-
nginx 1.28.3: Six CVEs, One Upgradenginx 1.28.3 dropped March 24 with six CVEs patched. What each one means and whether you need to care.
4 min -
AppArmor Had a Privilege Escalation Bug. Since 2017.Nine flaws in AppArmor let an unprivileged local user reach root. Active on every Ubuntu server by default. Sitting there since 2017.
5 min -
Attacked Every 23 Seconds. Why I'm Not Worried.Running a self-managed VPS means bots will find you within hours. Here's the layered setup I use to sleep well anyway.
13 min -
Systemd Unit Files for Web AppsThe systemd options that actually matter for a Go backend and Node.js frontend: unit file anatomy, hardening directives, and the gotchas that burn you.
7 min -
What 2 GB of Logs on a Fresh VPS Actually MeansI traced a growing journal to SSH brute-force bots, found a cloud-init misconfiguration hiding in plain sight, and cleaned it all up. Here's the investigation.
9 min -
Using Claude Code on a Self-Managed VPS: My WorkflowHow I run Claude Code directly on my VPS, why CLAUDE.md is the most important file in the repo, and the memory setup that makes it work across sessions.
7 min -
Deploying to a VPS Without Docker or CI/CDHow I moved my Go + Astro site off a managed static host onto a bare VPS using git, systemd, and nginx. No Docker, no pipeline.
9 min
Back