SShortSingh.
Back to feed

Developer builds Mooring, a security-first self-hosted PaaS that splits read and write access

0
·1 views

A solo developer frustrated with the security trade-offs of existing self-hosted deployment tools has built Mooring, a lightweight PaaS for managing Docker containers on personal servers. The core design principle separates the 'read plane' — dashboards and logs — from the 'write plane' — actions that modify the system — so the most-used interface holds the least privilege. Mooring ships as a single static Go binary, runs as an unprivileged systemd service rather than as root, and routes dashboard views through a read-only Docker socket proxy. Additional security features include TOTP two-factor authentication, session revocation on credential changes, digest-pinned images, and CIDR-bound API tokens. The project is an early-stage, open solo effort targeting the same space as tools like Coolify, Dokku, and Kamal, but with a deliberate focus on minimising the attack surface on a real, secrets-bearing VPS.

Read the full story at DEV Community

This is an AI-generated summary. ShortSingh links to the original source for the complete article.

Discussion (0)

Log in to join the discussion and vote.

Log in

Related stories

0
ProgrammingHacker News ·

PostgreSQL May Replace Multiple Specialized Systems in Your Stack

A discussion on Hacker News highlights a growing perspective that PostgreSQL alone can handle many infrastructure needs typically split across multiple systems. The argument centers on Postgres's broad feature set, which includes support for queuing, search, caching, and more. Developers are questioning whether adding separate specialized tools is always justified when Postgres already covers those use cases. The conversation is linked to a dedicated site, postgresisenough.dev, making the case for consolidating around a single database. The post has attracted community engagement on Hacker News, sparking debate about simplicity versus specialization in modern software stacks.

0
ProgrammingDEV Community ·

MongoDB vs PostgreSQL: A Practical Guide to Picking the Right Database in 2026

PostgreSQL and MongoDB are both mature, production-ready databases suited to different use cases rather than competing on quality. PostgreSQL is a relational database that enforces strict schemas, supports complex joins, and offers strong ACID transaction guarantees, making it ideal for financial systems, e-commerce, and SaaS platforms. MongoDB is a document-based NoSQL database that stores flexible JSON-like records, making it a natural fit for rapidly evolving data models, content management, and high-throughput applications. The key deciding factor is the shape of your data: highly relational, structured data favors PostgreSQL, while fluid, document-shaped, or object-driven data favors MongoDB. Developers are advised to treat the choice as a practical one based on data structure and access patterns rather than a high-stakes debate.