XMPP – The Middle Ground Of Instant Messaging

2026-04-242026-04-25 ~ Tom's IT Cafe ~ Leave a comment

XMPP or Extensible Messaging and Presence Protocol is an open communication protocol.
It has been actively developed since it was introduced in 1999.
Over time, a large part of its user base migrated to centralized cloud platforms.

IRC is a simple, reliable, text-based protocol.
Matrix is a robust but more complex protocol with higher resource requirements.
XMPP sits between them, closer to IRC in simplicity while offering more modern features.

In this article you will learn to install a private, non-federated XMPP server.

Continue reading →

Host Your Private Matrix Server (Synapse)

2026-04-102026-04-10 ~ Tom's IT Cafe ~ 1 Comment

If you care about privacy, you probably already know the Matrix protocol.
The federated structure of the decentralized network loosely resembles IRC networks.
Matrix ships with spaces, rooms, user management, and much more.

Most of you don’t host it because of its complexity.
I break it down to simple, actionable steps.

Continue reading →

Build A Modular IRC Server In 2026 (Inspircd + Anope)

2026-04-032026-04-02 ~ Tom's IT Cafe ~ 1 Comment

You saw the simplicity of Ergo Chat.
Now you think about how to build a modern, modular IRC server – like in the old days.

Inspircd is a modern IRC server.
Anope is a services bot.

Together they form the base of a stable and reliable communications service.

In 2026 IRC may not be the primary comms channel, but it’s perfect for secondary/backup.

Continue reading →

Tom’s IT Cafe IRC Network

2026-03-312026-03-31 ~ Tom's IT Cafe ~ Leave a comment

I’ve set up a small IRC server for the Tom’s IT Cafe community.

IRC is a lightweight text-based chat system that has been used on the Internet for decades.
It’s simple, fast, and works on almost any device.

The server is fully encrypted and supports SASL authentication and host cloaking.

Connection details:

Continue reading →

Run Your Own IRC Server (Ergo Chat)

2026-03-272026-04-03 ~ Tom's IT Cafe ~ 2 Comments

Want a private comms channel without relying on Discord or Slack?
IRC is alive, and you can run your own today.

A small, well-configured IRC server gives you privacy, control, and minimal attack surface – all in a few commands.

Some people think that IRC is dead.
Some of them don’t even know what is it.
They’re young, grew up on modern comms.

IRC is the protocol that laid the foundation of modern chats.

Networks used large footprint ircd daemons for the base.
They registered services daemons for channel and nick retention.
TLS settings were rare and uncomfortable.
SASL authentication was hardly set.

Then new developments appeared.
The old technology got a modern revision.

Continue reading →

The Operator’s WSL Bible

2026-03-202026-03-17 ~ Tom's IT Cafe ~ Leave a comment

Windows Subsystem for Linux: a practical way to run Linux on Windows.
Run Linux GUI applications – through WSLg.

There are situations when a powerful Linux desktop is not given.
In this case WSL can provide some Linux tooling and flexibility.

Operators don’t break. We bend – we adapt.

Continue reading →

The Operator’s LUKS Bible

2026-03-132026-03-14 ~ Tom's IT Cafe ~ Leave a comment

Sensitive information is everywhere:

from your user databases
to your accounting software
inside your backups
on your smartphones

Names. Password hashes. Emails.
Financials. Customers. Quotes.
Configurations. Passwords.

Every company has their own threat model.

Yet – everyone should protect their most sensitive data.

Continue reading →

The Operator’s KVM Bible

2026-03-062026-03-05 ~ Tom's IT Cafe ~ Leave a comment

When the enterprise behind one of the widespread hypervisors was acquired:
many sysadmins decided to move on.

Most of them chose a Linux-based open-source alternative.
Many of them migrated to the Microsoft ecosystem.
They chased the same workflow, the same features they had before.

Only a very few operators dared to rework their processes and architecture.

KVM (Kernel-based Virtual Machines) is part of the Linux kernel.
It is a stable and fast hypervisor.

A carefully configured host OS for KVM can reduce the attack surface compared to feature-heavy hypervisors.
The libvirt API enables secure automation and configuration management.
KVM can host Linux, Windows and BSD virtual machines as well.
It ships an ecosystem of mature tools for the operators in charge.

KVM is not a downgrade. It’s a sideways step.

Continue reading →

Gitea – Ansible Installer Role

2026-02-272026-03-17 ~ Tom's IT Cafe ~ Leave a comment

Automation and configuration management are not just about comfort.
They provide security, auditability and operational freedom.

For this reason Tom’s IT Cafe provides an Ansible role that:

Downloads and installs the Gitea Linux binary
Sets up a system service (as a non-root user)
Sets up PostgreSQL (or SQLite for lightweight setups)
Optionally sets up a reverse proxy with Certbot or self-signed keys
Highly configurable through variables

The role focuses on a small, auditable code base with strong security.

Continue reading →

Gitea – Your Self-Hosted Git Platform

2026-02-202026-02-19 ~ Tom's IT Cafe ~ Leave a comment

You feel the comfort of the cloud – low maintenance, fast setup.
Your source code, configuration and files are safe.

Or… are they?

You rely on a third party for infrastructure control, security operations and availability.
What would your business continuity plan look like if your SaaS provider became unavailable?

In this article we investigate a self-hosted solution for small businesses.

Continue reading →

The CI/CD Of The Small Business World

2026-02-132026-02-04 ~ Tom's IT Cafe ~ Leave a comment

DevSecOps is one of the most important shifts in modern systems.
It is not DevOps with security added later.
It is security designed into the CI/CD pipeline before the first commit.

Continue reading →

Borg Backup – Encrypt And Deduplicate Your Data

2026-02-062026-01-26 ~ Tom's IT Cafe ~ Leave a comment

If you have any data – backups are not optional.
Devices crash. Pendrives disappear. Houses burn down.

Your backups are useful only if you can restore them.

Continue reading →

WireGuard – Secret Path In The Shades

2026-01-302026-01-26 ~ Tom's IT Cafe ~ Leave a comment

Your Virtual Private Network isn’t there to watch geo-blocked content.
Once VPNs were used to connect networks, like remote offices of a company.
Today they protect your information and privacy.
This is why your VPN isn’t an optional tool anymore.
It’s your shield against the unwanted attention and passive monitoring.

Continue reading →

AI Agents – The New Corporate Security Holes

2026-01-212026-01-15 ~ Tom's IT Cafe ~ Leave a comment

The adoption of AI agents has accelerated.
More data. Faster hardware. More delegated tasks.

AI agents thrive in hidden corners of corporate IT.
They wait for work in silence – as privileged users.

What happens when an outsider gains access to such an agent?
Its privileges become the outsider’s access.

Continue reading →

Suspend Then Hibernate with LUKS and LVM (A Practical Setup)

2026-01-142026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Linux power management was tricky in the early days.
Adding LUKS and LVM to the mix was a suicide combo.

Today it’s not just a possibility – it’s a baseline requirement for secure Linux setups.

Continue reading →