#ops

Step-by-step for an infected WordPress site: top to find the rogue process, lsof to locate the file, chmod 000 + chattr +i to neutralize it, then dig through cron and core.

Intel's open-source ledmon lets you blink the LED on a specific drive in a server enclosure — handy when you need to physically locate a disk before pulling the wrong one.

System Activity Reports — using sar to investigate a sudden server crash. Where the data lives, how to generate plain-text reports, and a free chart tool to actually make sense of the numbers.

Quick reference for restricting access in Apache: the order/deny/allow syntax of 2.2 vs the Require syntax of 2.4 — almost the same problem, almost the same words, different config.

When a WHMCS admin loses their 2FA backup codes, the rescue path is a single UPDATE query against tbladmins to clear authmodule and authdata.

Why ES Curator silently refuses to delete old indices when they're managed by ILM — and the one-line fix (allow_ilm_indices: true) that gets it back to work.