diff --git a/content/posts/CVE-2019-19844/index.md b/content/posts/CVE-2019-19844/index.md index 5af0093..36cf994 100644 --- a/content/posts/CVE-2019-19844/index.md +++ b/content/posts/CVE-2019-19844/index.md @@ -2,7 +2,7 @@ title: CVE-2019-19844 date: 2019-12-18 subtitle: Potential account hijack via password reset form -tags: [security] +tags: [security, programming] --- Yesterday, an email was sent to `django-announce`, informing of an upcoming security update, labelled "high" severity. Previous notifications like this have been one week before the actual disclosure; This email, just 12 hours. The updates were scheduled to be released 12:00 UTC the next day (today). Already, not the best thing to be reading just one week before Christmas, and one day before the company production freeze. diff --git a/content/posts/exposing-your-homelab.md b/content/posts/exposing-your-homelab.md index 4ec3eea..c228bcb 100644 --- a/content/posts/exposing-your-homelab.md +++ b/content/posts/exposing-your-homelab.md @@ -2,6 +2,7 @@ title: Exposing your Homelab subtitle: How to **securely** expose your homelab to the internet date: 2020-04-29 +tags: [self-hosting] --- In the current lockdown situation, a lot of people are starting to eye up that old desktop machine, or Raspberry Pi they bought for a project and just left on a shelf, and thinking of putting it to use, as a server! diff --git a/content/posts/gdm-bluetooth-audio/index.md b/content/posts/gdm-bluetooth-audio/index.md index 5d4141f..bb30a4e 100644 --- a/content/posts/gdm-bluetooth-audio/index.md +++ b/content/posts/gdm-bluetooth-audio/index.md @@ -3,6 +3,7 @@ title: Repairing GDM and Bluetooth Audio date: 2018-02-13 image: resource:device-broken.png hide_header_image: true +tags: [linux] --- Bluetooth audio is great! I've had a pair of Bluetooth headphones, [Sony MDR-XB950 BT](https://www.sony.com/electronics/headband-headphones/mdr-xb950bt), for around a year now, and the ability to listen to music without cables is amazing. But, I can only use the Bluetooth parts of this with my phone, because on Linux, it just sounds terrible. I've even gone so far as to buy and wire in a cable on my desk at work to enable me to fairly easily connect to my desk, without having to plug into the desktop every day. diff --git a/content/posts/goaccess-analytics.md b/content/posts/goaccess-analytics.md index 9728de5..eb1242d 100644 --- a/content/posts/goaccess-analytics.md +++ b/content/posts/goaccess-analytics.md @@ -1,6 +1,7 @@ --- title: Privacy-respecting analytics with GoAccess date: 2020-04-10 +tags: [self-hosting] --- Recently, I decided to put some analytics on my website. Would be nice to see what view number are like and what pages get the most traffic. diff --git a/content/posts/how-to-store-passwords.md b/content/posts/how-to-store-passwords.md index 8aa4716..d011791 100644 --- a/content/posts/how-to-store-passwords.md +++ b/content/posts/how-to-store-passwords.md @@ -2,6 +2,7 @@ title: How to store passwords date: 2020-05-28 subtitle: How to store passwords **properly**! +tags: [security, programming] --- Storing passwords is a pretty simple problem in software development, right? Wrong! Storing passwords _correctly_ is pretty complicated. With that said, it's very simple to just lean on work someone else has done, and the libraries available for your language of choice. diff --git a/content/posts/keepassxc-2.3-migration/index.md b/content/posts/keepassxc-2.3-migration/index.md index c294c66..486935a 100644 --- a/content/posts/keepassxc-2.3-migration/index.md +++ b/content/posts/keepassxc-2.3-migration/index.md @@ -2,6 +2,7 @@ title: KeePassXC 2.3 Migration Guide date: 2018-03-03 image: resource:db-settings.png +tags: [security] --- I've been using [KeePassXC](https://keepassxc.org/) since not long after it's initial split from [KeePassX](https://www.keepassx.org/) in late 2016. I've bounced around many password managers, but KeePassXC looked to fill all the boxes: diff --git a/content/posts/keeping-docker-containers-updated.md b/content/posts/keeping-docker-containers-updated.md index cbdabf5..d279aa8 100644 --- a/content/posts/keeping-docker-containers-updated.md +++ b/content/posts/keeping-docker-containers-updated.md @@ -2,6 +2,7 @@ title: Keeping your Docker containers up to date subtitle: Updating your applications with minimal effort date: 2020-07-27 +tags: [self-hosting] --- Last year, I switched all of my hosting from arbitrarily installed packages to Docker. This made installing and configuring incredibly simple, but updating a little less defined. Whilst Docker itself is updated through the system package manager (probably), the containers themselves aren't. diff --git a/content/posts/macos-review.md b/content/posts/macos-review.md index 12e8178..8a7ddff 100644 --- a/content/posts/macos-review.md +++ b/content/posts/macos-review.md @@ -1,6 +1,7 @@ --- title: macOS - A Linux Guys Perspective date: 2019-10-01 +tags: [linux] --- For the last four years, I've been spending every working day off a Dell Optiplex. With an after-market SSD upgrade, and a little extra memory, it makes a pretty good work machine. When it comes to needing to work away from my desk, it's a little annoying having only a desktop. For the last 10 months, I've been asking for a laptop which, because _reasons_, has to be a macbook. diff --git a/content/posts/make-qt-less-ugly/index.md b/content/posts/make-qt-less-ugly/index.md index e5e4be3..9bc7b4a 100644 --- a/content/posts/make-qt-less-ugly/index.md +++ b/content/posts/make-qt-less-ugly/index.md @@ -3,6 +3,7 @@ title: Make QT look less ugly date: 2017-12-27 image: resource:qt-gtk-after.png hide_header_image: true +tags: [linux] --- As anyone who's used an application written with the QT UI framework will know, they don't always look the best, and certainly don't fit in with the rest of your desktops theme in the way GTK does. Certain themes support styling both GTK and QT applications, however most don't. diff --git a/content/posts/my-first-arch-install.md b/content/posts/my-first-arch-install.md index 0798422..c4beee5 100644 --- a/content/posts/my-first-arch-install.md +++ b/content/posts/my-first-arch-install.md @@ -2,6 +2,7 @@ title: My first arch install subtitle: With Antergos gone, it's time to install arch from scratch! date: 2019-05-29 +tags: [arch, linux] --- I've been an arch user for many years, and a linux user for even longer, but I've never installed arch from scratch. I was an Antergos user for many years, but after its demise, I needed an alternative. In a [previous post]({{< relref replacing-antergos >}}), I spoke of attempting to install vanilla arch from scratch on my laptop. As I write this, it works well, really well. Everything installed correctly, complete with EFI boot, encrypted partitions and sleep state. diff --git a/content/posts/my-stack-2017/index.md b/content/posts/my-stack-2017/index.md index aac73d6..2b49c3e 100644 --- a/content/posts/my-stack-2017/index.md +++ b/content/posts/my-stack-2017/index.md @@ -3,6 +3,7 @@ title: My Stack - 2017 Edition date: 2017-12-31 image: resource:editing-my-stack.png hide_header_image: true +tags: [linux, arch] --- As a software engineer and perfectionist, I have my machines set up in a very specific way, so I can do my job properly and have everything just the way I like it. Thanks to my [dotfiles]({{< relref "projects/dotfiles" >}}), I have everything syncing up between machines, meaning the tools I use are configured correctly, the same, everywhere. diff --git a/content/posts/my-stack-2018/index.md b/content/posts/my-stack-2018/index.md index 5e6aa5c..ab3ae89 100644 --- a/content/posts/my-stack-2018/index.md +++ b/content/posts/my-stack-2018/index.md @@ -3,6 +3,7 @@ title: My Stack - 2018 Edition date: 2018-12-31 image: resource:editing-my-stack.png hide_header_image: true +tags: [linux, arch] --- Last year, I wrote [_My stack 2017_]({{< relref "posts/my-stack-2017" >}}), and now it's time for a follow-up. A year is a long time, and my day-to-day stack has changed quite a bit since then. diff --git a/content/posts/opening-port-22.md b/content/posts/opening-port-22.md index 2bcaaf4..cd75026 100644 --- a/content/posts/opening-port-22.md +++ b/content/posts/opening-port-22.md @@ -2,6 +2,7 @@ title: Opening Port 22 date: 2018-01-23 subtitle: Using an SSH reverse tunnel to bypass a firewall +tags: [security] --- My university has a development sever, which it uses to host our coursework without the need to set up a development environment locally. It also enables lecturers to mark our work in a controlled environment, without needing to spin up an environment, and run untrusted code on their machines, a security hole I'm more than likely to take advantage of! diff --git a/content/posts/react-native-intro-dev-meeting.md b/content/posts/react-native-intro-dev-meeting.md index 95a412b..ff35ed8 100644 --- a/content/posts/react-native-intro-dev-meeting.md +++ b/content/posts/react-native-intro-dev-meeting.md @@ -4,6 +4,7 @@ date: 2016-03-16 subtitle: Introducing React Native to the rest of the office image: https://facebook.github.io/react-native/img/opengraph.png repo: RealOrangeOne/react-native-intro-dev-meeting +tags: [programming] --- Recently, at DabApps, we've been migrating our mobile app workflow over to using [React Native](https://facebook.github.io/react-native/) rather than [Ionic](http://ionicframework.com/), mainly because of its near native performance. For the first few projects, there were only a couple of us that knew how to use React Native effectively, and work around the _qwerks_ it has. With the number of app projects growing, we needed to get more people up to speed with the React Native workflow, as quickly as possible. diff --git a/content/posts/secure-wordpress/index.md b/content/posts/secure-wordpress/index.md index 504c203..b004b66 100644 --- a/content/posts/secure-wordpress/index.md +++ b/content/posts/secure-wordpress/index.md @@ -1,6 +1,7 @@ --- title: Creating a fast, secure WordPress site date: 2018-10-08 +tags: [security, self-hosting] --- In terms of security, [WordPress](https://wordpress.org), and PHP in general for that matter, have become a bit of a [joke](https://eev.ee/blog/2012/04/09/php-a-fractal-of-bad-design/). If you want a site to be secure, people tend to steer clear of WordPress and PHP. That being said, nothing stands even close to WordPress in plugin support, community size, and documentation. As much as we may not like it, I think WordPress isn't going anywhere. diff --git a/content/posts/self-hosting-plausible/index.md b/content/posts/self-hosting-plausible/index.md index 4632b42..1a3ebe4 100644 --- a/content/posts/self-hosting-plausible/index.md +++ b/content/posts/self-hosting-plausible/index.md @@ -3,6 +3,7 @@ title: Self hosting Plausible date: 2020-08-05 image: resource:plausible-login.png subtitle: Simple and privacy-friendly alternative to Google Analytics +tags: [self-hosting] --- I only recently talked about using [GoAccess]({{< relref "goaccess-analytics" >}}) as an analytics tool. Over the last couple months, I've been more interested in how many hits this website actually gets. GoAccess was a really simple solution which worked on log files and only captured the bits of information I really cared about: Page views. diff --git a/content/posts/self-hosting-website/index.md b/content/posts/self-hosting-website/index.md index bddcc9d..9675e99 100644 --- a/content/posts/self-hosting-website/index.md +++ b/content/posts/self-hosting-website/index.md @@ -1,6 +1,7 @@ --- title: Self hosting my website date: 2020-04-11 +tags: [self-hosting] --- A few days ago, I was sharing a [blog post]({{< relref "wireguard-haproxy-gateway" >}}) to someone on the [self-hosted podcast](https://selfhosted.show/) discord, and they asked if I was self hosting my website. Unfortunately, and rather ironically, I had to answer no. I've been intending to move it over to my own server for a while, so this felt like as good of a push as any! diff --git a/content/posts/traefik-basics/index.md b/content/posts/traefik-basics/index.md index 6ae1caa..7297983 100644 --- a/content/posts/traefik-basics/index.md +++ b/content/posts/traefik-basics/index.md @@ -2,6 +2,7 @@ title: Traefik Basics date: 2020-05-01 image: https://docs.traefik.io/assets/img/traefik-architecture.png +tags: [self-hosting] --- [Traefik](https://docs.traefik.io/) is a cloud native reverse proxy, which is basically a fancy way of saying it's a reverse proxy with some fancy features. Specifically it has fancy features around auto-discovery, and deep integration with technologies like Docker and Kubernetes. diff --git a/content/posts/vpn-gateway/index.md b/content/posts/vpn-gateway/index.md index b5a3174..b24b134 100644 --- a/content/posts/vpn-gateway/index.md +++ b/content/posts/vpn-gateway/index.md @@ -2,6 +2,7 @@ title: VPN Gateway - Opening ports the safe way date: 2018-06-21 image: resource:user-settings.png +tags: [self-hosting, security] --- VPNs are a way of accessing application which sit on a separate network using an encrypted tunnel. Contrary to popular belief, they are not designed to anonymize your internet habits. Whilst VPNs are designed to enable a client to access the servers network, it's possible to use them to provide a server to access to its client's network. With this, and a simple HTTP server, it's possible to open up applications on your home network to the internet, without the need for a static IP, or a port forward! diff --git a/content/posts/why-i-rewrote-my-website/index.md b/content/posts/why-i-rewrote-my-website/index.md index 66e958c..338bfc0 100644 --- a/content/posts/why-i-rewrote-my-website/index.md +++ b/content/posts/why-i-rewrote-my-website/index.md @@ -2,6 +2,7 @@ title: Why I rewrote my website date: 2017-11-13 image: resource:new-site-screenshot.png +tags: [self-hosting] --- I've had a website for around four years now, starting with a python CGI-based site hosted at [1&1](https://www.1and1.co.uk/), and evolving into its current form, powered by [Hugo](https://gohugo.io/). diff --git a/content/posts/whyreguard/index.md b/content/posts/whyreguard/index.md index 88b00b3..82eb806 100644 --- a/content/posts/whyreguard/index.md +++ b/content/posts/whyreguard/index.md @@ -2,6 +2,7 @@ title: Why Wireguard subtitle: ~~whyreguard~~ date: 2020-03-06 +tags: [self-hosting, security] --- ## What is Wireguard? diff --git a/content/posts/wireguard-getting-started.md b/content/posts/wireguard-getting-started.md index 0cfb7d0..595ec36 100644 --- a/content/posts/wireguard-getting-started.md +++ b/content/posts/wireguard-getting-started.md @@ -1,6 +1,7 @@ --- title: Getting started with Wireguard date: 2019-09-15 +tags: [security] --- Wireguard is taking the VPN world by storm, coming very close to the current champion OpenVPN in simple, small-scale deployments. It's just unfortunate few people know about it, and quite how incredible it is! diff --git a/content/posts/wireguard-haproxy-gateway.md b/content/posts/wireguard-haproxy-gateway.md index 1d84132..aca0d11 100644 --- a/content/posts/wireguard-haproxy-gateway.md +++ b/content/posts/wireguard-haproxy-gateway.md @@ -2,6 +2,7 @@ title: Wireguard HAProxy Gateway subtitle: Tunnelling traffic date: 2020-03-21 +tags: [self-hosting, security] --- Last year, I wrote [a post]({{< relref "vpn-gateway" >}}) on setting up OpenVPN-AS as a gateway to a private network. I ran this network setup for quite a while with a lot of success, exposing services on my home network to the public internet, securely. diff --git a/content/tags/self-hosting/_index.md b/content/tags/self-hosting/_index.md new file mode 100644 index 0000000..5f42cc4 --- /dev/null +++ b/content/tags/self-hosting/_index.md @@ -0,0 +1,3 @@ +--- +title: Self Hosting +---