Fail2ban monitors your service logs for repeated failures and blocks offending IPs using your firewall. This guide explains the concept and gives copy paste jails for SSH on 22, HTTP on 80 or 443, and MySQL or MariaDB on 3306. How Fail2ban works Key terms: Install Fail2ban Base configuration Do not edit jail.conf. Create your… Continue reading
In my earlier post, “How to set up MongoDB 8 master–slave on Debian 12 (Bookworm)”, we ended with a working replica set and basic authentication. Now comes the daily-ops reality: your app user needs to write documents, but your ops tasks also need to tweak schema rules, adjust TTLs, rename collections, or rebuild indexes during… Continue reading
If you need a simple, secure, and straightforward SFTP server, Atmoz SFTP is one of the easiest solutions available. It runs inside Docker, requires minimal configuration, and is secure by default, no fiddly chroot setup that can often be error-prone or introduce security risks. In this guide, we’ll install and run Atmoz SFTP on Debian… Continue reading
In a production environment, Redis should never run without proper access control. If you’ve followed the basic Redis master-slave installation guide on Debian 12, it’s time to take the next step: securing your Redis nodes with passwords and user-based authentication (ACL), while ensuring replication remains functional. This article focuses on three key areas: 1. Enable… Continue reading
If you’re looking to build a custom CMS or API backend with flexibility and speed, Strapi v5 is a great choice. In this guide, we’ll walk through installing Strapi v5 on a Debian 12 server using npm. This setup assumes that Node.js (v20 or higher) and MariaDB are already installed and configured. Step 1, Install… Continue reading
When working with legacy SSIS packages in Visual Studio 2019, it’s common to rely on OLE DB connections using SQL Server Native Client 11 (SQLNCLI11). This driver, though deprecated, is still widely used and can be configured to work securely with Azure SQL and TLS 1.2, even over VPN connections. This article explains how to… Continue reading
In today’s connected world, securing your Linux servers is non-negotiable. Whether you’re running a public-facing API, a web application, or internal systems, even a brief intrusion can result in serious damage. If you’re managing infrastructure on Debian 12 (Bookworm), it’s crucial to know how to assess whether your server has been compromised. This article walks… Continue reading
When working with Node.js, managing different versions efficiently is essential. Whether you’re running apps on servers or juggling multiple projects locally, a version manager simplifies your workflow. Two of the most popular tools for this job are n and nvm. Each has its strengths, and choosing the right one depends on your environment and use… Continue reading
When it comes to safeguarding your data, simplicity and reliability go a long way. In this post, we’ll walk through how you can set up automatic, secure backups from a Debian 12 server to Wasabi cloud storage using Restic, a powerful yet minimalistic tool. Getting Started: What You Need Before diving in, make sure you… Continue reading
If you’re using Linode’s Object Storage, DigitalOcean Spaces, or any S3-compatible service, you might run into a puzzling situation, your dashboard shows gigabytes or terabytes of usage, yet when you inspect your files manually or compress your data with tar.gz, the size seems totally reasonable What gives? Recently, I encountered this phenomenon while managing a… Continue reading