[ OK ]Initializing kernel...
~/im/blog
Hire Me

Let's Talk

Got an infrastructure problem or need an extra hand? I'm open to discussing new projects.

Get in touch

Connect

Find me on social media and professional networks.

© 2026 Irfan Miral. All rights reserved.Developed byIrfan Miral
Privacy PolicyTerms & Conditions
HomeServicesAbout/ResumeBlogContactTools

Blog

Thoughts, tutorials, and insights from the trenches.

35 articles
2026-12-23• 6 min read
Cloud

Questions I Ask Before Recommending a VPS Provider

There is no single 'best' VPS provider. But there is a short list of questions that narrows down the options extremely fast, and almost none of them are on the specs page.

VPS Hosting Cloud Infrastructure Decision Making
2026-12-09• 6 min read
Hosting

Self-Hosting Nextcloud: What I Set Up Differently From the Defaults

Nextcloud's default install technically works. But a handful of specific settings around cron, caching, and upload limits separate 'it runs' from 'it runs well enough that people actually use it.'

Nextcloud Self-Hosting Linux Administration
2026-11-25• 6 min read
Security

Why ModSecurity Goes on Every Client Server by Default

ModSecurity paired with the OWASP Core Rule Set knows absolutely nothing about the specific application running behind it. That is exactly why it is so useful. It brutally catches the generic exploit attempts that hit every single server, regardless of what is actually running.

ModSecurity Web Application Firewall Security
2026-11-11• 5 min read
Security

Is SSH 2FA Worth the Hassle?

Adding a TOTP code on top of key-only SSH sounds like great defense in depth. But before you break your automation, let's be honest about what it actually protects against.

SSH 2FA Server Security
2026-10-28• 5 min read
DevOps

Log Management on a Single Server

An ELK stack is massive overkill for one server, but 'grep through /var/log and hope' isn't a strategy either. There is a useful middle ground.

Logging Linux Administration Observability
2026-10-14• 5 min read
DevOps

Monitoring a Small VPS with Prometheus and Grafana

Prometheus and Grafana sound like enterprise tools for a dedicated ops team. But the setup for a single VPS is small enough to be worth it, and it scales perfectly when a second server shows up.

Prometheus Grafana Monitoring
2026-09-30• 6 min read
Security

WordPress Security Basics That Stop Most Attacks

Almost every compromised WordPress site I have ever cleaned up was hit by something incredibly boring: an outdated plugin, a weak admin password, or a random theme nobody remembered installing. The fixes are exactly as boring, and that is exactly why they work.

WordPress Security Web Hosting
2026-09-16• 6 min read
DevOps

Migrating a Website Without Downtime

'Zero downtime migration' sounds like it needs special tooling. Almost always, it just needs the new server fully tested before DNS changes, and a TTL that was lowered days in advance.

Migration DNS Linux Administration
2026-09-02• 5 min read
Hosting

OpenLiteSpeed vs Nginx for PHP: What Actually Differs

OpenLiteSpeed is pitched hard in WordPress hosting circles as the undeniably faster option. Whether that outweighs Nginx's sheer ubiquity depends on who else has to work on the server.

OpenLiteSpeed Nginx PHP
2026-08-19• 5 min read
Hosting

Speeding Up a Slow WordPress Site: The Order I Actually Work In

'Our site is slow, can you look at it?' is one of the most common requests I get. Almost every single time, the fix is the exact same handful of things in the exact same order. Server-side first, frontend plugins absolutely last.

WordPress Performance Caching