cxi.org.uk – IT Bits & Bobs

Caddy – Use Environment Variables for Dynamic Processing

Published date 04/06/2026 Categories Caddy Comments: 0

I wanted to use an OS environment variable to decide if a directive in a Caddyfile site block should be processed or not. This allows for some sort of URL processing or feature to be enabled / disabled without having to recode your Caddyfile. Change the environment variable from true to false and the feature can be quickly disabled (or...

GPXPosterPrint – Sports Activity Poster Printing

Published date 04/06/2026 Categories Uncategorized Comments: 0

Background Lots of people will be using smart watches, bike computers and mobile app’s to record sports activities, before sharing them on platforms like Strava. After a completing a challenging event or race, a poster is a good way to remind yourself (and others!) of your achievements. The common file format for the recordings of the activity is GPX and...

Podman – Quadlets – The Basics

Published date 22/01/2026 Categories Containers / Podman Comments: 0

Having been playing with Docker recently and ended up down the root/rootless container rabbit hole, I then stumbled across Podman. Quadlets Whilst rootless Podman can work with your existing docker-compose.yml file, v4.4 (I believe) and newer allow you to write Quadlet files which are turned into systemd services. You can then stop / start containers using systemctl rather than docker...

Caddy – Whitelist Access by IP Address

Published date 20/01/2026 Categories Caddy Comments: 0

I’ve recently been looking at Caddy as a reverse proxy server and I wanted to have an IP based whitelist to restrict access to a website Caddy is proxying. To make amending the whitelist easier, I wanted to put the IPs into a separate file. Method 1 Allow File This is called allowlist.caddy and I place it in the same...

acme.sh Notes

Published date 15/08/2025 Categories acme.sh / Lets Encrypt Comments: 0

The acme.sh script / utility is very useful when working with (free) SSL certificates issued by Let’s Encrypt (LE), ZeroSSL and other providers. It’s featured in a number of the guides I’ve written and a quick search will turn up lots of content, but this is to bring my notes together into one place. As ever, replace mylab.domain and server.mylab.domain...

Pi-Hole & Let’s Encrypt (2025)

Published date 22/07/2025 Categories Lets Encrypt / Pi-Hole Comments: 0

Pi-Hole v6 stops using lighttpd and has it’s own internal web server, so this means a change getting Let’s Encrypt certificates deployed. Having finally upgraded my Pi-Hole install to v6, I needed to tidy this up. We no longer need acme.sh to renew the lighttpd certificate, so to see the current renewal job, run: Pi-Hole needs the certificate and private key...

Chris on CyberPower UPS & PRTG20/08/2025
Thanks for the alert to the broken link (I get an XML permissions error as well) and the new link…
Chappers on CyberPower UPS & PRTG19/08/2025
The MIB file was not downloading from the CyberPower link that you shared (some permissions issue), but you can get…
Chris on Pi-Hole & Let’s Encrypt (2024)24/01/2025
That's a great spot, thank you. I've updated the acme.sh line to use privkey.pem like the .conf file. Apologies for…
kaczmar2 on Pi-Hole & Let’s Encrypt (2024)07/12/2024
Fantastic article. One note: In the acme.sh install command, you have the certificate private key file specified as: key.pem and…
Chris on Pi-Hole & Let’s Encrypt (2024)26/07/2024
Hi, On my live pi-hole VM, lighty-enable-mod does show the ssl module as installed but disabled. However, I think that…