 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Views\\TwigMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#5 /vawww/docker-aio/php/src/Middleware/AuthMiddleware.php(38): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#6 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(269): AIO\\Middleware\\AuthMiddleware->__invoke(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#7 /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/ErrorMiddleware.php(76): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#8 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Middleware\\ErrorMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#9 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(65): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#10 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(199): Slim\\MiddlewareDispatcher->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#11 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(183): Slim\\App->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#12 /vawww/docker-aio/php/public/index.php(167): Slim\\App->run()\n#13 {main} [Wed Jan 11 05:30:58.874281 2023] [php:notice] [pid 1239] [client 127.0.0.1:59708] 404 Not Found\nType: Slim\\Exception\\HttpNotFoundException\nCode: 404\nMessage: Not found.\nFile: /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/RoutingMiddleware.php\nLine: 76\nTrace: #0 /vawww/docker-aio/php/vendoslim/slim/Slim/Routing/RouteRunner.php(56): Slim\\Middleware\\RoutingMiddleware->performRouting(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#1 /vawww/docker-aio/php/vendoslim/csrf/src/Guard.php(476): Slim\\Routing\\RouteRunner->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#2 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(168): Slim\\Csrf\\Guard->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Slim\\Routing\\RouteRunner))\n#3 /vawww/docker-aio/php/vendoslim/twig-view/src/TwigMiddleware.php(115): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#4 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Views\\TwigMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#5 /vawww/docker-aio/php/src/Middleware/AuthMiddleware.php(38): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#6 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(269): AIO\\Middleware\\AuthMiddleware->__invoke(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#7 /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/ErrorMiddleware.php(76): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#8 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Middleware\\ErrorMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#9 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(65): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#10 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(199): Slim\\MiddlewareDispatcher->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#11 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(183): Slim\\App->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#12 /vawww/docker-aio/php/public/index.php(167): Slim\\App->run()\n#13 {main} Deleting duplicate sessions n 11 05:43:45.698059 2023] [php:notice] [pid 851] [client 127.0.0.1:59800] 404 Not Found\nType: Slim\\Exception\\HttpNotFoundException\nCode: 404\nMessage: Not found.\nFile: /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/RoutingMiddleware.php\nLine: 76\nTrace: #0 /vawww/docker-aio/php/vendoslim/slim/Slim/Routing/RouteRunner.php(56): Slim\\Middleware\\RoutingMiddleware->performRouting(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#1 /vawww/docker-aio/php/vendoslim/csrf/src/Guard.php(476): Slim\\Routing\\RouteRunner->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#2 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(168): Slim\\Csrf\\Guard->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Slim\\Routing\\RouteRunner))\n#3 /vawww/docker-aio/php/vendoslim/twig-view/src/TwigMiddleware.php(115): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#4 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Views\\TwigMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#5 /vawww/docker-aio/php/src/Middleware/AuthMiddleware.php(38): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#6 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(269): AIO\\Middleware\\AuthMiddleware->__invoke(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#7 /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/ErrorMiddleware.php(76): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#8 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\\Middleware\\ErrorMiddleware->process(Object(GuzzleHttp\\Psr7\\ServerRequest), Object(Psr\\Http\\Server\\RequestHandlerInterface@anonymous))\n#9 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(65): Psr\\Http\\Server\\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#10 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(199): Slim\\MiddlewareDispatcher->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#11 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(183): Slim\\App->handle(Object(GuzzleHttp\\Psr7\\ServerRequest))\n#12 /vawww/docker-aio/php/public/index.php(167): Slim\\App->run()\n#13 {main}, referer: https://mydomaindonttouch.ligma/api/dockelogs?id=nextcloud-aio-mastercontainer

It looks like a lot of these logs are repeating but I can't tell what's going on. If anyone has expirence with this or may know what's going on, I'd love to hear from you. Thanks!
Edit: One thing I forgot to mention. After the restarting and copying the new address given via the GitHub again, I get this 404 page!

404 Not Found The application could not run because of the following error: Details Type: Slim\Exception\HttpNotFoundException Code: 404 Message: Not found. File: /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/RoutingMiddleware.php Line: 76 Trace #0 /vawww/docker-aio/php/vendoslim/slim/Slim/Routing/RouteRunner.php(56): Slim\Middleware\RoutingMiddleware->performRouting(Object(GuzzleHttp\Psr7\ServerRequest)) #1 /vawww/docker-aio/php/vendoslim/csrf/src/Guard.php(476): Slim\Routing\RouteRunner->handle(Object(GuzzleHttp\Psr7\ServerRequest)) #2 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(168): Slim\Csrf\Guard->process(Object(GuzzleHttp\Psr7\ServerRequest), Object(Slim\Routing\RouteRunner)) #3 /vawww/docker-aio/php/vendoslim/twig-view/src/TwigMiddleware.php(115): Psr\Http\Server\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\Psr7\ServerRequest)) #4 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\Views\TwigMiddleware->process(Object(GuzzleHttp\Psr7\ServerRequest), Object(Psr\Http\Server\RequestHandlerInterface@anonymous)) #5 /vawww/docker-aio/php/src/Middleware/AuthMiddleware.php(38): Psr\Http\Server\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\Psr7\ServerRequest)) #6 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(269): AIO\Middleware\AuthMiddleware->__invoke(Object(GuzzleHttp\Psr7\ServerRequest), Object(Psr\Http\Server\RequestHandlerInterface@anonymous)) #7 /vawww/docker-aio/php/vendoslim/slim/Slim/Middleware/ErrorMiddleware.php(76): Psr\Http\Server\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\Psr7\ServerRequest)) #8 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(121): Slim\Middleware\ErrorMiddleware->process(Object(GuzzleHttp\Psr7\ServerRequest), Object(Psr\Http\Server\RequestHandlerInterface@anonymous)) #9 /vawww/docker-aio/php/vendoslim/slim/Slim/MiddlewareDispatcher.php(65): Psr\Http\Server\RequestHandlerInterface@anonymous->handle(Object(GuzzleHttp\Psr7\ServerRequest)) #10 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(199): Slim\MiddlewareDispatcher->handle(Object(GuzzleHttp\Psr7\ServerRequest)) #11 /vawww/docker-aio/php/vendoslim/slim/Slim/App.php(183): Slim\App->handle(Object(GuzzleHttp\Psr7\ServerRequest)) #12 /vawww/docker-aio/php/public/index.php(167): Slim\App->run() #13 {main}

submitted by ThanEEpic to NextCloud [link] [comments]

2022.12.29 21:36 jack_skellington Got hit by the deprecation of Exchange basic auth sign-in. Not sure how to get this working again. Advice?

If you need context, I can see someone talking about it here. I'm using PHP and unsure of how to wrangle the UI for Azure or other systems in order to unblock the PHP code. What do we need to do? If it helps, the code for our connection is below, but I suspect that y'all don't care about the code (this is PHP + Laravel, which I think is where ClientManager comes from):

make([ 'host' => 'outlook.office365.com', 'port' => 993, 'encryption' => 'ssl', // 'tls', 'validate_cert' => true, 'username' => 'redacted', 'password' => 'redacted', 'protocol' => 'imap', 'authentication' => "oauth", ]); $client->connect(); echo "connected!\n"; } catch (Exception $e) { echo "failed!\n"; } ?>

Right now it always outputs "failed!" Thanks for any pointers!

submitted by jack_skellington to sysadmin [link] [comments]

2022.12.17 13:24 tjoinnov Parmount Plus and Youtube

Adguard Home:
I block YouTube in my house using the built-in toggle switch. However, this also blocks Paramount Plus (Premium) from paying. I have the paid commercial free version which apparently still needs ads to work? Goal here being block Youtube on all devices, then went I want to use youtube I turn Adguard back on.
Does anyone have an up to date unblocking rules that allow this to work while still blocking YouTube? I've gathered these by searching old Reddit posts. Sadly still doesn't work.
Here is what I have for my custom filtering rules:
@@ssl.google-analytics.com^$important @@static.cloudflareinsights.com^$important @@scribe.logs.roku.com^$important # Paramount Plus Unblock @@saa.cbsi.com^$important @@cbsinteractive.hb.omtrdc.net^$important @@vod-gcs-cedexis.cbsaavideo.com^$important @@ads.play.cbsi.video^$important @@pubads.g.doubleclick.net^$important @@s0.2mdn.net^$important
Thanks for any help!

submitted by tjoinnov to Adguard [link] [comments]

http://swiebodzin.info