SystemsGolive
open-menu closeme
Home
About
github linkedin mail rss

  • Pi-hole and Unbound on Raspberry Pi 4 – A Self-Hosted Ad-Blocking and Private DNS Resolver for a Tracker-Free Home Network

    calendar Mar 1, 2026 · 9 min read · Pi-hole Unbound DNS Raspberry Pi Homelab Ad Blocking Privacy DNSSEC Recursive DNS Self-hosted  ·
    Share on: twitter facebook linkedin copy
    Pi-hole and Unbound on Raspberry Pi 4 – A Self-Hosted Ad-Blocking and Private DNS Resolver for a Tracker-Free Home Network

    Run Pi-hole and Unbound on a Raspberry Pi 4 to block ads and tracking domains across every device on your home network, while resolving DNS privately using a local recursive resolver — no third-party DNS provider required.


    Read More

  • SELinux Context Mismatch: The Hidden Culprit in LDAP Certificate Renewal

    calendar Jan 28, 2026 · 3 min read · LDAP SELinux SSL/TLS OpenLDAP Certificate Management Linux Security Troubleshooting LDAPS  ·
    Share on: twitter facebook linkedin copy
    SELinux Context Mismatch: The Hidden Culprit in LDAP Certificate Renewal

    An internal LDAP certificate renewal failed due to incorrect SELinux contexts on transferred certificate files. Despite correct permissions and ownership, OpenLDAP couldn't initialise TLS. Using restorecon to fix the security context resolved the issue immediately, highlighting the importance of SELinux context verification in certificate deployments.


    Read More

  • Case Study - Automating Let's Encrypt Wildcard Certificates with Cloudflare DNS and Full (Strict) TLS Encryption

    calendar Jan 3, 2026 · 12 min read · TLS SSL Encryption Certificate Automation Cloudflare  ·
    Share on: twitter facebook linkedin copy
    Case Study - Automating Let's Encrypt Wildcard Certificates with Cloudflare DNS and Full (Strict) TLS Encryption

    This article demonstrates how to implement Full (Strict) SSL/TLS encryption by combining Cloudflare's managed frontend certificates with Let's Encrypt wildcard certificates on your origin server.


    Read More

  • Seamless Production Migration: Moving to Cloudflare Load Balancer

    calendar Nov 23, 2025 · 7 min read · Cloudflare Load Balancer' Migration SSL TLS Certificate Management Zero Downtime  ·
    Share on: twitter facebook linkedin copy
    Seamless Production Migration: Moving to Cloudflare Load Balancer

    Our journey migrating our production care management platform from ANS to Cloudflare Load Balancer—eliminating manual certificate management, resolving security concerns, and achieving a seamless cutover.


    Read More

  • Implementing HTTP/2 with Zero Downtime: A Blue-Green Deployment Case Study

    calendar Oct 4, 2025 · 9 min read · Infrastructure HTTP/2 Apache  ·
    Share on: twitter facebook linkedin copy
    Implementing HTTP/2 with Zero Downtime: A Blue-Green Deployment Case Study

    This case study demonstrates how we implemented HTTP/2 on production Apache servers with zero downtime using a blue-green deployment strategy.


    Read More

  • A Guide to Generating TLS Ed25519 (Elliptic Curve Cryptography) Certificates Using Private CA

    calendar Jul 10, 2025 · 11 min read · TLS SSL Encryption Certificate Ed25519  ·
    Share on: twitter facebook linkedin copy
    A Guide to Generating TLS Ed25519 (Elliptic Curve Cryptography) Certificates Using Private CA

    This guide demonstrates how to set up secure TLS 1.3 communication using Ed25519 elliptic curve certificates and a private Certificate Authority (CA). It covers encrypted client-server communication with modern, efficient cryptographic standards — ideal for internal systems, microservices, and zero-trust network architectures.


    Read More

  • MySQL User Profile Creation Guide

    calendar Jun 21, 2025 · 5 min read · MySQL User Creation Priviledges Role-Bases Access Profiles Best Practices  ·
    Share on: twitter facebook linkedin copy
    MySQL User Profile Creation Guide

    Learn how to set up MySQL user accounts with role-based access profiles, secure configurations, and consistent privilege management across environments.


    Read More

  • Standardised MySQL Access via SSH Tunnel for Workbench in Non-Production Environments

    calendar Jun 21, 2025 · 2 min read · MySQL Workbench SSH  ·
    Share on: twitter facebook linkedin copy
    Standardised MySQL Access via SSH Tunnel for Workbench in Non-Production Environments

    A secure and standardised approach to accessing MySQL in non-production environments using SSH tunneling, with a focus on least privilege and improved access controls.


    Read More

  • Configuration and Usage of Custom Apache 503 Error Pages for Web Application Instances

    calendar May 5, 2025 · 4 min read · Infrastructure Web Applications Apache  ·
    Share on: twitter facebook linkedin copy
    Configuration and Usage of Custom Apache 503 Error Pages for Web Application Instances

    This article outlines the implementation and usage of custom Apache 503 error pages on production Tomcat web application instances


    Read More

  • Essential Linux Network Commands: A Practical Guide

    calendar Feb 4, 2025 · 4 min read · Networking  ·
    Share on: twitter facebook linkedin copy
    Essential Linux Network Commands: A Practical Guide

    Network troubleshooting and configuration are crucial skills for Linux system administrators. This guide covers essential network commands for AlmaLinux/RHEL systems.


    Read More
    • ««
    • «
    • 1
    • 2
    • »
    • »»

Mickael Asghar photo

Mickael Asghar

DevOps Engineer with expertise in cloud computing, automation, microservices, networking, and security - ensuring scalable, secure, and resilient IT systems.
Read More

Recent Posts

  • Pi-hole and Unbound on Raspberry Pi 4 – A Self-Hosted Ad-Blocking and Private DNS Resolver for a Tracker-Free Home Network
  • SELinux Context Mismatch: The Hidden Culprit in LDAP Certificate Renewal
  • Case Study - Automating Let's Encrypt Wildcard Certificates with Cloudflare DNS and Full (Strict) TLS Encryption
  • Seamless Production Migration: Moving to Cloudflare Load Balancer
  • Implementing HTTP/2 with Zero Downtime: A Blue-Green Deployment Case Study
  • A Guide to Generating TLS Ed25519 (Elliptic Curve Cryptography) Certificates Using Private CA
  • MySQL User Profile Creation Guide
  • Standardised MySQL Access via SSH Tunnel for Workbench in Non-Production Environments

Categories

LINUX 4 SECURITY 4 INFRASTRUCTURE 2 TROUBLESHOOTING 2 CI/CD PIPELINES 1 DATABASE 1 DATABASE ADMININISTRATION 1 DEVOPS 1 HOMELAB 1 INCIDENT REPORTS 1 INFRASTRUCTURE MIGRATION 1 INFRASTRUCURE 1 KUBERNETES 1 NETWORKING 1
All Categories
CI/CD PIPELINES1 DATABASE1 DATABASE ADMININISTRATION1 DEVOPS1 HOMELAB1 INCIDENT REPORTS1 INFRASTRUCTURE2 INFRASTRUCTURE MIGRATION1 INFRASTRUCURE1 KUBERNETES1 LINUX4 NETWORKING1 OPERATIONS1 SECURITY4 SITE RELIABILITY ENGINEERING1 SOFTWARE ENGINEERING1 SYSTEM ADMINISTRATION1 TROUBLESHOOTING2
[A~Z][0~9]

Tags

SSL 4 MYSQL 3 TLS 3 ALERT 2 APACHE 2 CERTIFICATE 2 CERTIFICATE MANAGEMENT 2 CLOUDFLARE 2 ENCRYPTION 2 INFRASTRUCTURE 2 MONITORING 2 AD BLOCKING 1 API 1 ARGOCD 1
All Tags
AD BLOCKING1 ALERT2 APACHE2 API1 ARGOCD1 AUTOMATION1 BEST PRACTICES1 CERTIFICATE2 CERTIFICATE MANAGEMENT2 CICD1 CLOUDFLARE2 CONNECTIVITY1 CPU1 DEPLOYMENT1 DISKSPACEOPTIMISATION1 DNS1 DNSSEC1 DOCKER1 ED255191 EKS1 ENCRYPTION2 ENVIRONMENT1 FLASK1 GOLANG1 HOMELAB1 HTTP/21 INCIDENT1 INDEX1 INFRASTRUCTURE2 JENKINS1 KUBERNETES1 LDAP1 LDAPS1 LINUX1 LINUX SECURITY1 LOAD BALANCER'1 LOGMANAGEMENT1 LOGROTATE1 METRICS1 MIGRATION1 MONITORING2 MYSQL3 NETWORKING1 OPENLDAP1 PI-HOLE1 PING1 POSTGRESQL1 PRIVACY1 PRIVILEDGES1 RASPBERRY PI1 RECURSIVE DNS1 ROLE-BASES ACCESS PROFILES1 ROUTING1 SELF-HOSTED1 SELINUX1 SERVICE1 SSH1 SSL4 SSL/TLS1 STRATEGY1 SYSADMIN1 THRESHOLD1 TLS3 TROUBLESHOOTING1 UNBOUND1 USER CREATION1 WEB APPLICATIONS1 WORKBENCH1 ZERO DOWNTIME1
[A~Z][0~9]

© 2026 SystemsGo.live and Mickael Asghar. All rights reserved.

to-top