// Topic
SSL, hardening, access control, service protection, and secure configurations.
Typical tasks
// Materials on this topic
37 articles
2026-01-19
When Docker first appeared, it was loved for the slogan: “Build once, run anywhere”. Developers stopped hearing the phrase “it works on my machine, but not on the server.” But along with convenience came a new threat. A …
2026-01-17
Imagine you are building a house. You designed the walls yourself, checked every brick, and made sure you didn’t leave the keys in the lock. But what if the concrete you bought from a third-party supplier starts …
2026-01-15
Have you ever wondered how experienced programmers find bugs in someone else’s code just by looking at it? They look for patterns. They know that if user data goes straight into an SQL query — that’s bad. If a password …
2026-01-13
Imagine this scenario: you’ve been working on a cool project all night. By 4 a.m. everything is ready, you do a final git push and go to sleep with a clear conscience. In the morning you find your AWS balance is …
2026-01-12
Write a Dockerfile simply: FROM node, COPY ., CMD run. It works, and for local tests this is often enough. But when such an image reaches CI/CD or, God forbid, production, problems begin: builds take forever, the image …
2025-11-27
If your business works with users from Russia, the question of where personal data is stored concerns you directly. Phones, names, email addresses, form submissions, employee data — all of this falls under strict …
2025-11-18
If you use n8n for automations involving large language models (LLM), you probably know not only about their huge capabilities but also about the risks. LLMs remain a “black box”: they can accidentally …
2025-11-03
pfSense — a tank in the world of firewalls. Is updated less often, but runs for years without surprises. 🏢 Who pfSense is for Corporation with 100+ users Needs official support Has old but reliable hardware Value …
2025-11-02
OPNsense — it’s like pfSense, but prettier, faster, and with an API. Want an office firewall you wouldn’t be embarrassed to show your boss? Here it is. 💼 Who OPNsense is for Office of 10–50 people VPN for all …
2025-10-10
Thanks to Let’s Encrypt HTTPS has become the standard for the entire internet. This project made it possible for any site administrator to get a free SSL certificate in just a few commands. But other players have …
2025-09-24
Introduction After we figured out insecure FTP, it’s time to meet its secure successors. Here’s where confusion often arises: many people think FTPS and SFTP are the same thing. In reality, these are two completely …
2025-09-06
Introduction Choosing a web server and reverse proxy today depends on tasks and infrastructure. Caddy, Traefik, HAProxy, Nginx, and Apache are five popular solutions, each with its strengths and weaknesses. In this …
2025-09-04
Introduction In a world where setting up a web server often requires studying complex configuration files, Caddy offers a radically different approach. It is a modern, multifunctional web server, reverse proxy, and …
2025-08-27
The Problem with Certificates at Scale In previous articles, we discussed that OpenVPN uses certificates for authentication. This method is reliable but has significant drawbacks: Inconvenience for users: Each user must …
2025-08-25
OpenVPN: A Time-Tested Standard Introduction In a world where the speed and simplicity of WireGuard have become the new standard, OpenVPN remains one of the most reliable and flexible VPN protocols. It works both on …
2025-08-23
When Control Matters Most Services like Tailscale and NetBird are convenient, but they rely on a third-party control server responsible for authentication, key distribution, and route exchange. For those who, for …
2025-08-22
When Zero-config VPN Means More Than Just Tailscale Although Tailscale has become the benchmark for simplicity, it’s not the only player in the Zero-config VPN field. ZeroTier and NetBird offer similar functionality but …
2025-08-21
What is Tailscale? Tailscale is a VPN service that positions itself as a Zero-config VPN. It uses the WireGuard protocol to create a secure mesh network between all your devices. The key difference from other solutions …
2025-08-20
Evolution of Remote Access Traditional VPN services, which most of us are familiar with, work on the “hub-and-spoke” principle (star topology). This means that all traffic from the client to the protected …
2025-08-18
Keenetic as a VPN Client: Network-Wide Protection Why Use a Router-Level VPN Client? Setting up a VPN client on every individual device can be tedious. Moreover, many devices (Smart TVs, gaming consoles, IoT gadgets) …
2025-08-15
Introduction: From Reactive Defense to Proactive Security In 2025, attacks on servers are becoming increasingly sophisticated, and reactive measures (firewall, Fail2Ban, CrowdSec) are no longer enough. The modern …
2025-08-14
Introduction: The First Line of Defense for Your Server Before thinking about complex intrusion detection systems such as Fail2ban or CrowdSec, you need to build the first and most reliable line of defense—a firewall. A …
2025-08-13
Introduction: From Local Defense to Global Protection In the previous article, we explored Fail2ban — a reliable and time-tested tool for defending against brute-force attacks. However, Fail2ban only works with local …
2025-08-12
Introduction: Server Security — The First Line of Defense Once you deploy any server or virtual machine, one of the first and most important tasks is ensuring its security. Even if your server doesn’t contain critical …
2025-08-10
What is Xen? Xen is a powerful and flexible Type 1 open-source hypervisor that runs directly on server hardware, delivering high performance. Its unique architecture, based on the concept of paravirtualization, became …
2025-07-19
We’ve explored the ELK Stack, its power — and, unfortunately, its licensing changes. These changes sparked debate within the open-source community and led to the creation of a worthy alternative — OpenSearch. OpenSearch …
2025-07-17
Why Do We Need Centralized Logging? Making Sense of Log Chaos We’ve already discussed the importance of metrics monitoring for understanding the health of your IT infrastructure. But metrics are only part of the picture. …
2025-07-11
Introduction: UniFi – An Ecosystem for Modern Networks In the world of business networking, many solutions exist—but few offer the same level of integration, management simplicity, and aesthetics as the UniFi product …
2025-07-10
Introduction: Mikrotik – More Than Just a Router When it comes to networking hardware for home or small offices, most people think of consumer-grade routers like those from TP-Link, ASUS, or D-Link. However, there’s a …
2025-07-07
Introduction to FastPanel In the market of free server control panels, FastPanel stands out as a powerful and modern solution offering a wide range of features without compromising on performance. Unlike lightweight …
2025-07-06
Introduction to Hestia Control Panel If you’re looking for a powerful, modern, and completely free control panel for your VPS or dedicated server, Hestia Control Panel (HestiaCP) is one of the best options …
2025-07-05
Introduction to ISPmanager ISPmanager is one of the most well-known and widely used web hosting control panels, especially in the Russian and CIS markets. Developed by ISPsystem, it offers a powerful and comprehensive …
2025-07-04
Introduction: Why Do You Need a Website Control Panel? Imagine you’ve bought a piece of land and built a house on it (your website). Now you need to manage the house: connect electricity (domains), install plumbing …
2025-06-19
In today’s internet-driven world, where data constantly travels between millions of devices, it’s often not enough to establish a direct connection — you may need a “middleman.” That’s where a proxy server …
2025-06-18
Continuing our series on choosing a password manager, let’s now take a closer look at Bitwarden. This tool stands out from the competition thanks to its openness, flexibility, and the unique option to self-host, giving …
2025-06-17
In the first part of our series, we looked at why password managers are essential tools for digital security and organization. Now let’s dive into specific solutions, starting with Dashlane — a popular choice for those …
2025-06-16
In today’s world, whether you’re a solo entrepreneur or a large company, you interact daily with dozens — even hundreds — of online services. Email, social media, banking apps, CRM systems, advertising platforms — each …