Install Passbolt Self-Hosted With Podman

~ Tom's IT Cafe ~ Leave a comment

Passbolt is an open-source password manager designed for teams and organizations that prioritize security and privacy. It offers the following features:

  • Security-First Approach: Passbolt puts security first, with a security model that supports user-owned secret keys and end-to-end encryption, regularly assessed by top penetration testers.
  • Built for Collaboration: It allows secure sharing of credentials with powerful auditing tools and unparalleled granularity for access controls and encrypted data.
  • Privacy Focus: Headquartered in the EU, Passbolt prioritizes privacy and is designed to comply with European privacy laws.
  • Versatility and Control: Passbolt is designed to put users in control of their data and protect them from a wide range of potential threats, making it suitable for security-conscious organizations.

Passbolt is trusted by a wide range of organizations, including Fortune 500 companies, the defense industry, universities, and startups, and has received 4,000 stars on GitHub as a seal of approval for its reliable and secure password management. It is also available as a free and open-source solution, with an extensible API for developers.

Continue reading “Install Passbolt Self-Hosted With Podman”

How To Configure An Apache SSL Reverse Proxy on Linux?

~ Tom's IT Cafe ~ Leave a comment

What is Apache?

Apache is a free and open-source cross-platform web server software that allows users to deploy their websites on the internet. It was launched in 1995 and has been the most popular web server on the Internet since April 1996.

What is a reverse proxy?

reverse proxy is a server that sits in front of web servers and forwards client requests to those web servers. It acts as an intermediary, intercepting and inspecting incoming client requests before forwarding them to the web server. Reverse proxies can provide additional levels of abstraction, control, security, and performance optimization. They are commonly used for load balancing, web acceleration, and to hide implementation details about the web servers.

What is SSL?

SSL, or Secure Sockets Layer, is a protocol for establishing authenticated and encrypted links between networked computers. Its current iteration is called TLS (Transport Layer Security).

Continue reading “How To Configure An Apache SSL Reverse Proxy on Linux?”

How to configure an SSL reverse proxy with Nginx?

~ Tom's IT Cafe ~ Leave a comment

reverse proxy is a server that sits in front of web servers and forwards client requests to those web servers. It acts as an intermediary, intercepting and inspecting incoming client requests before forwarding them to the web server. Reverse proxies can provide additional levels of abstraction, control, security, and performance optimization. They are commonly used for load balancing, web acceleration, and to hide implementation details about the web servers.

Continue reading “How to configure an SSL reverse proxy with Nginx?”

How to set up vhosts in the Apache2 webserver?

~ Tom's IT Cafe ~ Leave a comment

Apache2 is a free and open-source web server that allows users to deploy their websites on the internet. It was first released in 1995 and is maintained by the Apache Software Foundation. Apache is fast, reliable, and secure, and it runs on a large percentage of web servers, making it one of the most popular choices for website owners, developers, and hosting providers.

Continue reading “How to set up vhosts in the Apache2 webserver?”

How To Install Vaultwarden Password Manager In Podman?

~ Tom's IT Cafe ~ Leave a comment

Vaultwarden is an open-source password manager that is a fork of Bitwarden. It is written in Rust and is designed to be lightweight, easy to set up, and run on various platforms. Vaultwarden is an alternative backend for the password manager Bitwarden, and while it does not implement the same feature set as the Bitwarden server, its setup is much simpler. Vaultwarden is a great option for small businesses because it is lightweight and runs well on devices with limited resources, such as Raspberry Pi and Synology NAS. It is also easy to set up and use, making it a great choice for businesses that do not have dedicated IT staff. Additionally, Vaultwarden is open-source, which means that businesses can customize it to meet their specific needs.

Continue reading “How To Install Vaultwarden Password Manager In Podman?”

How To Create A Scalable Jenkins CI/CD Environment Using Containers?

~ Tom's IT Cafe ~ Leave a comment

Jenkins is a platform for creating a Continuous Integration/Continuous Delivery (CI/CD) environment. It is written in Java and provides support for various version control tools such as Git, running Bash scripts and Windows batch files, building Ant and Apache Maven-based projects, and more. Jenkins helps build, test, and continually deploy software. It is an open-source system and one of the leading automation servers. Jenkins requires scripting some automation steps, but it provides a fast and robust way to systematize the software development lifecycle. The program runs web containers and plugins, such as Apache Tomcat, and helps manage lifecycle and access rights requests. Over 1700 plugins for Jenkins enrich the software integration, automation, and delivery processes and provide a customizable environment. Jenkins is used for the whole software delivery pipeline, including deployment.

Continue reading “How To Create A Scalable Jenkins CI/CD Environment Using Containers?”

Container Orchestration In Podman Pods With Kubernetes Compatibility

~ Tom's IT Cafe ~ Leave a comment

Containerization has revolutionized the way we deploy and manage applications, offering lightweight and scalable solutions for a variety of workloads. The Podman, a container management tool, provides a flexible and user-friendly alternative to traditional container orchestration systems.

Continue reading “Container Orchestration In Podman Pods With Kubernetes Compatibility”

TryHackMe’s Advent of Cyber – A Gift for Cyber Security Enthusiasts

~ Tom's IT Cafe ~ Leave a comment

In the ever-evolving landscape of cyber security, staying ahead of the curve is not just a preference but a necessity. Continuous learning and hands-on practice are crucial components of honing the skills required to defend againsTryHackMet the relentless onslaught of cyber threats. TryHackMe, a leading platform for cyber security education, has introduced an innovative and festive approach to learning with its Advent of Cyber series. This blog post explores the unique features that make TryHackMe’s Advent of Cyber a valuable resource for individuals seeking to enhance their cyber security prowess.

Continue reading “TryHackMe’s Advent of Cyber – A Gift for Cyber Security Enthusiasts”

The Magic of Burp Suite: Interception Techniques for Enhanced Web Security

~ Tom's IT Cafe ~ Leave a comment

In the realm of web security, Burp Suite stands tall as a powerful ally for ethical hackers, penetration testers, and cyber security professionals alike. Among its arsenal of robust features, one of the most essential functionalities is the ability to intercept and inspect connections between a browser and a website. In this blog post, we will explore the art of connection interception using Burp Suite and understand how this technique can bolster web security and protect against potential vulnerabilities.

Continue reading “The Magic of Burp Suite: Interception Techniques for Enhanced Web Security”

Writing Your Own Ansible Role: A Comprehensive Guide Using Industry-Standard Tools and Software

~ Tom's IT Cafe ~ Leave a comment

Automation has become a cornerstone of modern IT operations, and Ansible stands as one of the most popular tools for configuration management, application deployment, and task automation. Ansible simplifies these processes through its role-based approach, making it easier to manage complex infrastructure and streamline workflows. In this blog post, we will explore how to create your own Ansible role using industry-standard tools and software. By the end, you’ll be well-equipped to design and share your own reusable Ansible roles.

Continue reading “Writing Your Own Ansible Role: A Comprehensive Guide Using Industry-Standard Tools and Software”

Enhancing Security with Tripwire on Debian Bookworm

~ Tom's IT Cafe ~ Leave a comment

In an era where digital threats continue to evolve, the need to safeguard your Linux system has never been more critical. Ensuring the integrity of critical system files, directories, and configurations is a fundamental aspect of system security. Enter Tripwire, a robust host-based intrusion detection system (HIDS) designed to monitor and protect your Debian Bookworm system against unauthorized changes and security breaches.

Continue reading “Enhancing Security with Tripwire on Debian Bookworm”

What is DevSecOps and Why is it Good for Enterprises and Small Businesses?

~ Tom's IT Cafe ~ Leave a comment

DevSecOps is a term that combines development, security, and operations. It is a framework that integrates security into all phases of the software development lifecycle, from planning to deployment and beyond. DevSecOps aims to make security a shared responsibility of everyone involved in the software delivery process, rather than a separate function that is performed at the end or by a different team.

Continue reading “What is DevSecOps and Why is it Good for Enterprises and Small Businesses?”

Streamlining IT Operations: Getting Started with Ansible Automation in 2024!

~ Tom's IT Cafe ~ Leave a comment

In the fast-paced world of technology, efficiency and automation are key to staying competitive and managing resources effectively. Small and medium-sized businesses (SMBs) are no exception, and one powerful tool for automating IT operations is Ansible. We -at Tom’s IT Cafe- start a new series of blog posts where, we will guide you through the process of installing and getting started with Ansible in a small company to kickstart your automation journey.

Continue reading “Streamlining IT Operations: Getting Started with Ansible Automation in 2024!”

AIDE: Protecting the Integrity of Your Linux System

~ Tom's IT Cafe ~ Leave a comment

In today’s digital landscape, safeguarding your Linux system against potential security threats is paramount. Detecting unauthorized changes to critical system files and directories is a fundamental aspect of this protection. Enter AIDE, or the Advanced Intrusion Detection Environment, a potent open-source tool designed to fortify the integrity of your Linux system by detecting alterations that might signal security breaches or system tampering.

Continue reading “AIDE: Protecting the Integrity of Your Linux System”

Getting Started with Ansible Execution Environments: A Quick Guide

~ Tom's IT Cafe ~ Leave a comment

Ansible is a powerful automation and configuration management tool widely used in the DevOps world. One of the recent additions to Ansible is Execution Environments, which simplifies the management of Ansible collections and dependencies. In this blog post, we will explore what Ansible Execution Environments are and provide a quick start guide to help you get started.

Continue reading “Getting Started with Ansible Execution Environments: A Quick Guide”