Tag: security

All the articles with the tag "security".

• Docker Security Hardening: 15 Things You're Doing Wrong Right Now

  22 Sep, 2025

  Stop running Docker containers like it's the Wild West. Learn 15 critical Docker security mistakes and practical fixes to harden your containers today.

• UFW Advanced: Rate Limiting, Logging, and Rules That Actually Make Sense

  13 Sep, 2025

  Go beyond ufw allow/deny: rate limiting with ufw limit, logging levels, before.rules for iptables, IPv6 handling, Docker bypass fixes, and fail2ban integration.

• Cloudflare Tunnels: The Zero-Port-Forward Guide to Exposing Your Services

  6 Sep, 2025

  Advanced Cloudflare Tunnel setup: multiple services, Docker Compose, Access policies, security hardening, and whether trusting Cloudflare is worth it.

• Open Source Security: Scanning Your Dependencies Before They Scan You

  25 Aug, 2025

  Supply chain attacks are real. Use syft, grype, trivy, and osv-scanner to generate SBOMs, scan containers, and find vulnerable dependencies before they find you.

• DDoS Mitigation: Teaching Your Server to Say No Politely (Then Impolitely)

  20 Aug, 2025

  DDoS mitigation for self-hosters: Nginx rate limiting, Fail2ban, Cloudflare free tier, CrowdSec, and iptables tricks that actually work.

• SSH Hardening: Lock Down Remote Access Without Locking Yourself Out

  14 Aug, 2025

  Harden SSH properly: disable password auth, switch to Ed25519 keys, configure sshd_config, set up SSH certificates with step-ca, add 2FA, and configure ProxyJump for bastion hosts.

• Vaultwarden vs Bitwarden: Own Your Passwords Before Someone Else Does

  21 Jul, 2025

  Why trust a cloud with your passwords? Compare Vaultwarden and Bitwarden self-hosted — lightweight vs full-stack, Docker setup, backups, and which one to actually run.

• Proxy Chains and Anonymization: What Actually Works and What's Just Theater

  17 Jul, 2025

  Proxy chains, Tor, proxychains-ng, and VPN+Tor combos: an honest breakdown of what actually protects your privacy and what's security theater.

• Linux Audit Log: What's Really Happening on Your Server

  5 Jul, 2025

  auditd logs every system call, file access, and command. Learn ausearch, aureport, and writing audit rules.

• The sudoers Mistake Everyone Makes Once

  23 Jun, 2025

  Never edit /etc/sudoers directly. One syntax error locks everyone out. Use visudo, understand NOPASSWD risks.

• Why Your TLS Certificate Isn't Trusted

  10 Jun, 2025

  Incomplete cert chains, wrong order, self-signed certs. How to diagnose trust failures with openssl s_client.

• Certificate Expiry: Monitor Before the 3 AM Call

  28 May, 2025

  Certs expire silently. Check expiry with openssl, automate renewal checks with cron, get alerts before disaster.