Go: Verify Cryptographic Signatures

Recently, I was implementing a webhook for Travis CI in Go. When a build finishes (depending on the settings), Travis POSTs to a previously specified URL. That requires the URL of the webhook to be publicly accessible (you can still Travis-encrypt the URL, but that’s just security-by-obscurity). To give you the possibility to verify the POST query actually came from Travis, they not only send the payload but also a signature (as an HTTP header).

LXC Containers with separate IPs

LXC (LinuX Containers) are kind of Chroot Enviroments on Steroids. They allow OS-level virtualization by using cgroups (control groups) provided by the Linux kernel. OS-level virtualization is not as resource-hungry as normal virtualization (there is almost zero overhead) but offers less isolation. For more details check the Wikipedia Page of LXC and OS-level virtualization. For me personally, LXC is the perfect middle ground between heavy, full-blown VMs and microservices architectures like Docker.

Kanboard Installation on Debian Jessie

In this guide I’m describing how to set up Kanboard on a Debian Jessie system with Nginx, MySQL and OpenLDAP. What is Kanboard? Kanboard is a Project Management Software utilizing the Kanban methodology, it visualizes your workflow and limits your work in progress. For a complete documentation of how to use Kanboard and utilize Kanban, please visit https://kanboard.net/documentation . Requirements Requirements for Kanboard itself can be found here: https://kanboard.net/documentation/requirements