LXD performance observation

• May 26, 2020
• 59 words
• 1 min

You might want to consider enabling tmpfs...

AppArmor hat & child profiles

• March 19, 2020
• 550 words
• 3 min

My last post omitted the real reason I hadn't swapped to OnlyOffice was that I was too lazy to look further into apparmor. Allowing dash to inherit the php permissions with /bin/dash ix, is one solution but for other reasons, I wanted to write a more contained profile to spawn dash within. Searching the internet & reading my favourite apparmor docs didn't enlighten.

Why I'm not using ONLYOFFICE yet.

• February 26, 2020
• 368 words
• 2 min

I'm a huge fan of Nextcloud and version 18 brought great integration with ONLYOFFICE. I'm not using it though because it ships with binaries that aren't always straightforward to execute.

Connection reset...

• November 28, 2019
• 1712 words
• 9 min

After switching energy supplier, I discovered I couldn't connect to their website.

This is an explanation with notes of how I've attempted to diagnose the issue so far.

Nextcloud, CVE's & Apparmor

• October 26, 2019
• 1223 words
• 7 min

Nextcloud and others recently reported on CVE-2019-11043 which looks like a particularly nasty RCE affecting only nginx+php-fpm with certain configurations.

Unfortunately, the configuration the Nextcloud documentation recommended was one of those vulnerable configurations.