Posts

Page 25 of 42

• logging

  Auditd & Audit Logging: Know Exactly Who Touched What on Your Server

  Master auditd for Linux audit logging: watch critical files, audit syscalls, use aureport and ausearch, and ship logs to Loki or Elasticsearch for compliance and security monitoring.

  7 Nov, 2025

  · 8 min read
• sysadmin

  Time Sync on VMs: Why NTP Keeps Drifting

  Your VM's clock is off by minutes. NTP is running but your system still drifts. Here's why.

  4 Nov, 2025

  · 4 min read
• security

  HashiCorp Vault: Stop Hardcoding Secrets Like It's 2012

  HashiCorp Vault tutorial: Docker Compose setup, KV v2 secrets, AppRole auth, dynamic database credentials, PKI engine for internal certs, and auto-unseal with cloud KMS.

  1 Nov, 2025

  · 8 min read
• devops

  Woodpecker CI vs Drone CI: Lightweight Pipelines for People Who Hate Waiting

  Woodpecker CI vs Drone CI compared: container-native pipelines, YAML syntax, Gitea integration, and why the license drama matters for self-hosters.

  1 Nov, 2025

  · 7 min read
• docker

  Lazy Docker & Dive: CLI Tools That Make Docker Less Painful

  Learn how lazydocker and dive make Docker manageable from your terminal. TUI dashboards, image layer analysis, CI integration, and optimization tips.

  30 Oct, 2025

  · 15 min read
• networking

  The MTU Problem Nobody Diagnoses Correctly

  MTU mismatches silently break large file transfers, backups, and video calls. Here's how to find and fix the wrong frame size on your network.

  28 Oct, 2025

  · 4 min read
• llm

  Open WebUI vs LibreChat: Self-Hosted ChatGPT Alternatives Compared

  Open WebUI vs LibreChat: two self-hosted ChatGPT alternatives compared. We cover setup, Ollama integration, multi-user support, RAG, plugins, and which one fits you.

  27 Oct, 2025

  · 17 min read
• vpn

  VPN Kill Switch and DNS Leak Prevention: Paranoia, Justified

  Set up a WireGuard VPN kill switch and prevent DNS leaks on Linux. Practical iptables rules, resolv.conf locking, and systemd-resolved config.

  25 Oct, 2025

  · 8 min read
• networking

  BGP in Your Home Lab: Dynamic Routing for People Who've Run Out of Static Routes

  Run BGP in your home lab with FRRouting. Covers iBGP vs eBGP, FRR installation, basic BGP config, peering with OPNsense, route filtering, and when BGP is actually worth the complexity.

  25 Oct, 2025

  · 7 min read
• security

  Suricata vs Snort: Intrusion Detection for the Paranoid Home Lab Owner

  Suricata vs Snort for home lab IDS/IPS: compare performance, rules, and setup. Includes Suricata installation, suricata.yaml config, EVE JSON logging, and OPNsense integration.

  24 Oct, 2025

  · 7 min read
• docker

  Docker Compose Environment Variable Precedence

  Three ways to set env vars in Docker Compose. Only one wins. Here's which and why it breaks your configs.

  22 Oct, 2025

  · 4 min read
• privacy

  Plausible vs Umami: Privacy-Friendly Analytics That Won't Creep Out Your Users

  Compare Plausible vs Umami for self-hosted, privacy-friendly web analytics. Ditch Google Analytics and keep your users' data off ad networks.

  20 Oct, 2025

  · 8 min read