Leaderboard

Popular Content

Showing content with the highest reputation on 03/26/21 in all areas

  1. Hello Unraid Community! It has come to our attention that in recent days, we've seen a significant uptick in the amount of Unraid server's being compromised due to poor security practices. The purpose of this post is to help our community verify their server's are secure and provide helpful best-practices recommendations to ensuring your system doesn't become another statistic. Please review the below recommendations on your server(s) to ensure they are safe. Set a strong root password Similar to many routers, Unraid systems do not have a password set by default.
    4 points
  2. A few suggestions if I may, from my experiences in the Cloud Infrastructure World; First, Reviewing Docker Folder Mappings (and to some extent VM Shares). Do all you Docker Containers need read and write access to non appdata folders? If it does, is the scope of the directories restricted to what is needed, or have you given it full read/write to /mnt/user or /mnt/user0 ? For example I need Sonnarr and Radarr to have write access to my TV and Movie Share, so they are restricted to just that, they don't need access to my Personal Photos, or Documents etc. Whe
    4 points
  3. I can confirm that today everything is connected and working correctly. Thanks Unraid Team for your hard work.
    2 points
  4. The docker folder plugin would be a good place to look.
    2 points
  5. @tabris0202 You seem to have narrowed down the problem to DNS, Yes? perhaps try using a public DNS rather than your ISPs? It is unlikely that any query requests coming from outside are "overloading" your router, the traffic generated by those requests fall into the negligible category. You (or your ISP) may have firewall or IDS/IPS that are tripping but we do not have the information to diagnose the case.
    2 points
  6. Yes. I’m currently working on this.
    2 points
  7. I think a large factor on how your experiences on VM's are shaped is the usage of the VM's. If you have 24x7 heavy active production VM's running vfx renders, code compiles etc and your btrfs/zfs systems crashes , then you will see more of the "recovery power" of the filesystem and also more easily find its flaws. My issues where repeatable and unfortunately or fortunately happened in a time where i had lots of total systems crashes due to gpu issues. So this tested the skills of boths filesystems to the limits. Under these same cicomstances hosted on the same ssd's on the same OS ve
    2 points
  8. Please only allow SMS as a final resort - no need to perpetuate the horribly flawed scheme where you need to wait a 3rd party to deliver the codes to you when it could get intercepted midway or even failed delivery. Other apps as alternatives for the OTP generation * Microsoft Authenticator (has automatic multi device support and recovery) * KeeWeb - stores the seeds in a KeePass kdbx file * AuthPass * Yubico Authenticator (stores the seeds with a Yubikey)
    2 points
  9. AMD Sensor support released for APU (Temp) and dGPU (Temp/Fan/Power).
    2 points
  10. This is implemented in Unraid OS 6.9.x which makes /root/.ssh a symlink to flash config/ssh/root directory.
    2 points
  11. Ohne dir zu nahe treten zu wollen. Aber je mehr Posts ich von dir lese umso mehr denke ich du solltest bei Mac und Synology bleiben. Kopieren geht entweder über die Konsole oder aber per z.B. Docker Container (Krusader z.B.) Und je nachdem wie die HDDs formatiert sind, benötigst du zusätzlich auch noch das Unassigned Devices PLUS Plugin
    2 points
  12. Firmware und BMC Update kann ich dir bereitstellen wenn du magst.
    1 point
  13. Do you have a vfio-pci.cfg file in the /config folder on the flash drive? Put your flash drive in a Windows PC and see if you can find that file. If you only have a bind of 08:00.0 in that file, you can just delete vfio-pci.cfg and the (.bak) if it exists. If you have more devices in there that you want bound, just remove the bind of 08:00.0 from the file and save.
    1 point
  14. Currently it does not support IPv6
    1 point
  15. Oh, I see... and I agree, handling the entire unraid server as "exposed host" would be most unwise, especially if you are running privileged containers and such (which I am). But no, I have only opened port 443, nothing else. My router has a separate checkbox for allowing pings to a specific machine, which (to my knowledge) doesn't even know ports. So thanks for clearing that up! Back to my original question: Does myservers support the IPv6 protocol (or is planned to)?
    1 point
  16. Take the glory!! It's awesome work and thank you to @ljm42 for calling it out! I've been using this daily since I stood up my second unRAID server and the craftsmanship is great. I updated and was able to reissue keys for my four devices in less than 10 minutes.
    1 point
  17. @ljm42 I am out of town for this weekend, so I used wiregaurd to see if it was on or not. It looks like that was the problem. I'm not sure how or why it got turned off. Many thanks for the suggestion. When I get back to the houses I will verify, but it looks like that was it. 2 weeks for something this simple. I'll report back!
    1 point
  18. As I said, I never had a single problem... And I will stick to BTRFS since I never had a single problem wirth it. No, this is a VM that only builds the containers and uploads them to Dockerhub so I can build very quickly and very much containers at the same time...
    1 point
  19. **FIXED** I had to log into my Comcast modem/router and forward the ports from there to my Ubiquiti router. From there I forward the ports to my Unraid server, and finally to the docker. I had to log into the Comcast gateway from my phone, and just cut out the LTE fail over, but its working!
    1 point
  20. Don't know what you mean there but it may be too late if you do the wrong thing without waiting for advice.
    1 point
  21. Unclear that they understand the issue. We are approving the post in situ with the approve button while viewing the topic, not via the moderator CP. That means we are, indeed, seeing all unread posts in the topic at the same time we are approving the post. As an additional twist, viewing a post but NOT approving it leaves the post as unread, even though it's been viewed in the thread as many times as you click on it. I know this, because I sort posts oldest to newest, and don't approve foreign language posts I don't understand, and the stupid post stays in my unread filter until it
    1 point
  22. Its not that difficult.. I was just wondering why people prefer this to the von solution…. Also wondering my idea that a vpn is preferable is actually -true- or just me beiing an old guy.. Verzonden vanaf mijn iPhone met Tapatalk
    1 point
  23. In all my templates (at least in the ones that I don't forget to set it... ) the settings are never automatically changed and everything is up to the user... Eventually because the template had the option to update itself in it to update itself (this is what I try to avoid and my containers or at least templates should not do that).
    1 point
  24. Nicht möglich. Wenn Nextcloud eine Sicherheitslücke hat und davon würde ich bei jeder Software ausgehen, dann kannst du dich nicht schützen. Da hilft nur Nextcloud ausschließlich über VPN zu nutzen. Was vielleicht ein bisschen schützt wäre eine rein deutsche IP Range zuzulassen. Aber viel wird das auch nicht helfen, wenn es einer auf deine Daten abgesehen hat. Also Backups, Backups und noch mal Backups. Und eben die anderen Klassiker wie sicheres Passwort und Zwei-Faktor-Authentifizierung. EDIT: Ok, die Ideen hattest du auch schon ^^
    1 point
  25. Hey LNXD, I tried it already, unfortunately it did not run, i get the same error; Project: PhoenixMiner 5.5c Author: lnxd Base: Ubuntu 14.04.02 Target: Unraid 6.9.0 - 6.9.1 Wallet: 3K4kD8QijmqAJHEqijhWe5Nnbu4CvdURJB Pool: asia1.ethermine.org:4444 Starting PhoenixMiner 5.5c with the following arguments: -pool asia1.ethermine.org:4444 -wal 3K4kD8QijmqAJHEqijhWe5Nnbu4CvdURJB.x -tt 75 -tstop 85 -tstart 80 -cdm 1 -cdmport 5450 -amd Phoenix Miner 5.5c Linux/gcc - Release build -------------------------------------------- [0mNo OpenCL platforms
    1 point
  26. If reallocated sectors keep increasing you should replace the disk, disks shouldn't corrupt data even when they are failing, but it's been known to happen. Yep. That's another way of confirming the data corruption. You can do a parity swap, use the new disk for parity and old parity for disk2. You can use xfs or btrfs, data will still corrupt if there's a problem, you just won't be warned about it, for the copy I would personally use rsync, it allows resume if needed: rsync -av /mnt/disk2/ /mnt/disks/UD_disk_name/
    1 point
  27. I am having issues with the latest Docker image and i cannot access the application, if i look in the log file located at '/config/supervisord.log' then i see the following message:- '/usr/lib/jvm/java-8-openjdk/jre' is not a valid Java environment path Q. What does it mean and how can i fix it? A. See Q10 from the following link for the solution:- https://github.com/binhex/documentation/blob/master/docker/faq/general.md EDIT - unRAID 6.9.2 has just been released, this includes the latest version of Docker, which in turn includes the latest version of runc, so if you
    1 point
  28. Thanks for trying that build for me mate. 5 hours into development I'm a bit of a zombie, but I got a build working in an Ubuntu 14.04 container with the correct drivers. If this one doesn't work I'm completely stumped. I'm just going to clean up my code and get a build on DockerHub, should be about another 20 mins, I'll tag you in a post. EDIT: @Lobsi all ready. Same process as usual, should just take an update, and then confirm it shows Ubuntu 14.04.02 in the logs. It's wayyy too many layers but that's why it took me more than 20 minutes, every time I started merging
    1 point
  29. I simply use the "Virtual Machine Wake On Lan" plugin. 🙂
    1 point
  30. I am so dumb, I looked and looked for it and couldn't find it. And 5 seconds after posting those screen shots, there it is, under the main tab. Thank you
    1 point
  31. Ich bin auf OnlyOffice umgestiegen, weil die Darstellung bei Collabora fehlerhaft war. (zB Buttons teilweise einfach nicht angezeigt) Ursprungsthread: https://forums.unraid.net/topic/101665-nextcloud-collabora-office-lokale-installation/?tab=comments#comment-937840&searchlight=1 Issuethread bei Collabora: (leider noch immer keine Rückmeldung) https://forum.collaboraonline.com/t/collabora-online-icons-not-shown-on-mobile-devices/164 Zusätzliche mobile Apps brauchst du bei beiden Lösungen nicht. -> Funktioniert mit der bestehenden N
    1 point
  32. Oh yeah, meant to say I updated the Stats app and it's awesome now. It looks great...I was just happy to have the data, even in text....but to have it look nice is just icing on the cake! Looks great!
    1 point
  33. @ich777@steini84@Joly0 Both my systems seem to still be running well on latest unraid and latest ZFS. Both docker.img set as xfs and residing on ZFS SSD Mirror. I am nervous as to why or what changed and wondering what's different between mine and Joly0 - nevertheless it seems like we have a couple of different scenarios we should be able to work it out from.
    1 point
  34. SMART attributes are recorded by the drive firmware and can't be reset. You can acknowledge the current value by clicking on the SMART warning on the Dashboard page and it will warn again if it increases.
    1 point
  35. It’s found under Users in each password section. Good question
    1 point
  36. I seem to be getting an incompatible version error when connecting. Most of the posts on here involved restoring from backup, but this is a brand new server. I have even deleted the "worlds" folder so it recreates it. I do have 'validate' enabled to make sure the files are correct. Ports are forwarded, the server shows up on the main list. I've attached the logs. Edit: Ignore this. I had "valheim plus" enabled in the settings. Once I disabled it, I could connect to the server again. ValheimLogs.txt
    1 point
  37. Turns out we are a victim of our own success We planned for growth in certain areas of the system but a surge of sign-ins uncovered problems in an unexpected area. Thanks to everyone who installed the plugin and helped uncover this! We are actively working on this and intend to have everything back up later today. Your systems may connect and disconnect throughout the day but it won't hurt them. Please do update your Unraid.net plugin if you haven't already, the latest version has improved logic for disconnects / reconnects and plays a little nicer with mothership
    1 point
  38. Forward these ports to your TeamSpeak server: Voice: UDP 9987 Filetransfer: TCP 30033 Optional: ServerQuery (raw): TCP 10011 ServerQuery (SSH): 10022 WebQuery (HTTP): TCP 10080 WebQuery (HTTPS): TCP 10443 TSDNS: TCP 41144 From TeamSpeak self
    1 point
  39. In practical usage I haven't got big difference of dual / quad channel from 1866MT to 3000MT, so I don't care those speed much ( but heat generate in 1.35 was significant ) But a new add repurpose machine have major slow down on 10G network performance, the only difference is it run in single channel 2666MT, I am waiting a memory module RMA back then will got the answer.
    1 point
  40. You can buy RAM with JEDEC default settings for 3200, just an example: https://www.kingston.com/dataSheets/KVR32N22S6_8.pdf "Gamer" DIMMs usually default to 2133 or 2400 and you need to use the XMP profiles to set it higher, e.g.: https://www.kingston.com/dataSheets/HX432C16FB3_8.pdf I wouldn't really call that overclocking, though you can still I can do it since they usually use higher voltage because of the tighter timings, but worse would be using for example 3600 RAM on a CPU that officially only supports up to 3200.
    1 point
  41. Nice tips, I just wish it would be easier to setup KeysFile authentication and disable password authentication for the SSH. Just placing your pupkey in the UI and setting a checkbox to disable password auth would be nice. I currently have it setup like ken-ji describes here. Then i edited PasswordAuthentication to "no". Also think about a secure by default approach with future updates. Why not force the user to set a secure password on first load? Why even make shares public by default? Why allow "guest" to access SMB shares by default? Why create a share for the fl
    1 point
  42. Cx File Explorer is working great for me. I can download files from my share and upload files from my android to the share (Unraid). Also via VPN, can´t see any difference to the local network via wifi.
    1 point
  43. @limetech Seems like a bug with shfs itself: root@MediaStore:/mnt/user/Downloads# echo x > a root@MediaStore:/mnt/user/Downloads# chmod 600 a root@MediaStore:/mnt/user/Downloads# ls -l a -rw------- 1 root root 2 Mar 23 21:44 a root@MediaStore:/mnt/user/Downloads# ls -l /mnt/cache/Downloads/a -rw------- 1 root root 2 Mar 23 21:44 /mnt/cache/Downloads/a root@MediaStore:/mnt/user/Downloads# cat a x root@MediaStore:/mnt/user/Downloads# su nobody -s /bin/sh nobody@MediaStore:/mnt/user/Downloads$ cat a x nobody@MediaStore:/mnt/user/Downloads$ cat /mnt/cache/Downloads/a cat: /mnt/cache/Do
    1 point
  44. On Google Play you´ll find Network Browser which is not working on folder upload on my mobile (Samsung) it´s crashing with a black screen but works well transfering single files to my shares. I´ve posted the same issue in another language and will let you know as soon as I got something performing much better than NB...
    1 point
  45. In the Unraid GUI, go to Tools >>> Config File Editor and edit the file from that tool. Do the reboot from the Terminal that is built into the GUI.
    1 point
  46. I wish I could say the same. Postgres improved performance slightly (enough to actually notice) but not as much as I had been hoping for. Irs still slow to me. I do have thousands of files syncing and some plugins doing other services too
    1 point
  47. I updated to tag 5.14.23-ls76 2 days ago, all been fine and note that this tag has not been changed for last 10 days so might be a semi ok version to tag if you want to upgrade. Will check in a week if there is any new ones or movement. P
    1 point
  48. Purchase Intel + NVIDIA for use with GPU / onboard audio pass through. AMD is notorious for having problems with pass through.
    1 point
  49. How do I use the Syslog Server? Beginning with release 6.7.0, there has been a syslog server functionality added to Unraid. This can be a very powerful diagnostic tool when you are confronted with a situation where the regular tools can not or do not capture information about about a problem because the server has become non-responsive, has rebooted, or spontaneously powered down. However, getting it set up to use has been confusing to many. Let's see if we clarify setting it up for use. Begin by going to Settings >>> Syslog Server This is the basi
    1 point