About this site

This page contains the list of the awesome free tools and (mostly) free services being used to serve this site. Some of these might be a little too much for a small site like this, but I just like to try out lots of things.

Tools

acmetool

acmetool is used to automatically obtain Let’s Encrypt TLS certificates. It has been configured to automatically renew certificates (using a systemd-timer). A Cloudflare dns hook is used to perform DNS verifications for the acme protocol.

acmetool has been installed using the hlandau/acmetool copr repository.

Caddy

Caddy is a really easy to use webserver used to serve this site. It serves HTTP2 by default and has automatic HTTPS (which isn’t used on this site by the way).

Caddy has been configured to serve the site over HTTP2 using TLS certificates from Let’s Encrypt. The git (with a Github hook) and hugo Caddy plugins, are used to automatically deploy updates to the site.

Caddy has been installed using the xena/caddy copr repository.

CentOS

The site is served off a CentOS 7.2 VM hosted on Scaleway.

Git and Git-LFS

The contents of the site are version controlled using Git, with git-lfs used for binary files.

Git-LFS has been installed using the RPM packages provided by packagecloud.

Hugo

Hugo is the really awesome static site generator used to generate this site from markdown files stored in Git.

Hugo has been installed using the spf13/Hugo copr repository.

The site uses a modified version of the minos theme.

Services

Cloudflare

Cloudflare is used as the DNS provider for the site. Cloudflare’s automatic CDN, caching and security services are also being used. And all of this is FREE!

Because Cloudflare’s CDN and security services are being used, for most (all) people, the site will be served from one of Cloudflare’s servers, with a Cloudflare SNI certificate. Cloudflare’s ‘Full SSL (Strict)’ option has been enabled to ensure that Cloudflare is caching resources served only from the Scaleway VM.

The site can be viewed without Cloudflare’s intervention by visiting blog.kshlm.in for verification.

Github

Github provides git and git-lfs hosting. The source for the site (and the Hugo configuration) are available at kshlm/kshlm.in. Github has been configured to notify Caddy via a webhook on updates to the repository.

Let’s Encrypt

Let’s Encrypt is used to obtain the TLS certificates for kshlm.in and blog.kshlm.in. Let’s Encrypt provides free and automated TLS certificates using the ACME protocol.

When visiting kshlm.in, content might be served from Cloudflare’s CDN servers with Cloudflare SNI certificate (see note in Cloudflare). The Let’s Encrypt certificate is used to ensure that Cloudflare’s Full SSL (Strict) option works correctly.

Scaleway

Scaleway is a cloud provider offering bare-metal (and virtual), SSD backed, ARM and X86 servers. The site is currently hosted on a VC1 virtual X86 server.

Contents