Blogpost archive
This is a list of all my blogposts. They range from highly technical to entry level, from Linux to PHP and server management.
If you have an interesting topic to write about, reach out and I'll see what I can do.
2019-02
2018-12
2018-11
- Increase the number of open files for jobs managed by supervisord
- My Laracon EU talk: Minimum Viable Linux
- Why your NS records matter
- Tracking SQL queries
- A big update to DNS Spy – DNS Spy Blog
- HTTP-over-QUIC will officially become HTTP/3
- Automatic monitoring of Laravel Forge managed sites with Oh Dear!
- How to size & scale your Laravel Queues
- Laravel Telescope: Data too long for column ‘content’
2018-10
2018-09
- ssh error: unable to negotiate with IP: no matching cipher found
- HHVM is Ending PHP Support
- Indie Hackers interview with Oh Dear!
- Elasticsearch fails to start: access denied “/etc/elasticsearch/${instance}/scripts”
- MySQL: Calculate the free space in IBD files
- Chrome stops showing “www”-prefix in URI
2018-05
2018-04
- Certificate Transparency logging now mandatory
- Chalk Talk #3: how to optimise your content for Varnish
- Upcoming presentation at LOADays: Varnish Internals – Speeding up a site x100
- Chalk Talk #2: how does Varnish work?
- Varnish: same hash, different results? Check the Vary header!
- Varnishlog: show the hash() data in output
2018-03
- Drupal core – Highly critical – Remote Code Execution – SA-CORE-2018-002
- It’s about what broke, not who broke it
- Why I usually run ‘w’ first when troubleshooting unknown machines
- Chalk Talk #1: An introduction to Varnish
- Upcoming Drupal 7 and 8 core highly critical security release: March 28th
- The security footgun in etcd
- Enable the slow log in Elastic Search
- Varnish 6.0 released
- Laravel & MySQL auto-adding “on update current_timestamp()” to timestamp fields
2018-02
2018-01
2017-10
- Fall cleaning: shutting down some of my projects
- Staat der Nederlanden CA might be revoked from Mozilla Policy?
- Compile PHP from source: error: utf8_mime2text() has new signature
- KRACK Attacks: Breaking WPA2
- Get shell in running Docker container
- Antwerp WordPress User Group offering public speaking course
- Laravel Forge + Envoyer + Managed Hosting = Nucleus
2017-09
- Due to CAA records, unable to issue TLS certs for names in private.cam.ac.uk
- Why we’ve cancelled our free tier – DNS Spy Blog
- DNS Research: using SPF to query internal DNS resolvers
- A proposal for cryptocurrency addresses in DNS
- Chrome & Firefox now force .dev domains to HTTPS via preloaded HSTS
- Linux man-pages: man-pages-4.13 is released
- Cloudflare now serves F-Root instance
- Laravel Horizon: requires ext-posix, missing from CentOS
- Presentation: Code Obfuscation, PHP shells & more
- cron.weekly issue #97: kernel 4.13, TLS, LLVM, Yarn, Vagrant, AWX, Nginx & more
- Coming soon: Oh Dear! – Monitoring for the encrypted web
- CAA record checking now mandatory for Certificate Authorities
- 2 interesting things happened in last cron.weekly’s newsletter
2017-08
2017-07
- Podcast: The Ceremony, the birth of Zcash
- Choose source IP with ping to force ARP refreshes
- Apache httpd 2.2.15-60: underscores in hostnames are now blocked
- mysqldump without table locks (MyISAM and InnoDB)
- Unix time 1.500.000.000
- Launching the cron.weekly forum
- Some more nuances to the systemd debacle
- Podcast: Caching using Varnish
- Giving perspective on systemd’s “usernames that start with digit get root privileges”-bug
2017-05
- HTTP/2 push is tougher than I thought
- Samba CVE-2017-7494: Remote Code Execution in Samba 3.5.0 and upwards
- CentOS 7.4 to ship with TLS 1.2 + ALPN
- (Dutch) Tech45 podcast #341: Technologica & WannaCry ransomware
- WordPress starts Bug Bounty program on HackerOne
- Ways in which the WannaCry ransomware could have been much worse
- Why the Next 10 Days Are Critical to the Internet’s Future
- Chrome to restore one-click certificate viewing in browser