Possible missing firmware /lib/firmware/nvidia/gv100/acr/ucode_load.bin for module nouveau

After applying the latest updates on a Debian Buster machine, this message pops up:


/etc/kernel/postinst.d/initramfs-tools:
update-initramfs: Generating /boot/initrd.img-4.19.0-6-amd64
cryptsetup: WARNING: The initramfs image may not contain cryptsetup binaries
nor crypto modules. If that's on purpose, you may want to uninstall the
'cryptsetup-initramfs' package in order to disable the cryptsetup initramfs
integration and avoid this warning.
W: Possible missing firmware /lib/firmware/nvidia/gv100/acr/ucode_load.bin for module nouveau

This file /lib/firmware/nvidia/gv100/acr/ucode_load.bin is only provided by a newer version of firmware-misc-nonfree provided in the buster-backports:

Firmware-misc-nonfree package details from buster-backports

To install it:


apt-get -t buster-backports install firmware-misc-nonfree

Powering on virtual machine from esxcli

If it gets difficult to power on a virtual machine from the vSphere client, vim-cmd offers the possibility to perform this task after connecting on the ESXi host using ssh.

Here are a couple of useful vim-cmd commands:

List all the VMs on the ESXi host:
vim-cmd vmsvc/getallvms

Get VM status using its id:
vim-cmd vmsvc/power.getstate vm_id

Power on a VM using its id:
vim-cmd vmsvc/power.on vm_id

Sources:

https://kb.vmware.com/s/article/1038043

http://nigelhickey.com/power-vm-via-ssh

Modifying ProxyAddresses attribute for a user in Powershell

Getting the current ProxyAddresses attribute value for a user in Powershell :

Get-ADUser -Filter 'Name -like "*username*"' -Properties ProxyAddresses

 

Setting several values for ProxyAddresses attribute :

Set-ADUser -Identity username -add @{Proxyaddresses="SMTP:username@domain",

"smtp:alias1@domain","smtp:alias2@domain"}

 

 

yum-security

yum-security is a plugin to the Red Hat Entreprise Linux package manager yum. It helps installing only security updates (RHSA) (as opposed to bug fixes (RHBA) or enhancements (RHEA)).
Explanation of RHSA, RHBA and RHEA advisories

RHEL 7 : yum-security is part of yum

RHEL 6 : yum install yum-plugin-security

    List all available erratas without installing them :

    yum updateinfo list available

    List all available security updates without installing them :

    yum updateinfo list security all
    yum updateinfo list sec

    List of the currently installed security updates :

    yum updateinfo list security installed

More examples are available in this Red Hat KB article

Getting more details about Red Hat Security Advisories and related CVEs

Two links for an in-depth explanation regarding Red Hat backporting security fixes process as well as compatibility between Red Hat security advisories and Mitre CVEs.

Backporting Security Fixes

Red Hat and CVE compatibility

Red Hat provides free access to two databases for errata and for CVE referenced in Red Hat products :

Red Hat Product Errata database

Red Hat CVE Database

Upgrade a rpm package on a couple of servers with a quick one-liner in Ansible

Upgrade a rpm package on a couple of servers with a quick one-liner in Ansible :

export ANSIBLE_INVENTORY=servers_list
ansible all -b --ask-become-pass -m yum "name=bash state=latest"

servers_list is the text file listing your servers.
Using the ANSIBLE_INVENTORY variable overrides the use of a generate inventory.
This one-liner makes use of the yum Ansible module.
Running sudo commands is possible with these options -b and –ask-become-pass