By:
On:
In: General

In the past, hosting a website from your own home required a fair amount of technical know-how and came with significant security risks. Traditional setups involved several key steps: While effective, this approach exposed your home network to the internet. Opening ports on your router made your physical location traceable and increased the risk of cyberattacks. A Safer, Simpler Way: Cloudflare Zero Trust Cloudflare Zero Trust has transformed how individuals can host services from their homes by offering a much safer and more straightforward solution. With Cloudflare’s free tunneling service, you no longer need to expose your home server directly to the internet. Here’s howRead More →

By:
On:
In: General, Monitoring

1. Avoid Relying Solely on Email for Alerts Email is not a reliable alerting mechanism. Alerts can be delayed, filtered as spam, or ignored due to cluttered inboxes. From a user experience perspective, email-based alerts are often messy and ineffective. Recommendation: Use a dedicated alerting app or platform that supports webhook integrations. Azure and most modern monitoring tools offer this functionality. These solutions provide more reliable and timely alerting mechanisms. 2. Be Selective and Strategic with Monitors Not all systems or services require immediate alerts. It’s important to evaluate the criticality of each component before creating alerts. Example: If a non-business-critical website goes offline atRead More →

By:
On:
In: General

We mostly care about the cpu/memory/storage metrics for mysql. I found another interesting metrics, it’s the aborted clients. What is it? It’s the number of the client is unable to authenticate to your servers. Why does it matter? There are a few reason why the client is unable to connect: your server is reaching the maximum connections, the user is using wrong password. If this value is showing, it means we are not fully operational. It’s good for proactive action on this.Read More →

By:
On:
In: General

We recently got a spike in the requests, all the requests are coming from Alibaba IP address space. We are not sure what the purpose of this request is, the user agent does not identify what tool it is. The request is also coming from many IP addresses, blocking individual IP is challenging as there are so many IPs. After checking some properties of the IP, we see it’s coming from the AS number. Luckily Cloudflare WAF supports the rule condition based on AS number, applying the new rule based on the AS number helped us mitigated the issue in a few minutes. Cloudflare hasRead More →

By:
On:
In: General

When you want to apply some policy, most of the articles on the internet will provide you this sample You do the same, put it seems that the rules where not applied. How can you identify it, create some new lines in your script to capture your current chrome info , open the following urls ( about://chrome , about://policy/logs, about://extensions) When you have the screenshot, you will see the actual chrome configuration, it will give you some hints to troubleshoot. In my case, i found that we have 2 google version. In my case i should apply the policy to this locationRead More →

By:
On:
In: General

If you are writing some puppeteer script, i believe your biggest challenges are because it’s all headless, not easy to troubleshoot when some issues only happen with your puppeteer but it doesn’t happen with your own browser. I have been struggled in the last few days because our puppeteer can’t not do the authentication. After many days of trouble shooting, it turned out that when we install puppeteer (npm -i puppeteer) , it will installed its own version. Somehow this version does not work as expected. In normal situation, we don’t know this because we think it will run on the version we manually install.Read More →