Posts

Page 18 of 41

• security

  The Zero-Trust Home Lab

  Apply zero-trust principles to your home lab — network segmentation, VLANs, identity-aware proxies, and Tailscale as the glue.

  7 Mar, 2026

  · 4 min read
• haproxy

  HAProxy: Load Balancing Done Right

  HAProxy is the battle-tested load balancer powering GitHub, Reddit, and Instagram. Here's how to actually use it without reading 500 config options.

  6 Mar, 2026

  · 8 min read
• best practices

  Stop Living Dangerously on :latest Docker

  Using :latest in production is a ticking time bomb. Pin your Docker image versions or watch a surprise update break everything at 2 AM.

  6 Mar, 2026

  · 4 min read
• mysql

  MySQL & MariaDB CLI in 2026: What Changed

  MySQL 8.0 broke auth, MariaDB forked hard, and Docker changed how you connect. Here's what still works and what'll bite you.

  5 Mar, 2026

  · 7 min read
• alpine linux

  Alpine vs. Distroless: Choosing Your Minimalist Base

  Alpine gives you a shell and apk; Distroless gives you nothing but the app. Compare attack surface, image size, and multi-stage build complexity.

  5 Mar, 2026

  · 4 min read
• cloudflare

  Cloudflare WAF: Free Tier Firewall Rules

  Cloudflare's free tier WAF is more powerful than most people use. Here's how to actually configure it — rules, rate limits, and all.

  4 Mar, 2026

  · 7 min read
• container security

  Distroless: How to Build Slim, Secure Containers

  Distroless images contain only your app and its runtime — no shell, no package manager, no attack surface. Here's how to build them.

  4 Mar, 2026

  · 5 min read
• security

  Certificate Pinning: The Nuclear Option for TLS Security (Use With Caution)

  Certificate pinning and HPKP explained: what they are, why HPKP destroyed itself, and modern alternatives like CAA records and Certificate Transparency.

  1 Mar, 2026

  · 8 min read
• devops

  .gitignore Entries Every Project Actually Needs

  Stop leaking secrets, dependencies, and OS garbage into git. Here are the .gitignore patterns that save you from disaster.

  1 Mar, 2026

  · 4 min read
• docker

  Multi-Stage Docker Builds: Stop Shipping Your node_modules to Production

  Learn multi-stage Docker builds to slash image sizes by 90%. Practical before/after examples for Node.js, Python, and Go with real size comparisons.

  26 Feb, 2026

  · 14 min read
• cloudflare

  Cloudflare DNS: Beyond Pointing Records

  Stop using your registrar's janky DNS panel. Here's how Cloudflare DNS actually works — proxying, DNSSEC, dynamic DNS, and email records that don't break.

  26 Feb, 2026

  · 8 min read
• llm

  LiteLLM & vLLM: One API to Rule All Your Models

  Stop juggling 17 different LLM SDKs. LiteLLM and vLLM give you a unified OpenAI-compatible API for every model — local or cloud, fast and production-ready.

  25 Feb, 2026

  · 7 min read