Websites That Work (530) 583-7989
🕵️ How to List All User Crontabs (The Audit Script) If you are hunting for hidden scheduled tasks (like the problematic vscan job), you can’t just check one crontab. You need to check every user’s crontab on the system. Because […]
Core Lightning node recovery on FreeBSD after unclean shutdown This guide documents the recovery procedure for a Core Lightning (CLN) node running on FreeBSD after an unclean shutdown corrupted the gossip database and caused lightningd to reinitialise with a fresh […]
Final Success: The “Clean Slate” Method If MAKE_JOBS_UNSAFE doesn’t resolve the build failure, you may be facing a conflict between the new source code and a stale version of the package already installed on your system. The “Nuclear” Workflow When […]
Ubuntu 24.04 VM Firewall Hardening (Stoat / Revolt, Option A2) Target: Ubuntu 24.04 minimal server VM, Caddy is the public edge for revolt.yaws.com. Goal: expose only 443/tcp (and optionally 80/tcp for redirect), lock down SSH, and ensure Docker services remain […]
Stoat (Revolt fork) — Lockdown Playbook (Two Edge Options + Invite-Only Registration) Target deployment: Linux VM on FreeBSD host, Stoat self-host stack with Caddy + api/events/autumn/january/gifbox. Org goal: closed invite-only (Star Citizen org), ~12 active / 100+ registered. Key outcomes […]
Stoat (Revolt fork) — Lockdown & Org Setup (Sections 1–5) Context: closed invite-only org, Linux VM on FreeBSD host. Current edge is Caddy on the VM (confirmed by via: 1.1 Caddy and Caddy listening on 0.0.0.0:80/443). Objective Minimize attack surface, […]
This guide walks you through migrating a running TeamSpeak 3 (TS3) server to TeamSpeak 6 (TS6) on FreeBSD. Since TS6 is not yet available in the FreeBSD ports tree, we build and install it from the official GitHub source. The […]
Postfix: Postscreen Tuning Checklist This section captures the recommended postscreen tuning of Postfix by enabling Postfix’s portscreen. Use this guide get rid of bad actors quickly without breaking a sweat. Review and confirm your active configuration. Tuning goals Be strict […]
IP Address Provider / Network Typical Association 18.169.91.125 Amazon Technologies (AWS) Scanning, Attack Traffic 216.81.248.25 Akamai Technologies Generic Web Crawlers, VPN/Proxy 128.199.182.55 DigitalOcean, LLC Scanning, Brute-forcing 165.232.143.62 DigitalOcean, LLC Scanning, Brute-forcing 20.247.3.46 Microsoft (Azure) Scanning, Compromised VMS 20.118.216.125 Microsoft (Azure) […]
Ports, Policies, Milters & Security Stack Service overview for SMTP, submission, Amavis, DKIM/SPF milters, ClamAV/SpamAssassin — plus Dovecot IMAP & LMTP, Apache HTTP Server, pf, Fail2Ban, CleanTalk, Shield Security, and Wordfence. Service Matrix Port / Service Purpose Listener Auth / […]