How to harden OpenSSH server
A short article to quickly getting your OpenSSH server hardened.
Running your own AI in-house – Part 2 – LLM/LVM – Ollama on the Web (API) and Code Editor
Let's continue our article series by taking a look at the HTTP API, optimizing the systemd service, putting Nginx in front of it with HTTPS and making sure authentication is required; finally, we set up our code editor config to use our remote instance.
How to verify SSH host keys and optionally using SSHFP in DNS
In this article I'll guide you through verifying SSH host keys manually, then the crazy shell shenanigans way, and finally we'll talk about SSH keys in SSHFP DNS(SEC) records!
ClamAV from FDM GUI in macOS
Today I'll show you how to spawn clamscan in a Terminal, from a GUI, in macOS.
Manually install obfs4proxy on Debian/Ubuntu
Compiling and installing obfs4proxy is effortless... if it wasn't for AppArmor, but there's an easy fix!
Easily run rootless LXC containers
Harden the security of your LXC containers by mapping the container's root user to nobody on the host!
Hetzner VPS with full-volume encryption and Btrfs subvolumes
In this guide, we'll install Ubuntu Server with full volume encryption and Btrfs (with subvolumes @ and @home) on a Hetzner Cloud VPS.
Server encryption with remote SSH unlock
In this guide, you'll learn how to unlock an encrypted Linux server remotely with SSH.
Could you continue from scratch?
If everything burns down, and your data is lost, could you regain access to your accounts?
Perhaps you shouldn’t rely on PDF encryption (it’s broken)
PDF encryption is broken. Here's why and what you can do about it.