Book a demo

Knowledge Base

OSSpedia
Infrastructure and Network 19 Jun 2026 Amnezia VPN: Self-Hosted Privacy & Secure Access Solution NetworkingAMN
Infrastructure and Network 17 Jun 2026 SeaweedFS: The Highly Scalable and Blazing Fast Distributed File System StorageSEA
DevOps 10 Jun 2026 Gramax: The Fast and AI-Powered Documentation Platform Developer ToolsGRA
Business and Enterprise Solutions 4 Jun 2026 EmDash: The Modern, Serverless CMS for the AI Era CMSEMD
1 Jun 2026 Controlling heavy queries and resource usage on a Patroni PostgreSQL cluster Knowledge BaseDatabaseCase Studies
OSSpedia 22 May 2026 Root cause analysis: PostgreSQL primary crashed from system-wide file-descriptor exhaustion Data Management and AnalyticsDatabaseCase Studies
More articles
Articles
25 Jun 2026 Backups Without the Enterprise Price Tag: Using OpenZFS with Neo4j Community Edition

The Backup Problem Nobody Talks About When teams evaluate Neo4j for their graph database needs, the Community Edition looks like an obvious starting point. It’s free, powerful, and more than capable of handling serious workloads. But somewhere between the initial setup and the first production deployment, a quiet realization sets in: native backup functionality in […]

 Articles
25 May 2026 Building High Availability with NGINX: Active-Active and Active-Passive Architectures

High Availability Starts with Removing Single Points of Failure NGINX is often placed at the most important point in a web architecture. It receives traffic before it reaches applications, APIs, services, containers, or backend systems. It can act as a reverse proxy, load balancer, SSL termination layer, caching layer, and traffic control point. Because it […]

 Articles
25 May 2026 The Hidden Complexity of NGINX: When DIY Configuration Costs More Than Support

The Gap Between Getting NGINX Running and Getting It Right There is a version of NGINX that most teams encounter first: the one that installs cleanly, serves a default page, and seems straightforward enough that configuring it for production feels like a natural next step. That version is real. NGINX is genuinely well-documented, widely adopted, […]

 Articles
25 May 2026 NGINX Performance Tuning: From 3,000 to 6,000+ Requests Per Second

Why NGINX Performance Tuning Matters More Than Hardware Upgrades NGINX is trusted because it is fast, stable, lightweight, and highly flexible. It powers websites, APIs, reverse proxies, load balancers, application gateways, and high-traffic platforms across many industries. For many businesses, NGINX quietly sits at the front of critical digital services, handling traffic before it reaches […]

 Articles
25 May 2026 RediShell CVE-2025-49844: The 13-Year-Old Critical Vulnerability You Need to Patch Now

A Flaw That Was Always There, Hiding in Plain Sight There is something uniquely unsettling about a critical security vulnerability that has been sitting in a codebase for over a decade. It means that every deployment, every production environment, every cloud workload running Redis during those years was carrying a flaw that nobody knew was […]

 Articles
25 May 2026 The Kubernetes Complexity Crisis: Why 75% of Organizations Struggle with Day 2 Operations

Kubernetes Became Essential, Then It Became Hard to Manage Kubernetes has become one of the most important technologies in modern infrastructure. It gives businesses a powerful way to run containerized applications, scale services, manage workloads, and support cloud-native growth. For companies building digital products, SaaS platforms, internal applications, and data-driven systems, Kubernetes often feels like […]

 Articles
More articles
How To
27 Jan 2026 Apache ZooKeeper Docker Migration How To
5 Sep 2025 How to Deploy Hossted VM App on Oracle How To
8 May 2025 How to Deploy Hossted VM App on GCP How To
10 Jan 2025 How to configure a domain for Hossted VM application How To
22 Oct 2024 How to authorise through AWS Identity and Access Management (IAM) How To
17 Oct 2024 How to Deploy Hossted Kubernetes App on AWS How To
More articles
Newsflash
26 Jun 2026 DevOps
HAProxy: Integer Overflow and Response Smuggling in FCGI Parser

In HAProxy versions through 3.4.0 a high severity vulnerability CVE-2026-55203 was detected. This vulnerability allows a malicious FastCGI backend to desynchronize the FCGI framing parser, potentially leading to request routing errors, response smuggling, or memory safety issues. This occurs due to an integer overflow in the fcgi_conn structure’s drl field. Specifically, when contentLength is 65535 and paddingLength is 1 or more, the drl field wraps to 0, causing incorrect record consumption and a buffer misparse. To address this issue, users should upgrade HAProxy to a patched version 3.4.1 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-55203.

 Read more Application Development
26 Jun 2026 Specialized Software
Moodle: Group Restriction Bypass in Grade History Report

In Moodle versions before 3.5.11, 3.6.9, 3.7.5, and 3.8.2 a medium severity vulnerability CVE-2020-1754 was detected. This vulnerability allows an authenticated user to view the grades of users outside their own groups, leading to unauthorized information disclosure. This occurs because the grade history report fails to properly enforce group restrictions for users who lack the ‘access all groups’ capability. To address this issue, users should upgrade Moodle to versions 3.5.11, 3.6.9, 3.7.5, or 3.8.2. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2020-1754.

 Read more Educational
26 Jun 2026 DevOps
GitLab EE: Authorization Bypass via User-Controlled Key in Registry Policies

In GitLab EE versions 18.6 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 a medium severity vulnerability CVE-2026-5309 was detected. This vulnerability allows an authenticated user to read or modify another group’s virtual registry cleanup policy settings without proper authorization. This occurs due to an authorization bypass flaw involving a user-controlled key under certain conditions. To address this issue, users should upgrade GitLab EE to versions 18.11.6, 19.0.3, or 19.1.1. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-5309.

 Read more Developer Tools
26 Jun 2026 Data Management and Analytics
GeoServer DB2 DataStore Extension: Remote Code Execution (RCE) via JNDI Injection

In GeoServer DB2 DataStore Extension versions prior to 2.27.0 a high severity vulnerability CVE-2025-27511 was detected. This vulnerability allows an authenticated administrator to achieve Remote Code Execution (RCE) on the server. This occurs because the extension is vulnerable to a JNDI injection attack when processing a specially crafted DB2 JDBC URL. To address this issue, users should upgrade the GeoServer DB2 DataStore Extension to version 2.27.0 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2025-27511.

 Read more Database
26 Jun 2026 DevOps
Gogs: Cross-Site Scripting (XSS) via Unauthenticated Jupyter Notebook Sanitizer

In Gogs versions prior to 0.14.3 a medium severity vulnerability CVE-2026-52816 was detected. This vulnerability allows an unauthenticated attacker to inject malicious HTML or JavaScript, leading to Cross-Site Scripting (XSS). This occurs because the Jupyter Notebook (ipynb) sanitizer endpoint (POST /-/api/sanitize_ipynb) fails to properly restrict data: URIs. It uses a permissive policy (bluemonday.UGCPolicy() with p.AllowURLSchemes("data")) that allows all data URI schemes, including data:text/html. Additionally, the endpoint lacks authentication middleware, allowing any user to exploit it. To address this issue, users should upgrade Gogs to version 0.14.3 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-52816.

 Read more Developer Tools
25 Jun 2026 Infrastructure and Network
Traefik: Authentication Bypass via Fail-Open on Unresolved Auth-Secret

In Traefik versions 3.7.0-ea.1 to before 3.7.5 a medium severity vulnerability CVE-2026-54762 was detected. This vulnerability allows an unauthenticated attacker to access backend services that were intended to be protected, leading to an authentication bypass. This occurs in the Kubernetes Ingress NGINX provider due to a fail-open behavior. When an Ingress explicitly enables BasicAuth or DigestAuth through annotations, but the referenced auth-secret cannot be resolved or parsed (e.g., it is missing, malformed, or policy-denied), Traefik logs the error and skips installing the authentication middleware, while still routing traffic to the backend service. To address this issue, users should upgrade Traefik to version 3.7.5 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-54762.

 Read more Security
More articles
Case Studies
22 Jun 2026 Automating DR site rebuild for a large Patroni PostgreSQL cluster

Problem: A customer running Patroni-managed PostgreSQL (PostgreSQL 15.17, Patroni v3.3) had production databases ranging from >2-3 TB up to a ~52 TB physical replica. Rebuilding the empty DR site from production relied on manual pg_basebackup executions and manual post-backup recovery steps, which was too slow, operationally intensive, and prone to human error for such large volumes. The […]

 Knowledge BaseCase Studies
22 Jun 2026 PostgreSQL LWLock LockManager Contention caused by unpruned partition scans and high concurrency

Problem: An OLTP system using Patroni-managed PostgreSQL 15 experienced global slowdowns under load: CPU climbed to ~80%, large numbers of concurrent sessions, and application timeouts. The client reported bursts of traffic (hundreds of workers in parallel) routed through HAProxy to the leader, and provided PostgreSQL and Patroni logs, auto_explain output, and query samples. Key database […]

 Knowledge BaseCase Studies
1 Jun 2026 Controlling heavy queries and resource usage on a Patroni PostgreSQL cluster

Problem: A production Patroni-managed PostgreSQL 15 cluster experienced periodic heavy queries that threatened availability. An example slow job ran for ~84 seconds and performed a full scan of a 1.8 TB partitioned table (arbor.CDR_DATA) that uses daily partitions starting in early April. Most clients connect through generic application users rather than distinct personal accounts. The […]

 Knowledge BaseDatabaseCase Studies
28 May 2026 Rebalancing uneven disk usage in a 5-node Apache Cassandra 2.2.5 cluster

Problem: A 5-node Apache Cassandra 2.2.5 cluster (two data centers) reported severe per-node disk imbalance: each node was configured with five data_file_directories (e.g. /cassandra/data1/data … /cassandra/data5/data) but some mount points on individual nodes were near full (examples showed mounts at 93% and 95% used). On one node a particular keyspace (jessi) had large sstable directories […]

 Knowledge BaseCase Studies
22 May 2026 Root cause analysis: PostgreSQL primary crashed from system-wide file-descriptor exhaustion

Problem: A production Patroni-managed PostgreSQL cluster (PostgreSQL v15.17, Patroni 3.3.2) experienced a primary process abort with SIGABRT during normal operation. Server logs reported that a server process was terminated by signal 6 (Aborted) and that the failed process was executing a COMMIT when the postmaster began terminating other server processes. Subsequent messages showed PostgreSQL could […]

 Data Management and AnalyticsDatabaseCase Studies
20 May 2026 Resolving a Complex PostgreSQL Patroni Replica Failure

Problem The database architecture reached its limit when a critical node stopped responding. A standby node experienced a PostgreSQL Patroni replica failure, repeatedly logging “incorrect resource manager data checksum” errors. The system stopped working because corrupted Write-Ahead Log segments completely broke the replication stream. A dangerous shortcut would involve running continuous base backups to force […]

 Database
More articles