-
Install nginx with TLS termination on Ubuntu 24.04
A clean nginx install with Let's Encrypt automation, HTTP/2, OCSP stapling, and a secure default header set.
-
A baseline SSH configuration that works on every Linux I touch
Key-only authentication, restricted ciphers, allowed users, and ProxyJump-friendly settings. The sshd_config I drop into every new server.
-
Configure Postfix as a relay through Amazon SES on Debian 12
SASL authentication, TLS, and the smtpd_relay restrictions that prevent open-relay accidents. The setup I keep paste-deploying onto small boxes.