Blocking Sensitive Dotfiles in nginx-proxy for Dockerized WordPress
Exposed dotfiles like .env, .git, and .htpasswd are among the most exploited attack vectors in containerized WordPress deployments. This tutorial walks through writing a targeted nginx location rule, mounting it into nginxproxy/nginx-proxy without rebuilding the image, and verifying the block is active โ without breaking Let's Encrypt ACME challenges.
Grafana Alerting Rules for Docker Host and Container Metrics
A practical walkthrough for wiring Prometheus alerting rules, Alertmanager notification channels, and Grafana-native alert rules into a single monitoring pipeline for Docker host and container metrics. Covers PromQL expressions for CPU throttling, memory pressure, and container restarts โ with validation steps at each stage.