pdemro.com

Ghost & Caddy - Restrict admin url

The ghost blog doesn't have a configuration for changing the admin url. By default the admin interface and logon portal is available at https://<your blog>/ghost. I tend to agree with this post in one of several GitHub issue threads asking for this feature. Hardening, defendably the

SpFx Proxy Debugging in a VM

The Problem My work laptop's image is full of spyware, bloatware, inventory management, anti-phishing and anti-virus applications. As time goes on between imaging, the bloat becomes worse until a relatively powerful i7 CPU, 16GB ram laptop with SSD slows to a crawl. Introduce a global pandemic and the necessity to

Use FireFox, DuckDuckGo. Donate to Mozilla

The new FireFox browser is incredible. Mozilla is the only browser organization which pretends to care about privacy. Set DuckDuckGo to your default search engine on all devices, all browsers. Download FireFox to all of your devices. Remove and deprecate all use of personal data harvesting browsers. If you are

spfx

SharePoint Framework SPFx Node Version Compatibility Matrix

The SharePoint Framework has gone through many revisions since its introduction some time in early 2017. I have compiled this version matrix by scanning release notes of previous versions of the platform for future reference. At the time of writing I am unaware of any officially documented compatibility issues between

Hosting Secure Cloud WordPress with Caddy & Docker

Some notes from implementing Wordpress with Caddy and Docker Prerequisites There are a few prerequisites before Caddy will be able to negotiate a certificate from Let's Encrypt: Valid domain name that you own DNS configured to point your domain to your server DNS propagated For more information on how to

caddy

Restricting Files & Paths in Caddy

I received an email today from an independent security researcher which detailed a vulnerability in pdemro.com. I am using a pretty old version of the Ghost docker image which apparently serves a directory which is a Git repository (including a .git folder). The vulnerability exploited my permissive Caddy configuration

sharepoint

Improve SharePoint Framework Build Times by hacking Gulp and Webpack

SharePoint Framework (SpFx) is the latest-and-greatest way to build web parts and bolt on modifications to SharePoint Online (SpFx also has a limited on-premises capability with SharePoint 2016). Adopting SpFx has been mostly a positive experience but as with any new technology there are challenges and growing pains. One challenge

Debugging SharePoint Framework Extensions in FireFox and VS Code

Quickly jotting down my notes on how to debug SpFx extensions with FireFox & Code. This probably applies to SpFx web parts as well. Install FireFox the Debug Adapter The Microsoft instructions for debugging using Chrome are pretty much in play here, the only difference is you'll be installing the

sharepoint

Create a single server farm in SharePoint 2016

I was looking around over the last few days/weeks and couldn't find many resources on how to actually create a true single server farm in SharePoint 2016 which doesn't depend on active directory. I am using Azure to provision the VM in this excersize so we are skipping the

sharepoint

MySite Feature Stapling fix for SharePoint 2016

Update 01-09-2017 - SharePoint 2016 Feature Pack 1 brings several functional updates. One of these updates is the "OneDrive for Business Modern Experience." The ODFB Modern experience is not compatible with traditional feature stapling and I have included the powershell steps below to disable/revert it. How to

caddy

Caddy Won't Generate a Certificate/Doesn't Load

I have spent the last few months getting familiar with Caddy and Let's Encrypt. During implementations I have learned a couple gotchas which might be helpful when Caddy doesn't work. Domain Black List If you're hosted on Azure, Amazon or other popular cloud providers, you might be issued a subdomain

sharepoint

Set Database Names for Search Service Application in SharePoint 2016

Unless you script SharePoint installation using AutoSpInstaller or a similar tool, you may not be able to choose database names when creating service applications. When creating a Search Service Application, 4 databases are created in the background: Admin database (primary, stores all configuration) Analytics Crawl Links Changing the names of

caddy

GOGS: How to set up an SSH key when using Docker

Connecting to Git via SSH improves development quality-of-life via username & password prompt liberation. The gist is to replace the standard username and password prompt in git with public-key-encryption. There are a number of security benefits to moving credentials to SSH in Git in addition to the QoL improvements. I

docker

Piwik Analytics for Ghost using Docker and Caddy

If you want to see how many people are visiting your site you will need some kind of analytics. Piwik is great because it is open source and works well with Docker. Read on for documented steps to install Piwik with Docker and Caddy. Piwik depends on MySQL so I'm

ghost

Adding Comments to Ghost with Disqus

For blog articles I visit, the comments section can be more helpful than the actual article's content. Often times the comment section contains the solution I am looking for. Because of these and other reasons interesting to me I have set up comments on this blog. The platform I have

docker

SSL reverse proxy with Caddy, Docker and Let's Encrypt

After building my Ghost Docker container I wanted to make sure that everything is served encrypted over the internet at the insistence & coercion of my peers. Setting up SSL using Caddy, Docker and Let's Encrypt is simple. Read on for steps on how to accomplish this configuration. Introducing Let's

docker

Docker, Ghost, Free SSL with Caddy WebServer

A few comments on my experience with creating this website. The blog was built using a combination of techs which are fairly new to me Docker software containerization platform http://www.docker.com Nginx - web server https://www.nginx.com Caddy web server, out-of-box encryption https://caddyserver.com Let's