security

Oct 3, 2022//8 min read

Pretty damn secure self hosted Bitwarden

Every year I spend an afternoon reading through my credit card statement to see whether I've accidentally forgotten to unsubscribe from something. This year was no different, and on my travels throug

Sep 16, 2022//1 min read

Blackholing Domains with WireGuard

Short post incoming because it's not worthy of a longer one, but more interesting than dropping a tweet. I noticed that my laptop was still connecting to ad serving domains I'd blackholed in /etc/hos

Jan 7, 2021//5 min read

Running Ghost on Tor

Recently I've had the opportunity to play with some new and existing technologies as a mechanism of both upskilling and trying something new. I decided to spend some of that time learning how to crea

Dec 26, 2020//6 min read

Client certificates, Let's Encrypt, custom CAs and Cloudflare

Over the last week, I've been building a new server for some friends and I to host our own NextCloud [https://nextcloud.com/] instance. Part of this is to keep our technical eyes up-to-date and releva

Oct 9, 2017//2 min read

IP Restrictions behind Cloudflare and Varnish

I've recently been working with a client using Drupal, Varnish, and Cloudflare as part of their digital transformation journey. The client had requirements to ensure that requests coming in through Cl

Dec 16, 2016//2 min read

Installing an Origin CA cert in Pound

Recently I was approached by one of the Cloudflare channel team as they advised all customers about Google's announcement [https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html]

Sep 2, 2015//1 min read

Verifying SSL certificates with drupal_http_request

Recently I was posed with the question about verifying self-signed SSL certificates with drupal_http_request() [https://api.drupal.org/api/drupal/includes%21common.inc/function/drupal_http_request/7]

Nov 19, 2014//10 min read

Fighting back from Drupal hacks

The last thing any website owner, developer or administrator wants to hear is that they've been hacked. Whether the cause was the fault of insecure passwords, problematic file permissions, a vulnerabi

Mar 30, 2013//2 min read

Showing China the banhammer

Recently I started noticing a spike in the overall bandwidth on my server. A little bit of investigation revealed some interesting albeit confusing details. First contact Towards the end of last mont

Sep 17, 2012//3 min read

Allowing anonymous comment deletion rights

I have implemented a method of anonymous comment deletion on this site, based on URL callback of a link displayed at comment post time. As I explained in this forum post [https://drupal.org/node/1482