If you run WordPress sites behind nginx on Debian, you already know the reality: bots hammer /wp-login.php hundreds of times a day, exploit scanners probe for webshells and every request that reaches PHP costs CPU cycles. A single bot sweep can saturate your php-fpm worker pool and bring a server to its knees. This guide…
If you’re running Ubuntu 22.04 or 24.04 with LXD and planning to migrate to Incus, you’re likely in for an unpleasant surprise. The official lxd-to-incus migration tool only supports LXD up to version 5.21, but Ubuntu’s snap package manager has silently auto-updated your LXD installation to version 6.7, making the official migration path impossible. This…
Running a production mail server means more than getting it installed and configured correctly. It means knowing when something goes wrong, ideally before your clients do. This article covers a practical monitoring approach for Postfix that alerts you to delivery failures, TLS handshake errors, and other problems that would otherwise sit silently in the logs….
On April 29, 2026, a vulnerability was publicly disclosed that affects virtually every Linux system built since 2017. CVE-2026-31431, nicknamed “Copy Fail,” is a local privilege escalation flaw in the kernel’s cryptographic subsystem. It allows any unprivileged user to gain full root access using a script of less than 800 bytes. No race conditions. No…
On April 21, 2026, Internet.nl rolled out a fully updated TLS test based on the latest NCSC-NL guidelines. Mail servers that previously passed the test may now show new warnings. This guide walks through the exact fixes on Debian 13 Trixie with Postfix 3.9 or later, based on hands-on troubleshooting on a production server. The…
A complete guide to installing OpenCloud 6.0 as a bare metal deployment inside a Debian 13 (Trixie) Incus container, compiled from source with libvips support for full image thumbnail generation including WebP, HEIC, and other modern formats. Why Bare Metal Instead of Docker? OpenCloud officially promotes Docker Compose for production deployments. Their own documentation includes…
This guide walks you through setting up a complete Web Application Firewall (WAF) using CrowdSec, Nginx, and nftables inside an Incus container. The container acts as a reverse proxy protecting your backend applications with both layer 3 (network) and layer 7 (application) security. A key feature of this setup is the centralised CrowdSec LAPI (Local…
During a routine log review on one of my Postfix/Dovecot mail servers, I noticed a pattern of SMTP send failures in the Roundcube webmail logs. The errors were intermittent, affecting messages with larger attachments, and had been occurring for about a day before I spotted them. What followed was a debugging session that traced the…
If you run LXD via snap on Ubuntu and use ZFS as your storage backend, chances are you have encountered this frustrating error at least once: The container refuses to start, your workload is stuck, and the error message is not exactly self-explanatory. Let’s break down what is happening and how to fix it permanently….
The past year has been eventful for anyone following the relationship between European regulators and American technology companies. Visa bans on former EU officials, tariff threats tied to tech regulation, US diplomats lobbying European capitals against the Digital Services Act. The headlines have been hard to miss. But this article isn’t about politics. It’s about…
| Cookie | Duration | Description |
|---|---|---|
| cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
| cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
| cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
| cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
| cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
| viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |