-
That title is quite the mouthful but it has to be as this particular set up has a couple of gotchas in it. I assume that you have Docker installed and that the firewall is correctly configured as detailed in…
-
Setting up an Nginx Reverse Proxy with Certbot Under Docker
I’m assuming you have the containers you want to reverse proxy to already set up and running correctly. Initial Setup Create a directory and file structure like the one shown below. The certbot directory is shared between nginx and certbot.…
-
Installing Docker on Debian with nftables
I’m going to assume you have a working and secured Debian install, I’ll be starting from where this article ended. The big issue that we’ll face with setup is getting Docker to work with nftables. Actually, I’m not even going…
-
Using Cloudflare CDN
A couple of years ago I decided to switch my domain registrar. I’d been using this particular registrar for many years and had been unhappy with them pretty much from day one, I would have switched away sooner but it’s…
-
How to Configure SSH
Coming into this article I’m expecting you to have a a machine with SSH access authenticated using passwords. Disable Root Login Via SSH To disable root login you’ll need to open the SSH config file and make a small change.…
-
Installing and Configuring Fail2Ban
Fail2Ban is a service that scans log files for event such as failed login attempts and then updates firewall rules to ban connections from that address. This doesn’t solve problems with weak authentication but it does greatly slow down the…
-
Installing and Configuring nftables on Debian
Introduction Firewalling in Linux is, by necessity, a complex topic. There’s just no easy way around the problem, the firewall has a lot of moving parts and requires a lot of configuration options. To complicate matters further the Linux ecosystem…
-
Configuring Sudo
Sudo is almost perfectly configured out of the box but the one thing I find a little irritating is the short default timeout for the session. I’m not against having a timeout but I’m the only person that has physical…
-
Monitor what is Happening With Sudo
Just a very quick note to show how you can monitor what is happening with the sudo command by running: If you run this command without the sudo prefix you will only get a list of your own sudo commands.…
-
Setting up a New Debian Server
I recently got a new server and I realized I don’t have a comprehansive guide for setting a machine up from scratch. This guide is particularly useful for setting up something like a VPS where you only have SSH access,…
-
Making Google Drive work on Debian with Rclone
In an earlier article on setting up KDE Neon I mentioned that I was going to use KIO-Gdrive to access my Google Drive though Dolphin. That was a total failure due to a bug with the way KIO-Gdrive handles the…
-
Debian System Management
In an ideal world all the software I use would be installed from the Debian repositories and it’d be a single click to keep it all up to date. In reality it’s not that simple. The built in package manager…