My journey in the computer world

Category Linux

Elastic Stack with TLS

Introduction At work, we decided to give a try to the Elastic Stack (Elastic Search, Logstash and Filebeat in our case) while having the whole communication secured with TLS. TLS Protocol You might at this point wonder how all the… Continue Reading →

Best practices to secure your WordPress CMS

When you manage a WordPress site, you see the worst that the internet can bring on you. When it’s not blatant comment spam, it’s some brute forcing to try to get admin access to your WordPress. I posted about this… Continue Reading →

Fail2ban and CloudFlare

In a previous blog post (Fail2ban + Tarpit), I explained how to setup a Tarpit for Fail2ban to use it against the attacker that got banned multiple times. It works great especially in conjunction with WP Fail2ban, a fail2ban plugin for… Continue Reading →

Let’s Encrypt with Dehydrated: DNS-01

In my previous guide on dehydrated, the bash client for let’s encrypt, I’ve only touched on the DNS-01 feature. Upon further investigation and usage of said feature I give you this guide. DNS-01 DNS-01 is another type of verification of… Continue Reading →

XenServer Migrate Script

Where I work, we’re using XenServer to easily create and manage our VM. Some of our servers are quite old, and we bought new ones to replace them and we needed to migrate our VM. Since the first architect didn’t… Continue Reading →

Update Mailcatcher (exim, courrier, rainloop)

I took the time to update my mailcatcher to the last version of Ubuntu, Xenial. I also wanted to update Rainloop to the last stable version to use the latest patches. As always it’s available in the hub: MailCatcher on… Continue Reading →

Dehydrated: a bash client for Let’s Encrypt

Dehydrated was firstly known as letsencrypt.sh but because letsencrypt is a trademark, they decided to rename the project, but keep the excellent features. Purpose If you’re already familiar with let’s encrypt and the ACME protocol, you can go directly to… Continue Reading →

Docker Image for a IMAP/SMTP MailCatcher

At work, I’m working on a reply-to system. Letting our user answer to email and treat those replies as messages in a thread. This feature is available on a lot of platform like GitHub, GitLab, etc … nothing new. We… Continue Reading →

Nginx Referrer Blacklist updated

I went through my google analytic log and updated the referrer blacklist for Nginx. As before, it’s available as a gist on GitHub.

letsencryp.sh a client to automatize let’s encrypt renewal and creation

I’ve been playing around with let’s encrypt and the official client available on github. I have to admit the client is great to automatize the process and with some tweaking can be also applied to nginx. But it’s slow and… Continue Reading →

« Older posts Newer posts »

© 2022 Antoine Aflalo — Powered by WordPress

Theme by Anders NorenUp ↑