Showing 1–10 of 18 articles
Moving Docker from development to production requires thinking carefully about data persistence, network isolation, and secret management. This guide covers production‑ready patterns using Docker Comp...
LUKS full disk encryption protects your data at rest, and pairing it with TPM2 allows passwordless unlocking on trusted hardware. Walk through the full setup from scratch.
A default SSH configuration is often the weakest point in a Linux server's security. This guide covers key‑based authentication, fail2ban, port knocking, and essential SSHD configuration hardening.
i3 is a minimal tiling window manager that puts you in complete control of your desktop. This guide walks through writing a config file from scratch, setting up i3bar, and theming your setup.
Hyprland is a dynamic tiling Wayland compositor with smooth animations, per-window rules, and deep customisation. Here's how I configured it from scratch and why I switched from i3.
Podman runs containers without a daemon and without root privileges, making it a more secure alternative to Docker for many workloads. Learn how to get started and migrate your existing setups.
WireGuard is a modern VPN protocol that's fast, secure, and surprisingly simple to set up. This guide walks through configuring a WireGuard server and client on Linux from scratch.
Both Btrfs and ZFS offer snapshots, checksumming, and RAID capabilities, but they take very different approaches. We compare their performance, stability, and use cases to help you choose.
LVM adds a powerful abstraction layer between your physical disks and filesystems, letting you resize, snapshot, and move volumes without downtime. This guide covers everything from physical volumes t...
Understanding user and group management is fundamental to Linux system administration. We cover `useradd`, `usermod`, `groupadd`, `/etc/passwd`, and best practices for multi-user systems.