Devops

Automate backups, test restores, and build a disaster recovery runbook for your VPS.

Build a script that generates consistent OG social card images from an HTML template using Playwright screenshots, with smart caching and series-aware gradients.

How to run Mercure for real-time SSE alongside Caddy as your web server, with solutions for port conflicts, gzip interference, and JWT configuration.

Set up lightweight monitoring and alerting for a solo-developer VPS, plus a post-incident checklist.

Configure automatic security patches, detect stale services with needrestart, and keep logs and Docker images from filling your disk.

Manage .env files, encrypt secrets with Ansible Vault, and rotate credentials without downtime.

Tune kernel parameters with sysctl and sandbox services with systemd to reduce your VPS attack surface.

Add security headers, rate limiting, and server identity removal to your Caddy configuration.

Why Docker bypasses your UFW rules, how to fix it, and container hardening practices that matter on a shared VPS.

Configure UFW rules, build a fail2ban jail for Caddy access logs, and escalate bans for repeat offenders with the recidive jail.