Tootfinder

Opt-in global Mastodon full text search. Join the index!

@x_cli@infosec.exchange
2024-09-25 08:17:22

Question about #Caddy: Does the acme_server db increase in size until disk saturation or is there a pruning mechanism somewhere to delete expired certificates?
I could not find any option regarding pruning, in the Caddyfile config, nor in the JSON config, and I failed to spot any in the source code...
I have a db file still containing certificates that are several months old. The db file was stored in a volume with very limited size and the db ended up filling it entirely (> 100MB) for 20 ACME clients. Chaos ensued.
#infosec #acme #devops

@x_cli@infosec.exchange
2024-10-07 09:56:28

L'infrastructure immuable ! Mais qu'est-ce que c'est que ce truc ? Et pourquoi c'est mieux qu'#Ansible ?
Envie d'en savoir plus sur l'un des futurs de l'Infrastructure as Code (#iac) et l'impact positif en sécurité que cela peut apporter ?
J'ai sorti un épisode de podcast Š ce sujet : #infosec #devops