security
Dirty Frag, Copy Fail, and the AI-Accelerated Exploit Pipeline
Two critical Linux kernel privilege escalation vulnerabilities dropped in the past two weeks. Both are deterministic, single-command root exploits. One of them was discovered with AI assistance. The other had
gstack in Practice: A Solo Developer’s Toolkit for AI-Assisted Engineering
I know what good software engineering looks like. I’ve been doing this for decades. But as a solo developer, I sometimes skip the process and rely on gut instinct and
saslfail: Escalating Fail2ban Bans for Postfix SASL Authentication Attacks
Standard fail2ban bans just get waited out. saslfail uses escalating bans — 48 hours, 8 days, 32 days — backed by a persistent SQLite database that survives restarts and remembers
Hardening a WordPress Server in an Afternoon
Most WordPress hardening guides are bloated with solved problems. This is the version for self-hosters who want to spend an afternoon on what actually matters: permissions, auth, and server config.
Why Your Apache Cipher Suite Probably Has RC4 in It
If your Apache SSL config is a few years old, RC4 is probably still in it. Modern browsers skip it, but scanners flag it and it should go. Here's how