Rootless Docker for Self-Hosting: Less Blast Radius, Same Apps
Run Docker without giving every container root-shaped teeth. A practical rootless Docker setup for self-hosters who want safer VPS and homelab apps.
Read more
#security
18 articles
Self-Host Renovate for Docker Compose Updates Without the YOLO Button
Watchtower is convenient until it updates the wrong thing at the wrong time. Here's how I use Renovate to get pull requests for Docker Compose updates instead.
Read more
SSH Certificates: The Login Upgrade I Wish I Used Before My Homelab Got Messy
Stop copying SSH public keys to every VPS and homelab box. SSH certificates give you short-lived access, cleaner revocation, and one sane trust model for your servers.
Read more
Self-Host SearXNG: Private Search Without Feeding the Ad Machine
I got tired of search pages full of ads, tracking, and AI boxes. Here's how I run SearXNG at home with Docker, sane settings, and a few security guardrails.
Read more
Caddy Client Certificates: The Cheap Private Gate I Put in Front of My Homelab
Password prompts are fine. VPNs are better. But for a few private web apps, Caddy mutual TLS is the tiny security layer I wish I had set up earlier.
Read more
CrowdSec: The Crowd-Powered IPS That Replaced Fail2ban on My Servers
Fail2ban was good. CrowdSec is better. Here's why I switched my entire homelab to this collaborative intrusion prevention system — and how to set it up in 15 minutes.
Read more
Self-Host Your Own Chat Server: Matrix vs Revolt vs Mattermost (2026)
I tested Synapse, Revolt, and Mattermost to replace Discord and Slack on my homelab. Here's what I learned about running your own chat infrastructure — and which one I actually use.
Read more
Tailscale for Self-Hosting: The Easiest Way to Access Your Homelab Remotely
Stop opening ports and messing with complex VPN configs. Tailscale gives you secure, zero-config access to every self-hosted service from anywhere. Here's how I set it up and why I won't go back.
Read more
Vaultwarden : Votre Coffre-Fort de Mots de Passe Auto-Hébergé
J'ai quitté LastPass après leur fuite de données. Voici pourquoi Vaultwarden (Bitwarden RS) est le meilleur gestionnaire de mots de passe self-hosté — et comment l'installer.
Read more
Manage Your Self-Hosted App Secrets With HashiCorp Vault
Stop scattering API keys in .env files. Set up HashiCorp Vault in Docker to centralize, rotate, and audit every secret your self-hosted apps need.
Read more
How to Self-Host WireGuard VPN: Access Your Homelab From Anywhere
Set up your own WireGuard VPN server in Docker. Connect to your homelab securely from your phone, laptop, or anywhere — no paid VPN needed.
Read more
How to Set Up Authentik: SSO for Your Entire Self-Hosted Stack
Stop managing 12 separate logins. Set up Authentik to get single sign-on across all your self-hosted apps — Nextcloud, Grafana, Gitea, and more.
Read more
How to Backup Your Self-Hosted Apps: Complete Guide to Data Protection
Learn how to properly backup your self-hosted applications with Docker volumes, databases, and off-site strategies. Protect your data from loss.
Read more
How to Set Up Traefik Reverse Proxy with Docker — Complete Guide
Learn how to configure Traefik reverse proxy for Docker containers with automatic SSL certificates, dashboard access, and production-ready security settings.
Read more
How to Self-Host Vaultwarden: The Ultimate Bitwarden Alternative
Complete guide to self-hosting Vaultwarden, a lightweight Bitwarden server. Set up your own password manager with Docker in under 30 minutes.
Read more
Secure Your VPS in 20 Minutes: The Hardening Checklist I Use on Every Server
SSH keys, UFW firewall, Fail2ban, auto-updates — the exact steps I run on every new VPS before deploying anything. Copy-paste ready.
Read more