DevOps & Linux Server Glossary

Definitions for Docker, UFW, SSL, cron, and reverse proxy terms — written for sysadmins, not academics. Each term links to the relevant fix guide and ConfigClarity tool.

Docker UFW Bypass

Docker UFW bypass is a known misconfiguration where Docker's iptables rules expose container ports t...

Port binding is the process of associating a network port on a host interface with a service or cont...

SSL Certificate Expiry

SSL certificate expiry occurs when a TLS certificate passes its validity end date, causing browsers ...

Cron Job Collision

A cron job collision occurs when multiple scheduled cron jobs run simultaneously and compete for the...

A reverse proxy is a server that sits in front of backend applications and forwards client requests ...

Traefik labels are Docker Compose metadata that tell the Traefik reverse proxy how to route traffic ...

flock safety is the practice of wrapping cron jobs and scheduled scripts with the Linux flock comman...

Hardcoded Secrets

Hardcoded secrets are credentials, API keys, database passwords, or private keys embedded directly i...

Docker Healthcheck

A Docker healthcheck is a command defined in a container's configuration that Docker runs periodical...

nftables is the modern Linux firewall framework that replaced iptables as the default in Debian 10+,...

An IPv6 mismatch occurs when firewall rules protect a service on IPv4 but the same port is exposed a...

A dangling route is a reverse proxy configuration entry pointing to a backend service that no longer...

Resource Limits (Docker)

Docker resource limits are configuration directives that cap the CPU and memory a container can cons...

Log overflow occurs when container or application logs grow without bound, filling the host disk and...