The Ghost Operator's Signal
If you have any data – backups are not optional.
Devices crash. Pendrives disappear. Houses burn down.
Your backups are useful only if you can restore them.
Continue reading “Borg Backup – Encrypt And Deduplicate Your Data”
Your Virtual Private Network isn’t there to watch geo-blocked content.
Once VPNs were used to connect networks, like remote offices of a company.
Today they protect your information and privacy.
This is why your VPN isn’t an optional tool anymore.
It’s your shield against the unwanted attention and passive monitoring.
The adoption of AI agents has accelerated.
More data. Faster hardware. More delegated tasks.
AI agents thrive in hidden corners of corporate IT.
They wait for work in silence – as privileged users.
What happens when an outsider gains access to such an agent?
Its privileges become the outsider’s access.
Linux power management was tricky in the early days.
Adding LUKS and LVM to the mix was a suicide combo.
Today it’s not just a possibility – it’s a baseline requirement for secure Linux setups.
Continue reading “Suspend Then Hibernate with LUKS and LVM (A Practical Setup)”
Phishing did not disappear.
It evolved.
In 2026, phishing emails look real.
SMS messages feel urgent.
Websites copy everything.
The goal is simple.
Make you rush.
Make you click.
This article shows how to slow down and spot phishing before it works.
Continue reading “How To Avoid And Detect Phishing In 2026”
When you hear the word encryption, it often sounds like something only security researchers and intelligence agencies deal with. But in reality, every IT professional – even small teams, freelancers, or home users – should understand the basics of protecting sensitive files.
GnuPG (or GPG) is one of the most trusted tools for this. It’s free, open-source, built into every Linux distribution, and works perfectly for encrypting files, verifying downloads, or signing work-related documents.
This guide walks you through a clean, beginner-friendly setup – no advanced OPSEC, no air-gapped machines, no master-key rituals. Just the essentials that anyone at home or at work can start using today.
Continue reading “GPG Basics: Simple, Safe Encryption for Everyday IT Work”
Git is a powerful tool, but solo developers often inherit processes designed for large teams.
Corporate branching strategies solve coordination problems that an individual simply doesn’t have.
When you’re the only developer in the room, heavy processes become friction.
You don’t need gates, ceremonies, or complex merging rules to work effectively.
If you’re a developer, system admin, or just someone who values privacy, these benefits make local LLMs worth a look.
Continue reading “Local LLMs for Privacy‑First Workflows A Practical Guide with LMStudio”
When you first see a file in Linux, the three-letter string that starts with -rw-r--r-- can look like an alien language.
It tells the system who can read, write, or execute that file. Don’t worry – it’s just a set of rules.
In this post we’ll break those rules down into bite-sized pieces and give you a handy cheat sheet for the most common chmod commands.
At Tom’s IT Cafe we break down the hard stuff so you can secure your
systems without getting lost in jargon. Below is a straight-ahead look
at what “in transit” and “in rest” mean, why they matter, and how to
implement them with the most common algorithms.
A firewall sits between your server and the outside world. It decides which network traffic is allowed to reach your machine and which should be dropped. Think of it as a bouncer at a club: only people on the guest list get in.
UFW, short for Uncomplicated Firewall, is Ubuntu’s front‑end to iptables. It lets you write rules with simple commands instead of juggling raw tables.
Every system admin has a moment when a simple “look at that file” turns
into a three-hour hunt for information. That’s where the old friends
grep, head, tail, cut, less and sed come in. They’re not
fancy new tools; they’re tried-and-true helpers that can save you hours
of repetitive work.
Want your blog reachable by anyone – both Tor users and regular browsers – without running two separate installations?
The trick is one code-base, two reverse proxies, and a single database. Below is a quick 400-500 word guide for Ubuntu/Debian that shows the minimal steps.
Want a private blog or small business site that nobody can reach unless they use the Tor Browser?
Below is a step-by-step guide that keeps the server lean, secure, and accessible only via an .onion address.
All commands are for Ubuntu/Debian; adjust paths if you’re on another distribution.
Tired of corporate servers watching every chat?
Host your own Matrix on Tor, no public IP, zero tracking.
By running Matrix over Tor, you eliminate exposure to public servers and keep your chats private.
This isn’t just another guide – it’s a battle‑tested recipe for keeping your Matrix chats private on Tor.
Continue reading “Private Matrix: Hosting a Synapse Server Over Tor (Modern Chat On The Dark Net)”
Tom's IT Cafe 