Submarine Logbook
A modern tech blog forged with dark neon aesthetics and fleet-level discipline.
I write about AI systems, cyber risk, homelab infrastructure, and the hard-earned habits of running reliable systems under pressure.
Navigation Deck
Explore by category
ai
AI
Model safety, agent systems, and tactical AI operations.
9 posts
web
Web
Self-hosted stacks, static performance, and architecture notes.
3 posts
learning
Learning
Lessons from the fleet, engineering growth, and applied practice.
1 posts
tools
Tools
Utilities and workflows for repeatable, resilient execution.
3 posts
Recent Intel
Latest mission logs
web · Mar 7, 2026
Hardening Traefik with CrowdSec forwardAuth in a Homelab Reverse-Proxy Stack
Practical homelab guide to wire Traefik forwardAuth with CrowdSec, validate it, and handle the security tradeoffs before production.
Open entry
tools · Feb 28, 2026
Secure Remote Docker Deployments with Proton Pass CLI, Docker Contexts, and SSH
Idempotent remote Docker deploys over SSH with Proton Pass CLI secrets, including the security tradeoffs and mitigations that actually matter.
Open entry
tools · Feb 21, 2026
Pi-hole + Unbound Behind Traefik with a Clean /admin Redirect
How this homelab publishes Pi-hole admin via Traefik while keeping DNS local, with practical hardening steps for the risky defaults.
Open entry
tools · Feb 14, 2026
Running Paperless-ngx Behind Traefik with Internal Network Segmentation (Redis + Postgres)
A homelab-backed Paperless-ngx + Traefik deployment with segmented Redis/Postgres networks, concrete checks, and security hardening lessons.
Open entry