Creating a GitHub Pull Request

To contribute code to a Git repository that you do not have commit access to, you need to create a pull request, asking the owner of the repository to merge your code into the repository. To achieve this cleanly, you should first fork the repository on GitHub and clone this…

Read More

Ultimate SSH security for your server

Bombarded with attacks So you've generated a public/private key pair to log in to your server, set SSH not to accept passwords and disabled root login. You may have even changed the port number on which SSH listens (probably a waste of time). A problem remains, however. Your server…

Read More

Ghost 1.0 - A Shiny New Blog

With the launch of Ghost 1.0 (the blogging software I use for this site), I'm going to attempt to get back into blogging. On the backend, Ghost 1.0 is a lot better to manage. They have introduced a command line interface (CLI) that makes updating the software much…

Read More

A Twist on Development Tokens in F1

Engine development tokens have been a failure in F1 and will be scrapped for the 2017 season. In theory this will allow the likes of Honda and Renault to pour money into their engine development departments. Honda might well do this to regain some serious loss of face for the…

Read More

Deploying a Flask app with Nginx

As a part of the Udacity Full Stack Web Developer Nanodegree, they got us to deploy our Flask app to an Ubuntu server running Apache. This was relatively simple (find out more with my full server setup document). However, on my own server I use the Nginx web server and…

Read More

How to improve HTTPS security

The the last post I showed how to obtain and deploy the new free SSL/TLS certificates from the Let’s Encrypt project. In this post, I’ll show how to defend your newly secured website against various weaknesses that lurk around SSL/TLS. Test your site The first thing…

Read More