1. Traefik SSL grading

    Recently I discovered that many of the services I deployed upon my nomad cluster didn't had the SSL A grading I expected them to have. Somehow I asumed the traefik letsencrypt implementation got the A rating by default.

    After running the testssl.sh container it turns out they don't;

    $ docker run --rm -ti drwetter/testssl.sh domain.org
     Rating specs (not complete)  SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)
     Specification documentation  https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide
     Protocol Support (weighted)  95 (28)
     Key Exchange     (weighted)  100 (30)
     Cipher Strength  (weighted)  90 (36)
     Final Score …

  2. dockerized DNS over HTTPS using pi-hole through cloudflared proxy-dns

    a few months ago I configured a thin client as my home server to replace the previous raspberry pi setup.

    During that migration I moved over all native services within docker containers. One of those services being a pi-hole setup to block ad serving domains on dns level and to have a dns cache within our LAN to gain a bit of speed.

    It has been running ever since without any issue and worked pretty well.

    When cloudflare announced their fast and privacy based DNS resolver I got a bit intrigued by their DNS over HTTPS feature. Especially since our …


  3. Nexus OSS repository manager

    looking for a global repository store which could store maven projects, yum repositories, docker repositories, we bumped into Nexus repository manager. We used the official docker image to see how it can be implemented in the dockerized CI environment.

    docker repository

    as a first the docker repository feature could be enabled so we can start building and storing docker images for the different jenkins build slaves and the jenkins master so our work is reproducible and stored in a safe central place.

    We configured 3 repositories in nexus for our docker images seen as a recommended approach in the nexus …


Page 1 / 1