Series

Site Reliability Engineering

A series focused on system reliability, security, and operational visibility. Explores monitoring, alerting, failure prevention, and host-level observability techniques to build resilient and production-ready infrastructure.

Hardening Ubuntu Server with OpenSCAP
OpenSCAP is an open‑source implementation of the Security Content Automation Protocol (SCAP). It provides a framework and tooling to automate security compliance tasks: assessing systems against publi
Apr 18, 20264 min read17
Controlling Port Access with UFW
UFW (Uncomplicated Firewall) is a user-friendly front end for iptables designed to make managing a host-based firewall simpler. It’s available on Debian/Ubuntu and many other Linux distributions and p
Apr 18, 20263 min read2
Preventing Brute Force Attacks with Fail2ban
Fail2ban is a lightweight, widely used intrusion prevention tool that helps protect servers from brute-force attacks and other repeated authentication failures. It continuously monitors log files (for
Apr 18, 20265 min read13
Sending SSH Login Alerts to Telegram
Monitoring SSH logins is a simple but powerful way to improve the security and situational awareness of your servers. By sending immediate alerts when someone authenticates (or fails to authenticate)
Apr 18, 20263 min read6
Auditing Command Execution with Snoopy
Snoopy is a lightweight, unobtrusive auditing tool for Unix-like systems that records every command executed on the host. It works as a small library wrapper that logs command execution details (times
Apr 18, 20262 min read10
Intercepting Dangerous Shell Commands with Shellfirm
Shellfirm is a lightweight safety layer for interactive shells that helps prevent accidental or malicious execution of destructive commands. It works by installing a small shell hook that inspects eac
Apr 18, 20263 min read32

Command Palette