repomanz

This did the trick! Didn't notice the alert until now. thanks

brand new install and the web ui login and pass (admin : adminadmin) does not work. I missing something? The only change I made from the template was to put it on a separate bridged network, assign to IP to container and to update the LAN_NETWORK variable to use my bridged subnet. All browsers tried and no luck.

my googlefu suggest there is already a HIDS agent install for slackware. HIDS agent works with Alienvault OSSIM (free) I'm debating of trying to install this into the Unraid environment manually so i can get SIEM monitoring within unraid.

Hey unraid team. Would be nice to have a HIDS agent (for Alientvault) running on the OS so that I can connect unraid to Alienvault. Was thinking this could be placed tools section or maybe a plugin.

anyone done this previously?

Queue up the now you know. Thanks for correcting me.

Hi folks, I'm standing up a SIEM (Alienware OSSIM) in my home environment and would like to put the HIDS agent on Unraid. Any guidance from the community before I go installing this in the unraid environment? repo

MineOS / forge / mod question. generator-options={"profile"\:"rarecities"} Does anyone know how to work around the \ being inserted in this server.properties upon start up? This is messing up a mod from properly running. Obviously the : needs to be escaped but in doing so mod doesn't load the profile. Seen this before?

Hi Unraid Dev, Saw this in one of my feeds today and wanted to bring to your attention. https://nakedsecurity.sophos.com/2019/05/31/unpatched-docker-bug-allows-read-write-access-to-host-os/ https://seclists.org/oss-sec/2019/q2/131 repo

I can see both sides of this discussion and what risk is appropriate for unraid's primary audience. Personally I like the idea of encrypted usb within this process, just to keep the file systems all encrypted. As a side note; I'd like my unraid to boot needing both the usb boot device but also a yubikey. What about a docker container escape writing to the usb drive? My understanding is once the array is booted up, the file systems can be read/write which includes the boot usb device.

little late replying to my own thread here but agree with melmurp. unraid, and it's community, leverage a lot of docker containers and just making an assumption that those dev owners who author containers for use of unraid have taken steps is a bit risky. I know emails, password resets including api tokens has occurred. I may jump over to the community plugin support page to see if they are mitigating this at all. Would make me feel better about it at least.

https://news.ycombinator.com/item?id=19763413. May be worth a bulletin to users given the significant use of containers within unraid.

Hey guys - unsure if Alpine / Unraid is impacted but passing along just in case. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5736 https://seclists.org/oss-sec/2019/q1/119 repo

silly question as I'm trying to get this functioning. Is setting up the openvpn as server with google 2fa required on logins supported on the android openvpn app? If so; I must be missing this setting somewhere.

appears some back-end service has fixed this issue auto-magically. crisis averted.

Hi folks - i misconfigured the CA backup plugin and pointed it /mnt/cache/backups/unraid folder instead of the proper /mnt/user/backups. It filled up my cache drive and hung so i went in and deleted the file (85gb) via console. However after doing so, I am not showing the cache drive recovering that space. Is there a service that will auto-correct this or do i need to do something manually here? Side note; how can i safely force the backups share to point to my disk volumes, including moving all currently files on cache to the new directory?

I don't run any privileged docker containers but would that change if the container was actually ran as privileged? What's interesting is that team is aware of other exploit techniques they chose not to make public.

Hey guys - wanted you to be aware of this one. Hot off the press today. https://www.cyberark.com/threat-research-blog/how-i-hacked-play-with-docker-and-remotely-ran-code-on-the-host/ repo

Wanted to close this thread out / show my configuration in case someone runs across it switch configuration, - port 5 connected to eth4 on unraid nic - port 1 connected to pfsense eth4 NIC configuration on Unraid OS docker configuration within Unraid OS pfsense vlan interface

Hi Bonienl - with your help I believe we have success. I now have - internal docker containers running on the trusted lan - external docker containers running on eth4 / vlan 5 Confirmed routing on router also working lan to vlan, vlan to lan and vlan to inet. Really appreciate you walking me through this.

Hi Bonienl - thanks for responding! What about this? - remove eth4 vlan settings within unraid - bridge eth4 nic - assign port on managed switch eth4 is connected to to vlan 5 - create vlan 5 interface on router Would I be able to put dockers on the bridged eth4 NIC as it's operating within the vlan 5 network?

Hi folks - I'm new to vlans / managed switches and learning unraid so bare with me. Is there a version of this guide that deals with vlans with using multiple network cards? I have a 4 port intel nic so currently unraid sees eth0 - eth4. Here is what I'm wanting to do (or something similar) 1) leverage eth4 physical network 2) create a vlan off the eth4 interface 3) put external facing dockers on the vlan I've tried various combinations of things on the router, managed switch and unraid. So far the best i have gotten is eth4 was successful in getting a dhcp IP address defined for the vlan. However doing so I can no longer reach unraid. Admittedly; I'm likely doing some things wrong here either within unraid or my managed switch. Any coaching or guides would be helpful so i can accomplish my goal here. Thanks in advance!

while unpacking; seems it does not honor cpu pinning. IE; even though i have cpu 1,5 pinned, it's maxing out all of my cpus. Seeing above posts are there plans to fix unpacking issues? Other issues i have with unpacking is that it hangs or takes forever

Hi folks - i think this is network related as I VPN all of my traffic out of my house. When I check for updates for dockers the page will just spin / do nothing. I have unraid's dns pointed to pihole (on my network). Pihole then requests dns out through my VPN interfaces if not cached. My suspicion is the update URL or code to check for updates is somehow not resolving dns or is possibly being blocked since I'm coming from a VPN connection. Can someone explain how unraid checks for docker updates and if there is specific URLs used?

Hi folks - if I assign a docker container an IP address where does this IP address get it's DNS information? From my DNS settings defined with unraid OR my network/gateway?