Backups are the thing everyone knows they should do and nobody does well enough. Here’s my multi-stage strategy for keeping about a dozen servers safe: ZFS snapshots with sanoid, off-site replication with syncoid to rsync.net, Proxmox Backup Server with an S3 backend for VMs, and a creative Podman trick for backing up RHEL hosts that don’t have proxmox-backup-client. Plus a dead man’s switch, because the only thing worse than no backups is backups that silently stopped working three months ago.
Old CentOS rebuilt RHEL faithfully, but its downstream position meant it could only follow, never contribute back. CentOS Stream changes that. Sitting upstream of RHEL and downstream of Fedora, it combines enterprise-grade stability with a genuine feedback loop into RHEL development. After years of running it in production, I’m convinced it’s the better model.
A practical guide to the four major Linux firewall technologies - iptables, nftables, firewalld, and ufw. Covers real-world cloud server hardening with concrete examples, from locking down SSH to building zone-based configurations. Includes an honest comparison and an entirely unbiased opinion about which firewall is actually best.
Not another hjkl tutorial. This is the stuff you still get wrong after years of using Vim - efficient navigation, copy/paste that actually works, YAML-specific workflows, and the motions that turn config file editing from a chore into a joy.